last executing test programs:

2m23.165360194s ago: executing program 4 (id=526):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x80015b1a, 0x0)

2m18.578750315s ago: executing program 4 (id=547):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="38000000540001000400000000000008070000", @ANYBLOB="200001"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x40080)
r2 = socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

2m17.535667527s ago: executing program 4 (id=553):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$eJzs3M1rHOcZAPBnRquVbKtduZRS91KVUmwoXUsuMrUp1C4uvfRQaK8Fq/LKCK0/kFRcyTqskn8gX+dALoEkJiGH+OxLQnLNJbGvCTkETFCsBEJIFGY/pI2lleR4V6PIvx+8mvedd7TP8+ywO/PC7gbwxBrJ/qQRxyLiYhJRau5PI6JY7w1G1BrHra4sTX65sjSZxNravz5LIomIBytLk63HSprbI83BYES8/9ckfvb05rhzC4szE9VqZbY5Pjl/5frJuYXFP0xfmbhcuVy5Onb6T+Onxk+PnhnvWq1ffXTu9he/+fsnta9f/ebW58+/nMS5GGrOtdfRLSMxsv6ctCtExES3g+Wkr1lPe51JYYd/SnucFAAAHaVt93C/iFL0xcbNWyne/iDX5AAAAICuWOuLWAMAAAAOuMT6HwAAAA641ucAHqwsTbZavp9I2Fv3z0fEcKP+1WZrzBSiVt8ORn9EHH6QRPvXWpPGvz22kYj4+N6ZN7IWPfoe8nZqyxHxy63Of1Kvf7j+Le7N9acRMdqF+CMPjX9M9Z/rQvy86wfgyXTnfONCtvn6l67f/8QW17/CFteuHyLv61/r/m910/3fRv19He7//rnLGDdfefFGp7ms/j/f/tvrrZbFz7aPVdQjuL8c8avCVvUn6/UnHeq/uMsYpW9vVDrN5V3/2ksRx2Pr+luS7X+f6OTUdLUy2vi7ZYzl98Zf6xQ/7/qz83+4Q/2t33/qdP6v7zLGfy5ceHPTznsb3e3rTz8tJv+u94rNPf+fmJ+fHYsoJv/YvP/U9rm0jmk9Rlb/id9u//rfqv7sPaHWfB6ytcByc5uNn3oo5l9u3XyrUz6t9V+e5/9Sh/PfXv+7hc3n/5ldxvjdO8+d6DTXvv7NWha/tRYGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJY0IoYiScvr/TQtlyOORMTP43BavTY3//upa/+7eimbixiO/nRquloZjYhSY5xk47F6f2N86qHxHyPiaES8UDpUH5cnr1Uv5V08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA645ExFAkaTki0ohYLaVpuZx3VgAAAEDXDeedAAAAANBz1v8AAABw8Fn/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0GNHf33nbhIRtbOH6i1TbM7155oZ0Gtp3gkAuenLOwEgN4W8EwBy84hrfLcLcAAlO8wPdpwZ6HouAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOxfx4/duZtERO3soXrLFJtz/blmBvRa2tZPcswD2Ht9200W9i4PYO95icOTyxof2GntP7hxTO37MwM9ywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/Weo3pK0HBHF5r5yOeInETEc/cnUdLUyGhE/jYgPS/0D2Xgs55wBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADovrmFxZmJarUym3XSaHbW9/Sg09eM3MMQvekkjbxr+yWfg90ZeHanY/4bjxmiGPui0n3ayfNdCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAvMwtLM5MVKuV2bm8MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyNrewODNRrVZme9jJu0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLzXQAAAP//jAsGRw==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f0000000680)=ANY=[@ANYBLOB="64656275672c757466383d312c757466383d302c757466383d312c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002bc08d8cca74e8ecafb48437094fe1a4a2383bd9d85bff651d1101fd722e01b9b5d22f08b5fc0ac7cbf33fb553a90ae4d01d71ddeeb089f517aeaaa271899287d5b8949b22b23c2807b7d81714b89e9682f6c3faa6107733a77a4cf985560ed64ec24e255dee3654aa2ba55be4bf3ae257adba34bed8e32e4122bb46aa57a75dab0288098e42f886f09bdf63537db28a454b02a4204a7e7dac3c30a6d4b5c814916b02"], 0x1, 0x25a, &(0x7f0000000240)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})

2m17.146981865s ago: executing program 4 (id=557):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x4, 0x3fa, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000002400)='.\x00', 0x0, 0x1a1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0xd2f0, 0x2000, 0x2, 0xadea})
syz_mount_image$fuse(0x0, &(0x7f0000000ac0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000000c0), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

2m16.739428315s ago: executing program 4 (id=559):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$udf(&(0x7f00000002c0), &(0x7f0000000080)='./file0\x00', 0x14, &(0x7f0000002440)=ANY=[], 0xff, 0xc19, &(0x7f0000002140)="$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")
r1 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCGFIELDINFO(r1, 0xc038480a, 0x0)

2m16.160850882s ago: executing program 4 (id=564):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x20, 0xff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x2, 0x0, 0x93}, 0xe)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
pselect6(0x40, &(0x7f0000000040)={0xc, 0x1, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x400000000000, 0x400}, 0x0, 0x0, 0x0, 0x0)
shutdown(r0, 0x1)

2m15.747995199s ago: executing program 32 (id=564):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x20, 0xff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x2, 0x0, 0x93}, 0xe)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
pselect6(0x40, &(0x7f0000000040)={0xc, 0x1, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x400000000000, 0x400}, 0x0, 0x0, 0x0, 0x0)
shutdown(r0, 0x1)

9.211554715s ago: executing program 3 (id=1402):
recvmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}], 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c0002800800010001000000140007000000000000000005000000000000000108000f"], 0x74}}, 0x24005000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001040)=@newqdisc={0x24, 0x24, 0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x5}, {0xffff, 0xffff}, {0xfff3, 0x6}}}, 0x24}}, 0x4c085)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

8.830379083s ago: executing program 3 (id=1405):
r0 = syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a4400000000101090244000101000000090400000302060000052406000005242000000d240f0100000000000000000009058103200000000009058202080080000009050302"], 0x0)
r1 = openat$full(0xffffffffffffff9c, 0x0, 0x20000, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8924, 0x0)
syz_usb_connect$cdc_ecm(0x3, 0x0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

7.897941977s ago: executing program 6 (id=1413):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, &(0x7f00000000c0)={'filter\x00', 0x2, [{}, {}]}, 0x48)

6.196317904s ago: executing program 6 (id=1429):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000380)='./bus\x00', 0x8, &(0x7f0000005880)={[{@barrier}, {@autodefrag}, {@noacl}, {@compress_algo={'compress', 0x3d, 'no'}}, {@max_inline={'max_inline', 0x3d, [0x30, 0x30, 0x32, 0x74, 0x74, 0x0]}}, {@noautodefrag}, {@max_inline={'max_inline', 0x3d, [0x30, 0x37, 0x34, 0x6d]}}, {@barrier}, {@nospace_cache}]}, 0x1, 0x55ae, &(0x7f000000ac40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x101042, 0x0)
creat(&(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
pwrite64(r0, &(0x7f00000003c0)="7f", 0x1, 0xf02)
rename(&(0x7f0000000140)='./file1\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

6.146806614s ago: executing program 3 (id=1430):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)={0x3c, r1, 0x1, 0x70ad2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x20}]}]}, 0x3c}}, 0x0)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x20, r2, 0x7, 0x70bd2b, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40050}, 0x0)

5.918318123s ago: executing program 3 (id=1433):
r0 = socket(0x28, 0x1, 0x0)
r1 = syz_io_uring_setup(0x4f3, &(0x7f0000000380)={0x0, 0x486e, 0x8, 0x2, 0x10000340}, &(0x7f0000000300)=<r2=>0x0, &(0x7f00000002c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f00000001c0)=@vsock={0x28, 0x0, 0xffffffff}})
io_uring_enter(r1, 0x47b2, 0x10f9, 0x4a, 0x0, 0x0)

5.704148995s ago: executing program 5 (id=1435):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000012c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109024a0001100000000904000003fe03010009cd8d1f00020000000905050200067e001009058b1e", @ANYRESHEX], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000001580)={0x34, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
poll(&(0x7f0000000540)=[{r1, 0x8289}], 0x1, 0xc3cb)
write$char_usb(r1, &(0x7f0000000840)='3', 0x1)

5.446191694s ago: executing program 0 (id=1436):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010d00000000000000061c0000002000018008000100", @ANYRES32=r3, @ANYBLOB="140002007665746830"], 0x34}, 0x1, 0x0, 0x0, 0x20040005}, 0x40)

5.292762898s ago: executing program 3 (id=1438):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file0\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x5, 0x4451, &(0x7f0000008900)="$eJzs3T9sVPcdAPDfe3aLTYHalIFKlXpSUVu1lWUz0RqpxhiMDS4VLQxdjrN9gJuzD9nnKAODoyxImSJliDKgRMrmCXnLRJZIGbNkJDNSMmSJFAnlort7Z99758MX4sMBfT4S/t37/be/9373e8PxixOVO0truaW1XGElV164tXY693q5tL5cDHHWp205+6Lr8TlQvYiT2B+cq+cv/ufG6RA+WfziSbVarYaa/rCrsZbX335zb6E1bYpbL95q9Lt7b/vlfyGEE23zqukLIQwkr88l6WSSDoYQjoUQohDCjXtv38zt02wePi6ezT+du781fmp288FW5989CuH90m//dnv5qz/0jX/5l30aHgAAAAAAAAAAAAAAAACAl9z0tavX/z06Fh5FoX8zav++7nSSdvp+bHXf/L73vywAAAAAAAAAAAAAAAAAAAD8TO18/z8XHd/l+/9TSTrRoX31n92N88efOE96Y+ZfV6cujI4l579HbeVnkqyvz/WF4eb56p91Pv/9XKb97ue/t4/zvJrza447FKJ4JHUdxyMjIXyYHPx+Mjocl8prlb/eKq+vLO7bNF5a6fg3Tu9PRSc50D8V/2ec/z+Z6b/35///pu3dVLu+uX9vsVdaOv59Het99Gb0jPj/crve+Uy7FxF/nl86/v31vMHWChONBaAW/3f6977/pzL99yr+x0IIuag211xqBajtYWr5nfYrpKXj/4t6XmrpTP6Qne7/7zLxv5Dp/6DW/43sBxG7Sse/sY4PpGrs3P/D8d73/8VM/wcR/9r8N3z+dyUd/0ONzP5Ulfpfstv1fzrTf6/ifz1O5nksSr0DNqNGfqf/r460dPwH2sp3nv/irvb/lzLtX9TzX3Pc5vNfc/n/c9R4/mN32/HfCk+q1cGO9bq9/2cy7Xq9/k/U939tzpzo5aCvkPT9f7iel947D9V/dop/NRP/2Uz/zxH/jzs/he6o70oGmvHfWU++P9TI/8D+ryvp+P+qkRm31tio/6zv/6K99/+XM/0fxP6vNv+NuLejvirS8T/SsV4t/p938fl/JdOu9/EPYbT5BmjfvrCHdPyPdqxXv/8H9o7/XKZdr+P/p152DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPASmEzSoRDFI6nrOB4ZCeF8cn0yHI7mC4v5+VJ54bW1EKaS/Fw4Ht0ulecLpfzSSnmxmC+USuWFEC4k5SfCQLRWKlfyy4W7F7f7GozuFAurlflioRJCmE7yfxeONvuaX6osF+6GEC5tl/06Lq/evVNYyS8urf5jdHR0NMxsz2E4Kr5RKa5UGqM3SkOY3W47FLVMrl58eXsuR6L/l9dXVwqlev6Vljal8kKh1NJmLil7NwxHldX1lYVCpZgvlW83xztIE0k6NXPtv9eujLWV34wa6eSLnRYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9Kj8b+/F0Lob1zFIYRclLyIkn8pDx8Xz+afzt3fGj81u/lg68ludQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4gR04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirs0j9KA0EUB+A3Y6Glx7BadjvbFUW0cEXwBHoMD6NH8RLewSJF2hQhkMxC2D+wTVJ9X/Ngfsy8B/MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACWe3zr3l/rJiLF1fYy4vfz7/84fy71+276/sUZZuR0nl66+4e6Kf+eRvltOVq1eZ9u1l8fMVF7P4M9Ge7TwbjP0Ny+zc3X972OlKuIaEt+k3KuqmVvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAsAAAAACPO3jqJvAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//9HQIRk=")
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa1d841, 0x0, 0x40, 0x0, &(0x7f0000000180))
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x2040, 0xd)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
rename(&(0x7f0000006200)='./file1\x00', &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

5.160548896s ago: executing program 0 (id=1439):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r3=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_DEV(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x38, r1, 0x852dd6c070cd7e4d, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x38}, 0x4, 0x700000000000000}, 0x0)

4.874921365s ago: executing program 0 (id=1441):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x60442, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
ioctl$VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000000500)=@userptr={0x6, 0xa, 0x4, 0x1, 0x0, {0x0, 0x2710}, {0x1, 0xc, 0xd2, 0x6, 0x77, 0x6, "0080ca6f"}, 0xff, 0x2, {&(0x7f00000002c0)}, 0x6})

3.787350637s ago: executing program 0 (id=1445):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0xa02, 0x0)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_usb_connect(0x0, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="120100009f187620ef170372362e010203010902"], 0x0)
read$FUSE(r1, &(0x7f0000000640)={0x2020}, 0x2020)

3.716330134s ago: executing program 6 (id=1447):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/tcp_dsack\x00', 0x1, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
sendfile(r1, r0, &(0x7f00000000c0)=0x8e, 0x180000504)

3.472222166s ago: executing program 5 (id=1448):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000001b40)={'syz0\x00', {}, 0x0, [0x5, 0x3, 0x4000401, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, 0x7, 0x0, 0x0, 0x0, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xfffffff6, 0x0, 0x8, 0x800000, 0xfffffffc, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x1], [0x3, 0xfffff41a, 0x0, 0x0, 0x4, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x9, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xffff8800, 0x0, 0xfffffff8, 0x2, 0x0, 0x2000079, 0x400, 0x0, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0xfffffffa, 0xfffff986], [0x0, 0x7f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x3, 0xfffffffd, 0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x80000000, 0x2, 0x7fff, 0x0, 0x0, 0x0, 0x3, 0x0, 0xf, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x4], [0x2, 0x0, 0x6, 0x0, 0xfffffffe, 0x0, 0xfffffffe, 0x4, 0xfffffffc, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x800, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0xffffffff, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x10, 0x5, 0xfffffffd, 0x0, 0x0, 0x0, 0x8001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0xffffe]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x5)
ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x3)
ioctl$UI_DEV_CREATE(r0, 0x5501)

