last executing test programs:

2m3.941041593s ago: executing program 3 (id=166):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000200)=0x2, 0x4)

2m3.776282083s ago: executing program 3 (id=168):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x334ecc4b, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
accept4(r0, 0x0, 0x0, 0x800)

2m2.197920025s ago: executing program 3 (id=182):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000114000000110001"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x68, &(0x7f0000000000)={&(0x7f0000001940)=ANY=[@ANYBLOB="140000001000010000000000e80000000000000a50000000120a09f50000000000000000020000000900020073797a3100000000080004400000000f0900010073797a3000000000080003400000000a"], 0x64}}, 0x0)

2m1.799717948s ago: executing program 3 (id=187):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1200002, &(0x7f00000001c0)=ANY=[@ANYBLOB='iocharset=cp936,quota,errors=remount-ro,errors=remount-ro,nodiscard,noquota,discard=0x00000000000005a6\x00integrity,discard=0x0000000000000009,umask=0x00000000000bfe,quota,quota,errors=remount-ro,umask=0x0000000000020046,\x00'], 0xfc, 0x61e8, &(0x7f000001e9c0)="$eJzs3c1vHGcdB/DfvvqltLV6qEqEkJuWl1KaxEkJgQJtD3Dg0gPKFSVy3SoiBZQElFYWceULB078BSAkjghxRBz4A3rgyo0TJyLZSKCeGDT288TjzW7t1PHO2s/nIzkzv3lmvc/4u7MvmZl9AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACI73/vByudiLj287RgKeIz0YvoRizU9XJELCwv5fX7EfFc7DTHsxExmIuob7/zz9MRr0bER09FbG2vr9aLLx6yH9/9499/98Mn3vrbHwbn//unO73XJq139+6v/vPne0fbZgAAAChNVVVVJ33MP5M+33fb7hQAMBX59b9K8vJTX//6n2/9ZZb6o1ar1Wr1FOqmarx7zSIiNpq3qd8zOBwPACfMRnzcdhdokfyL1o+IJ9ruBDDTOm13gGOxtb2+2kn5dpqvB8u77flckH35b3QeXN8xaXqQ0XNMpvX42oxePDOhPwtT6sMsyfl3R/O/tts+TOsdd/7TMin/4e6lT8XJ+fdG8x9xevLvjs2/VDn//iPl35M/AAAAAADMsPz//0stH/+dO/qmHMonHf9dnlIfAAAAAAAAAOBxO+r4fw8Y/w8AAABmVv1Zvfabp/aWTfoutnr51U7EkyPrA4VJF8sstt0PAAAAAAAAAAAAAChJf/cc3qudiEFEPLm4WFVV/dM0Wj+qo97+pCt9+6FkbT/JAwDAro+eGrmWvxMxHxFX03f9DRYXF6tqfmGxWqwW5vL72eHcfLXQ+Fybp/WyueEh3hD3h1X9y+Ybt2s66PPyQe2jv6++r2HVO0THHpNB+mtOaG4pbABIdl+NtrwinTJV9fSkNx+wj/3/FFqKpbYfV8y+th+mAAAAwPGrqqrqpK/zPpOO+Xfb7hQAMBX59X/0uMCR6u6E9ojH8/vVarVarVZ/qrqpGu9es4iIjeZt6vcMhuMHgBNmIz5uuwu0SP5F60fEc213AphpnbY7wLHY2l5f7aR8O83XgzS+ez4XZF/+G52d2+Xbj5seZPQck2k9vjajF89M6M+zU+rDLMn5d0fzv7bbPkzrHXf+0zIp/+HOJXPlyfn3RvMfcXry747Nv1Q5//4j5d+TPwAAAAAAzLD8//9Ljv/mTQYAAAAAAACAE2dre301X/eaj/9/bsx6rv88nXL+nUfNfyHNy/9Ey/l3R/L/8sh6vcb8/Tf39v9/b6+v/v7Ovz6bp4fNfy7PdNIjq5MeEZ10T51+mh5l6x62OegN63sadLq9fjrnpxq8EzfiZqzFhX3rdtPfY699ZV973dPBvvaL+9r7D7Vf2tc+SN87UC3k9nOxGj+Jm/H2TnvdNnfA9s8f0F4d0J7z73n+L1LOv9/4qfNfTO2dkWnt/ofdh/b75nTc/bxx4/O/vHD8m3Ogzeg92LamevvOttCfnb/JE8P42e21W+fuXr9z59ZKpMm+pRcjTR6znP9g52du7/n/hd32/Lzf3F/vfzh85PxnxWb0J+b/QmO+3t6Xpty3NuT8h+kn5/92ah+//5/k/Cfv/y+30B8AAAAAAAAAAAAAAAD4JFVV7Vwi+kZEXE7X/7R1bSYAMF359b9K8nK1Wq1Wq9Wnr26qxnu9WUTEX5u3qd8z/GLcLwMAZtn/IuIfbXeC1si/YPn7/urpi213Bpiq2+9/8KPrN2+u3brddk8AAAAAAAAAgE8rj/+53Bj/+cWIWBpZb9/4r2/G8lHH/+znmQcDjD7mgb4n2OwOe93GcOPPx8743Ocmjf99Nh4e/zuPidtrbscEgwPahwe0zx3QPj926V5aYy/0aMj5P98Y77zO/8zI8OsljP86OuZ9CXL+ZxuP5zr/L42s18y/+u3M5b9x2BU3o7sv//N33vvp+dvvf/DKjfeuv7v27tqPL62sXLh0+fKVK1fOv3Pj5tqF3X+Pp9czIOefx752HmhZcv45c/mXJef/hVTLvyw5/y+mWv5lyfnn93vyL0vOP3/2kX9Zcv4vpVr+Zcn5fyXV8i/L1vb6XJ3/y6mWf1ny/v/VVMu/LDn/V1It/7Lk/M+lWv5lyfmfT/Uh8vf18KdIzj8f4bL/lyXnv5Jq+Zcl538x1fIvS87/UqrlX5ac/6upln9Zcv5fS7X8y5Lzv5xq+Zcl5//1VMu/LDn/K6mWf1ly/t9ItfzLkvP/ZqrlX5ac/2upln9Zcv7fSrX8y5Lz/3aq5V+WnP93Ui3/suT8X0+1/Muy9/3/ZsyYMZNn2n5mAgAAAAAAAAAAAABGTeN04ra3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/7MDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzdXYxcZ30/8DPrXXvtEGIgBCd/A5vEhJCY7NpO/MKfFBPe0gClQEKhL9iud20W/IbXLoGi2jRQUmFUVFE1vWgLCLWRqoqo4oJWlOai6stVaS/oHVUlpEZVQAEVqS80W82c53k8Mzs7M2uPd8+e5/OR4t/uzDlznjnznLPz2813DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANDu1jfNfbZRFEXzv9Y/W4viBc2vN09tbd32urUeIQAAAHC1/rf173M3pBsODrFS2zJ/+4p/+Pri4uJi8f4NvzPxxcXFdMdUUUxsKorWfdFT//qBRvsywWPFZGOs7fuxAZvfMOD+8QH3Twy4f+OA+zcNuH9ywP1LdsASm8vfx7QebEfry63lLi1uLCZa9+3osdZjjU1jY/F3OS2N1jqLE8eK+eJEMVfMdCxfLttoLf/NW5vberCI2xpr29b25gz54SePxjE0wj7e0bGty48Zff+NxdSPfvjJo3907tmbe9WBu6Hj8cpx3nlbc5yfDreUY20Um9I+ieMcaxvn9h6vyYaOcTZa6zW/7h7nc0OOc8PlYa6q7td8shhrff3t1n4ab/+1XtpP28Nt/3l7URQXLw+7e5kl2yrGii0dt4xdfn0myxnZfIzmVHpxMb6ieXrrEPO0WWd3dM7T7mMivv63hvXGlxlD+8v0/U9tXPK6r3SeRs1nvdyx0j0HR32sVGUOxnnx7daTfrznHNwRnv8n71h+DvacOz3mYHrebXPwtkFzcGzjhtaY04vQaK1zeQ7u6lh+Q2tLjVZ95o7+c3D63Mkz0wsf/8Rr508eOT53fO7Unl27Zvbs3bt///7pY/Mn5mbKf69wb1fflmIsHQO3hX0Xj4FXdy3bPlUXvzy643Cyz3G4tWvZUR+H491PrrE6B+TSOV0eGw83d/rkpbFimWOs9frcdfXHYXrebcfheNtx2PNnSo/jcHyI47C5zJm7hnvPMt72X68xXKufBVvb5mD3+5HuOTjq9yNVmYOTrXnxP4ul3j8LtofxPr5zpe9HNiyZg+nphnNP85b0fn9yf6v0mpe3NO+4bmNxfmHu7D2PHjl37uyuIpRV8ZK2udI9X7e0PadiyXwdW/F8PTj/isdv6XH71rCvJl/b/Gdy2dequcy99/R/rVo/3Xrvz45bdxehjNhq789eP82b+zP1kn32Z3OZT09f/Xvx1Je2nX8nljn/xr7/+XJ76aEe2zAxXh6/G9Lemeg4H3e+VOOtc1ejte3npoc7H0+E/1b7fHxjn/Pxtq5lR30+nuh+cvF83Bj0246r0/16ToZ5cmJm+ffm28PvOLbtXumcHO97Pr491EbY/68JnULqi9rmznLzNm1rfHwiPK/xuIXOebqnY/mJ0Js1t/Xk7iubp3feXj7WhvTsLluteTrVteyo52k6Xy03TxuDfvt2Zbpfz8kwL27c03+eNpd5+t6rP3dujl+2nTs3DpqDExs2Nsc8kSZheb5f3Bzn4D3F0eJ0caKYbd27sTWfGq1t7bxvuDm4Mfy32ufKbX3m4J1dy456DqafY8vNvcb40ic/At2v52SYF0/c138ONpd5877Rvne9M9ySlml779r9+7Xlfud1S9duupa/82qO86/39f/dbHOZE/tX2mf23093h1uu67Gfuo/f5Y6p2WJ19tO2MM5n9y+/n5rjaS7zxQNDzqeDRVFc+OgDrd/3hr+v/Nn573y94+8uvf6mc+GjD/zg+mN/s5LxA7D+PV+WLeXPura/TA3z938AAABgXYh9/1ioif4fAAAAaiP2/fH/Ck/0/wAAAFAbse8fDzXJpP/f9uZn55+/UKRkfviAkpSZS7vhoXK5mHGdCd9PLV7WvP2Br879+C8uDLftsaIofvLQr/ZcfttDcVylqTDOp97SefvSFS8Mtf3Dj1xerj2//qXw+PH5DDsNekVwZ4qi+OYNn29tZ+oDl1r16YcOt+p7Lj7+WHOZ5w6U38f1n3lJufzvh/DvwWNHOtZ/JuyH74U68/be+yOu97VLr9m+732XtxfXa9z2wtbTfuKD5ePGz8n5wmPl8nE/Lzf+v/zck19rLv/oq3qP/8JY7/E/GR73q6H+18vL5dtfg+b3cb3PhPHH7cX17vnKt3qO/6nPlsufeWu53OFQ4/bvDN/veOuz8+3769HGkY7nVbytXC5uf+Y7v9W6Pz5efPzu8U8eutSxP7rnx9P/VD7OdNfy8fa4nejPu7bffJz2+Rm3/+RvHO7Yz4O2/9R7nnl583G7t39313Ibutbv/sSmP/jM53tuL47n4J+e6Xg+B98djuOw/Sc+GOZjuP+/n/p8x3ajw+/uPP/E5b+09ULH84ke/FG5/afecLxV/23qx7933Quuf+HFVzb3XVF8+73l4w3a/vE/PN0x/i/fdFfr9Yj3x4x+9/aXE7d/9mM7T51eOD8/27ZXW5+d845yPJsmN29pjveGcG7t/v7Q6XMfmjs7NTM1UxRT9f0IvSv2lVB/UJaLK13/rkfC63nL735zyx3/+Ll4+z8/XN5+6e3lz61Xh+W+EG7fWr5+i42r3P4Tt97UOr4bT5ffd+TYR2D7jn/fP9SC4fl3vy+I8/3MSz/U2g/N+1o/N+JxfZXj/+5s+TjfCPt1MXwy8203Xd5e+/LxsxEuvbc83q96/4XTXHxd/zi83u/8Xvn4cVzx+X43vI/51rbO812cH9+4MNb9+K1P8bgYzifFxfL+uFTc35eeu6nn8OLnkBQXb259/9vpcW5e0dNczsLHF6ZPzJ86/+j0ubmFc9MLH//EoZOnz586d6j1WZ6HPjxo/cvnpy2t89Ps3N57i5nNRVGcLmZW4YR1bcbf/Gq48Z955Ojsvpk7ZueOHTl/7NwjZ+bOHj+6sHB0bnbhjiPHjs19bND687P379p9YM++3TuPz8/ev//AgT0Hds6fOt0cRjmoAfbOfGTnqbOHWqss3H/vgV333XfvzM6Tp2fn7t83M7Pz/KD1Wz+bdjbX/pWdZ+dOHDk3f3Ju58L8J+bu33Vg797dAz8N8OSZYwtT02fPn5o+vzB3drp8LlPnWjc3f/YNWp96WviX8v1st0b5QXzFu+7emz6ftemrn1r2ocpFuj5A9NnwWTR//6Iz+4f5Pvb9E6EmmfT/AAAAkIPY928MNdH/AwAAQG3Evn9TqIn+HwAAAGoj9v2ToSaZ9P/y/6uU/99aFMW6zv+X98v/55X/P/PRMldaufx/SFQPm/+P+Xn5/zyscf7/qrcv/y//X7/8//D5+fU+fvl/+X+Wqlr+P/b9m4siy/4fAAAAchD7/i2hJvp/AAAAqI3Y918XaqL/BwAAgNqIff8LQk0y6f/l/4fK/+8eFLhy/f/O8cv/954f8v9rcP3/+OLI/2djxfn79z3c8a38fyD/L/8v/y//L//PVZtY9p61yv/Hvv/6UJNM+n8AAADIQez7Xxhqov8HAACA2oh9/w2hJvp/AAAAqI3Y928NNcmk/5f/X6Xr/8v/y//L/69N/v9qr//fNhj5//XB9f/7k/8f4Irz/5Py/+sx/z8x2vFXO/8/cPjy/1wTVbv+f+z7XxRqkkn/DwAAADmIff+LQ030/wAAAFAbse9/SaiJ/h8AAABqI/b9N4aaZNL/y//L/8v/y//L//fe/uDr/5dfyf9Xi/x/f/L/A7j+f175/xGPv9r5/1Ff/3/iLd3ry//TS9Xy/7Hvf2moSSb9PwAAAOQg9v03hZro/wEAAKA2Yt//slAT/T8AAADURuz7t4WaZNL/y//L/8v/y//L//fe/uD8f0n+v