3.333941285s ago: executing program 1 (id=1449):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f00000001c0)=0x2001)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000180)=ANY=[], 0x32)
syz_fuse_handle_req(r1, &(0x7f00000004c0)="599dea1c5d905cf24195d5137ab95ac54bfecfea225a0bf67a97732c84c1329758379b35363964ed76aa79180741f34778cb704b38d23065c338714ac871d565a5ad5ba0bbeeb7d4d3b9687eece0048309f9256a859dff31dde6cdc0354159374c435405b28f0fc93dc5769f95f5d315ed8ff481b12bbef0b464fe94d0ffaa83194a47c7f089588f84dcd9ab385886985a71ee12723aafb8404c210b6b2a4c225e5a94a24aa4b95176a5b5ea0ecdd4d8f7abd6ef2bc58e545d6cda30f443be86be3dbc4b61d7f40f122d9c99586fc14db15066e46726cadecde705e867568db60db276bfc652000f9ae3e7063248fd74b8959fb32420cf0c5bedfb31260837f3bf4c6b08c24bfe49b11f6d172e83dd7ce7cc0646d2a595f7a6b6097896e66d90bc5b1fee0c8cda6c471871aceb2b323aeb4a1f68ba9f9f6b36f1156d28533fd20214ba0e525b61ddfbcf91f1349d011f7774e0f8a8241c30d28536aec3e569373dce349abece01996cc5781f664f21b50eccf3d6d348e37958ff55290be149cc8b3d8a9646e8f1c862cc1d7f12eb2094763a102abf251b4b26bbdc6d36d1a5b6da08db1c84cb6a596f9e472968be33f99f5af3851aff1f58b00fb14a54d612db2d7918672c23edfcf76db61d5fadff1d2b607c26186e9590eef9944702890a85cf7dd6ae4204c123aecb1c43a0bd5725d511c00cb22da8b44f3bc311351aa0672a9dfdcdc0cffeb8826213dcfb0ebf58f048de12f8a4d263cbd5a9438b6b1bc8ca4991bb8a44a5dca55665317f4b4637823c946a7d35e49acc4fbd8fce5d37ffa821d10948386664deff471ec4a31c36f0e6fcdcbfae5c77f91f10e1733e105bbc62913e8905175dc6a898b0671eaab4350cb956f4cac57b31e0f2fce099e779ecaa02291038365a24d1175d6bff29c298fb88c369774eb401d416e6f1e851c641d1dacc1877faef058f3ac84d3a55afaf007361ba84fd47403c5e7c6bc2f67f3df360a6152ac85c1d27ae473f27ec006b21fbca92ea13a260f501871d0930196773276daf71fe196dc8a5cda0892164f6bd8f49e9f2bc0170cfd7886decdfb6806ab40bb16c7e1f590425d2de09f29813008d28934e245c245d93071fb9957d96ad943fe9ecb3e591676e01b24cb8cd18302df9e2552272c3ab3ecd870c0254e9f8fc5bbc7d457f7eb356efd8cbd1ef9447d4f6291745c252d9306e26fb97dc825ceebe27bef80d9766373f6551baf727c2a963e31efcbd14cf202e97d4ae671055fac5e3cf360d94a38cdd2813d3d2c30c13bcc8b0a36c4c3a3f40b0aad12bd7520ada1eca54498492c54b84f308c93b21ca83f035a8cd743b3dfeaeb771927ee49a3230bb1e6a0db85cc5cc8c78054c30ca34eef9a4205b7350ba2889f4773df5b842b283b2766e7e7514733d9da753789ee793cbbd24d54935dc9e453ffc6dd2da1314534b2ba0b7f93f46a1e67e1173f0cf0ad0c52f2e0b4f7aa9f1e520122c68ba4c814b1bc9db7bf2b51fd7c1dd12d3acad7f7da2df25af718abcd1874aefde70fda478d13ee0eedf8adf31d865aa05af88653295ba41c48b0a7933fc8d911595c628cfc82466b52b7ce5548725606ee662fa22c4e240aac2aa81198441b97e33a889fba2137a01a079dd0c31a3a4bf78fbc869025c52335b3b60127bf395155bf52f15816b945803e3cde0c111d32ec9897b424d6894743989944ec42bcc5f548807926e750deca51d586ca79f373b8ffcf5374f4affb53d5eb30565b04e59db6c2453c9f273d0bbba514c8c73c5b921b90038b44b856467fcc404df792e45b75e8dbac2b310118316f3f5eefce0339498119b8b68ff3464023d212372711905f9d32de257dd528ea295f150410df6fba46023ac11cb6298fce6393e34047f831eab99ea6a85f24ffaac21c845d938c762baa6e9a015685ccc6a96b14219b5b71c07848c99e013a395fc1246fc1bbaa8e4ea84f326b86dd5e51263ea34b9a058d316e0b42c51425d0f624e32b56eb26088cafcbe4d524788ac7c32f529a0ff7bf54048e7b6b3420b270d4fa6c3c88b3f723bf1675b9c027eff7aa9631e009156888288d9b4a0d4d98a448c7587d430437384c5a73e963b8479ccc07cfc9afd1e5e3202cbf3d7dcde513285c971c30b228b1091a00331b380668b7c23de7da0d7ec0d49bc4611d1e95a048d3f0143b136ec065a2ffef10ebf3a888673d297126450b67ca844c5c400f17a426d533da508ff9ef38855a7977a18960d2f46fa4fa87e57d6922a87dfd5d6998d8cb7d2eb124fdbd06e33a061919539a88e9a1fed4d1bade546a09a55affdb2e9a72533e8c088e137b397e85bbd957a1d247265d507292f064ecea2ab22f4bcd340fc08664dd750b9bfd9dcc2cd1ae1ea982193deb004019b3a9f3c31d168de54979f2f4f88e027d602287a3f4c855a09dd38d85e5267420316cd10c77f645401cec48ce6f350aa466b1a5e637e5aa3c9cd2f0607d8cc6e27d9213f36b56285fd6321bc12f8e7c7355f1e2632183e63ad795f861e0151a092fc345b35964d464d8ef60d4729532e5bb251bb4a5b7da8c9b90c6097393d7e75d03ceb962b18a63025ab0e260f598706c6a7f90323b3f7dff2bcad18122d5267e6fc256352cc642381f4ff1c08a9b70b22178feedc9ada7806bbfc894aa0099e847f452378858b27a46fceb3855fb6394e45d5ff58ed1fd55c183f38e293b5c38f90e977fd5387cb5f3168607a674ddb1719313ba7082efb07457c8c84f9713b2445cc2bbc793baa2f715a5b406aaaea3c500898fe3cfe9097b054e66b9065b46fe33c1ed44997a106f8f380423cec352ace3be5ac91c73e368864e4ba0a315e73bd5dbb72e1a9d57e3ce26790a3c92d742c68c8e331947b2603213707392fafeb1261325a258e0a7042eac6913c4208ed9837da3511f7aa6b8f8863cfabdb0810532594d49f0a1e518d3ca40bbe0326b366776f10f7d8222cbfa82c85425c53f99e84d7545539c051b6c8cfa422bef36a17afa6cadd498702fe95d70816f3745233e97849e1281a794a6c327551fb399c768d055e000bfefa3b8232033bdb5f7e1309d6f0d22f8d2999be473880863d193728648f9461b611598011dfd13edf069ef907114196bab2da308fdb60cae06ec4a65ec1f622ca444e5ea777ee50f18bd6a6b796b025a5b6ca99156e4cc8184b583ff9b34f66bb146bcdfaaa72423b04cc795eda6965083b3feeb2bc0ac3f1384f802ad554cb41f7121a926b913f03ccb15d3a30c2852b1a5653a9182f0f32d76651aeb7b52e6b4349a03d2dd34058d6fd60b73f8913c66ef8767cb479f247236fb6a4ef7868d74e5895157179e6dd47f39d2dd196f53c43e9d2a1144d77bc7120d19c16b702b320d8d4c92145b4bb27c64c46f3102bd87e0f46be2a3772a6c50d7d44f6f2aae126dae2a670f4c6cc75880cb91e043131a90862918c8b41a20677162c8ae7b22249d6b2d0748ae76c3a3f9a7a30f4b7e2ab107689bb96dd60f7968dd6a1ecba9d75af647a30e5fe4f5fb4e81ee34c1dc63a1302e3062d289f3660d5fea5b58681bef5037ba8241057a935d03c4d3b1ac6ed7dcb4762f74e5a553607216708646c4db7cb73ac2e45e736057a3ca311fefab3516d5bfd167c7b54d44a5c762e531cdc6f3cbe3a7de37f16148526f74f56346336c9e2791a086a2711e30d4906c7494ed3dd3086e6d86505802b2885984ee71430bf25b83aa65a09afbb805e66111b406421d9da43fc63ced3522bc1a4c273f50b9e6506634da1545ea08258ebbb97670673156a063f82f9eba252e40011fc6e637fed65741a7a32edf81db1f6275df15135e7d3e9de3b408b4f6a82c3a804d911a656f3327d5184eae56458797bb9e140e77f9fae0a3094e00ed7b7c90634e7e2e2dacc2b1e9bc5edba461fee4b1802bc46061fe18ca6b24037c6d1d442b01a7d3c3bfc2e61298ed19960d1aef12b1f6e8faa19a0d654f94e3d1862fdc317477d47a6d3770eb4acdc633c33c5db424911f8e44a4e080752fb8ce00c9cd409e77684ab0b03962ed8550e39755e0a6aa031317454bc560d36a06fbd76ae0f03893d859a3a4ad711b485aa007c51da45f92ec22bb7f83e720b67eaeb43e4912b72930e3909ea75d4ca20810ae1f00f05bc9548cc3947bc239eb415df0b6bb1298fdd82288f5c4d62f1af8f92cb4dd85f540478f0664b51626dd01ac9b3a6336a47c3f349354ba5505b122865228477c8dcaddbc79ba7eda517d131d9758451fac927ff11b61255d03e122505c962ab2c0fca8853ce92f79323d2a7d84a501ff421654dd3916184931ec96dc1ad84f78c87cd4eb1c6e39b9c68294cca5488909d3c96f74a41f701cdea8724de051c9b39c7abf8778bd2c66e6995fb4689508c15564bf5ff1273ed3e6828f93196931d92ffeaf12ccf1b5a3f64a9915b748f24f8e86c79936ba216ab433dc2d7c6db1b5cba54b032c880320d162fc24e127a4b8d97678ac0423374924756c3611a96016e9baf5249b7ec6a8ce94f4778593725733c8678c1e741b1e33582c25fe6d2b5fffc6c0d090e68c253e31cd8152b1934ec8f1429312a0da65b1228517930c4c274cf689ccd8d31ae7423ae3dea09e5f86cd37b13e22be9494104b85389c4311bb9003c3d6a17f6944fbce1640905da5e198f8eb7eec8e90d2a801bef58cf71ae1046574d20bc6f9cc41f6e34ef855589d19e2d2341e3443520864d8ea544d04271de231697f94b2896aef95edca80b51821baa85c4a3a96d8c5b23db1a35d4698fd29d5115e19f19a07e9feecb06d94338103b25ee5b3145e910fe09630a66bb44667716933441f710fa805624d489f362da02fb83a9d635dee9796cf514eebd959f8f4cd40e4a3bc68ed436d0fdeea0e8e4205a5e4c4d1b43e1f789bcd764a2c5a46dfbcc7e3d4fe884a53f390df5d53e3c82074853e57977d88d1d5566065f2e1b523fe1296880b1c2fc14945dc1f03408dea2a6b803067995a4b81fda19eab5021b484c29e70de8f61a985ef4755aab968365ccc6655986fe4b742f56de3ab31e087e1e391a4b7afa9ae5a2ff02dcf5d439a0826b61bff8d647d45674fc1e667e7af5bfe9d1e94df2b727042996ca0b99dd35cda94e1c66a8d3fe273e5338604da4fe54579a3d915e02fb266b55c98af41f70e27665323869ec609c50fe66ca055eedecd1f7cdad135dc85eeb9a04f7db5ec1588a360fe2971f5f5b416fc3ba0ed37a87556f449e73e5c0f546a00414e0948f5e47fb88a3ef8806cd631a819fd3d64c2a7aa78d7fec7353fe4cfc5c8b311d01666f95e89226467c061428529093edb4cfc985f28fa79bdb30d0b293f695a51281149dfbc708865d2e2a5f308ce45a275a92228fefc9dc1d1156ff8c273c7add2f8edacb426ab8797e31aa755718a38c733489b93ca3d7619f498acbc9c74839a92cdf755da34b131667c276ac5e71072db41ad6e3a71431de3b6c68f1e1925c20a83213ed064540eb35454fcb48d6474dc33e9ed8480cdc04029d6dc7ee0593c63e64c5bdad4d5bcb98196610e241402c52132a51a69ddbe5f2d9cf04f729a0d030071854fba1020c2e2e0ce21bf1f6bba4b3ccbedbf5fb086792f2de6494981d31c3fba0c24f00f5c9b030d6b132aa70fd619b0742de530da7a65391dbf9c4a85cbf919e7df6d65d640741c30248b036a866a5e3137c6b518f078a2c938f705da6fe64dc091391f01e8e483286e17a20cb4f64899c3e565b1ccb4814ac3eb974a8ae6670e75298f576f9c5319537465c6dddc34fe8aaf1867407e9b2da1fece059ae0092cac12cc8a5a8b9e61b06296312ac91385ab8e071d858f77e8a0017c031ba936b885f340cf726226a0d29df8508b51b0a079ea4356190f0e54fada20eb31dc59c24bc3c33e33d508bd06d23cce08adfbf5893f05bce750f3a4a82c4ac8e120b01997af450e1103f4e7fede889a219550a0b22a62ca2f939a5bf50bea00ac01a7492da1d395c9ff3408363e9efb76e555aa3bd766b4a933b25f6211520d5309905f4a37aa40b0d7058f0c8e596a02a6da4fb4654c1f868ff1c21c4a03b6db8493d0273d8acc152c299ff0d16c6cdea9dd7c2ca08d79022a228c71540c21c54f35411a20cb9759e6a1bebf969341b352d52e33b50e5f1d284f74e969db6f15570e99564b006aec6987c9f8eeeb5654c3ea72da6f1fd7b399e4e8c2e883e000d7499beb8e70ad008e4dbd9b25aa9e3c0aa5c47a5718b0c834d5fe4eb596e60d3f885c3811dd6dfd6e70889db21d7986c596874855c85beae0618d4091750ac56e8830b6ba9581d44216dab51b078c664f5b316ca5830bd4a0221e1db0e90bcb6075b4f4c0edb71f1c4817c079e82dea89862816fdf20d6c967e245162927547d2c02a8fe890e85b1a31d66364e6734ff8240a2cf886d7ddb1268819099159db87e6846fe5283f0054b1a0d177f45ee39762532fd7b3f3fb431272d972a478ac98b5f27c2c0d287c1f9545b71863e23b75c363265afb360c82f4614afa1c6f3acd3ab49b998b5ec3295873fffcd461d9739846600b6400d39f22b0b10ec94b4c92947bbbe96108bc36b2430064e538d659710d8151304d6181d911a93260358493091afe09be784d1b4e2962b47c64b2322e030b50791ddc888c12875bc7a8599fe242aa14e022e7795221ffd6c29fc3e8e423cebdd81b114c3ac6ec212e1335acf7d124ad65057dfb5104bc0611646d8c00ef9f4816f6b62d7132f1e16519fa445bd1ebea2c25d2755374f69e30ab2343c84969859578494ebed9f2be2dc7940011bba971f6a7dbd2a9156691a3c2ff2c28a8bec2af57c29aa0a6bccb78a0508ae08ff5037d7df32f4b58a1686e2b6df232e1d9d2d0b65c2e6ef7670925b6fbdbc50d9ad09bbc1d1211f0efa4541f06150cef29e7b911eeb4fb64be03b3afe66d43bf73ead7793d0d3f23922d7b97f51a1eb12c39627322eec333a70c86aa881b9a8b3e5cf89a24134088a83c74238869c14ccffc58cb909c8037934e1381cbc0db845e0bbb65875452850162b21c6c3402bca1b9ec93bccc52150a73b6d3770d74dfa23f6ae8996ef9d5ec96cf5a1ddb6172384d5e2d4a53e99fba42ec2ea3e5e849016ca6146536a60ef50f6aebdf90db9437b446170643f294067b98f609ab848f03ff1779ca502973f50a3a8416ff317e613c8dcb580df0b6d64fad7f2364d12d699c79ce741ab2612094e96329e6b3077df710da1461439cbb33edb5fe2e2cb2ca6acb3bc09df4d25c4d8c65bf1fd5f1f621a8797d339a2b0a80fe3f96fc996cd44216b9669065dcecb252a74748b0739727eed2bc4f70089636a61820ab1c9add2961de82c8247a5c0afec2204b7eb0e63992f52d18749b72b49bbee0b31e5cd65b4b1bf4f910803477affd0554073b9fb20c9f04ba151383cabdfebf00bfcea602b2a8ca7f1f6289ffbc9d3ce81b0620e27ccc7a627093185ccc53ed26f65f7be6b59b48988d5c5426b7ae60d1f8e3997a8a729cf1593d6abcb7c47bb1d375b917d72d805875f27ad90b5cdeedcf434cdc1a28c5f52715a5231d70310ed0561bd631fbc6a902acbce7b40afb3454706570933febe54db45285bee3b775b8aee1aa1ce35f77d64a2afbef0109c66786486fd3047a7f77f7808a151065c0db8f73fcc9745c165900ccae43ed6bcf95583f83a9e954174722986552b32227d8b57704a5d201f7a811710462041a539cf67dbddfce0ce1bf8b8371c1ea9de549098171e5a0073f19643fd6d3a1c3fda238449f7d29d0f06dce93e817865a49138b16772b499c33dda730ff62b318ddb1ec080875e5878db2c67f00aa44a8c7734953197c90dfbafb18df9c7044bdae63c65bc4b25637d8c0209a77b8737f3c6646ef54e011d6ff765a902cd914088e7e753fa5ab83f9e27d706621bc726a53bd7172a7b4a387bfdb03ac747d3b4b928108936a037c5fb048ccffa90667f0d38d55dd1b84f87691f442b3cd618e848319f05327b12337521becb5b3f1e8ac8e556b755fe99d64a3f37d01cb1e2c1f974f4ccbf1c821824ccd2f407a1d77524cecfef4b9521df4068867b781d88c99e52f56ac87eeba43458463555eba60323706675138e9a06c01b41bd90fe7810a73e74f2b29fb52e3a16a23e53e167a9e6d6a768a6b48d3ba46cd5a80f68f5edf1accaaa30549d7890c3c63ede717935e35689f0569e6f8bdabf80ed16dd2ca8017885982e61e99b954566ddd7b4b5107cc0b3a1196e0b74f5868f4984a64cdd77667f5f8fbe3e4cbfc030a255e1b8814b84d1487e24e76031944f77022bef96a7569ee53ff742f160852f35078c85a6231f1fcff59054c04dd0c9cf3a7477739e9b716d0679e21e9dfcf6eff6b81dd405808d3082a55318bad4486c5c110c0d67bd192478f88af928bc998901f3b4f3aeffd5b230dfd9eca84f98a17048518bba6bd527f87e93e0341caeaed66758ff2528400f0c97b3e22299fbf5f345fc42699bd4ec7344d642fd4094495ee205d51e6035b4bf4ae47794cb236c2392b723a23b59a0a24449cfaf16965bfd3b9b186a7c033af58e74bdf312dad684feb21f6fb2bd64ce537e3ea7d378b80935870bfd92119db689625c8d2b89644b11d0f5eaa044fd99ec0c1b7bd170cecbfc0bf06eb018e6d24358028a9a3440998013465d6a4452cfdd7c5f3b5dfb4081a6767b0ddcebcf7d08053ea0111328fc0cd7608c6085dc1b1af4d24d4fda704bc2ac6a39030a66bb0796521603a6f8bd88f9a6bbedd3878b3be4f23f92dbab882437b2493ed4439fc33106f7d9f660d0d5a86e1bbf890b5267a5d4f0351e9232d6c75ec38fc9a6e04706fdff7847ea85ef4fa031c42d738b1eca2904e065573412cfc427c0522aeb0d1b21813410b0fb40a3fe49132cf5d14162084366bf2a0efa07dcf2722aa435c4248a3736920f788505396a5fe7ccb8e032a915394730c22b01d590d528d1f268593f5ae89008b781452e497284c43c6cb89d732f69dc45b2bbb7cc9209ebb12728b087507a7f36c1e9fd9d385a483b70bce9c651d812b112b6f69ce65a9bf03f68571fbc4a121dae4f78f493741a3066a49a8307efeadcb21c542140019f4a278fe958dd995e17979f24d1b9639a25fa54561246a5fbda760a452a8d3652ab729c15878f09ded777badf08e724143be2b5918c260ffeec567bcc8e3a8e7e9ca728f2a4ba045907a94966fa34fcd01fc266a3faf5683ea3a3c35520bef5b019df3784fe4c4dc168411f368241e4cb23760744dd1abd12a3af3351fe1ec55cd5aa2e0b57db0730725f85c148c7992323c9a459a6e6e56976d1852a61ab6ff3646cc35442112e3b75be6d6b7065c19c16c8aa567fee32efeabc57648e7f26440f20e44c68969b8c6ffdd65df32533ac2ffbf6d8c61dab78bad2d95479a1734fd7af2daffba1275d11643125a95a4a29ee6f7d0f2b97745447a4b94c0a06302ba493c331c50c6c3afbada807f5663d9b8b56420abbc8ac645b22880dd4e99f35de7efcdef047873e7bedbc68af6edf052f28d1d87383cf8a844df3c8bbf4b6a11c402056a39f4f0c0ac3b7082c1317aa98907976427e2b4f1bb3138369049bb7d7b6157da6a0ee25c79c497f43f44580ecfdd17616d9f7d5e5a0f368755785848e547cfe1dd47a8ee74b1d4f10872a17c47a7e1e41766e390639be4851116e796b2ac6a3d2eed16a58c572b7ef8f1ffa122e95c735a768624d4583952cc38fada931e92b8b8f9e2e2f8ebba077bb74f886712927b228c0aa8677d9c8d01dca687054862e0e592d24fdbf0b44b4616d2c30095943e843d1ea88133ac1fad12c3d9147afd7f8bb9f2bd68dd303be8fca6c985c3036602ee9b1ecb764749afe51efc2b407ca5a3548e225452025462f32daa59b68c22fc859395131e4594e0a09d044987ff194be95ec39d4c5e75c2f0fe707c0daa35e92892bbf2717d8482db261d12879d254dbdd42e7bbd8e53ccc9fc1b22b0c28c44c9cc89bd2e1730d7946f1f28813580520b8ce4da080fc50996bc06644e508252dd267e46317ac8a9f05c6beed6d23d845cf75e350a0b87d4de18d3cd1cdc1993a2d740e1c1b9375e44038d949b394148269d1a36c7c05d6108eb223b076c74649a142dd63dfb9bf3c184aa2b47d8003ba5832090c39228f6941ee3114ae2c14f3c2a3f583ea6def2354d299f45d9b54177e47a9f67eaa26bb6d42063c9e2ec52baa8ae82df26282e5d3d98d7ca898ccfcbb59afc314579acdaa81eab88ccee806ad02b4ff9999c6ba7e098ad34b636357266a9d82568db39933f840c1a8aa880912dd91f220d0ed8c5bb47acaf2a0b0cacc85d9672e0c3e85c93eb81432349a004038646fc9accfdc027d40ae0afd6f4b8b17b5583a91e2ed7e7619c46086dcd5ab3c1c40693bf1073b8700879a88a77439dc2a9b6b43bfa14a9e563864afa20395eb29f7d409bd1905b944514f74618760f411579c5e87bb652c36abc0ca6d0c584f7297d5f15c5b951d069faf939bc0d7898efbb2f040e954dcc421d2bef771f45f6cc7558a33fde3ac18f8b8801be55e1a69683adafd0f1e66012fbb9243bc79cb8c2d8caa6eb6691774f06829be6459da18a3cd691df7dd594bb6a35bc08ca642d0898be47565361bd670e69a27152babc2c0434dfb34e6af13e31634a73542ae7dd744505ee0d7c53fef99a1662834e86a64f5df5fb8f9f310aa0152cf997cb93c3edcc80b90748bf2bfde8d6ae3e3657d849410db02b7a818a87139c5c984dc4999b1899becbdc30e98b6f54571c1e411e228c56b01ee4248db2bf91b31a0f8034274b37171021cc6d00ab88b80457ca701dc10d65cdbb7e5517913c0fe50fcc7f3cba9d7cdac58b54904c5ea25dba6eff294258bc81cfb62eca8d5c06d28bceda5a73c9046b012ca3145ab04c6e7d7b00c80d3d8158b1f7de6ba51bb485a6c3784fbb0be3d47f8b0b4c3d015ac8e1d38093363bbfd688cc8eab7ae7260a6373ef85d8ca635417f0dc936a61518bfb04e09ab1b4eb6536830849dfb8ee9b8212ead2e32714f067fa3707f6b4b257ceca5fc826b0ccc22dd01dd1e5fcc11b31d165cc678c43391866fb943cd4f8af32b7c51967696b6115f437e8ec69317e69765161e5aca5a0c417b630bd491ec33225fa0276522cee4fd85b7433ffe574e53d631b21651c6b5690d3a7bdbc3e7b77960324fb2393ab0bb30f805a5b8cbb8aaeb70adabedd8d91b66ef4ee95f4b1606550184ae965643c51d16d0e09b9562f7e6592e862dc64f1d82fd755049fa4a535858e967dedbe4074a2ee1e7af99b210ce84153deddecfcf71cd5a1cd91b3d6bc4d3e2826c246a7da4707f30dc6efc00b50efb90bf501a6f2c777e526f4aea3432f1e99e76fa1206a1e0872e180a782b78a494df1931636c60e804b8e0ec04218969872b4290b607ae5f03c327c5f0091931a7f12175e397cd6907dcc325ecccc0e3c6e46fa28cdc3c1215035af5ccc3b408360bdbccd1e7d02a19b5dbbfc2a858a864198eb0091f259197b30ad39ab1f9a3f18545fa9324ed1e58aa673340b9", 0x2000, &(0x7f0000003140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.279025963s ago: executing program 3 (id=1450):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0)
r1 = dup(r0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40081271, &(0x7f0000000040)=0x10000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r1, 0x2c93a000)
madvise(&(0x7f0000119000/0x11000)=nil, 0x11000, 0x9)