1rk//uT/x9A/l/+X/5/uPx/jze/8v/0UrX8f+z7bw41yaT/BwAAgBzEvv+WUBP9PwAAANRG7Pv/X6iJ/h8AAABqI/b920NNMun/5f/l/+X/88r/371R/l/+v97k//uT/x9A/l/+X/5/yOv/L7WS/P+mQQ9GbVQt/x/7/peHmmTS/wMAAEAOYt//ilAT/T8AAADURuz7Xxlqov8HAACA2oh9/1SoSSb9v/x/vfL/f/JXT7yykP+X/x+w/Zrm/+M0KB780eGYHJP/z5D8f3/y/8v4tVDl/+X/5f9XJf9PPqqW/499/62hJpn0/wAAAJCD2PffFmqi/wcAAIDaiH3/7aEm+n8AAACojdj37wg1yaT/l/+vV/4/kv+X/++3/Zrm/xPX/8+b/H8PbQep/P8A8v/y/9nn/+O7X/l/RqNq+f/Y978q1CST/h8AAADWs9f/5nDLxb7/jlAT/T8AAADURuz7Xx1qov8HAACA2oh9/52hJpn0//L/8v/y//L/8v+9ty//vz7J//e30vz/Rvl/+X/5/8zy/67/z2hVLf8f+/7XhJpk0v8DAABADmLff1eoif4fAAAAaiP+/5vl//eq/wcAAIA6in3/zlCTTPp/+X/5/5zy/w35f/l/+f/ak//vz/X/B5D/l/+X/5f/Z6Sqlv+Pff9rQ00y6f8BAAAgB7HvvyfURP8PAAAAtRH7/ulQE/0/AAAA1Ebs+2dCTTLp/+X/5f9zyv+7/r/8f9Xy/5vDffL/oyP/3192+f8x+f+VWOv8/HoffyXz/0Uh/8+aqlr+P/b9u0JNMun/AQAAIAex798daqL/BwAAgNqIff+eUBP9PwAAANRG7PvvDTXJpP+X/x9Z/n9T92355v8n5f+Xzo8W+X/5f9f/v/bk//vLLv/v+v8rstb5+fU+/u78/3VVyP+7/j9rrGr5/9j33xdqkkn/DwAAADmIff/eUBP9PwAAANRG7Pv3hZqE/r/Xdd0AAACA9SX2/ftDTTL5+7/8f02u///rf9exbdf/l//vt/3R5P83y/+HKv9fLTXN/3cfFldM/n8A+X/5/7pd/1/+nzVWtfx/7PsPhJpk0v8DAABADmLf/7pQE/0/AAAA1Ebs+/9/qIn+HwAAAGoj9v2vDzXJpP+X/69J/r+L/L/8f7/tu/6//H+d1TT/PzK1yv+PZZL/33T5S/n/ao9f/l/+n6Wuff4/fjVc/j/2/feHmmTS/wMAAEAOYt//U6Em+n8AAACojdj3vyHURP8PAAAAtRH7/oOhJpn0//L/8v/y//L/1yb//4aiWxXz/83JI/9fL/L//dUq/+/6//L/FRu//L/8P0tV7fr/se9/Y6hJJv0/AAAA5CD2/Q+Emuj/AQAAoDZi3/+mUBP9PwAAANRG7PvfHGqSSf8v/y//L/8v/+/6/723L/+/Psn/9yf/P4D8v/y//L/8PyNVtfx/7PvfEmqSSf8PAAAAOYh9/1tDTfT/AAAAUBux739bqIn+HwAAAGoj9v0Phppk0v/3yv+3Z3nl/4cj/985fvn/3vND/l/+X/7/2pP/70/+fwD5f/l/+X/5f0aqavn/2Pf/dKhJJv0/AAAA5CD2/Q+Fmuj/AQAAoDZi3//2UBP9PwAAANRG7PvfEWqSSf/v+v/y//L/8v8Vyv9PFj3I/8v/r4T8f3/y/wPI/8v/y//L/zNSVcv/x77/naEmmfT/AAAAkIPY9/9MqIn+HwAAAGoj9v3vCjXR/wMAAEBtxL7/Z0NNMun/5f/l/6uV/1+80L6e/H92+f9rd/3/5kry/1mQ/+9P/n+AHvn/TfL/8v/y//L/XLGq5f9j3//uUJNM+n8AAADIQez73xNqov8HAACA2oh9/3tDTfT/AAAAUBux73841CST/l/+P8v8f3rK1cv/u/6//P81yv9fo+v/h9de/r9C5P/7k/8fwPX/5f/l/+X/Gamq5f9j3/9IqEkm/T8AAADkIPb97ws10f8DAABAbcS+/+dCTfT/AAAAUBux739/qEkm/b/8f5b5/wpf/79u+f/xjvmRU/5/su31TPOyhvn/wvX/K0f+vz/5/wHk/+X/q5z/D7N58zLry/9TRVXL/8e+/wOhJpn0/wAAAJCD2Pf/fKiJ/h8AAABqI/b9vxBqov8HAACA2oh9/y+GmmTS/8v/y//L/7v+v+v/996+/P/6JP/fn/z/APL/8v9Vzv8PIP9PFVUt/x/7/l8KNVm28fvBfwzxNAEAAIAKiX3/B0NNMvn7PwAAAOQg9v2HQk30/wAAAFAbse8/HGqSSf8v/9+d/49XVJX/l/+X/5f/l/9fj0aX/3/Z9UUh/y//L/8v/y//L//P1aha/j/2/UdCTSfgTPp/AAAAyEHs+3851ET/DwAAALUR+/6joSb6fwAAAKiN2PfPhppk0v+vYf5/opr5f9f/v9L8/0/k/+X/A/n/3uT/V4fr//cn/z+A/L/8v/y//D8jVbX8f+z750JNMun/AQAAoMbSr4Nj338s1ET/DwAAALUR+/7joSb6fwAAAKiN2Pd/KNQkk/7f9f/l/13/fy3y/+Mdy8v/l+T/5f9HQf6/P/n/AeT/5f/l/+X/Gamq5f9j3z8fapJJ/w8AAAA5iH3/h0NN9P8AAABQG7Hv/0ioif4fAAAAKm3TCpaNff+JUJNM+n/5f/n/3PP/jaK46Pr/8v+9ti//vz7J//cn/z+A/L/8v/y//D8jVbX8f+z7T4aaZNL/83/s3UeTXVfVx+GLkBWoovCQIWNGDGFkBnwApsyoYkw2OcgmZzA5B5NzzsnkDCZnMDmZaKKhSpS711rqVt8+p6U+un3O3s8zWa9cEn2FGt76o/rVBgAAoAe5++8Tt9j/AAAA0Izc/feNW+x/AAAAaEbu/vvFLZ3sf/2//r/3/n91JO//7/75+v9t+n/9/xT29PfH1/+8/aLwffv/O935ynvq//X/+v9B+n/9v/6f882t/8/df/+4pZP9DwAAAD3I3f+AuMX+BwAAgGbk7n9g3GL/AwAAQDNy918Zt3Sy//X/+n/9v/5/V/9/nf5f/79s3v8fpv8fof/X/+v/9f9Mam79f+7+B8Utnex/AAAA6EHu/gfHLfY/AAAANCN3/0PiFvsfAAAAmpG7/6FxSyf7X/+v/9f/L6X/P+H9//N+P/p//f86+v9h+v8R+n/9v/5f/8+k5tb/5+5/WNzSyf4HAACAHuTuf3jcYv8DAABAM3L3PyJusf8BAACgGbn7Hxm3dLL/9f/6f/3/Uvr/Db3/r//X/y/ctatz/52g/99L/z9ipP9frfT/Qw7cz6//7S3n8+9D/6//Z6+59f+5+x8Vt9x1tTpxsb9JAAAAYFZy9z86bunk7/8BAACgB7n7z8Qt9j8AAAA0I3f/VXFLJ/tf/6//1//r//X/67++/n+ZvP8/7PD9/x0vv/e9+u3/vf8/zPv/U/f/t3xn6P9Ztrn1/7n7r45bOtn/AAAA0IPc/Y+JW+x/AAAAaEbu/sfGLfY/AAAANCN3/+Pilk72v/6/tf7/1rt+3Y7+f6t20f/r//X/+v/W6f+Hef9/xNZ/zZ2uH+r/9f/e/9f/czhz6/9z9z8+bulk/wMAAEAPcvc/IW6x/wEAAKAZufufGLfY/wAAANCM3P1Pils62f/6/9b6/92/zvv/+v91X1//r/9vmf5/mP5/RCvv/1/kd81R9/OHddSfX/+v/2evufX/ufufHLd0sv8BAACgB7n7nxK32P8AAADQjNz9T41b7H8AAABoRu7+p8Utnex//b/+fxn9f34F/b/+f33/f3zHzz9s/5/0/8uk/x+m/x/RSv9/kY66n1/659f/6//Za279f+7+p8ctnex/AAAA6EHu/mfELfY/AAAANCN3/zPjFvsfAAAAmpG7/1lxSyf7X/+v/19G/+/9f/2/9//1/wej/x+m/x+h/9f/6//1/0xqbv1/7v5r4pZO9j8AAAD0IHf/s+MW+x8AAACakbv/OXGL/Q8AAADNyN3/3Lilk/2v/9f/6//1//r/9V9f/79M+v9h+v8R+n/9v/5f/8+kZtT/7/hVp1bPi1s62f8AAADQg9z9z49b7H8AAABoRu7+F8Qt9j8AAAA0I3f/C+OWTva//n82/f9WztdW/396tVrp/1ed9v+nd/x51vel/l//vwGb7f/jD+WM/l//r/9f6f/1//p/1phR/7/149z9L4pbOtn/AAAA0IPc/S+OW+x/AAAAaEbu/pfELfY/AAAANCN3/0vjlk72v/5/Nv3/lrb6f+//n//90VP/7/3/vfT/m+H9/2H6/xH6f/2//l//z6Tm1v/n7n9Z3HTisov+LQIAAAAzk7v/5XFLJ3//DwAAAD3I3f+KuMX+BwAAgIW6Zs8/yd3/yrilk/2v/5+2/z+x45/p//X/539/6P/1//r/S0//P0z/P0L/r//X/+v/mdTc+v/c/a+KWzrZ/wAAANCD3P3Xxi32PwAAADQjd/+r4xb7HwAAAJqRu/81cUsn+1//7/1//b/+X/+//uvr/5dJ/z/skvX/l+v/9f/6/wn6/5Pn/k/9P224gP7/7NmzZy55/5+7/7VxSyf7HwAAAHqQu/91cYv9DwAAAM3I3f/6uMX+BwAAgGbk7n9D3NLJ/tf/d9r/57f6svr/q1Yr/b/+X/+v/x+m/x/m/f8R+n/9v/f/9f9Mam7v/+fuf2Pc0sn+BwAAgB7k7n9T3GL/AwAAQDNy9785brH/AQAAoBm5+98St3Sy//X/nfb/3v/X/+v/N93/37zS/2/EIvr/0/t//bn3/1fr//X/A7rr/+9+l10/1P/r/9lr3/5/e35uvP/P3f/WuKWT/Q8AAAA9yN3/trjF/gcAAIBm5O5/e9xi/wMAAEAzcve/I2463sn+1//r//X/+n/9//qvv+H3/0+sViv9/wQW0f8PmHv/P837/+f/p/wc/b/+f8mfX/+v/2evub3/n7v/nXFLJ/sfAAAAepC7/11xi/0PAAAAzcjd/+64xf4HAACAZuTuf0/c0sn+1//r//X/h+z/T5z719H/b5td/3/1Ivp/7/9PRP8/bB79//70//r/JX9+/b/+n4M7qv4/d/9745ZO9j8AAAD0IHf/++IW+x8AAACakbv//XGL/Q8AAADNyN3/gbilk/2v/9f/X0j/n59T/9/W+/8nZ9f/n9r1rzfH9/+v1//Plv5/mP5/hP5f/6//v0b/z5Tm9v5/7v4Pxi2d7H8AAADoQe7+D8Wt/+nW/gcAAIBm5O7/cNxi/wMAAEAzcvd/JG7pZP/r//X/3v/X/zf//v8l6P9X+v/Z0v8P0/+P0P/r//X/3v9nUnPr/3P3fzRu6WT/AwAAQA9y938sbrH/AQAAoBm5+z8et9j/AAAA0Izc/dfFLZ3sf/2//l//r//X/2//Ger/26D/H7aZ/v+0/l//X/38reI/Bfp//f/Yr6dNc+v/c/d/Im7pZP8DAABAD3L3fzJusf8BAACgGbn7PxW32P8AAACwSMfX/LPc/Z+OWzrZ//p//b/+X/+v/1//9fX/y3Qk/X9+U+j/vf8f+un/77DrR0t7///8//+l/9f/M7259f+5+z8Tt3Sy/wEAAKAHufs/G7fY/wAAANCM3P2fi1vsfwAAAGhG7v7Pxy2d7H/9v/5f/6//1/+v//r6/2Xy/v8w/f8I/f+Rvp+/9M+v/9f/s9fc+v/c/V+IWzrZ/wAAANCD3P1fjFvsfwAAAGhG7v4vxS32PwAAADRja/dnXNbh/tf/6//1//p//f/6r6//Xyb9/zD9/wj9v/5f/6//Z1Jz6/+/vPWrTq2+Erd0sv8BAACgB7n7vxq37LP/rzu2kY8FAAAATCh3/9fiFn//DwAAAM3I3X993NLJ/tf/6/+X0f+fPXv2jP5f/7/793Ou/79B/0/R/w/T/4/Q/+v/9f/6fyY1t/4/d//X45ZO9j8AAAD0IHf/N+IW+x8AAACakbv/m3GL/Q8AAADNyN3/rbilk/2v/59B/39K/+/9f/3/yvv/+v+J6P+H6f9HtNj/nzr4b/+o+/nDOurPr//X/7PX3Pr/3P3fjls62f8AAADQg9z934lb7H8AAABoRu7+78Yt9j8AAAA0I3f/9+KWTva//n9z/f8t/9718v7/6dX6z6//1//r//X/l5r+f5j+f0SL/f8FOOp+fumfX/+v/2evufX/ufu/H7fsHn6XXdjvEgAAAJiT3P0/iFs6+ft/AAAA6EHu/h/GLfY/AAAANCN3/4/ilk72v/5/Bu//N9j/e/9//feH/n/W/f8x/X8b9P/D9P8j9P/6f/3/RP1/fjfr/3s3t/4/d/+P45ZO9j8AAAD0IHf/T+IW+x8AAACakbv/p3GL/Q8AAADNyN1/Q9yyY/+va7tbof+ff/9/Sv+v/9f/e/9f/39g+v9hB+3/T64O1/8n/b/+X//fa//v/X+2za3/z93/s7jF3/8DAADA4ly2zz/P3f/zuMX+BwAAgGbk7v9F3GL/AwAAQDNy9/8ybrnp2FF9pI3S/8+///f+v/5f/6//1/8fnP5/mPf/R+j/p+jnr9D/t9H/r1b6fw5vbv1/7v5fxS3+/h8AAACakbv/13GL/Q8AAADNyN3/m7jF/gcAAIBm5O7/bdzSyf7X/+v/D9n/b6WZ+v9t+v9t+v/19P+bof8fpv8fof/3/r/+3/v/TGpu/X/u/t/FLZ3sfwAAAOhB7v7fxy32PwAAADQjd/8f4hb7HwAAAJqRu//GuKWT/X/7u914fOePN9b/x7/V+v/F9//e/9f/6//1/7Oi/x+m/x+h/9f/6//1/0xqbv1/7v4/xi2d7H8AAADoQe7+P8Ut9j8AAAA0I3f/n+MW+x8AAACakbv/L3FLJ/vf+//6f/2//l//v/7r6/+XSf8/TP+/Xv1B6f/1//p//T+Tmlv/n7v/r3FLJ/sfAAAAepC7/29xi/0PAAAAzcjdf1PcYv8DAABAM3L3/z1u6WT/6//1//p//b/+f/3X1/8vk/5/2FH2//e43fiX9f7/kff/+RH0//p//T+TmFv/n7v/H3FLJ/sfAAAAepC7/59xi/0PAAAAzcjd/6+4xf4HAACAZuTu/3fc0sn+H+n/T9ZP1P8P0v/v/vz6//XfH/p//b/+/9LT/w/z/v8I/b/3/w/y+W+7/tfr//X/7DVp/3/s8P1/7v7/xC2d7H8AAADoQe7+m+Om29j/AAAA0Izc/f+NW+x/AAAAaEbu/v/FLZ3sf+//L6n/v0L/r//X/+v/9f8j9P/D9P8j9P/6f+//6/+Z1Nze/8/d//8AAAD///HlUV0=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20400, 0x38)
getdents64(r0, 0x0, 0x0)