2.938202241s ago: executing program 5 (id=1452):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xd0}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @quota={{0xa}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_QUOTA_BYTES={0xc, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.589685602s ago: executing program 2 (id=1453):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x8)
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000040)="00214717", 0x4}], 0x1, 0xe, 0x200004)

2.457914303s ago: executing program 5 (id=1454):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x1, 0x2c, 0x2, 0x0, @local}, 0x10)
recvmmsg(r0, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x40000000000018c, 0x2, 0x0)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)

2.124336302s ago: executing program 1 (id=1455):
setresuid(0xee01, 0xee01, 0xee00)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = getpgid(0x0)
fcntl$setownex(r1, 0xf, &(0x7f0000000140)={0x1, r2})
sendmmsg$unix(r0, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)='\x00', 0x1}], 0x1}}], 0x1, 0x40015)

1.864552808s ago: executing program 1 (id=1456):
prlimit64(0x0, 0x7, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket(0x40000000015, 0x5, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)

1.682412302s ago: executing program 2 (id=1457):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000006100)='cmdline\x00')
preadv(r1, &(0x7f0000010440)=[{&(0x7f0000000040)=""/160, 0xa0}], 0x1, 0xc03, 0x0)

1.384028051s ago: executing program 1 (id=1458):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="000022f0ffffffffffff0180c200000e6558"], 0x32)

1.381187688s ago: executing program 5 (id=1459):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000600)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYRES32], 0x1, 0x36e, &(0x7f0000000c00)="$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")
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000000)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@resuid}, {@jqfmt_vfsv1}, {@errors_remount}, {@nobh}, {@grpquota, 0x2e}], [], 0x2e}, 0x1, 0x472, &(0x7f0000000580)="$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")
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)
rename(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000000)='./file1\x00')

1.228159292s ago: executing program 2 (id=1460):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="030000000400000004000000b5"], 0x50)
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000500)={'veth0_to_hsr\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', r2}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r0}, &(0x7f0000000080), &(0x7f00000000c0)=r3}, 0x20)

972.79215ms ago: executing program 2 (id=1461):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x60}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000000203030100000000000000000400000a0800010001"], 0x1c}, 0x1, 0x0, 0x0, 0x40841}, 0x2000c010)
close(r0)

859.516844ms ago: executing program 5 (id=1462):
r0 = socket(0x28, 0x1, 0x0)
r1 = syz_io_uring_setup(0x4f3, &(0x7f0000000340)={0x0, 0x82bb, 0x0, 0x2, 0x10000344}, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r0, 0x80, &(0x7f00000001c0)=@vsock={0x28, 0x0, 0xffffffff, @host}, 0x0, 0x0, 0x1})
io_uring_enter(r1, 0x47b2, 0x8010f6, 0x82, 0x0, 0x0)

746.919838ms ago: executing program 6 (id=1463):
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000007d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000840)=r0, 0x4)
sendmsg$inet(r2, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

576.488028ms ago: executing program 2 (id=1464):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2808080, &(0x7f0000001200)=ANY=[@ANYBLOB="696f636861727365743d6b6f69382d72752c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73686f72746e616d653d77696e39352c6572726f72733d636f6e74696e75652c636f6465706167653d3836322c726f6469722c756e695f786c6174653d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c696f636861727365743d69736f383835392d31352c696f636861727365743d63703933362c73686f72746e616d653d77696e39352c00a7439bda1b3631b9ab4ed793f61bb2844b304f15ce2bf27bc6a5c7e70903ba8e064ffb30af8ce851750da3596c63d7349b6b84"], 0x81, 0x2ae, &(0x7f0000001980)="$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")
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000080)=0x2)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})

576.270374ms ago: executing program 1 (id=1465):
r0 = inotify_init()
r1 = syz_io_uring_setup(0x239, &(0x7f0000001080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
inotify_add_watch(r0, 0x0, 0xa50003d1)

576.142099ms ago: executing program 0 (id=1466):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = socket(0x10, 0x2, 0x0)
sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
bind$can_raw(r0, &(0x7f00000007c0)={0x1d, r2}, 0x10)

308.107694ms ago: executing program 6 (id=1467):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r0, &(0x7f0000000200)=[{&(0x7f0000000380)='*', 0x1}], 0x1, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write(r2, &(0x7f0000000600)='+', 0x1)
splice(r2, &(0x7f0000000040), r1, 0x0, 0x800000000ff, 0x1)

251.527372ms ago: executing program 0 (id=1468):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x6, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18020000000400000000000000000000850000002c000000850000002a00000095"], &(0x7f0000000680)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000001680)={r2, r1, 0x25, 0x0, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x4, 0x0, 0x1}}, 0x3c)
syz_emit_ethernet(0xfc0, &(0x7f00000007c0)=ANY=[], 0x0)

195.197882ms ago: executing program 2 (id=1469):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x16c}}, 0x24)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="11000000040000000400000005"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000157b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x500}, 0x57)

189.548181ms ago: executing program 1 (id=1470):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x3c, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000805}, 0x8000)

0s ago: executing program 6 (id=1471):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd)
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x1)

kernel console output (not intermixed with test programs):