2m0.592013838s ago: executing program 3 (id=190):
r0 = socket$inet(0x2, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x12, 0x0, 0x0, 0xe000, 0x2}}}}}, 0x0)

1m59.614690015s ago: executing program 3 (id=197):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x128, 0x0, &(0x7f0000000cc0)="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", 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffff6}, 0x4c)
r0 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x2)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85)

1m59.005065551s ago: executing program 32 (id=197):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x128, 0x0, &(0x7f0000000cc0)="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", 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffff6}, 0x4c)
r0 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x2)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85)

6.098265624s ago: executing program 4 (id=980):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000400)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xffffffff}, 0x1c, &(0x7f0000000700)=[{&(0x7f0000000440)="87", 0x1}], 0x1}}, {{&(0x7f0000000080)={0xa, 0x4e22, 0x4, @dev={0xfe, 0x80, '\x00', 0xa}, 0xa}, 0x1c, &(0x7f0000000280)=[{&(0x7f00000022c0)='t', 0x1}], 0x1}}], 0x2, 0x48081)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000200)={0x0, 0x7f}, 0x8)

5.873768638s ago: executing program 4 (id=983):
syz_mount_image$ocfs2(&(0x7f00000026c0), &(0x7f0000004780)='./file0\x00', 0x200000, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1, 0x4703, &(0x7f0000004800)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xcc48, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.stat\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)

4.015612346s ago: executing program 0 (id=994):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
recvmsg(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000000040011018701546fabca1b4e7d06a6bd7c493872f750375ed08a562af5745e17b8c119418f0f000000d6e74703c48f93b8", 0x48}], 0x1}, 0x0)

3.956270339s ago: executing program 4 (id=995):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x8042, 0x0)
pwrite64(r0, &(0x7f00000003c0)="0e8553a7101f", 0x6, 0x8080c61)
fallocate(r0, 0x3, 0x80007, 0x8000c60)

3.751510121s ago: executing program 0 (id=997):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r0, 0x0, 0x52, 0x884ae4a8fc7b4ada, &(0x7f0000e68000)={0x2, 0x4e24, @local}, 0x10)
shutdown(r0, 0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0)

3.514185305s ago: executing program 0 (id=1000):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
flock(0xffffffffffffffff, 0x8)

3.404006111s ago: executing program 1 (id=1001):
r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0x13)
tkill(r0, 0x12)
wait4(0x0, 0x0, 0xe000000b, 0x0)

3.372528843s ago: executing program 2 (id=1002):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000003740)=""/102394, 0x18ffa}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r0, 0x0)

3.183540304s ago: executing program 1 (id=1003):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r1, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010026bd7000fedbdf250c00000008000300", @ANYRES32=r2, @ANYBLOB="0c0050800500020017"], 0x28}, 0x1, 0x0, 0x0, 0x818}, 0x4000)

2.9178336s ago: executing program 2 (id=1004):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x34, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='n'}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}]]}, 0x34}}, 0x4800)

2.783798608s ago: executing program 1 (id=1005):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

2.724554821s ago: executing program 2 (id=1006):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4048aecb, &(0x7f00000006c0)={0x3, 0x0, [{0x0, 0x6}, {0x5e2796afef1a2f31, 0xffffffff, 0x0, 0x9, 0x0, 0x80000001, 0x8}, {0x80000001, 0xffffffff, 0x7, 0x8, 0x5, 0x110, 0x3}]})

2.625422317s ago: executing program 1 (id=1007):
syz_mount_image$btrfs(&(0x7f00000004c0), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000000180)={[{@clear_cache}, {@user_subvol_rm}, {@nodiscard}, {@noautodefrag}, {@autodefrag}, {@ssd}, {@max_inline={'max_inline', 0x3d, [0x7, 0x32, 0x38, 0x2d, 0x35, 0x36, 0x78, 0x2d, 0x2d, 0x37]}}, {@space_cache}]}, 0x0, 0x559e, &(0x7f00000103c0)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file2\x00', 0x4042, 0x0)
ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000200)={0xc, 0xf9, 0x1, 0x0, 0x0, [{{r0}, 0x200}]})

2.603419798s ago: executing program 4 (id=1008):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x34, r1, 0xb97534d5fe9704cf, 0x0, 0xfffffffc, {{0x12}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x4}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x3}]}, 0x34}}, 0x0)

2.455628607s ago: executing program 0 (id=1009):
unshare(0x2a020400)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{}, {0x27}}, [@printk={@p, {}, {0x5, 0x1, 0xb, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x40007}, {0x56}}], {{0x4, 0x1, 0x2, 0x3}, {0x5, 0x0, 0xb, 0x3}, {0x85, 0x0, 0x0, 0x76}}}, &(0x7f0000001000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000080)={r1, r0}, 0xc)

2.346308423s ago: executing program 2 (id=1010):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000021c0)=0x1, 0x4)
setsockopt(r0, 0x1, 0x10000000000009, &(0x7f0000000100)="0100ddff", 0x507b420f2d51f971)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e1d, 0x80000003, @dev={0xfe, 0x80, '\x00', 0x17}, 0x2}, 0x1c)

2.295795966s ago: executing program 4 (id=1011):
copy_file_range(0xffffffffffffffff, &(0x7f0000000080)=0x6923, 0xffffffffffffffff, 0x0, 0x11, 0x0)
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f0000000000)={[{@barrier}]}, 0x0, 0x236, &(0x7f0000000540)="$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")
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x5, 0x7, 0x6, 0x1e11, 0xa26, 0xe})

2.140316435s ago: executing program 0 (id=1012):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2.092089478s ago: executing program 2 (id=1013):
syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x143a02)
r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000007c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="1a", 0x1}, {0x0}], 0x2})
io_uring_enter(r0, 0x4d10, 0x2, 0x4, 0x0, 0x0)

1.850902002s ago: executing program 4 (id=1014):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000100)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x40015b13, 0x0)

1.842201743s ago: executing program 2 (id=1015):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e71, 0x2009, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x9, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x5, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x200}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000140)='g')

1.466805655s ago: executing program 0 (id=1016):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581"], 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f0000000580)={0x2c, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0})
syz_usb_connect$printer(0x1, 0x0, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x83e}}]})
syz_usb_control_io$sierra_net(r0, 0x0, &(0x7f0000000600)={0x1c, &(0x7f00000000c0)=ANY=[], 0x0, 0x0})

1.145833573s ago: executing program 1 (id=1017):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000280)="f5", 0x1)
listen(r0, 0xe)
accept4(r0, 0x0, 0x0, 0x800)

0s ago: executing program 1 (id=1018):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x18ba00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000000)={0x1, 0x0, [{0x298}]})

kernel console output (not intermixed with test programs):