attempt to access beyond end of device
[  247.030447][   T36] loop2: rw=1, sector=3981, nr_sectors = 184 limit=64
[  247.101504][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.101504][   T36] loop2: rw=8388609, sector=4165, nr_sectors = 1 limit=64
[  247.171356][   T36] buffer_io_error: 118 callbacks suppressed
[  247.171376][   T36] Buffer I/O error on dev loop2, logical block 4165, lost async page write
[  247.232767][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.232767][   T36] loop2: rw=8388609, sector=4166, nr_sectors = 1 limit=64
[  247.307936][   T36] Buffer I/O error on dev loop2, logical block 4166, lost async page write
[  247.340281][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.340281][   T36] loop2: rw=8388609, sector=4167, nr_sectors = 1 limit=64
[  247.403794][   T36] Buffer I/O error on dev loop2, logical block 4167, lost async page write
[  247.431317][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.431317][   T36] loop2: rw=8388609, sector=4168, nr_sectors = 1 limit=64
[  247.506254][   T36] Buffer I/O error on dev loop2, logical block 4168, lost async page write
[  247.566372][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.566372][   T36] loop2: rw=8388609, sector=4169, nr_sectors = 1 limit=64
[  247.616766][   T36] Buffer I/O error on dev loop2, logical block 4169, lost async page write
[  247.650929][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.650929][   T36] loop2: rw=8388609, sector=4170, nr_sectors = 1 limit=64
[  247.682483][   T36] Buffer I/O error on dev loop2, logical block 4170, lost async page write
[  247.701736][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.701736][   T36] loop2: rw=8388609, sector=4172, nr_sectors = 1 limit=64
[  247.732986][   T36] Buffer I/O error on dev loop2, logical block 4172, lost async page write
[  247.754281][   T36] kworker/u8:2: attempt to access beyond end of device
[  247.754281][   T36] loop2: rw=8388609, sector=4173, nr_sectors = 1 limit=64
[  247.780080][ T8728] loop3: detected capacity change from 0 to 40427
[  247.841365][   T36] Buffer I/O error on dev loop2, logical block 4173, lost async page write
[  247.850185][   T36] Buffer I/O error on dev loop2, logical block 4190, lost async page write
[  247.946739][ T8728] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  247.956579][   T36] Buffer I/O error on dev loop2, logical block 4191, lost async page write
[  247.989720][ T8728] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  248.098520][ T8728] F2FS-fs (loop3): invalid crc value
[  248.566604][ T8728] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  248.577082][ T8745] erspan0: entered promiscuous mode
[  248.587389][ T8745] netlink: 8 bytes leftover after parsing attributes in process `syz.5.889'.
[  248.622489][ T8728] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  248.634697][ T8746] 9pnet: p9_errstr2errno: server reported unknown error 
[  248.657435][ T8728] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  248.767188][   T30] audit: type=1800 audit(1774259369.865:53): pid=8728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.881" name="file1" dev="loop3" ino=10 res=0 errno=0
[  248.982582][ T5829] CPU: 1 UID: 0 PID: 5829 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  248.982640][ T5829] Tainted: [L]=SOFTLOCKUP
[  248.982653][ T5829] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  248.982675][ T5829] Call Trace:
[  248.982686][ T5829]  <TASK>
[  248.982699][ T5829]  dump_stack_lvl+0x100/0x190
[  248.982761][ T5829]  f2fs_handle_critical_error+0x5d7/0x970
[  248.982804][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.982849][ T5829]  ? f2fs_build_fault_attr+0x53/0x280
[  248.982919][ T5829]  f2fs_write_end_io+0xc3f/0xf30
[  248.982967][ T5829]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  248.983018][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.983072][ T5829]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  248.983116][ T5829]  bio_endio+0x7a3/0x910
[  248.983158][ T5829]  submit_bio_noacct+0x64c/0x2010
[  248.983221][ T5829]  f2fs_submit_write_bio+0x133/0x350
[  248.983264][ T5829]  __submit_merged_bio+0x331/0x7b0
[  248.983314][ T5829]  __submit_merged_write_cond+0x3fe/0x510
[  248.983370][ T5829]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  248.983434][ T5829]  ? __pfx___might_resched+0x10/0x10
[  248.983475][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.983529][ T5829]  f2fs_write_cache_pages+0x21c0/0x2720
[  248.983603][ T5829]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  248.983660][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.983707][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.983750][ T5829]  ? find_held_lock+0x2b/0x80
[  248.983794][ T5829]  ? is_bpf_text_address+0x8a/0x1a0
[  248.983839][ T5829]  ? is_bpf_text_address+0x8a/0x1a0
[  248.983926][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.984004][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.984046][ T5829]  ? __mod_zone_page_state+0xe2/0x190
[  248.984087][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.984129][ T5829]  ? rcu_is_watching+0x12/0xc0
[  248.984177][ T5829]  f2fs_write_data_pages+0x799/0x16d0
[  248.984243][ T5829]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  248.984313][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.984362][ T5829]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  248.984425][ T5829]  do_writepages+0x278/0x600
[  248.984488][ T5829]  ? __pfx_do_writepages+0x10/0x10
[  248.984543][ T5829]  ? do_raw_spin_unlock+0x145/0x1e0
[  248.984583][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.984628][ T5829]  ? _raw_spin_unlock+0x28/0x50
[  248.984685][ T5829]  filemap_writeback+0x22d/0x2e0
[  248.984748][ T5829]  ? __pfx_filemap_writeback+0x10/0x10
[  248.984857][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.984902][ T5829]  ? find_held_lock+0x2b/0x80
[  248.984947][ T5829]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  248.985002][ T5829]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  248.985056][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985113][ T5829]  f2fs_sync_dirty_inodes+0x452/0x990
[  248.985185][ T5829]  block_operations+0x2a6/0xfc0
[  248.985237][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985282][ T5829]  ? finish_task_switch.isra.0+0x205/0xb80
[  248.985337][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985392][ T5829]  ? __pfx_block_operations+0x10/0x10
[  248.985497][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985546][ T5829]  ? ktime_get+0x200/0x300
[  248.985593][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985639][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985683][ T5829]  ? rcu_is_watching+0x12/0xc0
[  248.985731][ T5829]  f2fs_write_checkpoint+0x582/0x5550
[  248.985795][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985840][ T5829]  ? _raw_spin_unlock_irq+0x2e/0x50
[  248.985890][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.985935][ T5829]  ? __wait_for_common+0x1f3/0x4c0
[  248.985992][ T5829]  ? __pfx_schedule_timeout+0x10/0x10
[  248.986046][ T5829]  ? __pfx___wait_for_common+0x10/0x10
[  248.986102][ T5829]  ? kasan_quarantine_put+0x104/0x240
[  248.986148][ T5829]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  248.986203][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.986259][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.986304][ T5829]  ? rcu_is_watching+0x12/0xc0
[  248.986344][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.986394][ T5829]  ? kthread_stop+0x280/0x680
[  248.986456][ T5829]  kill_f2fs_super+0x3e5/0x490
[  248.986510][ T5829]  ? __pfx_kill_f2fs_super+0x10/0x10
[  248.986584][ T5829]  ? lockdep_hardirqs_on+0x78/0x100
[  248.986640][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.986685][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.986745][ T5829]  deactivate_locked_super+0xc1/0x1b0
[  248.986793][ T5829]  deactivate_super+0xe7/0x110
[  248.986841][ T5829]  cleanup_mnt+0x21f/0x450
[  248.986898][ T5829]  task_work_run+0x150/0x240
[  248.986937][ T5829]  ? __pfx_task_work_run+0x10/0x10
[  248.986975][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.987022][ T5829]  ? srso_alias_return_thunk+0x5/0xfbef5
[  248.987075][ T5829]  exit_to_user_mode_loop+0x100/0x4a0
[  248.987140][ T5829]  do_syscall_64+0x67c/0xf80
[  248.987196][ T5829]  ? irqentry_exit+0x138/0x670
[  248.987257][ T5829]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.987295][ T5829] RIP: 0033:0x7f622059d9d7
[  248.987324][ T5829] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  248.987360][ T5829] RSP: 002b:00007ffee67fc748 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  248.987401][ T5829] RAX: 0000000000000000 RBX: 00007f6220632050 RCX: 00007f622059d9d7
[  248.987425][ T5829] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee67fc800
[  248.987448][ T5829] RBP: 00007ffee67fc800 R08: 00007ffee67fd800 R09: 00000000ffffffff
[  248.987472][ T5829] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffee67fd890
[  248.987495][ T5829] R13: 00007f6220632050 R14: 000000000003cbb0 R15: 00007ffee67fd8d0
[  248.987544][ T5829]  </TASK>
[  248.987557][ T5829] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  250.124427][ T8750] loop6: detected capacity change from 0 to 32768
[  250.182172][ T8049] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  250.219222][ T8750] XFS (loop6): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  250.317472][ T8750] XFS (loop6): Ending clean mount
[  250.411718][ T8049] usb 3-1: Using ep0 maxpacket: 32
[  250.420897][ T8049] usb 3-1: config 0 has no interfaces?
[  250.456799][ T8049] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  250.505599][ T8049] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  250.540635][ T8049] usb 3-1: Product: syz
[  250.559243][ T8049] usb 3-1: Manufacturer: syz
[  250.577754][ T8049] usb 3-1: SerialNumber: syz
[  250.615014][ T8049] usb 3-1: config 0 descriptor??
[  250.650387][ T7692] XFS (loop6): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  250.921405][ T8049] usb 3-1: USB disconnect, device number 9
[  251.121079][ T8791] loop1: detected capacity change from 0 to 4096
[  251.149041][ T8791] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  251.319019][ T8791] ntfs3(loop1): ino=19, mi_enum_attr
[  251.333474][ T8798] netlink: 83 bytes leftover after parsing attributes in process `syz.6.902'.
[  251.344092][ T8791] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  251.388225][ T8793] loop3: detected capacity change from 0 to 4096
[  251.446654][ T8793] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  251.552019][ T8793] ntfs3(loop3): ino=19, mi_enum_attr
[  251.557360][ T8793] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  251.785696][   T30] audit: type=1804 audit(1774259372.885:54): pid=8793 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.904" name="/newroot/157/file0/file1" dev="loop3" ino=33 res=1 errno=0
[  252.231403][ T8035] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  252.334231][ T8816] loop0: detected capacity change from 0 to 64
[  252.401726][ T8816] hfs: unable to locate alternate MDB
[  252.429832][ T8816] hfs: continuing without an alternate MDB
[  252.437322][ T8035] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  252.471344][ T8035] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  252.501414][ T8035] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  252.567398][ T8035] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  252.591867][ T8822] netlink: 8 bytes leftover after parsing attributes in process `syz.3.916'.
[  252.601435][ T8035] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.639338][ T8035] usb 2-1: config 0 descriptor??
[  252.782401][  T116] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  252.971612][  T116] usb 7-1: Using ep0 maxpacket: 32
[  252.988322][  T116] usb 7-1: config 0 has an invalid interface number: 51 but max is 0
[  253.001630][  T116] usb 7-1: config 0 has no interface number 0
[  253.023845][  T116] usb 7-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  253.048058][  T116] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  253.066339][  T116] usb 7-1: Product: syz
[  253.090856][  T116] usb 7-1: Manufacturer: syz
[  253.095673][  T116] usb 7-1: SerialNumber: syz
[  253.096939][ T8035] plantronics 0003:047F:FFFF.0011: reserved main item tag 0xd
[  253.133672][  T116] usb 7-1: config 0 descriptor??
[  253.144723][  T116] quatech2 7-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  253.152681][ T8035] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  253.382773][  T116] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  253.426038][  T116] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  253.487974][  T116] usb 2-1: USB disconnect, device number 5
[  253.845500][    C1] usb 7-1: qt2_read_bulk_callback - non-zero urb status: -71
[  253.847046][ T8035] usb 7-1: USB disconnect, device number 3
[  253.872103][ T8035] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  253.922686][ T8035] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  253.956977][ T8035] quatech2 7-1:0.51: device disconnected
[  254.017847][ T8849] loop3: detected capacity change from 0 to 256
[  254.104553][ T8849] FAT-fs (loop3): Directory bread(block 64) failed
[  254.141437][ T8849] FAT-fs (loop3): Directory bread(block 65) failed
[  254.148086][ T8849] FAT-fs (loop3): Directory bread(block 66) failed
[  254.179500][ T8849] FAT-fs (loop3): Directory bread(block 67) failed
[  254.211470][ T8849] FAT-fs (loop3): Directory bread(block 68) failed
[  254.218006][ T8849] FAT-fs (loop3): Directory bread(block 69) failed
[  254.246621][ T8849] FAT-fs (loop3): Directory bread(block 70) failed
[  254.261468][ T8849] FAT-fs (loop3): Directory bread(block 71) failed
[  254.299735][ T8849] FAT-fs (loop3): Directory bread(block 72) failed
[  254.331693][ T8849] FAT-fs (loop3): Directory bread(block 73) failed
[  254.684202][  T153] bio_check_eod: 102 callbacks suppressed
[  254.684229][  T153] kworker/u8:6: attempt to access beyond end of device
[  254.684229][  T153] loop3: rw=1, sector=1224, nr_sectors = 8 limit=256
[  254.972350][ T8871] netlink: 538 bytes leftover after parsing attributes in process `syz.5.935'.
[  254.991323][ T8871] netlink: 232 bytes leftover after parsing attributes in process `syz.5.935'.
[  255.056330][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  255.062758][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  255.405136][ T8874] loop6: detected capacity change from 0 to 32768
[  255.422123][ T8874] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.936 (8874)
[  255.456298][ T8874] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  255.466980][ T8874] BTRFS info (device loop6): using blake2b checksum algorithm
[  255.681907][ T8874] BTRFS info (device loop6): enabling ssd optimizations
[  255.688899][ T8874] BTRFS info (device loop6): turning on async discard
[  255.695793][ T8874] BTRFS info (device loop6): enabling free space tree
[  255.833986][   T30] audit: type=1800 audit(1774259376.845:55): pid=8874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.936" name="file1" dev="loop6" ino=260 res=0 errno=0
[  255.929357][ T7692] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  255.969889][ T8854] loop1: detected capacity change from 0 to 32768
[  255.986403][ T8902] team0 (unregistering): Port device team_slave_0 removed
[  256.016364][ T8902] team0 (unregistering): Port device team_slave_1 removed
[  256.041471][ T8854] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  256.136689][ T8854] XFS (loop1): Ending clean mount
[  256.200366][ T8854] XFS (loop1): Quotacheck needed: Please wait.
[  256.307320][ T8854] XFS (loop1): Quotacheck: Done.
[  256.631386][ T8035] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  256.643672][ T8918] IPVS: ovf: UDP 224.0.0.2:0 - no destination available
[  256.661077][ T5828] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  256.681292][ T8049] IPVS: starting estimator thread 0...
[  256.791374][ T8920] IPVS: using max 25 ests per chain, 60000 per kthread
[  256.827168][ T8035] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  256.848485][ T8035] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  256.884600][ T8035] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  256.944552][ T8035] usb 7-1: config 220 has no interface number 2
[  256.980623][ T8035] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  257.010920][ T8035] usb 7-1: config 220 interface 0 has no altsetting 0
[  257.018076][ T8035] usb 7-1: config 220 interface 76 has no altsetting 0
[  257.038379][ T8035] usb 7-1: config 220 interface 1 has no altsetting 0
[  257.053890][ T8035] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  257.068453][ T8035] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.087181][ T8035] usb 7-1: Product: syz
[  257.096163][ T8035] usb 7-1: Manufacturer: syz
[  257.111581][ T8035] usb 7-1: SerialNumber: syz
[  257.151505][ T8875] loop2: detected capacity change from 0 to 40427
[  257.174628][ T8875] F2FS-fs (loop2): Wrong segment_count / block_count (31 > 0)
[  257.213646][ T8875] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  257.261317][ T8875] F2FS-fs (loop2): invalid crc value
[  257.394345][ T8035] uvcvideo 7-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  257.423982][ T8035] uvcvideo 7-1:220.0: No valid video chain found.
[  257.446000][ T8035] usb 7-1: selecting invalid altsetting 0
[  257.496944][ T8035] usb 7-1: selecting invalid altsetting 0
[  257.509844][ T8935] sch_tbf: burst 22 is lower than device lo mtu (81) !
[  257.532156][ T8035] usbtest 7-1:220.1: probe with driver usbtest failed with error -22
[  257.549510][ T8875] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  257.573924][ T8938] sch_tbf: burst 22 is lower than device lo mtu (81) !
[  257.584879][ T8035] usb 7-1: USB disconnect, device number 4
[  257.595366][ T8875] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  257.631479][ T8875] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  257.785656][ T8875] syz.2.937: attempt to access beyond end of device
[  257.785656][ T8875] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  257.864650][ T8875] CPU: 0 UID: 0 PID: 8875 Comm: syz.2.937 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  257.864707][ T8875] Tainted: [L]=SOFTLOCKUP
[  257.864721][ T8875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  257.864743][ T8875] Call Trace:
[  257.864755][ T8875]  <TASK>
[  257.864769][ T8875]  dump_stack_lvl+0x100/0x190
[  257.864834][ T8875]  f2fs_handle_critical_error+0x5d7/0x970
[  257.864879][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.864925][ T8875]  ? f2fs_build_fault_attr+0x53/0x280
[  257.864999][ T8875]  f2fs_write_end_io+0xc3f/0xf30
[  257.865050][ T8875]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  257.865104][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.865161][ T8875]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  257.865207][ T8875]  bio_endio+0x7a3/0x910
[  257.865252][ T8875]  submit_bio_noacct+0x64c/0x2010
[  257.865321][ T8875]  f2fs_submit_write_bio+0x133/0x350
[  257.865366][ T8875]  __submit_merged_bio+0x331/0x7b0
[  257.865427][ T8875]  __submit_merged_write_cond+0x3fe/0x510
[  257.865487][ T8875]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  257.865548][ T8875]  ? __pfx___might_resched+0x10/0x10
[  257.865589][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.865647][ T8875]  f2fs_write_cache_pages+0x21c0/0x2720
[  257.865731][ T8875]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  257.865789][ T8875]  ? __kernel_text_address+0xd/0x30
[  257.865827][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.865873][ T8875]  ? unwind_get_return_address+0x59/0xa0
[  257.865920][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.865965][ T8875]  ? arch_stack_walk+0x88/0xf0
[  257.866013][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.866058][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.866104][ T8875]  ? __bfs+0x150/0x2a0
[  257.866260][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.866306][ T8875]  ? rcu_is_watching+0x12/0xc0
[  257.866355][ T8875]  f2fs_write_data_pages+0x799/0x16d0
[  257.866432][ T8875]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  257.866510][ T8875]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  257.866571][ T8875]  do_writepages+0x278/0x600
[  257.866637][ T8875]  ? __pfx_do_writepages+0x10/0x10
[  257.866693][ T8875]  ? do_raw_spin_unlock+0x145/0x1e0
[  257.866735][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.866781][ T8875]  ? _raw_spin_unlock+0x28/0x50
[  257.866842][ T8875]  filemap_writeback+0x22d/0x2e0
[  257.866906][ T8875]  ? __pfx_filemap_writeback+0x10/0x10
[  257.866965][ T8875]  ? check_noncircular+0x97/0x160
[  257.867080][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.867126][ T8875]  ? find_held_lock+0x2b/0x80
[  257.867171][ T8875]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  257.867227][ T8875]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  257.867281][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.867342][ T8875]  f2fs_sync_dirty_inodes+0x452/0x990
[  257.867424][ T8875]  block_operations+0x2a6/0xfc0
[  257.867493][ T8875]  ? __pfx_block_operations+0x10/0x10
[  257.867547][ T8875]  ? check_noncircular+0x97/0x160
[  257.867663][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.867714][ T8875]  ? ktime_get+0x200/0x300
[  257.867762][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.867811][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.867855][ T8875]  ? rcu_is_watching+0x12/0xc0
[  257.867906][ T8875]  f2fs_write_checkpoint+0x582/0x5550
[  257.867975][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868027][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868076][ T8875]  ? __pfx___might_resched+0x10/0x10
[  257.868115][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868159][ T8875]  ? __bfs+0x150/0x2a0
[  257.868217][ T8875]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  257.868274][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868319][ T8875]  ? down_write+0x146/0x1f0
[  257.868363][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868415][ T8875]  ? __bfs+0x150/0x2a0
[  257.868475][ T8875]  f2fs_issue_checkpoint+0x1a4/0x760
[  257.868533][ T8875]  ? check_noncircular+0x97/0x160
[  257.868589][ T8875]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  257.868664][ T8875]  ? __lock_acquire+0xd73/0x2630
[  257.868747][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868819][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868865][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868914][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.868959][ T8875]  ? __up_read+0x2c5/0x700
[  257.868997][ T8875]  ? f2fs_is_checkpointed_node+0xa3/0xc0
[  257.869061][ T8875]  ? __pfx___up_read+0x10/0x10
[  257.869098][ T8875]  ? f2fs_do_sync_file+0x18a7/0x1ce0
[  257.869143][ T8875]  f2fs_sync_fs+0x36a/0x430
[  257.869203][ T8875]  f2fs_do_sync_file+0xc36/0x1ce0
[  257.869250][ T8875]  ? find_held_lock+0x2b/0x80
[  257.869297][ T8875]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  257.869331][ T8875]  ? f2fs_inode_dirtied+0xf1/0x4f0
[  257.869469][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.869515][ T8875]  ? find_held_lock+0x2b/0x80
[  257.869560][ T8875]  ? f2fs_file_write_iter+0xfb8/0x26a0
[  257.869608][ T8875]  f2fs_sync_file+0x13a/0x1a0
[  257.869647][ T8875]  ? __pfx_f2fs_sync_file+0x10/0x10
[  257.869681][ T8875]  vfs_fsync_range+0x9b/0x190
[  257.869749][ T8875]  f2fs_file_write_iter+0x136d/0x26a0
[  257.869816][ T8875]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  257.869871][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.869931][ T8875]  vfs_write+0x6ac/0x1070
[  257.869982][ T8875]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  257.870028][ T8875]  ? __pfx_vfs_write+0x10/0x10
[  257.870116][ T8875]  ksys_write+0x12a/0x250
[  257.870166][ T8875]  ? __pfx_ksys_write+0x10/0x10
[  257.870222][ T8875]  ? srso_alias_return_thunk+0x5/0xfbef5
[  257.870278][ T8875]  do_syscall_64+0x106/0xf80
[  257.870336][ T8875]  ? irqentry_exit+0x138/0x670
[  257.870407][ T8875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.870445][ T8875] RIP: 0033:0x7f827219c799