1: entered allmulticast mode
[  125.907144][ T6400] bridge_slave_1: entered promiscuous mode
[  126.046787][ T6400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  126.077066][ T6400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  126.176509][ T6400] team0: Port device team_slave_0 added
[  126.214951][ T6400] team0: Port device team_slave_1 added
[  126.258949][ T6400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  126.266880][ T6400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.292815][    C0] vkms_vblank_simulate: vblank timer overrun
[  126.299496][ T5152] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  126.308817][ T6400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.324118][ T6400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.331869][ T6400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.357972][    C0] vkms_vblank_simulate: vblank timer overrun
[  126.416340][ T6400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.485176][ T6491] loop2: detected capacity change from 0 to 1024
[  126.495301][ T5152] usb 2-1: Using ep0 maxpacket: 8
[  126.525170][ T5152] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  126.570014][ T5152] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  126.620101][ T5152] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  126.673217][ T6400] hsr_slave_0: entered promiscuous mode
[  126.680693][ T5152] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  126.699396][ T6491] hfsplus: bad catalog entry type
[  126.711145][ T6400] hsr_slave_1: entered promiscuous mode
[  126.720439][ T5152] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  126.750681][ T5152] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.791389][   T11] hfsplus: b-tree write err: -5, ino 4
[  126.845882][ T5774] Bluetooth: hci2: command tx timeout
[  127.032179][ T5152] usb 2-1: GET_CAPABILITIES returned 0
[  127.043414][ T6502] loop0: detected capacity change from 0 to 512
[  127.055460][ T5152] usbtmc 2-1:16.0: can't read capabilities
[  127.311224][    T8] usb 2-1: USB disconnect, device number 4
[  127.596965][ T6400] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  127.613825][ T6400] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  127.664603][ T6400] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  127.701695][ T6400] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  128.041242][ T6400] 8021q: adding VLAN 0 to HW filter on device bond0
[  128.114349][ T6532] netlink: 16 bytes leftover after parsing attributes in process `syz.0.239'.
[  128.146665][ T6400] 8021q: adding VLAN 0 to HW filter on device team0
[  128.182296][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.190604][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.231675][ T1003] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.238942][ T1003] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.927920][ T5774] Bluetooth: hci2: command tx timeout
[  128.988640][ T6558] loop0: detected capacity change from 0 to 512
[  129.091092][ T6400] 8021q: adding VLAN 0 to HW filter on device batadv0
[  129.648262][ T6577] capability: warning: `syz.1.251' uses deprecated v2 capabilities in a way that may be insecure
[  129.893694][ T6584] loop0: detected capacity change from 0 to 128
[  129.970603][ T6584] FAT-fs (loop0): Directory bread(block 414) failed
[  130.003909][ T6584] FAT-fs (loop0): Directory bread(block 415) failed
[  130.033966][ T6584] FAT-fs (loop0): Directory bread(block 416) failed
[  130.060590][ T6584] FAT-fs (loop0): Directory bread(block 417) failed
[  130.096030][ T6584] FAT-fs (loop0): Directory bread(block 418) failed
[  130.103646][ T6584] FAT-fs (loop0): Directory bread(block 419) failed
[  130.162706][ T6584] FAT-fs (loop0): Directory bread(block 420) failed
[  130.206293][ T6584] FAT-fs (loop0): Directory bread(block 421) failed
[  130.278826][ T6400] veth0_vlan: entered promiscuous mode
[  130.370025][ T6400] veth1_vlan: entered promiscuous mode
[  130.380444][ T6584] FAT-fs (loop0): FAT read failed (blocknr 128)
[  130.508534][ T6400] veth0_macvtap: entered promiscuous mode
[  130.569713][ T6400] veth1_macvtap: entered promiscuous mode
[  130.648636][ T6400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.705367][ T6400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.735302][ T6400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.755439][ T6400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.785381][ T6400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.805402][ T6400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.838157][ T6400] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.850214][ T6400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.861288][ T6400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.871426][ T6400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.882084][ T6400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.895305][ T6400] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.932181][ T5152] hid-generic 0005:4C4A:5505.0002: item fetching failed at offset 0/1
[  130.933504][ T6400] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.966260][ T5152] hid-generic: probe of 0005:4C4A:5505.0002 failed with error -22
[  131.026327][ T6400] batman_adv: batadv0: Interface activated: batadv_slave_1
[  131.109409][ T6400] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.135352][ T6400] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.166866][ T6400] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.202417][ T6400] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.233782][ T6603] loop1: detected capacity change from 0 to 1024
[  131.507294][ T1075] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.535974][ T1075] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.555430][   T27] usb 1-1: new low-speed USB device number 6 using dummy_hcd
[  131.696118][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.704054][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.759343][   T27] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  131.775422][   T27] usb 1-1: config 0 has no interface number 0
[  131.810012][   T27] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  131.831507][   T27] usb 1-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  131.865968][   T27] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  131.906818][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.938062][   T27] usb 1-1: config 0 descriptor??
[  131.964406][ T6605] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  131.999319][   T27] iowarrior 1-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  132.316747][ T6621] loop4: detected capacity change from 0 to 8192
[  132.408705][ T5864] usb 1-1: USB disconnect, device number 6
[  132.408739][    C0] iowarrior 1-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  132.634373][ T6610] loop2: detected capacity change from 0 to 32768
[  132.751072][ T6610] 
[  132.751072][ T6610]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  132.751072][ T6610] 
[  132.972116][ T5778] 
[  132.972116][ T5778]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  132.972116][ T5778] 
[  133.039614][ T5778] 
[  133.039614][ T5778]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  133.039614][ T5778] 
[  133.253422][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  133.261615][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  133.722935][ T6646] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  133.798510][ T6650] loop2: detected capacity change from 0 to 136
[  133.923706][ T6650] rock: directory entry would overflow storage
[  133.956355][ T6650] rock: sig=0x4f50, size=4, remaining=3
[  133.996128][ T6650] iso9660: Corrupted directory entry in block 2 of inode 1472
[  134.329943][ T6663] loop1: detected capacity change from 0 to 16
[  134.377813][ T6663] erofs: (device loop1): mounted with root inode @ nid 36.
[  134.947364][ T6675] loop1: detected capacity change from 0 to 4096
[  135.025913][ T6675] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  135.074332][ T6675] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[  135.189714][ T6675] ntfs: volume version 3.1.
[  135.438193][ T6675] ntfs: (device loop1): ntfs_nlstoucs(): Name using character set cp949 contains characters that cannot be converted to Unicode.
[  135.476011][ T6656] loop0: detected capacity change from 0 to 40427
[  135.492952][ T6675] ntfs: (device loop1): ntfs_lookup(): Failed to convert name to Unicode.
[  135.499943][ T6682] loop2: detected capacity change from 0 to 8192
[  135.524517][ T6656] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  135.549282][ T6656] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  135.601094][ T6682] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  135.682166][ T6656] F2FS-fs (loop0): Found nat_bits in checkpoint
[  135.729618][ T6682] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  135.741039][ T6682] REISERFS (device loop2): using journaled data mode
[  135.748106][ T6682] reiserfs: using flush barriers
[  135.797230][ T6682] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  135.862388][ T6682] REISERFS (device loop2): checking transaction log (loop2)
[  135.937389][ T6682] REISERFS (device loop2): Using r5 hash to sort names
[  135.975893][ T6682] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  135.996649][ T6656] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  136.018266][ T6656] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  136.045411][ T6682] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  136.239578][ T6682] REISERFS warning (device loop2): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  136.325050][ T6682] REISERFS warning (device loop2): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  136.368615][ T6682] REISERFS warning (device loop2): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  136.932761][ T6717] program syz.1.289 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  137.100348][ T6720] loop2: detected capacity change from 0 to 512
[  137.198134][ T6722] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  137.443251][ T6727] loop2: detected capacity change from 0 to 512
[  137.476810][ T6727] EXT4-fs: Ignoring removed oldalloc option
[  137.531880][ T6727] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (46593!=33349)
[  137.607427][ T6727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  137.827142][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.040966][ T6736] loop0: detected capacity change from 0 to 4096
[  138.066802][ T6738] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  138.073438][ T6738] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  138.109748][ T6736] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  138.150858][ T6736] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  138.182908][ T6736] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  138.210808][ T6738] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  138.233635][ T6738] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  138.268762][ T6738] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  138.281422][ T6736] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  138.319877][ T6736] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  138.370828][ T6738] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  138.382613][ T6738] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  138.392680][ T6738] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  138.403223][ T6738] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  138.413044][ T6738] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  138.423246][ T6738] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  138.473346][ T6736] ntfs: volume version 3.1.
[  138.502031][ T6736] ntfs: (device loop0): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  138.531216][ T6738] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  139.571029][ T6783] loop4: detected capacity change from 0 to 256
[  139.626067][ T6783] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.675789][ T6783] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  139.734256][ T6783] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  139.982380][ T6765] loop1: detected capacity change from 0 to 32768
[  140.045791][ T5770] Bluetooth: hci0: command 0x0c1a tx timeout
[  140.078335][ T6765] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  140.254183][ T6808] gretap0: entered promiscuous mode
[  140.262076][ T6808] netlink: 8 bytes leftover after parsing attributes in process `syz.0.314'.
[  140.272168][ T6808] gretap0: left promiscuous mode
[  140.286130][ T5770] Bluetooth: hci1: command 0x0c1a tx timeout
[  140.445788][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  140.452127][ T5770] Bluetooth: hci3: command 0x0c1a tx timeout
[  140.462115][ T6765] XFS (loop1): Ending clean mount
[  140.848033][ T5767] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  141.006006][ T5864] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  141.215347][ T5864] usb 1-1: Using ep0 maxpacket: 32
[  141.230845][ T5864] usb 1-1: New USB device found, idVendor=1039, idProduct=2120, bcdDevice= 2.a7
[  141.262216][ T5864] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.296148][ T5864] usb 1-1: Product: syz
[  141.300658][ T5864] usb 1-1: Manufacturer: syz
[  141.315863][ T5864] usb 1-1: SerialNumber: syz
[  141.336643][ T5864] usb 1-1: config 0 descriptor??
[  141.406558][ T6832] netlink: 64 bytes leftover after parsing attributes in process `syz.2.324'.
[  141.580447][ T5864] usb 1-1: [ueagle-atm] ADSL device founded vid (0X1039) pid (0X2120) Rev (0X2A7): Eagle II
[  141.664574][ T6840] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  141.872622][ T6845] netlink: 12 bytes leftover after parsing attributes in process `syz.1.329'.
[  141.953699][ T6849] mmap: syz.4.330 (6849) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  142.125597][ T5770] Bluetooth: hci0: command 0x0c1a tx timeout
[  142.155380][ T5841] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  142.280546][ T6859] team0: entered allmulticast mode
[  142.286437][ T6859] team_slave_0: entered allmulticast mode
[  142.293369][ T6859] team_slave_1: entered allmulticast mode
[  142.299726][ T5864] usb 1-1: reset high-speed USB device number 7 using dummy_hcd
[  142.340089][ T5841] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  142.355306][ T5841] usb 3-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  142.367054][ T5770] Bluetooth: hci1: command 0x0c1a tx timeout
[  142.375013][ T5841] usb 3-1: Product: syz
[  142.380225][ T5841] usb 3-1: Manufacturer: syz
[  142.386332][ T5841] usb 3-1: SerialNumber: syz
[  142.395593][ T5841] usb 3-1: config 0 descriptor??
[  142.410365][ T5841] ch341 3-1:0.0: ch341-uart converter detected
[  142.525928][ T5774] Bluetooth: hci3: command 0x0c1a tx timeout
[  142.532641][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  142.743249][ T5864] usb 1-1: [UEAGLE-ATM] interface 1 not found
[  142.760472][ T5864] ueagle-atm 1-1:0.0: usbatm_usb_probe: bind failed: -19!
[  142.980139][ T5864] usb 1-1: USB disconnect, device number 7
[  143.233980][ T5841] usb 3-1: failed to send control message: -71
[  143.252386][ T5841] ch341-uart: probe of ttyUSB0 failed with error -71
[  143.289332][ T5841] usb 3-1: USB disconnect, device number 3
[  143.301934][ T5841] ch341 3-1:0.0: device disconnected
[  143.968760][ T6899] netlink: 12 bytes leftover after parsing attributes in process `syz.2.353'.
[  144.205516][ T5770] Bluetooth: hci0: command 0x0c1a tx timeout
[  144.213020][ T5864] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  144.257451][ T6888] loop4: detected capacity change from 0 to 32768
[  144.305732][ T6888] (syz.4.348,6888,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  144.354879][ T6888] (syz.4.348,6888,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  144.415712][ T5864] usb 2-1: Using ep0 maxpacket: 32
[  144.440365][ T6888] JBD2: Ignoring recovery information on journal
[  144.446222][ T5770] Bluetooth: hci1: command 0x0c1a tx timeout
[  144.475422][ T5864] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.556843][ T5864] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  144.606710][ T5774] Bluetooth: hci3: command 0x0c1a tx timeout
[  144.612973][ T5864] usb 2-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  144.612989][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  144.663560][ T5864] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.690966][ T6888] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  144.733322][ T5864] usb 2-1: config 0 descriptor??
[  145.216157][ T5864] logitech 0003:046D:C29C.0003: unknown main item tag 0x0
[  145.223396][ T5864] logitech 0003:046D:C29C.0003: unknown main item tag 0x0
[  145.283688][ T5864] logitech 0003:046D:C29C.0003: unknown main item tag 0x0
[  145.295933][ T5864] logitech 0003:046D:C29C.0003: unknown main item tag 0x0
[  145.315595][ T5864] logitech 0003:046D:C29C.0003: unknown main item tag 0x0
[  145.322824][ T5864] logitech 0003:046D:C29C.0003: unknown main item tag 0x0
[  145.343249][ T5864] logitech 0003:046D:C29C.0003: hidraw0: USB HID vb4.30 Device [HID 046d:c29c] on usb-dummy_hcd.1-1/input0
[  145.466972][ T6400] ocfs2: Unmounting device (7,4) on (node local)
[  145.599875][ T5864] logitech 0003:046D:C29C.0003: no inputs found
[  145.644380][ T5864] usb 2-1: USB disconnect, device number 5
[  145.793117][ T6942] loop0: detected capacity change from 0 to 4096
[  146.115066][ T6949] loop4: detected capacity change from 0 to 65
[  146.165144][ T6949] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  146.183675][ T6949] BFS-fs: bfs_iget(): Unknown vtype=458754 loop4:00000002
[  146.692903][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  146.985392][ T5864] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  147.183764][ T6984] loop4: detected capacity change from 0 to 2048
[  147.205309][ T5864] usb 3-1: Using ep0 maxpacket: 16
[  147.218924][ T5864] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.269456][ T6984] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  147.281975][ T5864] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.303923][ T6984] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  147.316624][ T5864] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  147.372315][ T5864] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  147.428866][ T5864] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.456131][ T5864] usb 3-1: config 0 descriptor??
[  147.792325][ T6996] loop4: detected capacity change from 0 to 4096
[  147.811023][ T6996] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512).
[  147.916075][ T5864] microsoft 0003:045E:07DA.0004: ignoring exceeding usage max
[  147.954394][ T5864] microsoft 0003:045E:07DA.0004: unsupported Resolution Multiplier 0
[  147.981707][ T5864] microsoft 0003:045E:07DA.0004: implement() called with n (152) > 32! (kworker/1:7)
[  148.107465][ T5864] microsoft 0003:045E:07DA.0004: No inputs registered, leaving
[  148.141953][ T5864] microsoft 0003:045E:07DA.0004: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  148.164444][ T5864] microsoft 0003:045E:07DA.0004: no inputs found
[  148.174041][ T5864] microsoft 0003:045E:07DA.0004: could not initialize ff, continuing anyway
[  148.214041][ T5864] usb 3-1: USB disconnect, device number 4
[  148.271306][ T7002] netdevsim netdevsim1 netdevsim0: Unsupported IPsec algorithm
[  148.369893][ T7005] fido_id[7005]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  148.528846][ T7008] loop4: detected capacity change from 0 to 4096
[  148.557084][ T7008] __ntfs_error: 8 callbacks suppressed
[  148.557101][ T7008] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  148.635711][ T7008] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  148.678069][ T7008] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  148.705522][ T7008] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  148.722599][ T7016] loop0: detected capacity change from 0 to 256
[  148.729036][ T7008] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  148.767223][ T7008] ntfs: volume version 3.1.
[  148.821931][ T7008] ntfs: (device loop4): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  148.877409][ T7008] ntfs: (device loop4): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  148.995320][ T7008] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  149.055857][ T7008] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  149.106727][ T7008] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  149.555682][ T7033] vivid-000: disconnect
[  149.591908][ T7026] vivid-000: reconnect
[  150.134416][ T7048] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  150.144707][ T7048] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  150.159759][ T7048] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  150.166647][   T27] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  150.184272][ T7048] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  150.195469][ T5864] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  150.378147][   T27] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  150.400542][   T27] usb 2-1: config 0 has no interface number 0
[  150.417925][ T5864] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  150.436694][ T5864] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  150.448495][   T27] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  150.475292][   T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.490027][ T5864] usb 1-1: config 220 has an invalid descriptor of length 36, skipping remainder of the config
[  150.505475][   T27] usb 2-1: Product: syz
[  150.509751][   T27] usb 2-1: Manufacturer: syz
[  150.517797][ T5864] usb 1-1: config 220 has no interface number 2
[  150.524200][ T5864] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  150.548758][   T27] usb 2-1: SerialNumber: syz
[  150.564207][   T27] usb 2-1: config 0 descriptor??
[  150.570934][ T5864] usb 1-1: config 220 interface 0 has no altsetting 0
[  150.585483][ T5864] usb 1-1: config 220 interface 76 has no altsetting 0
[  150.587203][ T7060] loop2: detected capacity change from 0 to 4096
[  150.592905][ T5864] usb 1-1: config 220 interface 1 has no altsetting 0
[  150.614876][ T5864] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  150.661079][ T5864] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.681078][ T7060] ntfs: volume version 3.1.
[  150.688936][ T5864] usb 1-1: Product: syz
[  150.704624][ T5864] usb 1-1: Manufacturer: syz
[  150.719196][ T5864] usb 1-1: SerialNumber: syz
[  150.816162][   T27] usb 2-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  150.858329][   T27] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  150.899240][   T27] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  150.931210][   T27] usb 2-1: media controller created
[  150.996666][ T5864] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  151.003133][ T5864] usb 1-1: No valid video chain found.
[  151.045436][ T5864] usb 1-1: selecting invalid altsetting 0
[  151.062296][   T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  151.100006][ T5864] usb 1-1: selecting invalid altsetting 0
[  151.126153][ T5864] usbtest: probe of 1-1:220.1 failed with error -22
[  151.184113][ T5864] usb 1-1: USB disconnect, device number 8
[  151.241316][   T27] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  151.396892][   T27] usb 2-1: USB disconnect, device number 6
[  151.873813][ T7088] kvm: kvm [7087]: vcpu2, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0xffffffffffffffff
[  152.125829][ T5770] Bluetooth: hci0: command 0x0c1a tx timeout
[  152.165435][    T8] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  152.205476][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  152.211663][ T5774] Bluetooth: hci3: command 0x0c1a tx timeout
[  152.221129][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  152.284679][ T7078] loop4: detected capacity change from 0 to 32768
[  152.347542][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  152.371832][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.378861][ T7078] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  152.423351][    T8] usb 3-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  152.481081][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.543448][    T8] usb 3-1: config 0 descriptor??
[  152.556436][ T7078] XFS (loop4): Ending clean mount
[  152.579087][ T5152] XFS (loop4): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x10 
[  152.614382][ T5152] XFS (loop4): Unmount and run xfs_repair
[  152.642610][ T5152] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  152.665411][ T5152] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  152.675377][ T5814] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  152.705064][ T5152] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10  ................
[  152.731433][ T5152] 00000020: d7 dc 42 4e 79 90 42 cb 9f 91 9c b7 20 0a 10 1d  ..BNy.B..... ...
[  152.763578][ T5152] 00000030: 00 00 00 00 0f 8d d2 a2 00 00 18 00 00 00 40 37  ..............@7
[  152.791076][ T5152] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  152.802095][ T5152] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  152.817681][ T5152] 00000060: 00 00 00 00 00 f0 00 00 00 00 00 00 00 00 00 00  ................
[  152.831547][ T5152] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  152.855791][ T7078] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x10 len 4 error 74
[  152.877514][ T5814] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  152.892174][ T7078] XFS (loop4): Failed to initialize disk quotas.
[  152.899057][ T5814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.918090][ T5814] usb 2-1: config 0 descriptor??
[  152.952431][ T5814] cp210x 2-1:0.0: cp210x converter detected
[  153.022589][    T8] isku 0003:1E7D:319C.0005: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.2-1/input0
[  153.297821][ T6400] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  153.519469][    T8] usb 3-1: USB disconnect, device number 5
[  153.558045][ T7100] loop0: detected capacity change from 0 to 32768
[  153.610408][ T7100] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  153.635871][ T5814] cp210x 2-1:0.0: failed to get vendor val 0x000e size 678: -71
[  153.643884][ T5814] cp210x 2-1:0.0: GPIO initialisation failed: -71
[  153.703850][ T5814] usb 2-1: cp210x converter now attached to ttyUSB0
[  153.764329][ T7100] XFS (loop0): Ending clean mount
[  153.783348][ T5814] usb 2-1: USB disconnect, device number 7
[  153.820209][ T5814] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  153.847999][ T7100] XFS (loop0): Quotacheck needed: Please wait.
[  153.921989][ T5814] cp210x 2-1:0.0: device disconnected
[  153.998823][ T7100] XFS (loop0): Quotacheck: Done.
[  154.066308][ T7100] XFS (loop0): User initiated shutdown received.
[  154.073219][ T7100] XFS (loop0): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:501).  Shutting down filesystem.
[  154.106305][ T7100] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  154.222893][ T5772] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  154.499534][ T7148] loop1: detected capacity change from 0 to 1024
[  154.732286][ T7148] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 2: comm syz.1.431: lblock 2 mapped to illegal pblock 2 (length 1)
[  154.747353][ T7153] program syz.2.432 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  154.856284][ T7148] __quota_error: 18 callbacks suppressed
[  154.856302][ T7148] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  154.911722][ T7148] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.431: lblock 0 mapped to illegal pblock 48 (length 1)
[  154.959260][ T7148] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  155.008922][ T7148] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.431: Failed to acquire dquot type 0
[  155.060668][ T7148] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  155.075539][ T7168] loop4: detected capacity change from 0 to 256
[  155.091270][ T7148] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.431: mark_inode_dirty error
[  155.164247][ T7168] FAT-fs (loop4): Directory bread(block 64) failed
[  155.173298][ T7148] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  155.190848][ T7168] FAT-fs (loop4): Directory bread(block 65) failed
[  155.207389][ T7148] EXT4-fs (loop1): 1 orphan inode deleted
[  155.218362][ T7168] FAT-fs (loop4): Directory bread(block 66) failed
[  155.224978][ T7168] FAT-fs (loop4): Directory bread(block 67) failed
[  155.226521][   T59] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  155.265665][ T7148] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.285898][ T7168] FAT-fs (loop4): Directory bread(block 68) failed
[  155.319878][ T7168] FAT-fs (loop4): Directory bread(block 69) failed
[  155.335816][   T59] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  155.347556][ T7168] FAT-fs (loop4): Directory bread(block 70) failed
[  155.358804][ T7168] FAT-fs (loop4): Directory bread(block 71) failed
[  155.368138][   T59] EXT4-fs error (device loop1): ext4_release_dquot:6985: comm kworker/u4:4: Failed to release dquot type 0
[  155.384366][ T7168] FAT-fs (loop4): Directory bread(block 72) failed
[  155.419663][ T7168] FAT-fs (loop4): Directory bread(block 73) failed
[  155.667578][   T11] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  155.686338][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.720281][   T11] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  155.733205][   T11] EXT4-fs error (device loop1): ext4_release_dquot:6985: comm kworker/u4:0: Failed to release dquot type 0
[  155.750759][ T5767] EXT4-fs error (device loop1): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[  155.805503][ T5767] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  155.836142][ T5767] EXT4-fs error (device loop1): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error
[  156.075631][ T7189] loop1: detected capacity change from 0 to 512
[  156.096749][ T7189] EXT4-fs: Ignoring removed oldalloc option
[  156.175715][ T7189] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: comm syz.1.439: Parent and EA inode have the same ino 15
[  156.262582][ T7189] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  156.320551][ T7189] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: comm syz.1.439: Parent and EA inode have the same ino 15
[  156.383029][ T7189] EXT4-fs (loop1): 1 orphan inode deleted
[  156.406109][ T7189] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.474480][ T7204] loop0: detected capacity change from 0 to 256
[  156.549997][ T7189] EXT4-fs error (device loop1): ext4_rename:3859: inode #15: comm syz.1.439: target of rename is already freed
[  156.565701][ T7204] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00007372)
[  156.771244][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.156871][ T7220] loop0: detected capacity change from 0 to 64
[  157.238654][ T7220] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  158.710490][ T7239] loop1: detected capacity change from 0 to 32768
[  158.793001][ T7239] (syz.1.456,7239,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  158.850757][ T7239] (syz.1.456,7239,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  158.997755][ T7239] JBD2: Ignoring recovery information on journal
[  159.017800][ T7243] loop0: detected capacity change from 0 to 32768
[  159.153985][ T7243] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  159.196943][ T7239] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  159.393393][ T7243] XFS (loop0): Ending clean mount
[  159.422496][ T7243] XFS (loop0): Quotacheck needed: Please wait.
[  159.509803][ T7279] loop2: detected capacity change from 0 to 1024
[  159.552048][ T7279] EXT4-fs: Ignoring removed nobh option
[  159.576610][ T7279] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  159.600397][ T7243] XFS (loop0): Quotacheck: Done.
[  159.679755][ T7279] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz.2.463: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  159.741993][ T7279] EXT4-fs error (device loop2): ext4_orphan_get:1403: comm syz.2.463: couldn't read orphan inode 11 (err -117)
[  159.801751][ T7279] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.835065][ T5767] ocfs2: Unmounting device (7,1) on (node local)
[  159.940328][ T7259] loop4: detected capacity change from 0 to 32768
[  160.038497][ T7279] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:478: comm syz.2.463: Invalid block bitmap block 0 in block_group 0
[  160.099872][ T7279] Quota error (device loop2): write_blk: dquota write failed
[  160.123958][ T7279] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  160.158994][ T7259] read_mapping_page failed!
[  160.163613][ T7259] ERROR: (device loop4): txCommit: 
[  160.163613][ T7259] 
[  160.177464][ T5772] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  160.199105][ T7279] EXT4-fs error (device loop2): ext4_acquire_dquot:6949: comm syz.2.463: Failed to acquire dquot type 0
[  160.232489][ T7292] jfs_unlink: dtDelete returned -116
[  160.245788][ T7290] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.463: Invalid inode bitmap blk 137438953472 in block_group 0
[  160.268655][ T7292] jfs_unlink: dtDelete returned -116
[  160.423264][ T1075] EXT4-fs error (device loop2): __ext4_get_inode_loc:4489: comm kworker/u4:7: Invalid inode table block 8589934593 in block_group 0
[  160.486144][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.589115][ T7297] loop2: detected capacity change from 0 to 128
[  160.606959][ T7297] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  160.666436][ T7297] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  161.265523][ T2132] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  161.463575][ T7314] loop0: detected capacity change from 0 to 8192
[  161.488047][ T2132] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  161.505351][ T2132] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.548955][ T2132] usb 3-1: config 0 descriptor??
[  161.571773][ T2132] gspca_main: cpia1-2.14.0 probing 0813:0001
[  161.997063][ T2132] cpia1 3-1:0.0: unexpected state after lo power cmd: 00
[  162.417547][ T2132] gspca_cpia1: usb_control_msg 02, error -71
[  162.439494][ T2132] gspca_cpia1: usb_control_msg 05, error -71
[  162.480788][ T2132] cpia1 3-1:0.0: unexpected systemstate: 00