[  257.870475][ T8875] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  257.870511][ T8875] RSP: 002b:00007f8272fc4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  257.870545][ T8875] RAX: ffffffffffffffda RBX: 00007f8272415fa0 RCX: 00007f827219c799
[  257.870570][ T8875] RDX: 0000000000000009 RSI: 0000200000000180 RDI: 0000000000000004
[  257.870594][ T8875] RBP: 00007f8272232c99 R08: 0000000000000000 R09: 0000000000000000
[  257.870617][ T8875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  257.870639][ T8875] R13: 00007f8272416038 R14: 00007f8272415fa0 R15: 00007ffc260c1a28
[  257.870695][ T8875]  </TASK>
[  258.501452][ T8875] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  258.828409][ T8952] netlink: 'syz.5.960': attribute type 9 has an invalid length.
[  258.901817][ T8952] netlink: 212340 bytes leftover after parsing attributes in process `syz.5.960'.
[  260.638356][ T8986] loop6: detected capacity change from 0 to 256
[  261.046320][ T8995] loop6: detected capacity change from 0 to 8
[  261.951532][ T8984] loop3: detected capacity change from 0 to 32768
[  261.996623][ T8984] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.970 (8984)
[  262.064560][ T8984] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  262.111331][ T8984] BTRFS info (device loop3): using blake2b checksum algorithm
[  262.221946][    T9] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  262.276580][ T8984] BTRFS info (device loop3): enabling ssd optimizations
[  262.328021][ T8984] BTRFS info (device loop3): turning on async discard
[  262.371336][ T8984] BTRFS info (device loop3): enabling free space tree
[  262.402326][    T9] usb 3-1: Using ep0 maxpacket: 32
[  262.429500][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  262.480978][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  262.512098][    T9] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  262.550225][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.591873][    T9] usb 3-1: config 0 descriptor??
[  262.815832][ T5829] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  262.941414][ T5919] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  263.073580][    T9] savu 0003:1E7D:2D5A.0012: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  263.127211][ T5919] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  263.161463][ T5919] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  263.192180][ T5919] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  263.222240][ T5919] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  263.246857][ T5919] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.279736][ T5919] usb 2-1: config 0 descriptor??
[  263.308197][   T10] usb 3-1: USB disconnect, device number 10
[  263.401634][ T9043] fido_id[9043]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  263.772733][ T5919] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  263.848667][ T9053] loop6: detected capacity change from 0 to 512
[  263.897114][ T9053] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  264.187990][ T8049] usb 2-1: USB disconnect, device number 6
[  264.256895][ T9053] EXT4-fs error (device loop6): ext4_iget_extra_inode:5024: inode #15: comm syz.6.994: corrupted in-inode xattr: invalid ea_ino
[  264.299188][ T9053] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  264.299685][ T9053] EXT4-fs (loop6): Remounting filesystem read-only
[  264.308927][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  264.308959][    C1] EXT4-fs (loop6): initial error at time 1774259385: ext4_iget_extra_inode:5024: inode 15
[  264.309015][    C1] EXT4-fs (loop6): last error at time 1774259385: ext4_iget_extra_inode:5024: inode 15
[  264.427127][ T9053] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.646040][ T7692] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.411300][ T9086] netlink: 'syz.1.1007': attribute type 29 has an invalid length.
[  265.477213][ T9086] netlink: 'syz.1.1007': attribute type 29 has an invalid length.
[  265.531674][ T9080] loop2: detected capacity change from 0 to 32768
[  265.540133][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.593454][ T9080] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  265.601791][ T9080] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  265.629321][ T9080] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  265.651332][ T8049] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  265.658144][ T8049] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  265.745152][ T8049] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 87ms
[  265.761638][ T8049] gfs2: fsid=syz:syz.0: jid=0: Done
[  265.766887][ T9080] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  265.901451][   T10] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  265.922393][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  265.950861][ T9080] gfs2: fsid=syz:syz.0: found 1 quota changes
[  265.958248][  T116] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  266.075822][ T9098] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1011'.
[  266.112321][   T10] usb 1-1: Using ep0 maxpacket: 32
[  266.140001][   T10] usb 1-1: config 51 has an invalid interface number: 208 but max is 0
[  266.169684][   T10] usb 1-1: config 51 has no interface number 0
[  266.199766][   T10] usb 1-1: config 51 interface 208 has no altsetting 0
[  266.220622][   T10] usb 1-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=8b.70
[  266.232796][ T5839] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error - inode = 11 2339, function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 402
[  266.268810][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.289049][ T5839] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:aqonN t:EX d:EX/0 a:0 v:0 r:2 m:20 p:1
[  266.311306][   T10] usb 1-1: Product: syz
[  266.319534][   T10] usb 1-1: Manufacturer: syz
[  266.328665][ T5839] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:5839 [syz-executor] gfs2_quota_sync+0x322/0x570
[  266.346651][   T10] usb 1-1: SerialNumber: syz
[  266.378142][ T5839] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  266.429197][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  266.429252][ T5839] Tainted: [L]=SOFTLOCKUP
[  266.429264][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  266.429286][ T5839] Call Trace:
[  266.429301][ T5839]  <TASK>
[  266.429314][ T5839]  dump_stack_lvl+0x100/0x190
[  266.429376][ T5839]  gfs2_withdraw.cold+0xa/0xed
[  266.429426][ T5839]  inode_go_instantiate+0xee4/0x1310
[  266.429479][ T5839]  ? __pfx_inode_go_instantiate+0x10/0x10
[  266.429527][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.429581][ T5839]  gfs2_instantiate+0x16c/0x250
[  266.429641][ T5839]  gfs2_glock_wait+0x214/0x330
[  266.429700][ T5839]  ? __pfx_gfs2_glock_wait+0x10/0x10
[  266.429770][ T5839]  gfs2_glock_nq+0xa03/0x14f0
[  266.429814][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.429866][ T5839]  do_sync+0x705/0xd60
[  266.429922][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.429981][ T5839]  ? __pfx_do_sync+0x10/0x10
[  266.430037][ T5839]  ? __pfx_bh_get+0x10/0x10
[  266.430094][ T5839]  ? qd_grab_sync+0x415/0x560
[  266.430158][ T5839]  ? gfs2_quota_sync+0x322/0x570
[  266.430190][ T5839]  ? gfs2_quota_sync+0x278/0x570
[  266.430223][ T5839]  ? gfs2_quota_sync+0x278/0x570
[  266.430254][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.430310][ T5839]  gfs2_quota_sync+0x322/0x570
[  266.430358][ T5839]  gfs2_sync_fs+0x44/0xb0
[  266.430409][ T5839]  ? __pfx_gfs2_sync_fs+0x10/0x10
[  266.430456][ T5839]  sync_filesystem+0x111/0x290
[  266.430494][ T5839]  generic_shutdown_super+0x86/0x360
[  266.430541][ T5839]  kill_block_super+0x3b/0xa0
[  266.430582][ T5839]  gfs2_kill_sb+0x4a9/0x590
[  266.430637][ T5839]  deactivate_locked_super+0xc1/0x1b0
[  266.430683][ T5839]  deactivate_super+0xe7/0x110
[  266.430730][ T5839]  cleanup_mnt+0x21f/0x450
[  266.430786][ T5839]  task_work_run+0x150/0x240
[  266.430826][ T5839]  ? __pfx_task_work_run+0x10/0x10
[  266.430865][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.430910][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.430963][ T5839]  exit_to_user_mode_loop+0x100/0x4a0
[  266.431028][ T5839]  do_syscall_64+0x67c/0xf80
[  266.431084][ T5839]  ? irqentry_exit+0x138/0x670
[  266.431145][ T5839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.431182][ T5839] RIP: 0033:0x7f827219d9d7
[  266.431211][ T5839] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  266.431248][ T5839] RSP: 002b:00007ffc260c0c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  266.431282][ T5839] RAX: 0000000000000000 RBX: 00007f8272232050 RCX: 00007f827219d9d7
[  266.431305][ T5839] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc260c0d50
[  266.431335][ T5839] RBP: 00007ffc260c0d50 R08: 00007ffc260c1d50 R09: 00000000ffffffff
[  266.431358][ T5839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc260c1de0
[  266.431381][ T5839] R13: 00007f8272232050 R14: 0000000000040f0f R15: 00007ffc260c1e20
[  266.431433][ T5839]  </TASK>
[  267.138618][ T8049] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  267.171817][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.327732][ T5839] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  267.354386][ T9101] loop5: detected capacity change from 0 to 131072
[  267.374618][ T9101] F2FS-fs (loop5): invalid crc value
[  267.533182][ T8049] usb 7-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  267.560974][ T9101] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  267.585742][ T8049] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  267.601506][ T9101] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  267.619959][ T8049] usb 7-1: Product: syz
[  267.624496][ T8049] usb 7-1: Manufacturer: syz
[  267.650303][ T8049] usb 7-1: SerialNumber: syz
[  267.777092][ T9112] loop1: detected capacity change from 0 to 4096
[  267.843079][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  267.898240][ T8049] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO
[  267.951991][ T8049] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71
[  267.992085][ T8049] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  268.019331][   T10] usb 1-1: USB disconnect, device number 10
[  268.068609][   T10] f81534a_ctrl 1-1:51.208: failed to enable ports: -19
[  268.071307][ T8049] lan78xx 7-1:1.0: probe with driver lan78xx failed with error -71
[  268.127520][   T30] audit: type=1804 audit(1774259389.215:56): pid=9112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1016" name="/newroot/175/bus/file1" dev="loop1" ino=33 res=1 errno=0
[  268.155367][ T8049] usb 7-1: USB disconnect, device number 5
[  268.243385][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  268.566402][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  268.971706][ T8049] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  269.122122][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.183651][ T8049] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  269.232505][ T8049] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  269.293525][ T8049] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  269.411318][ T8049] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  269.480696][ T8049] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  269.574711][ T8049] usb 6-1: config 0 descriptor??
[  269.729169][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  269.895286][ T9128] loop0: detected capacity change from 0 to 131072
[  269.903414][ T9128] F2FS-fs (loop0): Wrong CP boundary, start(512) end(1536) blocks(0)
[  269.911566][ T9128] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  269.950066][ T9128] F2FS-fs (loop0): invalid crc value
[  270.048108][ T9128] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  270.062011][ T9128] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  270.069085][ T9128] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  270.107556][ T8049] plantronics 0003:047F:FFFF.0014: reserved main item tag 0xd
[  270.200429][ T8049] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  270.388056][ T8035] usb 6-1: USB disconnect, device number 10
[  270.547314][ T9151] fido_id[9151]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  270.803611][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.082117][ T9161] loop0: detected capacity change from 0 to 1024
[  271.089696][ T9161] EXT4-fs: Ignoring removed bh option
[  271.184097][ T9161] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.334012][ T9155] loop3: detected capacity change from 0 to 32768
[  271.411628][ T9155] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  271.479823][ T9155] JBD2: Ignoring recovery information on journal
[  271.607212][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  271.704089][ T9155] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  271.825012][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.948599][ T9163] loop6: detected capacity change from 0 to 32768
[  272.000286][ T9163] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1038 (9163)
[  272.064051][ T5829] ocfs2: Unmounting device (7,3) on (node local)
[  272.332365][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.342365][ T5977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  272.360113][ T9163] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  272.438457][ T9163] BTRFS info (device loop6): using blake2b checksum algorithm
[  272.481579][ T5839] gfs2: fsid=syz:syz.0: warning: assertion "gfs2_log_is_empty(sdp)" failed - function = gfs2_make_fs_ro, file = fs/gfs2/super.c, line = 566
[  272.519033][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  272.519091][ T5839] Tainted: [L]=SOFTLOCKUP
[  272.519103][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  272.519125][ T5839] Call Trace:
[  272.519136][ T5839]  <TASK>
[  272.519148][ T5839]  dump_stack_lvl+0x100/0x190
[  272.519211][ T5839]  gfs2_assert_warn_i.cold+0x3a/0x118
[  272.519259][ T5839]  ? __pfx_gfs2_assert_warn_i+0x10/0x10
[  272.519322][ T5839]  ? mark_held_locks+0x40/0x70
[  272.519380][ T5839]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  272.519440][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  272.519490][ T5839]  gfs2_make_fs_ro+0x25e/0x370
[  272.519545][ T5839]  ? __pfx_gfs2_make_fs_ro+0x10/0x10
[  272.519596][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  272.519645][ T5839]  ? __pfx_autoremove_wake_function+0x10/0x10
[  272.519701][ T5839]  ? gfs2_put_super+0x149/0x670
[  272.519757][ T5839]  ? gfs2_put_super+0x149/0x670
[  272.519808][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  272.519864][ T5839]  gfs2_put_super+0x197/0x670
[  272.519922][ T5839]  ? __pfx_gfs2_put_super+0x10/0x10
[  272.519978][ T5839]  generic_shutdown_super+0x167/0x360
[  272.520025][ T5839]  kill_block_super+0x3b/0xa0
[  272.520066][ T5839]  gfs2_kill_sb+0x4a9/0x590
[  272.520120][ T5839]  deactivate_locked_super+0xc1/0x1b0
[  272.520167][ T5839]  deactivate_super+0xe7/0x110
[  272.520214][ T5839]  cleanup_mnt+0x21f/0x450
[  272.520271][ T5839]  task_work_run+0x150/0x240
[  272.520311][ T5839]  ? __pfx_task_work_run+0x10/0x10
[  272.520349][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  272.520395][ T5839]  ? srso_alias_return_thunk+0x5/0xfbef5
[  272.520453][ T5839]  exit_to_user_mode_loop+0x100/0x4a0
[  272.520517][ T5839]  do_syscall_64+0x67c/0xf80
[  272.520574][ T5839]  ? irqentry_exit+0x138/0x670
[  272.520635][ T5839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  272.520673][ T5839] RIP: 0033:0x7f827219d9d7
[  272.520701][ T5839] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  272.520736][ T5839] RSP: 002b:00007ffc260c0c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  272.520770][ T5839] RAX: 0000000000000000 RBX: 00007f8272232050 RCX: 00007f827219d9d7
[  272.520794][ T5839] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc260c0d50
[  272.520816][ T5839] RBP: 00007ffc260c0d50 R08: 00007ffc260c1d50 R09: 00000000ffffffff
[  272.520840][ T5839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc260c1de0
[  272.520863][ T5839] R13: 00007f8272232050 R14: 0000000000040f0f R15: 00007ffc260c1e20
[  272.520912][ T5839]  </TASK>
[  272.802473][ T9188] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  272.964983][ T9204] loop0: detected capacity change from 0 to 512
[  273.016685][ T9204] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  273.035376][ T9163] BTRFS info (device loop6): enabling ssd optimizations
[  273.089149][ T9163] BTRFS info (device loop6): turning on async discard
[  273.114341][ T9204] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  273.160242][ T9163] BTRFS info (device loop6): enabling free space tree
[  273.190704][ T9204] ext4 filesystem being mounted at /182/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  273.375338][ T5977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.602348][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  273.679999][ T7692] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  273.745324][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.901288][ T8035] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  273.939927][ T9214] syzkaller1: entered promiscuous mode
[  273.947808][ T9214] syzkaller1: entered allmulticast mode
[  274.076431][ T9227] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1054'.
[  274.085063][ T8035] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  274.106044][ T8035] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  274.124903][ T8035] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  274.141394][ T8035] usb 6-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00
[  274.160665][ T8035] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.197233][ T8035] usb 6-1: config 0 descriptor??
[  274.414361][ T5977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.619996][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.646667][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.664981][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.674540][ T9238] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.695016][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.719786][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.728925][ T9240] input: syz1 as /devices/virtual/input/input28
[  274.749423][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.774906][ T8035] steelseries 0003:1038:1410.0015: unknown main item tag 0x0
[  274.801171][ T9238] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  274.814974][ T8035] steelseries 0003:1038:1410.0015: missing HID_OUTPUT_REPORT 0
[  274.862950][ T8035] usb 6-1: USB disconnect, device number 11
[  274.972496][ T9238] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  275.301523][ T9245] loop2: detected capacity change from 0 to 2048
[  275.419028][ T9245] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  275.506303][ T9256] comedi: valid board names for 8255 driver are:
[  275.514031][ T9256]  8255
[  275.516902][ T9256] comedi: valid board names for vmk80xx driver are:
[  275.534467][ T9256]  vmk80xx
[  275.537617][ T9256] comedi: valid board names for usbduxsigma driver are:
[  275.598249][ T9256]  usbduxsigma
[  275.608384][ T9256] comedi: valid board names for usbduxfast driver are:
[  275.623826][ T9245] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1312: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  275.661471][ T9256]  usbduxfast
[  275.672656][ T9256] comedi: valid board names for usbdux driver are:
[  275.681324][ T8035] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  275.709272][ T9256]  usbdux
[  275.717673][ T9256] comedi: valid board names for ni6501 driver are:
[  275.728720][ T9245] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 270 with error 28
[  275.737971][ T9256]  ni6501
[  275.744727][ T9256] comedi: valid board names for dt9812 driver are:
[  275.762954][ T9256]  dt9812
[  275.773684][ T9256] comedi: valid board names for ni_labpc_cs driver are:
[  275.791401][ T9245] EXT4-fs (loop2): This should not happen!! Data will be lost
[  275.791401][ T9245] 
[  275.801048][ T9245] EXT4-fs (loop2): Total free blocks count 0
[  275.823442][ T9256]  ni_labpc_cs
[  275.826825][ T9256] comedi: valid board names for ni_daq_700 driver are:
[  275.854411][ T8035] usb 4-1: unable to get BOS descriptor or descriptor too short
[  275.859294][ T9245] EXT4-fs (loop2): Free/Dirty block details
[  275.871410][ T9245] EXT4-fs (loop2): free_blocks=2415919104
[  275.879432][ T9245] EXT4-fs (loop2): dirty_blocks=272
[  275.888188][ T8035] usb 4-1: not running at top speed; connect to a high speed hub
[  275.895351][ T9245] EXT4-fs (loop2): Block reservation details
[  275.904772][ T8035] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 1024, setting to 1023
[  275.911879][ T9256]  ni_daq_700
[  275.922470][ T9245] EXT4-fs (loop2): i_reserved_data_blocks=17
[  275.935483][ T8035] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 58, changing to 4
[  275.957885][ T9256] comedi: valid board names for labpc_pci driver are:
[  275.964835][ T8051] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  275.967869][ T8035] usb 4-1: New USB device found, idVendor=0763, idProduct=2031, bcdDevice= 0.40
[  275.982727][ T8035] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.988653][ T9256]  labpc_pci
[  276.003410][ T8035] usb 4-1: Product: syz
[  276.008392][ T9256] comedi: valid board names for adl_pci9118 driver are:
[  276.017855][ T8035] usb 4-1: Manufacturer: syz
[  276.028997][ T9256]  pci9118dg
[  276.032838][ T9256]  pci9118hg
[  276.037562][ T8035] usb 4-1: SerialNumber: syz
[  276.041631][ T9256]  pci9118hr
[  276.053667][ T9256] comedi: valid board names for 8255_pci driver are:
[  276.092244][ T9256]  8255_pci
[  276.095370][ T9256] comedi: valid board names for s526 driver are:
[  276.107238][ T9256]  s526
[  276.112850][ T9256] comedi: valid board names for multiq3 driver are:
[  276.120763][ T9256]  multiq3
[  276.124424][ T9256] comedi: valid board names for pcmuio driver are:
[  276.130970][ T9256]  pcmuio48
[  276.135730][ T9256]  pcmuio96
[  276.139121][ T9256] comedi: valid board names for pcmmio driver are:
[  276.153794][ T8051] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  276.179751][ T8051] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  276.189955][  T995] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 270 with error 28
[  276.216804][ T8051] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.232014][ T9256]  pcmmio
[  276.234954][ T9256] comedi: valid board names for pcmda12 driver are:
[  276.249470][ T8051] usb 7-1: config 0 descriptor??
[  276.256150][ T9256]  pcmda12
[  276.259177][ T9256] comedi: valid board names for pcmad driver are:
[  276.266252][ T9256]  pcmad12
[  276.270989][ T9256]  pcmad16
[  276.276221][ T9256] comedi: valid board names for ni_labpc driver are:
[  276.286698][ T9256]  lab-pc-1200
[  276.304054][ T9256]  lab-pc-1200ai
[  276.328773][ T9256]  lab-pc+
[  276.349264][ T9256] comedi: valid board names for atmio16 driver are:
[  276.379419][ T8035] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  276.381458][ T9256]  atmio16
[  276.389172][ T9256]  atmio16d
[  276.433905][ T9256] comedi: valid board names for ni_at_ao driver are:
[  276.440619][ T9256]  at-ao-6
[  276.463262][ T9256]  at-ao-10
[  276.476088][ T9256] comedi: valid board names for ni_at_a2150 driver are:
[  276.487588][ T8049] net_ratelimit: 5 callbacks suppressed
[  276.487609][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  276.515298][ T8051] usbhid 7-1:0.0: can't add hid device: -71
[  276.533046][ T8051] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  276.541356][ T9256]  ni_at_a2150
[  276.546739][ T9256] comedi: valid board names for adq12b driver are:
[  276.577089][ T8051] usb 7-1: USB disconnect, device number 6
[  276.584377][ T9256]  adq12b
[  276.591661][ T9256] comedi: valid board names for mpc624 driver are:
[  276.612154][ T9256]  mpc624
[  276.617700][ T9256] comedi: valid board names for c6xdigio driver are:
[  276.645109][ T9256]  c6xdigio
[  276.655212][ T9256] comedi: valid board names for aio_iiro_16 driver are:
[  276.684055][ T9274] loop2: detected capacity change from 0 to 2048
[  276.691105][ T9256]  aio_iiro_16
[  276.701404][ T9256] comedi: valid board names for aio_aio12_8 driver are:
[  276.716569][ T9274] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  276.741308][ T9256]  aio_aio12_8
[  276.744693][ T9256]  aio_ai12_8
[  276.747974][ T9256]  aio_ao12_4
[  276.770992][ T9256] comedi: valid board names for fl512 driver are:
[  276.794763][ T9256]  fl512
[  276.803040][ T9256] comedi: valid board names for dmm32at driver are:
[  276.820500][ T9256]  dmm32at
[  276.823826][ T9256] comedi: valid board names for dt282x driver are:
[  276.838156][ T8035] usb 4-1: USB disconnect, device number 10
[  276.860716][ T9256]  dt2821
[  276.870820][ T9256]  dt2821-f
[  276.880760][ T9256]  dt2821-g
[  276.896944][ T9256]  dt2823
[  276.904357][ T9256]  dt2824-pgh
[  276.931932][ T9256]  dt2824-pgl
[  276.956900][ T9256]  dt2825
[  276.960811][ T5851] udevd[5851]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  276.991819][ T9256]  dt2827
[  277.002909][ T9256]  dt2828
[  277.013531][ T9256]  dt2829
[  277.020736][ T9256]  dt21-ez
[  277.029007][ T9256]  dt23-ez
[  277.038217][ T9256]  dt24-ez
[  277.058826][ T9256]  dt24-ez-pgl
[  277.070070][ T9256] comedi: valid board names for dt2817 driver are:
[  277.079132][ T5919] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  277.090365][ T9256]  dt2817
[  277.101978][ T8051] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  277.116331][ T9256] comedi: valid board names for dt2815 driver are:
[  277.116404][ T5919] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  277.148156][ T9256]  dt2815
[  277.158257][ T9256] comedi: valid board names for dt2814 driver are:
[  277.185060][ T9256]  dt2814
[  277.205367][ T9256] comedi: valid board names for dt2811 driver are:
[  277.232060][ T9256]  dt2811-pgh
[  277.248808][ T9256]  dt2811-pgl
[  277.258700][ T9256] comedi: valid board names for dt2801 driver are:
[  277.275672][ T8051] usb 7-1: Using ep0 maxpacket: 32
[  277.291120][ T9256]  dt2801
[  277.296159][ T8051] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  277.307792][ T8051] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  277.328133][ T9256] comedi: valid board names for das6402 driver are:
[  277.334958][ T8051] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.343883][ T9256]  das6402-12
[  277.347686][ T9256]  das6402-16
[  277.355662][ T8051] usb 7-1: config 0 descriptor??
[  277.360753][ T9256] comedi: valid board names for das1800 driver are:
[  277.390118][ T9256]  das-1701st
[  277.395404][ T8051] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  277.412570][ T9256]  das-1701st-da
[  277.416453][ T9256]  das-1702st
[  277.419740][ T9256]  das-1702st-da
[  277.426228][ T8051] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  277.434789][ T9256]  das-1702hr
[  277.439047][ T9256]  das-1702hr-da
[  277.453261][ T9256]  das-1701ao
[  277.456551][ T9256]  das-1702ao
[  277.470066][ T9256]  das-1801st
[  277.474557][ T9256]  das-1801st-da
[  277.480179][ T9256]  das-1802st
[  277.491381][ T9256]  das-1802st-da
[  277.494982][ T9256]  das-1802hr
[  277.498267][ T9256]  das-1802hr-da
[  277.511688][ T9256]  das-1801hc
[  277.512358][ T8035] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  277.515082][ T9256]  das-1802hc
[  277.531764][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  277.548124][ T9256]  das-1801ao
[  277.553855][ T9256]  das-1802ao
[  277.557144][ T9256] comedi: valid board names for das800 driver are:
[  277.570548][ T9256]  das-800
[  277.582440][ T9256]  cio-das800
[  277.585857][ T9256]  das-801
[  277.588971][ T9256]  cio-das801
[  277.597963][ T9256]  das-802
[  277.600999][ T9256]  cio-das802
[  277.602123][   T51] Bluetooth: hci5: command 0x0406 tx timeout
[  277.620824][ T9275] loop5: detected capacity change from 0 to 32768
[  277.629368][ T9256]  cio-das802/16
[  277.639715][ T9275] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1073 (9275)
[  277.661099][ T9256] comedi: valid board names for isa-das08 driver are:
[  277.669309][ T9256]  isa-das08
[  277.684005][ T9256]  das08-pgm
[  277.688194][ T9275] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  277.691937][ T8035] usb 4-1: config 0 has no interfaces?
[  277.724812][ T8035] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  277.727746][ T9275] BTRFS info (device loop5): using crc32c checksum algorithm
[  277.742074][ T9256]  das08-pgh
[  277.743625][ T8035] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  277.745318][ T9256]  das08-pgl
[  277.745335][ T9256]  das08-aoh
[  277.745349][ T9256]  das08-aol
[  277.781297][ T8035] usb 4-1: SerialNumber: syz
[  277.804819][ T9256]  das08-aom
[  277.813061][ T8035] usb 4-1: config 0 descriptor??
[  277.820690][ T9256]  das08/jr-ao
[  277.824180][ T9256]  das08jr-16-ao
[  277.828582][ T9256]  pc104-das08
[  277.832931][ T9256]  das08jr/16
[  277.836270][ T9256] comedi: valid board names for das16m1 driver are:
[  277.849804][ T9256]  das16m1
[  277.861706][ T9256] comedi: valid board names for dac02 driver are:
[  277.873160][ T9275] BTRFS info (device loop5): enabling ssd optimizations
[  277.880221][ T9256]  dac02
[  277.883182][ T9275] BTRFS info (device loop5): turning on flush-on-commit
[  277.890162][ T9256] comedi: valid board names for rti802 driver are:
[  277.897030][ T9275] BTRFS info (device loop5): enabling free space tree
[  277.903891][ T9275] BTRFS info (device loop5): enabling auto defrag
[  277.910352][ T9256]  rti802
[  277.913719][ T9256] comedi: valid board names for rti800 driver are:
[  277.920213][ T9256]  rti800
[  277.923464][ T9275] BTRFS info (device loop5): use lzo compression, level 1
[  277.930596][ T9275] BTRFS info (device loop5): max_inline set to 4096
[  277.937275][ T9256]  rti815
[  277.940217][ T9256] comedi: valid board names for pcm3724 driver are:
[  277.960655][ T9256]  pcm3724
[  277.984143][ T8051] usb 7-1: USB disconnect, device number 7
[  277.993292][ T9256] comedi: valid board names for pcl818 driver are:
[  277.999791][ T9256]  pcl818l
[  278.012059][ T8051] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[  278.046304][ T9256]  pcl818h
[  278.049388][ T9256]  pcl818hd
[  278.069044][ T9256]  pcl818hg
[  278.074951][ T9256]  pcl818
[  278.077894][ T9256]  pcl718
[  278.081161][ T9256]  pcm3718
[  278.085166][ T9256] comedi: valid board names for pcl816 driver are:
[  278.091999][ T9256]  pcl816
[  278.094937][ T9256]  pcl814b
[  278.098022][ T9256] comedi: valid board names for pcl812 driver are:
[  278.109109][ T8035] usb 4-1: USB disconnect, device number 11
[  278.131246][ T9256]  pcl812
[  278.137773][ T9256]  pcl812pg
[  278.140889][ T9256]  acl8112pg
[  278.151384][ T9256]  acl8112dg
[  278.154622][ T9256]  acl8112hg
[  278.171326][ T9256]  a821pgl
[  278.174354][ T9256]  a821pglnda
[  278.177633][ T9256]  a821pgh
[  278.231882][ T9256]  a822pgl
[  278.234928][ T9256]  a822pgh
[  278.235971][ T5846] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  278.237942][ T9256]  a823pgl
[  278.237956][ T9256]  a823pgh
[  278.301750][ T9256]  pcl813
[  278.304814][ T9256]  pcl813b
[  278.307836][ T9256]  acl8113
[  278.316042][ T9256]  iso813
[  278.319188][ T9256]  acl8216
[  278.325193][ T9256]  a826pg
[  278.337997][ T9256] comedi: valid board names for pcl730 driver are:
[  278.364441][ T9256]  pcl730
[  278.368047][ T9256]  iso730
[  278.384572][ T9256]  acl7130
[  278.387609][ T9256]  pcm3730
[  278.390631][ T9256]  pcl725
[  278.402418][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.421289][ T9256]  p8r8dio
[  278.424328][ T9256]  acl7225b
[  278.427434][ T9256]  p16r16dio
[  278.430628][ T9256]  pcl733
[  278.468927][ T9256]  pcl734
[  278.473074][ T9256]  opmm-1616-xt
[  278.477497][ T9256]  pearl-mm-p
[  278.485851][ T9256]  ir104-pbf
[  278.489052][ T9256] comedi: valid board names for pcl726 driver are:
[  278.521750][ T9256]  pcl726
[  278.531323][ T9256]  pcl727
[  278.537558][ T9256]  pcl728
[  278.544572][ T9256]  acl6126
[  278.551355][ T9256]  acl6128
[  278.561470][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  278.572404][ T9256] comedi: valid board names for pcl724 driver are:
[  278.616821][ T9256]  pcl724
[  278.619787][ T9256]  pcl722
[  278.642091][ T9256]  pcl731
[  278.651350][ T9256]  acl7122
[  278.671360][ T9256]  acl7124
[  278.679842][ T9256]  pet48dio
[  278.700048][ T9256]  pcmio48
[  278.710708][ T9256]  onyx-mm-dio
[  278.724287][ T9256] comedi: valid board names for pcl711 driver are:
[  278.791628][ T9256]  pcl711
[  278.800763][ T9256]  pcl711b
[  278.821263][ T9256]  acl8112hg
[  278.841517][ T9256]  acl8112dg
[  278.861849][ T9256] comedi: valid board names for amplc_pc263 driver are:
[  278.925263][ T9256]  pc263
[  278.941176][ T9256] comedi: valid board names for amplc_pc236 driver are:
[  278.976770][ T9256]  pc36at
[  278.999961][ T9256] comedi: valid board names for amplc_dio200 driver are:
[  279.055811][ T9256]  pc212e
[  279.058780][ T9256]  pc214e
[  279.102058][ T9256]  pc215e
[  279.105009][ T9256]  pc218e
[  279.136624][ T9256]  pc272e
[  279.153083][ T9256] comedi: valid board names for comedi_parport driver are:
[  279.197981][ T9256]  comedi_parport
[  279.216405][ T9256] comedi: valid board names for comedi_test driver are:
[  279.259115][ T9256]  comedi_test
[  279.271286][ T9256] comedi: valid board names for comedi_bond driver are:
[  279.278225][ T9256]  comedi_bond
[  279.579980][ T9333] 9pnet: p9_errstr2errno: server reported unknown error 0x000
[  279.603064][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  279.621435][ T5919] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  279.702848][ T9339] input: syz1 as /devices/virtual/input/input29
[  279.783021][ T5919] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  279.815469][ T5919] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.836131][ T9343] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1093'.
[  279.857604][ T5919] usb 6-1: config 0 descriptor??
[  279.882380][ T5919] cp210x 6-1:0.0: cp210x converter detected
[  280.300290][ T9354] loop0: detected capacity change from 0 to 4096
[  280.318045][ T5919] cp210x 6-1:0.0: failed to get vendor val 0x0010 size 3: -32
[  280.344191][ T5919] usb 6-1: cp210x converter now attached to ttyUSB0
[  280.376313][ T9354] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  280.521708][ T9354] ntfs3(loop0): ino=19, mi_enum_attr
[  280.527047][ T9354] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  280.573719][ T5919] usb 6-1: USB disconnect, device number 12
[  280.625143][ T5919] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  280.641933][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  280.687610][ T5919] cp210x 6-1:0.0: device disconnected
[  280.846630][ T9364] loop3: detected capacity change from 0 to 4096
[  280.847039][ T9341] loop1: detected capacity change from 0 to 32768
[  280.883317][ T9341] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1104 (9341)
[  280.974838][ T9341] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  281.057052][ T9341] BTRFS info (device loop1): using blake2b checksum algorithm
[  281.442994][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  281.455755][ T9341] BTRFS info (device loop1): enabling ssd optimizations
[  281.515317][ T9341] BTRFS info (device loop1): turning on async discard
[  281.571595][ T9341] BTRFS info (device loop1): enabling free space tree
[  281.812347][   T10] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  281.922888][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  282.023727][   T10] usb 6-1: unable to get BOS descriptor or descriptor too short
[  282.082904][   T10] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7
[  282.106223][ T5828] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  282.139596][ T9370] loop0: detected capacity change from 0 to 131072
[  282.148369][ T9370] F2FS-fs (loop0): Invalid log sectorsize (67108873)
[  282.153159][   T10] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 119, changing to 7
[  282.155842][ T9370] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  282.182707][ T9370] F2FS-fs (loop0): invalid crc value
[  282.226643][   T10] usb 6-1: string descriptor 0 read error: -22
[  282.236888][   T10] usb 6-1: New USB device found, idVendor=21b4, idProduct=0081, bcdDevice= 0.40
[  282.281242][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.317957][ T9370] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  282.341430][ T9370] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  282.348515][ T9370] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  282.797216][   T10] usb 6-1: Can't set UAC3 power state to 1 for id 10
[  282.843422][   T10] usb 6-1: 2:0: failed to get current value for ch 0 (-71)
[  282.896887][   T10] usb 6-1: 2:0: cannot get min/max values for control 2 (id 2)
[  282.961781][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.129478][   T10] usb 6-1: 2:0: cannot get min/max values for control 2 (id 2)
[  283.222414][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  283.248318][   T10] usb 6-1: 2:0: cannot get min/max values for control 2 (id 2)
[  283.381584][   T10] usb 6-1: USB disconnect, device number 13
[  284.002902][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.123563][ T9431] loop3: detected capacity change from 0 to 512
[  284.161937][ T9431] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  284.302861][ T9431] EXT4-fs (loop3): 1 truncate cleaned up
[  284.402334][ T9431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  284.501430][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  284.579097][ T9431] EXT4-fs error (device loop3): ext4_generic_delete_entry:2665: inode #2: block 13: comm syz.3.1123: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  284.754379][ T9431] EXT4-fs (loop3): Remounting filesystem read-only
[  284.760930][ T9431] EXT4-fs warning (device loop3): ext4_rename_delete:3727: inode #2: comm syz.3.1123: Deleting old file: nlink 5, error=-117
[  285.041933][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  285.094010][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.306381][ T9460] loop5: detected capacity change from 0 to 512
[  285.360711][ T9460] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  285.385274][ T9460] EXT4-fs (loop5): DAX unsupported by block device.
[  285.671926][ T9460] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1136'.
[  285.716837][ T9470] gre0: entered promiscuous mode
[  285.751995][ T9470] gre0: entered allmulticast mode
[  285.781996][ T9473] netlink: 'syz.2.1140': attribute type 12 has an invalid length.
[  285.842798][ T9473] netlink: 'syz.2.1140': attribute type 29 has an invalid length.
[  285.850645][ T9473] netlink: 148 bytes leftover after parsing attributes in process `syz.2.1140'.
[  286.086576][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  286.561064][ T9485] loop5: detected capacity change from 0 to 4096
[  286.576714][ T9455] loop1: detected capacity change from 0 to 40427
[  286.589727][ T9485] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  286.632595][ T9455] F2FS-fs (loop1): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  286.663252][ T9455] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  286.728603][ T9485] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  286.761086][ T9455] F2FS-fs (loop1): invalid crc value
[  286.768121][ T9485] ntfs3(loop5): ino=1a, mi_enum_attr
[  286.776446][ T9485] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  287.094839][ T9455] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  287.121993][ T5977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.153394][ T9455] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  287.160467][ T9455] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  287.259328][   T30] audit: type=1804 audit(1774259408.355:57): pid=9455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1132" name="/newroot/194/file2/bus" dev="loop1" ino=10 res=1 errno=0
[  287.428107][ T9505] syz_tun: entered promiscuous mode
[  287.521638][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  287.975625][ T9511] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1157'.
[  288.010786][ T5828] syz-executor: attempt to access beyond end of device
[  288.010786][ T5828] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  288.059765][ T5828] CPU: 1 UID: 0 PID: 5828 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  288.059822][ T5828] Tainted: [L]=SOFTLOCKUP
[  288.059835][ T5828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  288.059858][ T5828] Call Trace:
[  288.059870][ T5828]  <TASK>
[  288.059884][ T5828]  dump_stack_lvl+0x100/0x190
[  288.059949][ T5828]  f2fs_handle_critical_error+0x5d7/0x970
[  288.059994][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.060040][ T5828]  ? f2fs_build_fault_attr+0x53/0x280
[  288.060114][ T5828]  f2fs_write_end_io+0xc3f/0xf30
[  288.060165][ T5828]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  288.060220][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.060277][ T5828]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  288.060323][ T5828]  bio_endio+0x7a3/0x910
[  288.060368][ T5828]  submit_bio_noacct+0x64c/0x2010
[  288.060436][ T5828]  f2fs_submit_write_bio+0x133/0x350
[  288.060480][ T5828]  __submit_merged_bio+0x331/0x7b0
[  288.060534][ T5828]  __submit_merged_write_cond+0x3fe/0x510
[  288.060593][ T5828]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  288.060660][ T5828]  ? __pfx___might_resched+0x10/0x10
[  288.060702][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.060760][ T5828]  f2fs_write_cache_pages+0x21c0/0x2720
[  288.060844][ T5828]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  288.060908][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.060959][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.061005][ T5828]  ? find_held_lock+0x2b/0x80
[  288.061051][ T5828]  ? is_bpf_text_address+0x8a/0x1a0
[  288.061098][ T5828]  ? is_bpf_text_address+0x8a/0x1a0
[  288.061199][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.061291][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.061337][ T5828]  ? __mod_zone_page_state+0xe2/0x190
[  288.061381][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.061426][ T5828]  ? rcu_is_watching+0x12/0xc0
[  288.061476][ T5828]  f2fs_write_data_pages+0x799/0x16d0
[  288.061547][ T5828]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  288.061620][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.061671][ T5828]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  288.061731][ T5828]  do_writepages+0x278/0x600
[  288.061795][ T5828]  ? __pfx_do_writepages+0x10/0x10
[  288.061851][ T5828]  ? do_raw_spin_unlock+0x145/0x1e0
[  288.061892][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.061937][ T5828]  ? _raw_spin_unlock+0x28/0x50
[  288.061995][ T5828]  filemap_writeback+0x22d/0x2e0
[  288.062059][ T5828]  ? __pfx_filemap_writeback+0x10/0x10
[  288.062182][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.062226][ T5828]  ? find_held_lock+0x2b/0x80
[  288.062272][ T5828]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  288.062328][ T5828]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  288.062383][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.062442][ T5828]  f2fs_sync_dirty_inodes+0x452/0x990
[  288.062519][ T5828]  block_operations+0x2a6/0xfc0
[  288.062572][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.062631][ T5828]  ? __pfx_block_operations+0x10/0x10
[  288.062754][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.062803][ T5828]  ? ktime_get+0x200/0x300
[  288.062851][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.062898][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.062943][ T5828]  ? rcu_is_watching+0x12/0xc0
[  288.062994][ T5828]  f2fs_write_checkpoint+0x582/0x5550
[  288.063072][ T5828]  ? f2fs_stop_gc_thread+0x79/0xd0
[  288.063134][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.063183][ T5828]  ? kasan_quarantine_put+0x104/0x240
[  288.063230][ T5828]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  288.063285][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.063341][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.063386][ T5828]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  288.063453][ T5828]  kill_f2fs_super+0x3e5/0x490
[  288.063508][ T5828]  ? __pfx_kill_f2fs_super+0x10/0x10
[  288.063586][ T5828]  ? lockdep_hardirqs_on+0x78/0x100
[  288.063643][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.063694][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.063757][ T5828]  deactivate_locked_super+0xc1/0x1b0
[  288.063805][ T5828]  deactivate_super+0xe7/0x110
[  288.063854][ T5828]  cleanup_mnt+0x21f/0x450
[  288.063912][ T5828]  task_work_run+0x150/0x240
[  288.063954][ T5828]  ? __pfx_task_work_run+0x10/0x10
[  288.063994][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.064042][ T5828]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.064098][ T5828]  exit_to_user_mode_loop+0x100/0x4a0
[  288.064166][ T5828]  do_syscall_64+0x67c/0xf80
[  288.064224][ T5828]  ? irqentry_exit+0x138/0x670
[  288.064288][ T5828]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.064327][ T5828] RIP: 0033:0x7f61b0b9d9d7
[  288.064357][ T5828] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  288.064393][ T5828] RSP: 002b:00007ffcb9571278 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  288.064428][ T5828] RAX: 0000000000000000 RBX: 00007f61b0c32050 RCX: 00007f61b0b9d9d7
[  288.064452][ T5828] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcb9571330
[  288.064475][ T5828] RBP: 00007ffcb9571330 R08: 00007ffcb9572330 R09: 00000000ffffffff
[  288.064499][ T5828] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb95723c0
[  288.064523][ T5828] R13: 00007f61b0c32050 R14: 0000000000046232 R15: 00007ffcb9572400
[  288.064577][ T5828]  </TASK>
[  288.610468][ T9499] loop3: detected capacity change from 0 to 32768
[  288.780984][ T5977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  288.782617][ T5828] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  288.905880][ T9499] ERROR: (device loop3): diAllocAG: free inode not found in summary map
[  288.905880][ T9499] 
[  288.950784][ T9499] ERROR: (device loop3): remounting filesystem as read-only
[  288.958891][ T9499] ialloc: diAlloc returned -5!
[  289.659898][ T9527] loop6: detected capacity change from 0 to 4096
[  289.705203][ T9536] loop1: detected capacity change from 0 to 2048
[  289.756570][ T9536] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  289.848071][ T9527] ntfs3(loop6): ino=22, "file1" direct i/o + compressed not supported
[  289.849565][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  289.885783][ T9542] sock: sock_set_timeout: `syz.3.1171' (pid 9542) tries to set negative timeout
[  289.888461][ T9543] syzkaller1: entered promiscuous mode
[  289.944194][ T9543] syzkaller1: entered allmulticast mode
[  290.356203][   T30] audit: type=1326 audit(1774259411.455:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9549 comm="syz.1.1173" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f61b0b9c799 code=0x0
[  290.491962][ T9555] loop2: detected capacity change from 0 to 2048
[  290.545972][ T9555] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  290.567175][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  290.660008][ T9560] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  290.895498][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  291.023584][ T9534] loop5: detected capacity change from 0 to 32768
[  291.067623][ T9534] XFS (loop5): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  291.190789][ T9534] XFS (loop5): Ending clean mount
[  291.350561][ T9559] loop0: detected capacity change from 0 to 32768
[  291.375269][ T9579] loop1: detected capacity change from 0 to 16
[  291.390595][ T9559] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1176 (9559)
[  291.425273][ T5846] XFS (loop5): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  291.468623][ T9579] erofs (device loop1): mounted with root inode @ nid 36.
[  291.510070][ T9559] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  291.541739][ T9559] BTRFS info (device loop0): using crc32c checksum algorithm
[  291.705036][ T9559] BTRFS info (device loop0): enabling ssd optimizations
[  291.716814][ T9559] BTRFS info (device loop0): turning on flush-on-commit
[  291.724160][ T9559] BTRFS info (device loop0): enabling free space tree
[  291.734264][ T9559] BTRFS info (device loop0): enabling auto defrag
[  291.740698][ T9559] BTRFS info (device loop0): use lzo compression, level 1
[  291.751487][ T9559] BTRFS info (device loop0): max_inline set to 4096
[  291.938369][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.204102][ T5832] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  292.468679][ T9568] loop6: detected capacity change from 0 to 32768