[  162.495518][ T2132] usb 3-1: USB disconnect, device number 6
[  162.664472][ T7344] loop4: detected capacity change from 0 to 4096
[  162.765497][    T8] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  162.976613][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  162.989438][    T8] usb 1-1: New USB device found, idVendor=056a, idProduct=00e6, bcdDevice= 0.00
[  163.014474][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.031848][    T8] usb 1-1: config 0 descriptor??
[  163.323595][    T8] usbhid 1-1:0.0: can't add hid device: -71
[  163.342376][    T8] usbhid: probe of 1-1:0.0 failed with error -71
[  163.362055][    T8] usb 1-1: USB disconnect, device number 9
[  163.753041][ T7363] bridge_slave_0: invalid flags given to default FDB implementation
[  164.012154][ T7370] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  164.038001][ T7370] iommufd_mock iommufd_mock2: Adding to iommu group 1
[  164.284833][ T7377] Attempt to restore checkpoint with obsolete wellknown handles
[  166.035216][    C1] sched: RT throttling activated
[  166.257398][ T7402] loop4: detected capacity change from 0 to 131072
[  166.267650][ T7402] F2FS-fs (loop4): Invalid log sectorsize (67108873)
[  166.274436][ T7402] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  166.285319][ T7402] F2FS-fs (loop4): invalid crc value
[  166.360732][ T7402] F2FS-fs (loop4): Found nat_bits in checkpoint
[  166.426594][ T7402] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  166.433725][ T7402] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  166.549880][ T7402] F2FS-fs (loop4): sanity_check_inode: inode (ino=4, mode=1773) should not have inline_dentry, run fsck to fix
[  166.995581][ T5152] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  167.104723][ T7428] loop4: detected capacity change from 0 to 8192
[  167.218954][ T5152] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  167.235646][ T5152] usb 3-1: config 0 has no interface number 0
[  167.252170][ T5152] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.274674][ T5152] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  167.306737][ T5152] usb 3-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  167.338671][ T5152] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.369836][ T5152] usb 3-1: config 0 descriptor??
[  167.811389][ T5152] prodikeys 0003:041E:2801.0006: unknown main item tag 0x5
[  167.845799][ T5152] prodikeys 0003:041E:2801.0006: unknown main item tag 0x0
[  167.865407][ T5152] prodikeys 0003:041E:2801.0006: unknown main item tag 0x0
[  167.872721][ T5152] prodikeys 0003:041E:2801.0006: unknown main item tag 0x0
[  167.915409][ T5152] prodikeys 0003:041E:2801.0006: unknown main item tag 0x0
[  167.946241][ T5152] prodikeys 0003:041E:2801.0006: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.2-1/input1
[  167.994548][ T5152] hid_prodikeys: hid-prodikeys: failed to find output report
[  167.994548][ T5152] 
[  168.344066][ T5864] usb 3-1: USB disconnect, device number 7
[  168.427283][ T7452] loop0: detected capacity change from 0 to 256
[  168.443961][ T7452] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  168.468977][ T7452] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  168.490860][ T7452] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  168.771203][ T7456] sctp: [Deprecated]: syz.0.523 (pid 7456) Use of struct sctp_assoc_value in delayed_ack socket option.
[  168.771203][ T7456] Use struct sctp_sack_info instead
[  169.061590][ T7463] sctp: [Deprecated]: syz.2.526 (pid 7463) Use of int in max_burst socket option deprecated.
[  169.061590][ T7463] Use struct sctp_assoc_value instead
[  169.086768][ T7467] netlink: 12 bytes leftover after parsing attributes in process `syz.1.529'.
[  169.109980][ T7466] loop0: detected capacity change from 0 to 256
[  169.148254][ T7466] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3ec, utbl_chksum : 0xe619d30d)
[  169.662404][ T7478] netlink: 16 bytes leftover after parsing attributes in process `syz.4.533'.
[  169.989279][ T7483] net_ratelimit: 2231 callbacks suppressed
[  169.989294][ T7483] TCP: tcp_parse_options: Illegal window scaling value 215 > 14 received
[  170.024995][ T7485] tap0: tun_chr_ioctl cmd 1074025677
[  170.034436][ T7485] tap0: linktype set to 778
[  170.460928][ T7491] IPv6: addrconf: prefix option has invalid lifetime
[  170.716016][ T7500] loop4: detected capacity change from 0 to 128
[  172.615274][ T7520] loop2: detected capacity change from 0 to 131072
[  172.661571][ T7520] F2FS-fs (loop2): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  172.670285][ T7520] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  172.681609][ T7520] F2FS-fs (loop2): invalid crc value
[  172.722121][ T7520] F2FS-fs (loop2): Found nat_bits in checkpoint
[  172.791048][ T7520] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  172.800018][ T7520] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  173.118469][ T5152] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  173.332536][ T5152] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  173.357973][ T5152] usb 5-1: config 0 interface 0 has no altsetting 0
[  173.383399][ T5152] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  173.399665][ T5152] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  173.425270][ T5152] usb 5-1: Product: syz
[  173.437687][ T5152] usb 5-1: Manufacturer: syz
[  173.475306][ T5152] usb 5-1: SerialNumber: syz
[  173.516661][ T5152] usb 5-1: config 0 descriptor??
[  173.543964][ T5152] usb 5-1: selecting invalid altsetting 0
[  173.973972][ T5864] usb 5-1: USB disconnect, device number 2
[  174.150090][ T7552] netlink: 12 bytes leftover after parsing attributes in process `syz.1.565'.
[  174.185498][ T7552] netlink: 28 bytes leftover after parsing attributes in process `syz.1.565'.
[  174.194619][ T7552] netlink: 12 bytes leftover after parsing attributes in process `syz.1.565'.
[  174.207433][ T7552] netlink: 28 bytes leftover after parsing attributes in process `syz.1.565'.
[  174.235487][ T7552] netlink: 'syz.1.565': attribute type 6 has an invalid length.
[  174.385696][   T27] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  174.577532][   T27] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  174.605414][   T27] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  174.643692][   T27] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  174.685553][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  174.693736][   T27] usb 3-1: SerialNumber: syz
[  174.820889][ T7558] loop4: detected capacity change from 0 to 64
[  174.988799][   T27] usb 3-1: 0:2 : does not exist
[  174.993852][   T27] usb 3-1: unit 255 not found!
[  175.073907][   T27] usb 3-1: USB disconnect, device number 8
[  175.154962][ T5777] udevd[5777]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  175.494680][ T7568] warning: `syz.4.572' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  175.797118][ T7572] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  175.960722][ T7576] netlink: 'syz.2.576': attribute type 14 has an invalid length.
[  176.385570][ T7588] loop1: detected capacity change from 0 to 16
[  176.406615][ T7588] erofs: (device loop1): mounted with root inode @ nid 36.
[  176.470422][ T7588] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 46
[  176.497804][ T7588] erofs: (device loop1): erofs_readdir: fail to readdir of logical block 0 of nid 46
[  176.723927][ T7598] loop1: detected capacity change from 0 to 512
[  176.828300][ T7598] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.845418][ T7598] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.026021][ T7598] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  177.114296][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.698479][ T7616] loop0: detected capacity change from 0 to 2048
[  177.744023][ T7616] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  177.797668][ T5777] udevd[5777]: incorrect nilfs2 checksum on /dev/loop0
[  177.847273][ T7623] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  177.985408][ T5152] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  178.045262][ T5864] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  178.085365][ T7630] netlink: 284 bytes leftover after parsing attributes in process `syz.0.596'.
[  178.185333][ T5152] usb 5-1: Using ep0 maxpacket: 32
[  178.197435][ T5152] usb 5-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  178.221227][ T5152] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.238533][ T7634] netlink: 178584 bytes leftover after parsing attributes in process `syz.2.597'.
[  178.253030][ T5152] usb 5-1: config 0 descriptor??
[  178.264508][ T7634] netlink: zone id is out of range
[  178.277476][ T5864] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  178.286359][ T7634] netlink: zone id is out of range
[  178.302913][ T7634] netlink: zone id is out of range
[  178.312095][ T7634] netlink: zone id is out of range
[  178.312721][ T5864] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  178.329441][ T7634] netlink: zone id is out of range
[  178.338217][ T5864] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  178.340114][ T7634] netlink: zone id is out of range
[  178.347911][ T5864] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  178.361842][ T7634] netlink: zone id is out of range
[  178.368125][ T7634] netlink: zone id is out of range
[  178.377066][ T7634] netlink: zone id is out of range
[  178.379079][ T5864] usb 2-1: SerialNumber: syz
[  178.384247][ T7634] netlink: zone id is out of range
[  178.522320][ T5152] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  178.556773][ T5152] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  178.572244][ T5152] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  178.579699][ T5152] usb 5-1: media controller created
[  178.625657][ T5864] usb 2-1: 0:2 : does not exist
[  178.668629][ T5152] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  178.677156][ T5864] usb 2-1: USB disconnect, device number 8
[  178.761081][ T5777] udevd[5777]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  178.790962][ T5152] az6027: usb out operation failed. (-71)
[  178.812973][ T5152] az6027: usb out operation failed. (-71)
[  178.822305][ T5152] stb0899_attach: Driver disabled by Kconfig
[  178.831887][ T5152] az6027: no front-end attached
[  178.831887][ T5152] 
[  178.842576][ T5152] az6027: usb out operation failed. (-71)
[  178.851291][ T5152] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  178.866174][ T5152] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input11
[  178.895540][ T5152] dvb-usb: schedule remote query interval to 400 msecs.
[  178.910946][ T5152] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  178.959691][ T5152] usb 5-1: USB disconnect, device number 3
[  179.286619][ T5152] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  179.438839][ T7642] netlink: 16 bytes leftover after parsing attributes in process `syz.1.602'.
[  179.465599][ T7642] netlink: 4 bytes leftover after parsing attributes in process `syz.1.602'.
[  179.704134][ T7651] vivid-002: disconnect
[  179.738222][ T7650] vivid-002: reconnect
[  179.838083][ T7655] loop4: detected capacity change from 0 to 512
[  179.919094][ T7655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.932053][ T5152] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  179.955718][ T7655] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.067824][ T7655] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  180.127290][ T5152] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.145765][ T5152] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.159606][ T5152] usb 3-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  180.170410][ T5152] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.194240][ T5152] usb 3-1: config 0 descriptor??
[  180.234771][ T6400] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.354244][ T7670] loop8: detected capacity change from 0 to 1
[  180.361069][ T7668] input: syz0 as /devices/virtual/input/input12
[  180.376598][ T7670] Dev loop8: unable to read RDB block 1
[  180.388959][ T7670]  loop8: unable to read partition table
[  180.408005][ T7670] loop8: partition table beyond EOD, truncated
[  180.445560][ T7670] loop_reread_partitions: partition scan of loop8 (þ被xü^>à– �) failed (rc=-5)
[  180.641654][ T5152] playstation 0003:054C:0DF2.0007: unknown main item tag 0x0
[  180.658190][ T5152] playstation 0003:054C:0DF2.0007: unknown main item tag 0x0
[  180.666343][ T5152] playstation 0003:054C:0DF2.0007: unknown main item tag 0x0
[  180.673897][ T5152] playstation 0003:054C:0DF2.0007: unknown main item tag 0x0
[  180.683043][ T5152] playstation 0003:054C:0DF2.0007: unknown main item tag 0x0
[  180.707701][ T5152] playstation 0003:054C:0DF2.0007: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.2-1/input0
[  180.849151][ T5152] playstation 0003:054C:0DF2.0007: Invalid byte count transferred, expected 20 got 0
[  180.885274][ T5152] playstation 0003:054C:0DF2.0007: Failed to retrieve DualSense pairing info: -22
[  180.915357][ T5152] playstation 0003:054C:0DF2.0007: Failed to get MAC address from DualSense
[  180.940389][ T5152] playstation 0003:054C:0DF2.0007: Failed to create dualsense.
[  180.973582][ T5152] playstation: probe of 0003:054C:0DF2.0007 failed with error -22
[  181.103633][ T5152] usb 3-1: USB disconnect, device number 9
[  181.279597][ T7694] loop4: detected capacity change from 0 to 2048
[  181.297749][ T7694] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  181.348656][ T7695] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  181.365678][ T5777] udevd[5777]: incorrect nilfs2 checksum on /dev/loop4
[  181.522211][ T7697] netlink: 224 bytes leftover after parsing attributes in process `syz.4.623'.
[  181.805739][ T7692] loop1: detected capacity change from 0 to 32768
[  181.834905][ T7692] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop1 scanned by syz.1.621 (7692)
[  181.878811][ T7692] BTRFS info (device loop1): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  181.924347][ T7692] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  181.963580][ T7692] BTRFS info (device loop1): using free space tree
[  182.110541][ T7692] BTRFS info (device loop1): enabling ssd optimizations
[  182.117916][ T7692] BTRFS info (device loop1): auto enabling async discard
[  182.654920][ T5767] BTRFS info (device loop1): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  182.767395][ T7733] netlink: 104 bytes leftover after parsing attributes in process `syz.4.633'.
[  182.953722][ T7704] loop2: detected capacity change from 0 to 32768
[  183.049819][ T7704] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  183.086409][ T7704] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  183.217050][ T7726] loop0: detected capacity change from 0 to 32768
[  183.239162][ T7726] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.630 (7726)
[  183.255835][ T7704] XFS (loop2): Ending clean mount
[  183.293431][ T7704] XFS (loop2): Quotacheck needed: Please wait.
[  183.333443][ T7745] loop1: detected capacity change from 0 to 512
[  183.345306][ T5864] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  183.366600][ T7726] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  183.416991][ T7726] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  183.447987][ T7726] BTRFS info (device loop0): force clearing of disk cache
[  183.459852][ T7745] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  183.470117][ T7726] BTRFS info (device loop0): enabling auto defrag
[  183.487270][ T7726] BTRFS info (device loop0): enabling ssd optimizations
[  183.492825][    T8] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_cntbt block 0x10 
[  183.505422][ T7726] BTRFS info (device loop0): setting nodatacow, compression disabled
[  183.530991][ T7726] BTRFS info (device loop0): enabling disk space caching
[  183.532894][ T7745] EXT4-fs (loop1): orphan cleanup on readonly fs
[  183.544653][    T8] XFS (loop2): Unmount and run xfs_repair
[  183.557395][ T7745] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:512: comm syz.1.632: Block bitmap for bg 0 marked uninitialized
[  183.561689][ T5864] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  183.579198][    T8] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  183.591528][ T5864] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  183.601548][ T5864] usb 5-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  183.610682][ T5864] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.621758][ T5864] usb 5-1: config 0 descriptor??
[  183.638878][ T7726] BTRFS info (device loop0): disk space caching is enabled
[  183.650670][    T8] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff  AB3C............
[  183.667232][ T7745] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  183.679497][ T7745] EXT4-fs (loop1): 1 orphan inode deleted
[  183.687190][ T7745] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  183.700594][    T8] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10  ................
[  183.730861][    T8] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  183.745304][ T7745] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  183.757185][ T7745] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  183.767386][    T8] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02  .... ......N....