[  292.484141][ T9566] loop2: detected capacity change from 0 to 32768
[  292.602025][ T8051] IPVS: starting estimator thread 0...
[  292.615035][ T9566] JBD2: Ignoring recovery information on journal
[  292.644473][ T9568] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  292.711305][ T9610] IPVS: using max 24 ests per chain, 57600 per kthread
[  292.766448][ T9566] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  292.778450][ T9568] XFS (loop6): Ending clean mount
[  292.827087][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  292.967024][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.166533][ T7692] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  293.198709][ T5839] ocfs2: Unmounting device (7,2) on (node local)
[  293.272003][ T9627] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1193'.
[  293.602726][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  293.831346][ T8049] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  293.902784][ T5919] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  294.001636][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  294.010091][ T8049] usb 2-1: Using ep0 maxpacket: 16
[  294.037932][ T8049] usb 2-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  294.061568][ T8049] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.082717][ T5919] usb 1-1: Using ep0 maxpacket: 32
[  294.090001][ T8049] usb 2-1: Product: syz
[  294.103104][ T5919] usb 1-1: config 0 has an invalid interface number: 85 but max is 0
[  294.115982][ T5919] usb 1-1: config 0 has no interface number 0
[  294.120390][ T8049] usb 2-1: Manufacturer: syz
[  294.128687][ T8049] usb 2-1: SerialNumber: syz
[  294.136621][ T5919] usb 1-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  294.191295][ T5919] usb 1-1: config 0 interface 85 has no altsetting 0
[  294.209665][ T5919] usb 1-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  294.234928][ T5919] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  294.271609][ T5919] usb 1-1: Product: syz
[  294.281316][ T5919] usb 1-1: Manufacturer: syz
[  294.291254][ T5919] usb 1-1: SerialNumber: syz
[  294.312668][ T5919] usb 1-1: config 0 descriptor??
[  294.384088][ T8049] usb 2-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  294.439634][ T8049] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  294.482712][ T8049] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  294.524813][ T8049] usb 2-1: media controller created
[  294.595013][ T8049] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  294.904322][ T8049] zl10353_read_register: readreg error (reg=127, ret==-71)
[  294.943572][ T5919] appletouch 1-1:0.85: Geyser mode initialized.
[  294.993139][ T5919] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.85/input/input30
[  295.042079][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  295.054035][ T8049] dvb_usb_gl861 2-1:157.0: probe with driver dvb_usb_gl861 failed with error -5
[  295.071344][ T8035] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  295.111441][ T8049] usb 2-1: USB disconnect, device number 7
[  295.169426][ T5919] usb 1-1: USB disconnect, device number 11
[  295.241312][ T8035] usb 4-1: Using ep0 maxpacket: 16
[  295.260923][ T5919] appletouch 1-1:0.85: input: appletouch disconnected
[  295.295730][ T8035] usb 4-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  295.319069][ T8035] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.341054][ T8035] usb 4-1: Product: syz
[  295.349974][ T8035] usb 4-1: Manufacturer: syz
[  295.372859][ T8035] usb 4-1: SerialNumber: syz
[  295.724177][ T9670] netlink: 'syz.1.1211': attribute type 3 has an invalid length.
[  295.749111][ T9670] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1211'.
[  295.765710][ T8035] usb 4-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  295.815988][ T8035] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  295.858452][ T8035] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  295.891402][ T8035] usb 4-1: media controller created
[  295.935285][ T8035] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  296.175138][ T9686] input: syz0 as /devices/virtual/input/input31
[  296.187077][ T8035] zl10353_read_register: readreg error (reg=127, ret==-71)
[  296.201385][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.216385][   T30] audit: type=1804 audit(1774259417.315:59): pid=9683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1217" name="/newroot/202/cgroup.controllers" dev="tmpfs" ino=1103 res=1 errno=0
[  296.301534][   T30] audit: type=1800 audit(1774259417.315:60): pid=9683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1217" name="cgroup.controllers" dev="tmpfs" ino=1103 res=0 errno=0
[  296.310236][    C0] hrtimer: interrupt took 17790 ns
[  296.395613][   T30] audit: type=1800 audit(1774259417.345:61): pid=9683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1217" name="cgroup.controllers" dev="tmpfs" ino=1103 res=0 errno=0
[  296.482429][ T8035] dvb_usb_gl861 4-1:157.0: probe with driver dvb_usb_gl861 failed with error -5
[  296.572506][ T8035] usb 4-1: USB disconnect, device number 12
[  296.614673][ T6038] udevd[6038]: setting mode of /dev/bus/usb/004/012 to 020664 failed: No such file or directory
[  296.644542][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  296.692008][ T6038] udevd[6038]: setting owner of /dev/bus/usb/004/012 to uid=0, gid=0 failed: No such file or directory
[  297.202311][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.099887][ T9734] loop6: detected capacity change from 0 to 2048
[  298.254404][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  298.308246][ T9734] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  298.391398][ T9734] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  298.745567][ T7692] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.870779][ T9724] loop1: detected capacity change from 0 to 32768
[  298.939120][ T9724] (syz.1.1233,9724,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  298.972785][ T9758] vcan0: tx drop: invalid da for name 0x0000000000000010
[  298.981442][ T9724] (syz.1.1233,9724,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  299.081755][ T9724] JBD2: Ignoring recovery information on journal
[  299.272153][ T9724] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  299.286120][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  299.686564][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  299.990442][ T9787] loop5: detected capacity change from 0 to 1024
[  300.004181][ T5828] ocfs2: Unmounting device (7,1) on (node local)
[  300.076343][ T9787] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  300.324453][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  300.404902][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.975440][ T9786] loop6: detected capacity change from 0 to 32768
[  301.012368][ T9783] loop2: detected capacity change from 0 to 32768
[  301.020545][ T9786] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1258 (9786)
[  301.114021][ T9783] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1257 (9783)
[  301.141927][ T9789] loop0: detected capacity change from 0 to 32768
[  301.188728][ T9789] JBD2: Ignoring recovery information on journal
[  301.202312][ T9783] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  301.248038][ T9786] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  301.271849][ T9783] BTRFS info (device loop2): using blake2b checksum algorithm
[  301.292718][ T9786] BTRFS info (device loop6): using crc32c checksum algorithm
[  301.309880][ T9789] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  301.362684][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  301.597379][ T9786] BTRFS info (device loop6): enabling ssd optimizations
[  301.602592][ T9783] BTRFS info (device loop2): enabling ssd optimizations
[  301.616985][ T9786] BTRFS info (device loop6): turning on flush-on-commit
[  301.630969][ T9786] BTRFS info (device loop6): enabling free space tree
[  301.688753][ T9783] BTRFS info (device loop2): turning on async discard
[  301.690427][ T9786] BTRFS info (device loop6): enabling auto defrag
[  301.733657][ T9786] BTRFS info (device loop6): use lzo compression, level 1
[  301.733777][ T9783] BTRFS info (device loop2): enabling free space tree
[  301.771325][ T9786] BTRFS info (device loop6): max_inline set to 4096
[  301.779643][ T9849] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  301.814288][ T9849] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  301.973857][ T5832] ocfs2: Unmounting device (7,0) on (node local)
[  302.202401][ T8049] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  302.288883][ T8049] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  302.358670][ T7692] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  302.364226][ T5839] BTRFS info (device loop2): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  302.401795][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.461344][ T8051] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  302.681462][ T8051] usb 1-1: config 0 has no interfaces?
[  302.709566][ T8051] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  302.774764][ T8051] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  302.793951][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  302.827338][ T8051] usb 1-1: SerialNumber: syz
[  302.907525][ T8051] usb 1-1: config 0 descriptor??
[  303.173023][ T8051] usb 1-1: USB disconnect, device number 12
[  303.401358][ T8049] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  303.442355][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  303.562212][ T8049] usb 6-1: Using ep0 maxpacket: 32
[  303.569660][ T8049] usb 6-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  303.579293][ T8049] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.590849][ T8049] usb 6-1: config 0 descriptor??
[  303.826527][ T8049] dvb-usb: found a 'Elgato EyeTV DTT' in warm state.
[  303.887693][ T8049] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  303.931662][ T8049] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT)
[  303.954947][ T8049] usb 6-1: media controller created
[  304.017286][ T8049] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  304.095095][ T9888] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  304.299776][ T8049] DVB: Unable to find symbol dib7000p_attach()
[  304.311665][   T10] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  304.336514][ T8049] dvb-usb: no frontend was attached by 'Elgato EyeTV DTT'
[  304.372802][ T8051] IPVS: starting estimator thread 0...
[  304.427156][ T9900] loop1: detected capacity change from 0 to 2048
[  304.482257][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  304.487493][ T9902] IPVS: using max 22 ests per chain, 52800 per kthread
[  304.501362][   T10] usb 7-1: Using ep0 maxpacket: 8
[  304.528903][   T10] usb 7-1: config 0 has an invalid interface number: 186 but max is 0
[  304.551440][   T10] usb 7-1: config 0 has no interface number 0
[  304.568913][ T9900] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.573085][   T10] usb 7-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  304.610633][   T10] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x1 has an invalid bInterval 18, changing to 8
[  304.624657][   T10] usb 7-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  304.629097][ T8049] rc_core: IR keymap rc-dib0700-rc5 not found
[  304.636552][   T10] usb 7-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  304.654003][   T10] usb 7-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  304.660191][ T9907] loop0: detected capacity change from 0 to 512
[  304.670133][   T10] usb 7-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  304.684795][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.692928][   T10] usb 7-1: Product: syz
[  304.697297][   T10] usb 7-1: Manufacturer: syz
[  304.708536][   T10] usb 7-1: SerialNumber: syz
[  304.716497][ T8049] Registered IR keymap rc-empty
[  304.751688][ T8049] dvb-usb: could not initialize remote control.
[  304.757964][ T8049] dvb-usb: Elgato EyeTV DTT successfully initialized and connected.
[  304.771314][ T9907] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  304.802946][ T9900] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1312: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  304.823666][ T9900] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 486 with error 28
[  304.827140][ T9907] EXT4-fs error (device loop0): ext4_validate_block_bitmap:431: comm syz.0.1292: bg 0: block 104: invalid block bitmap
[  304.851966][ T9907] loop0: lost filesystem error report for type 5 error -117
[  304.857720][ T9907] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  304.865079][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  304.865115][    C1] EXT4-fs (loop0): initial error at time 1774259425: ext4_validate_block_bitmap:431
[  304.865160][    C1] EXT4-fs (loop0): last error at time 1774259425: ext4_validate_block_bitmap:431
[  304.867770][ T9900] EXT4-fs (loop1): This should not happen!! Data will be lost
[  304.867770][ T9900] 
[  304.910412][ T9900] EXT4-fs (loop1): Total free blocks count 0
[  304.918600][   T10] usb 7-1: config 0 descriptor??
[  304.923946][ T9900] EXT4-fs (loop1): Free/Dirty block details
[  304.930340][ T9900] EXT4-fs (loop1): free_blocks=2415919104
[  304.940384][ T9900] EXT4-fs (loop1): dirty_blocks=496
[  304.940412][ T8049] usb 6-1: USB disconnect, device number 14
[  304.940446][ T9900] EXT4-fs (loop1): Block reservation details
[  304.966767][ T9900] EXT4-fs (loop1): i_reserved_data_blocks=31
[  304.981563][ T9907] loop0: lost filesystem error report for type 5 error -117
[  304.987013][ T9907] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #11: comm syz.0.1292: invalid indirect mapped block 1 (level 1)
[  305.086623][ T9907] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  305.090897][ T9907] EXT4-fs (loop0): 1 truncate cleaned up
[  305.154070][   T10] iowarrior 7-1:0.186: IOWarrior product=0x1505, serial=42424242 interface=186 now attached to iowarrior0
[  305.203343][ T8049] dvb-usb: Elgato EyeTV DTT successfully deinitialized and disconnected.
[  305.218492][ T9907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  305.370162][   T10] usb 7-1: USB disconnect, device number 8
[  305.481161][ T9923] loop2: detected capacity change from 0 to 512
[  305.522666][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  305.555994][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.569899][   T49] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 486 with error 28
[  305.603681][ T9923] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.685610][ T9923] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  305.735357][ T9923] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #2: comm syz.2.1298: corrupted inode contents
[  305.785447][ T9923] EXT4-fs error (device loop2): ext4_dirty_inode:6450: inode #2: comm syz.2.1298: mark_inode_dirty error
[  305.831939][ T9923] EXT4-fs error (device loop2): ext4_do_update_inode:5569: inode #2: comm syz.2.1298: corrupted inode contents
[  305.844132][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  305.928071][ T9923] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.1298: mark_inode_dirty error
[  305.996177][ T9931] EXT4-fs warning (device loop2): ext4_es_cache_extent:1079: inode #2: comm syz.2.1298: ES cache extent failed: add [0,1,20,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  305.996177][ T9931] 
[  306.088357][   T30] audit: type=1800 audit(1774259427.185:62): pid=9931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1298" name="file1" dev="loop2" ino=18 res=0 errno=0
[  306.275179][ T5839] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.391726][   T10] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  306.561532][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  306.573496][   T10] usb 7-1: config 0 interface 0 has no altsetting 0
[  306.629174][   T10] usb 7-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  306.656749][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.698924][   T10] usb 7-1: config 0 descriptor??
[  307.272355][ T9945] loop5: detected capacity change from 0 to 32768
[  307.317824][ T9945] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1306 (9945)
[  307.423972][ T9945] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  307.461301][ T9945] BTRFS info (device loop5): using crc32c checksum algorithm
[  307.480211][ T9961] Bluetooth: MGMT ver 1.23
[  307.580181][ T9945] BTRFS info (device loop5): enabling ssd optimizations
[  307.601599][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  307.703746][ T9945] BTRFS info (device loop5): turning on async discard
[  307.710600][ T9945] BTRFS info (device loop5): enabling free space tree
[  307.750669][ T9981] capability: warning: `syz.3.1314' uses 32-bit capabilities (legacy support in use)
[  307.805249][   T10] video4linux radio48: keene_cmd_set failed (-71)
[  307.823402][   T10] radio-keene 7-1:0.0: V4L2 device registered as radio48
[  307.853882][   T10] usb 7-1: USB disconnect, device number 9
[  307.975230][ T9951] loop2: detected capacity change from 0 to 32768
[  308.024730][ T9951] BTRFS info: device /dev/loop2 (7:2) using temp-fsid e678f0a1-e025-4d1c-9ec4-ea85c148fcd3
[  308.076215][ T9951] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1308 (9951)
[  308.102649][ T9987] xt_CT: You must specify a L4 protocol and not use inversions on it
[  308.122566][ T8051] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  308.131290][ T9951] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  308.163784][ T9951] BTRFS info (device loop2): using crc32c checksum algorithm
[  308.301264][ T8051] usb 6-1: Using ep0 maxpacket: 16
[  308.357091][   T12] BTRFS warning (device loop2): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xcee3a718 level 0
[  308.374520][ T8051] usb 6-1: config 0 has no interfaces?
[  308.409518][ T9951] BTRFS warning (device loop2): couldn't read tree root
[  308.421449][ T9951] BTRFS warning (device loop2): try to load backup roots slot 1
[  308.463293][ T8051] usb 6-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  308.481961][   T12] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0xe06dfc66 level 0
[  308.503764][ T9951] BTRFS warning (device loop2): couldn't read tree root
[  308.513508][ T8051] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  308.551931][ T9951] BTRFS warning (device loop2): try to load backup roots slot 2
[  308.554006][ T8051] usb 6-1: Product: syz
[  308.591313][ T8051] usb 6-1: Manufacturer: syz
[  308.617393][ T8051] usb 6-1: SerialNumber: syz
[  308.623685][  T995] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  308.647358][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  308.663214][ T8051] usb 6-1: config 0 descriptor??
[  308.727353][ T9951] BTRFS warning (device loop2): couldn't read tree root
[  308.741343][ T9951] BTRFS warning (device loop2): try to load backup roots slot 3
[  308.858195][ T9951] BTRFS info (device loop2): checking UUID tree
[  308.882260][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  308.931449][ T9951] BTRFS info (device loop2): setting nodatasum
[  308.971359][ T9951] BTRFS info (device loop2): enabling ssd optimizations
[  308.983164][ T9951] BTRFS info (device loop2): turning on flush-on-commit
[  309.011228][ T9951] BTRFS info (device loop2): turning on async discard
[  309.039284][T10019] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1324'.
[  309.076765][ T9951] BTRFS info (device loop2): enabling free space tree
[  309.092162][ T9945] BTRFS info (device loop5): balance: start -s
[  309.104921][ T9951] BTRFS info (device loop2): trying to use backup root at mount time
[  309.127022][ T9951] BTRFS info (device loop2): max_inline set to 0
[  309.168922][ T9945] BTRFS info (device loop5): relocating block group 1048576 flags system
[  309.258775][   T30] audit: type=1800 audit(1774259430.355:63): pid=9951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1308" name="file1" dev="loop2" ino=257 res=0 errno=0
[  309.327216][T10018] loop0: detected capacity change from 0 to 4096
[  309.374604][T10018] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  309.392632][T10024] loop3: detected capacity change from 0 to 1024
[  309.447347][T10018] ntfs3(loop0): ino=19, mi_enum_attr
[  309.474503][T10018] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  309.482051][ T9945] BTRFS info (device loop5): balance: ended with status: 0
[  309.530423][T10024] hfsplus: b-tree write err: -5, ino 2
[  309.577660][ T5839] BTRFS info (device loop2): last unmount of filesystem e678f0a1-e025-4d1c-9ec4-ea85c148fcd3
[  309.631572][   T30] audit: type=1800 audit(1774259430.735:64): pid=10024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1327" name="file1" dev="loop3" ino=20 res=0 errno=0
[  309.653674][ T8035] usb 6-1: USB disconnect, device number 15
[  309.654410][T10024] hfsplus: b-tree write err: -5, ino 2
[  309.688493][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  309.868171][  T130] hfsplus: b-tree write err: -5, ino 25
[  309.889975][  T130] hfsplus: b-tree write err: -5, ino 4
[  309.920952][  T130] hfsplus: b-tree write err: -5, ino 2
[  309.946708][  T130] hfsplus: b-tree write err: -5, ino 26
[  310.132477][T10034] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1331'.
[  310.319616][ T5846] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  310.508040][T10021] loop1: detected capacity change from 0 to 32768
[  310.721673][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  310.754712][T10021] JBD2: Ignoring recovery information on journal
[  311.044028][T10021] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  311.404313][T10021] (syz.1.1326,10021,1):ocfs2_rename:1703 ERROR: status = -39
[  311.689062][T10043] loop0: detected capacity change from 0 to 131072
[  311.710317][T10043] F2FS-fs (loop0): Invalid log sectorsize (67108873)
[  311.717078][T10043] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  311.728185][T10043] F2FS-fs (loop0): invalid crc value
[  311.766165][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  311.925911][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  311.940094][ T5828] ocfs2: Unmounting device (7,1) on (node local)
[  311.956443][T10043] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  312.002428][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  312.016664][T10043] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  312.023776][T10043] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  312.392703][T10064] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.1343'.
[  312.436571][T10039] loop2: detected capacity change from 0 to 32768
[  312.602123][T10039] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  312.620654][T10039] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  312.805555][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  312.908665][T10086] loop8: detected capacity change from 0 to 8
[  312.911272][T10039] XFS (loop2): Ending clean mount
[  312.936943][T10086] Dev loop8: unable to read RDB block 8
[  312.949252][T10090] loop3: detected capacity change from 0 to 256
[  312.981474][T10086]  loop8: unable to read partition table
[  312.999138][T10039] XFS (loop2): Quotacheck needed: Please wait.
[  313.039878][T10086] loop8: partition table beyond EOD, truncated
[  313.064130][T10086] loop_reread_partitions: partition scan of loop8 (�被x�^>�� �) failed (rc=-5)
[  313.184434][T10039] XFS (loop2): Quotacheck: Done.
[  313.218786][T10088] loop6: detected capacity change from 0 to 4096
[  313.532458][ T5839] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  313.585265][T10098] loop1: detected capacity change from 0 to 128
[  313.848409][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  314.231402][ T8051] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  314.436639][ T8051] usb 7-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x3B, changing to 0xB
[  314.469063][ T8051] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0xB has invalid maxpacket 32454, setting to 64
[  314.492047][ T8051] usb 7-1: config 0 interface 0 has no altsetting 0
[  314.504101][ T8051] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  314.516135][ T8051] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  314.545272][ T8051] usb 7-1: Product: syz
[  314.557671][ T8051] usb 7-1: Manufacturer: syz
[  314.601373][   T10] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  314.601572][ T8051] usb 7-1: SerialNumber: syz
[  314.692881][ T8051] usb 7-1: config 0 descriptor??
[  314.708967][T10105] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  314.724515][ T8051] usb 7-1: selecting invalid altsetting 0
[  314.740578][T10125] loop5: detected capacity change from 0 to 512
[  314.777356][T10125] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  314.796233][   T10] usb 1-1: Using ep0 maxpacket: 16
[  314.828870][   T10] usb 1-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  314.864783][T10125] EXT4-fs (loop5): 1 truncate cleaned up
[  314.900881][T10125] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.906948][   T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.921224][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  314.961728][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.041251][   T10] usb 1-1: Product: syz
[  315.071326][   T10] usb 1-1: Manufacturer: syz
[  315.075949][   T10] usb 1-1: SerialNumber: syz
[  315.161132][   T10] usb 1-1: config 0 descriptor??
[  315.235140][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.597621][   T10] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  315.617016][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  315.655887][   T10] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  315.675912][   T10] usb 1-1: media controller created
[  315.745392][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  315.793382][T10145] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  315.798341][T10116] dtv5100: rlen = 51 is too big!
[  315.798341][T10116] 
[  315.836030][T10145] buffer_io_error: 86 callbacks suppressed
[  315.836049][T10145] Buffer I/O error on dev nbd1, logical block 0, async page read
[  315.862252][T10145] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  315.874671][   T10] zl10353_read_register: readreg error (reg=127, ret==0)
[  315.891369][   T10] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  315.899289][   T10] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  315.924403][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  315.925509][T10145] Buffer I/O error on dev nbd1, logical block 1, async page read
[  315.974402][T10145] I/O error, dev nbd1, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  315.984943][T10145] Buffer I/O error on dev nbd1, logical block 2, async page read
[  315.999244][T10145] I/O error, dev nbd1, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.004323][   T10] usb 1-1: USB disconnect, device number 13
[  316.050159][T10145] Buffer I/O error on dev nbd1, logical block 3, async page read
[  316.086680][T10145] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.101603][T10145] Buffer I/O error on dev nbd1, logical block 0, async page read
[  316.109578][T10145] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.188071][T10145] Buffer I/O error on dev nbd1, logical block 1, async page read
[  316.215850][T10145] I/O error, dev nbd1, sector 4 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.228981][   T10] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  316.261616][T10145] Buffer I/O error on dev nbd1, logical block 2, async page read
[  316.290990][T10145] I/O error, dev nbd1, sector 6 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.321566][T10145] Buffer I/O error on dev nbd1, logical block 3, async page read
[  316.338067][T10145] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.411297][T10145] Buffer I/O error on dev nbd1, logical block 0, async page read
[  316.419365][T10145] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  316.456406][T10145] Buffer I/O error on dev nbd1, logical block 1, async page read
[  316.480261][T10145] ldm_validate_partition_table(): Disk read failed.
[  316.496748][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  316.503137][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  316.510115][T10145] Dev nbd1: unable to read RDB block 0
[  316.530036][T10145]  nbd1: unable to read partition table
[  316.592227][T10159] loop5: detected capacity change from 0 to 2048
[  316.623475][T10159] EXT4-fs: Ignoring removed i_version option
[  316.703070][T10159] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.754588][T10159] ext4 filesystem being mounted at /232/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  316.826107][T10159] EXT4-fs (loop5): shut down requested (0)
[  316.942843][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.962733][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  317.031343][ T8051] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  317.194057][ T8051] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  317.208725][ T8051] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.269493][ T8051] usb 2-1: config 0 descriptor??
[  317.303213][ T8051] cp210x 2-1:0.0: cp210x converter detected
[  317.696087][ T8051] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -32
[  317.821718][ T8049] usb 7-1: USB disconnect, device number 10
[  317.939175][ T8051] usb 2-1: cp210x converter now attached to ttyUSB0
[  318.005391][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.013537][ T8035] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.166297][ T8049] usb 2-1: USB disconnect, device number 8
[  318.207195][ T8049] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  318.278456][ T8049] cp210x 2-1:0.0: device disconnected
[  318.400001][T10188] loop2: detected capacity change from 0 to 2048
[  318.449978][T10188] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  318.756372][T10197] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1391'.
[  318.883649][T10201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.935480][T10201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  318.973719][T10201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  319.019974][T10201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  319.032390][ T8049] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  319.045191][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  319.056944][T10210] Invalid argument reading file caps for ./file0
[  319.069408][T10201] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  319.210976][ T8049] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  319.243988][ T8049] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  319.288647][ T8049] usb 6-1: Product: syz
[  319.293071][ T8049] usb 6-1: Manufacturer: syz
[  319.303396][ T8049] usb 6-1: SerialNumber: syz
[  319.320234][ T8049] usb 6-1: config 0 descriptor??
[  319.328975][ T8049] ch341 6-1:0.0: ch341-uart converter detected
[  319.511328][T10204] loop0: detected capacity change from 0 to 32768
[  319.513741][T10221] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1402'.
[  319.544198][T10204] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1396 (10204)
[  319.550274][T10221] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1402'.
[  319.597040][T10204] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  319.610813][T10221] geneve2: entered promiscuous mode
[  319.616564][T10204] BTRFS info (device loop0): using crc32c checksum algorithm
[  319.627028][T10221] geneve2: entered allmulticast mode
[  319.674325][T10204] BTRFS info (device loop0): enabling ssd optimizations
[  319.684417][T10204] BTRFS info (device loop0): turning on flush-on-commit
[  319.691833][T10204] BTRFS info (device loop0): enabling free space tree
[  319.699425][T10204] BTRFS info (device loop0): enabling auto defrag
[  319.711397][T10204] BTRFS info (device loop0): use lzo compression, level 1
[  319.731225][T10204] BTRFS info (device loop0): max_inline set to 4096
[  319.969903][ T5832] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  320.083130][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  320.111821][ T8035] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[  320.242402][ T5919] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  320.294898][ T8035] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  320.309327][ T8035] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  320.337191][ T8035] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  320.361835][ T8049] ch341-uart ttyUSB0: failed to read break control: -71
[  320.369393][ T8049] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  320.383417][ T8049] usb 6-1: USB disconnect, device number 16
[  320.393617][ T8049] ch341 6-1:0.0: device disconnected
[  320.403036][ T8035] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  320.431963][ T5919] usb 2-1: config 0 has an invalid interface number: 50 but max is 0
[  320.458865][ T5919] usb 2-1: config 0 has no interface number 0
[  320.471678][ T8035] usb 4-1: SerialNumber: syz
[  320.486527][ T5919] usb 2-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  320.514615][ T8035] usb 4-1: bad CDC descriptors
[  320.527514][ T8035] usb-storage 4-1:1.0: USB Mass Storage device detected
[  320.538169][ T5919] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  320.569241][ T5919] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.592270][ T8035] usb-storage 4-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  320.615101][ T5919] usb 2-1: Product: syz
[  320.619278][ T5919] usb 2-1: Manufacturer: syz
[  320.641602][ T8035] scsi host1: usb-storage 4-1:1.0
[  320.663407][ T5919] usb 2-1: SerialNumber: syz
[  320.752073][ T5919] usb 2-1: config 0 descriptor??
[  320.792612][ T5919] yurex 2-1:0.50: USB YUREX device now attached to Yurex #0
[  321.041671][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.051122][    C0] usb 2-1: yurex_control_callback - control failed: -71
[  321.052528][ T8049] usb 2-1: USB disconnect, device number 9
[  321.115424][ T8049] yurex 2-1:0.50: USB YUREX #0 now disconnected
[  321.122274][ T8051] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  321.383792][T10273] loop5: detected capacity change from 0 to 4096
[  321.410620][T10273] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  321.543093][T10273] ntfs3(loop5): ino=19, mi_enum_attr
[  321.548443][T10273] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  321.987185][T10283] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  322.164383][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  322.611374][   T10] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  322.619147][T10305] loop5: detected capacity change from 0 to 64
[  322.722677][ T5919] usb 4-1: USB disconnect, device number 13
[  322.795857][   T10] usb 2-1: Using ep0 maxpacket: 32
[  322.863610][   T10] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  322.883706][T10309] input: syz1 as /devices/virtual/input/input33
[  322.904779][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  322.981283][   T10] usb 2-1: config 0 descriptor??
[  323.218847][   T10] dvb-usb: found a 'Elgato EyeTV DTT' in warm state.
[  323.247330][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  323.291602][   T10] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT)
[  323.298819][   T10] usb 2-1: media controller created
[  323.304198][ T8049] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  323.397569][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  323.455192][T10321] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.1437'.
[  323.502494][ T8049] usb 6-1: Using ep0 maxpacket: 8
[  323.512943][ T8049] usb 6-1: config index 0 descriptor too short (expected 74, got 45)
[  323.521061][ T8049] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  323.584269][ T8049] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  323.610777][ T8049] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  323.661751][ T8049] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  323.706561][   T10] DVB: Unable to find symbol dib7000p_attach()
[  323.709061][ T8049] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  323.732895][   T10] dvb-usb: no frontend was attached by 'Elgato EyeTV DTT'
[  323.761320][ T8049] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  323.778910][T10301] loop6: detected capacity change from 0 to 32768
[  323.807931][ T8049] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.812231][T10301] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1429 (10301)
[  323.901112][T10301] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  323.938192][T10301] BTRFS info (device loop6): using sha256 checksum algorithm
[  324.042058][   T10] rc_core: IR keymap rc-dib0700-rc5 not found
[  324.044312][T10301] BTRFS info (device loop6): enabling ssd optimizations
[  324.050501][   T10] Registered IR keymap rc-empty
[  324.071837][   T10] dvb-usb: could not initialize remote control.
[  324.078112][   T10] dvb-usb: Elgato EyeTV DTT successfully initialized and connected.
[  324.081529][ T8049] usb 6-1: GET_CAPABILITIES returned 0
[  324.086991][ T5919] net_ratelimit: 1 callbacks suppressed
[  324.087012][ T5919] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.109808][   T10] usb 2-1: USB disconnect, device number 10
[  324.123360][T10301] BTRFS info (device loop6): turning on async discard
[  324.131005][ T8049] usbtmc 6-1:16.0: can't read capabilities
[  324.145916][   T10] dvb-usb: Elgato EyeTV DTT successfully deinitialized and disconnected.
[  324.171296][T10301] BTRFS info (device loop6): enabling free space tree
[  324.179918][T10301] BTRFS info (device loop6): enabling auto defrag
[  324.191934][T10301] BTRFS info (device loop6): max_inline set to 4096
[  324.282436][ T8049] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  324.337394][    C0] usbtmc 6-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[  324.351101][T10351] usbtmc 6-1:16.0: Unable to send data, error -71
[  324.359938][ T5919] usb 6-1: USB disconnect, device number 17
[  324.569484][T10320] loop3: detected capacity change from 0 to 32768
[  324.582022][T10353] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  324.634145][T10320] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  324.681724][T10320] JBD2: Ignoring recovery information on journal
[  324.776246][T10320] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  324.979895][ T7692] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  325.068055][T10320] (syz.3.1438,10320,0):ocfs2_check_dir_entry:312 ERROR: directory entry (#65: offset=512) too close to end or out-of-bounds
[  325.068137][T10320] (syz.3.1438,10320,0):ocfs2_rename:1703 ERROR: status = -2
[  325.161294][ T5919] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  325.313560][T10367] input: syz0 as /devices/virtual/input/input35
[  325.331384][ T5919] usb 1-1: Using ep0 maxpacket: 32
[  325.382185][ T5919] usb 1-1: config 0 has no interfaces?
[  325.383319][  T116] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  325.430573][ T5919] usb 1-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  325.476345][ T5919] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.505215][ T5919] usb 1-1: Product: syz
[  325.509409][ T5919] usb 1-1: Manufacturer: syz
[  325.571240][ T5919] usb 1-1: SerialNumber: syz
[  325.631102][ T5919] usb 1-1: config 0 descriptor??
[  325.651688][ T5829] ocfs2: Unmounting device (7,3) on (node local)
[  325.916624][   T10] usb 1-1: USB disconnect, device number 14
[  326.401878][  T116] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  326.726654][   T10] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  327.452081][T10408] loop5: detected capacity change from 0 to 128
[  327.491343][ T5977] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  327.678058][T10393] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888056590000 pfn:0x56590
[  327.724935][T10393] memcg:ffff88801daf8d40
[  327.729206][T10393] flags: 0xfff00000000001(locked|node=0|zone=1|lastcpupid=0x7ff)
[  327.796181][T10393] raw: 00fff00000000001 0000000000000000 dead000000000122 0000000000000000
[  327.833254][T10393] raw: ffff888056590000 0000000000000000 00000001ffffffff ffff88801daf8d40
[  327.891298][T10393] page dumped because: VM_BUG_ON_FOLIO(folio_order(folio) < mapping_min_folio_order(mapping))
[  327.921635][T10393] page_owner tracks the page as allocated
[  327.944931][T10393] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 10393, tgid 10388 (syz.3.1450), ts 327678027725, free_ts 327593912071
[  328.001384][ T5835] Bluetooth: hci1: command 0x0406 tx timeout
[  328.011267][ T8049] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  328.018220][ T8049] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  328.061343][T10393]  post_alloc_hook+0x153/0x170
[  328.091436][T10393]  get_page_from_freelist+0x111d/0x3140
[  328.151265][T10393]  __alloc_frozen_pages_noprof+0x27c/0x2ba0
[  328.169486][T10393]  alloc_pages_mpol+0x1fb/0x550
[  328.189777][T10422] loop2: detected capacity change from 0 to 256
[  328.211226][T10393]  folio_alloc_noprof+0x22/0x330
[  328.251397][T10393]  filemap_alloc_folio_noprof.part.0+0x377/0x450
[  328.261028][T10393]  filemap_alloc_folio_noprof+0x5e/0x80
[  328.292178][T10393]  page_cache_ra_order+0x54b/0xf30
[  328.322105][T10393]  filemap_fault+0x191a/0x2eb0
[  328.351311][T10393]  __do_fault+0x10d/0x550
[  328.371341][T10393]  do_fault+0xabb/0x1990
[  328.406127][T10393]  __handle_mm_fault+0x180f/0x2b60
[  328.420168][T10393]  handle_mm_fault+0x36d/0xa20
[  328.438438][T10393]  __get_user_pages+0xf9c/0x34d0
[  328.481663][T10393]  populate_vma_page_range+0x267/0x3f0
[  328.511544][T10393]  __mm_populate+0x107/0x3a0
[  328.531263][T10393] page last free pid 49 tgid 49 stack trace:
[  328.558046][T10393]  __free_frozen_pages+0x7e1/0x10d0
[  328.569226][ T8032] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  328.588889][T10393]  rcu_core+0x5a2/0x10d0
[  328.599952][T10393]  handle_softirqs+0x1eb/0x9e0
[  328.616589][T10393]  do_softirq+0xac/0xe0
[  328.629626][T10393]  __local_bh_enable_ip+0xf8/0x120
[  328.657975][T10393]  tcp_sock_set_nodelay+0x1c/0x120
[  328.681282][T10393]  rds_tcp_tune+0xcd/0x920
[  328.688417][T10393]  rds_tcp_conn_path_connect+0x338/0xaa0
[  328.701346][T10393]  rds_connect_worker+0x1b4/0x2d0
[  328.711231][T10393]  process_one_work+0xa23/0x19a0
[  328.716206][T10393]  worker_thread+0x5ef/0xe50
[  328.727089][T10393]  kthread+0x370/0x450
[  328.731300][T10393]  ret_from_fork+0x754/0xd80
[  328.735981][T10393]  ret_from_fork_asm+0x1a/0x30
[  328.769428][T10393] ------------[ cut here ]------------
[  328.775478][T10393] kernel BUG at mm/filemap.c:858!
[  328.851852][T10393] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  328.858322][T10393] CPU: 0 UID: 0 PID: 10393 Comm: syz.3.1450 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  328.869285][T10393] Tainted: [L]=SOFTLOCKUP
[  328.873607][T10393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  328.883666][T10393] RIP: 0010:__filemap_add_folio+0xfcf/0x1280
[  328.889692][T10393] Code: 29 c6 ff 48 c7 c6 20 2f bd 8b 4c 89 ef e8 d9 3f 12 00 90 0f 0b e8 91 29 c6 ff 48 c7 c6 80 2f bd 8b 4c 89 ef e8 c2 3f 12 00 90 <0f> 0b e8 7a 29 c6 ff 90 0f 0b 90 e9 4b fe ff ff e8 6c 29 c6 ff 90
[  328.909319][T10393] RSP: 0018:ffffc900055bf3f8 EFLAGS: 00010246
[  328.915405][T10393] RAX: 0000000000080000 RBX: 0000000000112cc0 RCX: ffffc9000efd1000
[  328.923386][T10393] RDX: 0000000000080000 RSI: ffffffff8254d6e8 RDI: ffff88801eb06044
[  328.931362][T10393] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  328.939327][T10393] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000004
[  328.947303][T10393] R13: ffffea0001596400 R14: 0000000000000000 R15: 1ffff92000ab7ea9
[  328.955271][T10393] FS:  00007f621e7d56c0(0000) GS:ffff88812433f000(0000) knlGS:0000000000000000
[  328.964200][T10393] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  328.970785][T10393] CR2: 00007f82723eb4b8 CR3: 0000000036e14000 CR4: 0000000000350ef0
[  328.978752][T10393] Call Trace:
[  328.982019][T10393]  <TASK>
[  328.984947][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  328.990591][T10393]  ? __pfx___filemap_add_folio+0x10/0x10
[  328.996246][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.001901][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.007552][T10393]  filemap_add_folio+0x1d8/0x690
[  329.012499][T10393]  ? __lock_acquire+0x4a5/0x2630
[  329.017459][T10393]  ? __pfx_filemap_add_folio+0x10/0x10
[  329.022923][T10393]  ? css_rstat_updated+0x1ce/0x5a0
[  329.028057][T10393]  page_cache_ra_order+0x614/0xf30
[  329.033181][T10393]  filemap_fault+0x191a/0x2eb0
[  329.037959][T10393]  ? __pfx_filemap_fault+0x10/0x10
[  329.043082][T10393]  ? __pfx_filemap_map_pages+0x10/0x10
[  329.048556][T10393]  __do_fault+0x10d/0x550
[  329.052900][T10393]  do_fault+0xabb/0x1990
[  329.057169][T10393]  __handle_mm_fault+0x180f/0x2b60
[  329.062286][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.067928][T10393]  ? mt_find+0x45e/0x8e0
[  329.072170][T10393]  ? __pfx___handle_mm_fault+0x10/0x10
[  329.077628][T10393]  ? __pfx_mt_find+0x10/0x10
[  329.082231][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.087876][T10393]  handle_mm_fault+0x36d/0xa20
[  329.092645][T10393]  __get_user_pages+0xf9c/0x34d0
[  329.097614][T10393]  ? __pfx___get_user_pages+0x10/0x10
[  329.103005][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.108651][T10393]  populate_vma_page_range+0x267/0x3f0
[  329.114136][T10393]  ? __pfx_populate_vma_page_range+0x10/0x10
[  329.120141][T10393]  ? __pfx_find_vma_intersection+0x10/0x10
[  329.125977][T10393]  ? do_mmap+0x93f/0x12f0
[  329.130326][T10393]  __mm_populate+0x107/0x3a0
[  329.134938][T10393]  ? __pfx___mm_populate+0x10/0x10
[  329.140068][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.145713][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.151354][T10393]  ? up_write+0x290/0x4f0
[  329.155691][T10393]  vm_mmap_pgoff+0x37f/0x470
[  329.160303][T10393]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  329.165438][T10393]  ? __fget_files+0x215/0x3d0
[  329.170139][T10393]  ? __fget_files+0x21f/0x3d0
[  329.174837][T10393]  ksys_mmap_pgoff+0x3c8/0x650
[  329.179616][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.185259][T10393]  ? kfree+0x2ec/0x6b0
[  329.189324][T10393]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[  329.194624][T10393]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  329.200456][T10393]  ? srso_alias_return_thunk+0x5/0xfbef5
[  329.206103][T10393]  __x64_sys_mmap+0x125/0x190
[  329.210783][T10393]  do_syscall_64+0x106/0xf80
[  329.215394][T10393]  ? irqentry_exit+0x138/0x670
[  329.220180][T10393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.226073][T10393] RIP: 0033:0x7f622059c799
[  329.230482][T10393] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  329.250092][T10393] RSP: 002b:00007f621e7d5028 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  329.258514][T10393] RAX: ffffffffffffffda RBX: 00007f6220816090 RCX: 00007f622059c799
[  329.266483][T10393] RDX: 0000000001000002 RSI: 0000000000b36000 RDI: 0000200000000000
[  329.274448][T10393] RBP: 00007f6220632c99 R08: 0000000000000004 R09: 000000002c93a000
[  329.282414][T10393] R10: 0000000000028011 R11: 0000000000000246 R12: 0000000000000000
[  329.290378][T10393] R13: 00007f6220816128 R14: 00007f6220816090 R15: 00007ffee67fd4d8
[  329.298355][T10393]  </TASK>
[  329.301362][T10393] Modules linked in:
[  329.306911][T10393] ---[ end trace 0000000000000000 ]---
[  329.328557][T10393] RIP: 0010:__filemap_add_folio+0xfcf/0x1280
[  329.334662][T10393] Code: 29 c6 ff 48 c7 c6 20 2f bd 8b 4c 89 ef e8 d9 3f 12 00 90 0f 0b e8 91 29 c6 ff 48 c7 c6 80 2f bd 8b 4c 89 ef e8 c2 3f 12 00 90 <0f> 0b e8 7a 29 c6 ff 90 0f 0b 90 e9 4b fe ff ff e8 6c 29 c6 ff 90
[  329.354485][T10393] RSP: 0018:ffffc900055bf3f8 EFLAGS: 00010246
[  329.360611][T10393] RAX: 0000000000080000 RBX: 0000000000112cc0 RCX: ffffc9000efd1000
[  329.375045][T10393] RDX: 0000000000080000 RSI: ffffffff8254d6e8 RDI: ffff88801eb06044
[  329.445209][T10393] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000
[  329.475071][T10393] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000004
[  329.485579][T10393] R13: ffffea0001596400 R14: 0000000000000000 R15: 1ffff92000ab7ea9
[  329.493681][T10393] FS:  00007f621e7d56c0(0000) GS:ffff88812433f000(0000) knlGS:0000000000000000
[  329.502732][T10393] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  329.509399][T10393] CR2: 00005608b06ae950 CR3: 0000000036e14000 CR4: 0000000000350ef0
[  329.519088][T10393] Kernel panic - not syncing: Fatal exception
[  329.525501][T10393] Kernel Offset: disabled
[  329.529821][T10393] Rebooting in 86400 seconds..