[  183.786487][ T7745] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:512: comm syz.1.632: Block bitmap for bg 0 marked uninitialized
[  183.800521][    T8] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00  ...`............
[  183.813874][    T8] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00  ................
[  183.839487][    T8] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  183.852693][    T8] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  183.863037][   T49] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x10 len 8 error 74
[  183.881104][ T7704] XFS (loop2): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  183.891565][ T7726] BTRFS info (device loop0): rebuilding free space tree
[  184.000904][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.036892][ T7726] BTRFS info (device loop0): disabling free space tree
[  184.044155][ T7726] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  184.075430][ T7726] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  184.152673][ T5864] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  184.188538][ T7726] BTRFS info (device loop0): checking UUID tree
[  184.195270][ T5864] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  184.202847][ T5864] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  184.260177][ T5864] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  184.275293][ T5864] playstation 0003:054C:0DF2.0008: unknown main item tag 0x0
[  184.305761][ T5778] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  184.315033][ T5864] playstation 0003:054C:0DF2.0008: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.4-1/input0
[  184.420125][ T5864] playstation 0003:054C:0DF2.0008: Invalid byte count transferred, expected 20 got 0
[  184.446825][ T5864] playstation 0003:054C:0DF2.0008: Failed to retrieve DualSense pairing info: -22
[  184.460984][ T5864] playstation 0003:054C:0DF2.0008: Failed to get MAC address from DualSense
[  184.473726][ T5864] playstation 0003:054C:0DF2.0008: Failed to create dualsense.
[  184.487302][ T5864] playstation: probe of 0003:054C:0DF2.0008 failed with error -22
[  184.525831][ T2132] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  184.725332][ T2132] usb 2-1: Using ep0 maxpacket: 16
[  184.740462][ T2132] usb 2-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  184.751903][ T5858] usb 5-1: USB disconnect, device number 4
[  184.768783][ T2132] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.795774][ T2132] usb 2-1: Product: syz
[  184.800118][ T2132] usb 2-1: Manufacturer: syz
[  184.804843][ T2132] usb 2-1: SerialNumber: syz
[  184.923876][ T5772] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  184.944010][ T1075] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  185.044995][ T7774] netlink: 56 bytes leftover after parsing attributes in process `syz.2.636'.
[  185.097862][ T2132] usb 2-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  185.147463][ T2132] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  185.181635][ T2132] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  185.210145][ T2132] usb 2-1: media controller created
[  185.273170][ T2132] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  185.372286][ T7780] loop2: detected capacity change from 0 to 256
[  185.374976][ T2132] zl10353_read_register: readreg error (reg=127, ret==-71)
[  185.541784][ T2132] dvb_usb_gl861: probe of 2-1:157.0 failed with error -5
[  185.593636][ T2132] usb 2-1: USB disconnect, device number 9
[  185.851702][ T7787] loop4: detected capacity change from 0 to 128
[  186.464067][ T7809] netlink: 4 bytes leftover after parsing attributes in process `syz.4.650'.
[  186.854680][ T7828] loop0: detected capacity change from 0 to 512
[  186.880224][ T7828] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  186.921679][ T7828] EXT4-fs (loop0): 1 truncate cleaned up
[  186.949139][ T7828] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.955887][ T2132] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  187.006257][ T7828] EXT4-fs (loop0): shut down requested (1)
[  187.066883][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.154845][ T2132] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  187.174374][ T2132] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.204366][ T2132] usb 3-1: config 0 descriptor??
[  187.221122][ T2132] gspca_main: cpia1-2.14.0 probing 0813:0001
[  187.385549][ T5858] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  187.475375][ T5152] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  187.608902][ T5858] usb 2-1: New USB device found, idVendor=06cb, idProduct=73f4, bcdDevice= 0.00
[  187.630347][ T2132] cpia1 3-1:0.0: unexpected state after lo power cmd: 00
[  187.646378][ T5858] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.668023][ T5858] usb 2-1: config 0 descriptor??
[  187.691346][ T5152] usb 1-1: Using ep0 maxpacket: 32
[  187.700166][ T5152] usb 1-1: config 0 has an invalid interface number: 35 but max is 0
[  187.716702][ T5152] usb 1-1: config 0 has no interface number 0
[  187.732683][ T5152] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  187.744006][ T5152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.760877][ T5152] usb 1-1: Product: syz
[  187.767621][ T5152] usb 1-1: Manufacturer: syz
[  187.772431][ T5152] usb 1-1: SerialNumber: syz
[  187.792876][ T5152] usb 1-1: config 0 descriptor??
[  187.841792][ T2132] gspca_cpia1: usb_control_msg 01, error -32
[  187.859353][ T2132] gspca_cpia1: usb_control_msg 01, error -71
[  187.872131][ T2132] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0)
[  187.901804][ T2132] usb 3-1: USB disconnect, device number 10
[  187.970583][ T5774] Bluetooth: hci1: command 0x0c1a tx timeout
[  188.112698][ T5858] itetech 0003:06CB:73F4.0009: collection stack underflow
[  188.143941][ T5858] itetech 0003:06CB:73F4.0009: item 0 0 0 12 parsing failed
[  188.154190][ T5858] itetech: probe of 0003:06CB:73F4.0009 failed with error -22
[  188.231214][ T5152] radio-si470x 1-1:0.35: DeviceID=0x9242 ChipID=0x0000
[  188.238294][ T5152] radio-si470x 1-1:0.35: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  188.324262][   T27] usb 2-1: USB disconnect, device number 10
[  188.443177][ T5152] radio-si470x 1-1:0.35: software version 146, hardware version 66
[  188.463250][ T5858] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  188.474852][ T5152] radio-si470x 1-1:0.35: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  188.643077][ T5152] radio-si470x 1-1:0.35: si470x_set_report: usb_control_msg returned -71
[  188.665963][    C0] radio-si470x 1-1:0.35: non-zero urb status (-71)
[  188.672861][    C0] radio-si470x 1-1:0.35: non-zero urb status (-71)
[  188.679578][ T5152] radio-si470x 1-1:0.35: si470x_set_report: usb_control_msg returned -71
[  188.689374][    C0] radio-si470x 1-1:0.35: non-zero urb status (-71)
[  188.696306][    C0] radio-si470x 1-1:0.35: non-zero urb status (-71)
[  188.703554][    C0] radio-si470x 1-1:0.35: non-zero urb status (-71)
[  188.712720][ T5152] radio-si470x: probe of 1-1:0.35 failed with error -22
[  188.726035][ T5858] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.737582][ T5858] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.750666][ T5858] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  188.768139][ T5858] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  188.778695][ T5152] radio-raremono 1-1:0.35: this is not Thanko's Raremono.
[  188.786535][ T5858] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.800937][ T5152] usb 1-1: USB disconnect, device number 10
[  188.820353][ T5858] usb 5-1: config 0 descriptor??
[  189.261140][ T5858] plantronics 0003:047F:FFFF.000A: item fetching failed at offset 13/15
[  189.306110][ T5858] plantronics 0003:047F:FFFF.000A: parse failed
[  189.325809][ T5858] plantronics: probe of 0003:047F:FFFF.000A failed with error -22
[  189.347461][ T7863] loop2: detected capacity change from 0 to 64
[  189.400707][ T7866] loop0: detected capacity change from 0 to 64
[  189.469687][   T27] usb 5-1: USB disconnect, device number 5
[  189.916584][ T7876] loop1: detected capacity change from 0 to 8192
[  190.206272][   T27] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  190.215530][ T5841] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  190.282361][ T7889] netlink: 12 bytes leftover after parsing attributes in process `syz.4.684'.
[  190.409533][ T5841] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  190.420814][   T27] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  190.420848][   T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.437749][   T27] usb 1-1: config 0 descriptor??
[  190.470438][   T27] cp210x 1-1:0.0: cp210x converter detected
[  190.482244][ T5841] usb 3-1: New USB device found, idVendor=1c9e, idProduct=9801, bcdDevice=25.d8
[  190.495357][ T5841] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  190.514055][ T5841] usb 3-1: Product: syz
[  190.521827][ T5841] usb 3-1: Manufacturer: syz
[  190.531344][ T5841] usb 3-1: SerialNumber: syz
[  190.548181][ T5841] usb 3-1: config 0 descriptor??
[  190.828795][ T2132] usb 3-1: USB disconnect, device number 11
[  190.874231][   T27] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -32
[  190.912794][   T27] usb 1-1: cp210x converter now attached to ttyUSB0
[  191.121977][ T2132] usb 1-1: USB disconnect, device number 11
[  191.131058][ T2132] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  191.165077][ T7906] loop4: detected capacity change from 0 to 1024
[  191.184555][ T2132] cp210x 1-1:0.0: device disconnected
[  191.197043][ T7906] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  191.234131][ T7906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.313150][ T6400] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.484026][ T7913] netlink: 24 bytes leftover after parsing attributes in process `syz.2.694'.
[  191.714186][ T7915] loop2: detected capacity change from 0 to 4096
[  191.733718][ T7915] ntfs: (device loop2): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1.
[  191.840945][ T7915] ntfs: volume version 3.1.
[  192.269255][ T7932] loop0: detected capacity change from 0 to 1024
[  192.336214][ T7932] EXT4-fs: Ignoring removed oldalloc option
[  192.375324][ T7932] EXT4-fs: inline encryption not supported
[  192.411160][ T7932] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  192.456475][ T7917] loop4: detected capacity change from 0 to 32768
[  192.493794][ T7932] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 2: comm syz.0.701: lblock 2 mapped to illegal pblock 2 (length 1)
[  192.553872][ T7917] ERROR: (device loop4): dtReadFirst: btstack overrun
[  192.553872][ T7917] 
[  192.571393][ T7917] ERROR: (device loop4): remounting filesystem as read-only
[  192.578813][ T7932] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  192.579008][ T7932] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 48: comm syz.0.701: lblock 0 mapped to illegal pblock 48 (length 1)
[  192.589534][ T7917] btstack dump:
[  192.606466][ T7917] bn = 0, index = 0
[  192.610875][ T7917] bn = 0, index = 0
[  192.614879][ T7917] bn = 0, index = 0
[  192.619700][ T7917] bn = 0, index = 0
[  192.623745][ T7917] bn = 0, index = 0
[  192.628392][ T7917] bn = 0, index = 0
[  192.632390][ T7917] bn = 0, index = 0
[  192.640046][ T7932] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  192.662602][ T7917] bn = 0, index = 0
[  192.670303][ T7932] EXT4-fs error (device loop0): ext4_acquire_dquot:6949: comm syz.0.701: Failed to acquire dquot type 0
[  192.710801][ T7932] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  192.751755][ T7932] EXT4-fs error (device loop0): ext4_evict_inode:252: inode #11: comm syz.0.701: mark_inode_dirty error
[  192.786678][ T7932] EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  192.801702][ T7932] EXT4-fs (loop0): 1 orphan inode deleted
[  192.819633][ T7932] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.824446][   T49] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  192.917258][   T49] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  192.949199][   T49] EXT4-fs error (device loop0): ext4_release_dquot:6985: comm kworker/u4:3: Failed to release dquot type 0
[  193.057275][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.093840][ T5772] EXT4-fs error (device loop0): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[  193.136674][ T5772] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  193.165551][ T5772] EXT4-fs error (device loop0): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error
[  193.628753][ T7956] program syz.2.709 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  193.864501][ T7960] loop2: detected capacity change from 0 to 512
[  193.921669][ T7960] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  193.977311][ T7960] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.219290][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.697576][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  194.704324][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  194.876962][ T7994] loop2: detected capacity change from 0 to 512
[  195.005785][ T7999] netlink: 28 bytes leftover after parsing attributes in process `syz.0.729'.
[  195.204887][ T8005] loop0: detected capacity change from 0 to 512
[  195.243548][ T8005] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.246076][ T2132] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  195.321027][ T8005] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.335358][   T27] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  195.449082][ T2132] usb 2-1: Using ep0 maxpacket: 8
[  195.463381][ T2132] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  195.472347][ T2132] usb 2-1: config 179 has no interface number 0
[  195.480207][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.491027][ T2132] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  195.503988][ T2132] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  195.516775][ T2132] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  195.528776][   T27] usb 5-1: Using ep0 maxpacket: 32
[  195.549479][ T2132] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  195.562579][   T27] usb 5-1: config index 0 descriptor too short (expected 35577, got 27)
[  195.571820][   T27] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  195.595649][   T27] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92
[  195.604862][   T27] usb 5-1: config 1 has no interface number 0
[  195.612182][ T2132] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  195.650629][ T2132] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  195.666942][   T27] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  195.679407][ T2132] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.687755][   T27] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  195.711456][ T7997] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  195.746494][   T27] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  195.779186][   T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.812812][   T27] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found
[  196.032761][   T27] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached
[  196.057439][ T2132] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input14
[  196.291031][ T5858] usb 2-1: USB disconnect, device number 11
[  196.291034][    C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  196.307278][    C1] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  196.328684][ T5858] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  196.471339][ T5152] usb 5-1: USB disconnect, device number 6
[  196.484955][ T5152] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected
[  197.540550][ T8037] nbd0: detected capacity change from 0 to 127
[  197.615052][ T5774] block nbd0: Receive control failed (result -104)
[  197.635968][ T8025] loop2: detected capacity change from 0 to 32768
[  197.666417][ T8025] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.739 (8025)
[  197.763458][ T8025] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  197.798423][ T8025] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  197.823308][ T8025] BTRFS info (device loop2): force clearing of disk cache
[  197.849347][ T8025] BTRFS info (device loop2): enabling auto defrag
[  197.865705][ T8025] BTRFS info (device loop2): enabling ssd optimizations
[  197.892439][ T8025] BTRFS info (device loop2): setting nodatacow, compression disabled
[  197.908643][ T8029] loop4: detected capacity change from 0 to 32768
[  197.916106][ T8025] BTRFS info (device loop2): enabling disk space caching
[  197.941955][ T8029] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop4 scanned by syz.4.741 (8029)
[  197.944102][ T8025] BTRFS info (device loop2): disk space caching is enabled
[  197.998612][ T8029] BTRFS info (device loop4): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  198.030097][ T8029] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  198.092908][ T8029] BTRFS info (device loop4): using free space tree
[  198.247454][ T8025] BTRFS info (device loop2): rebuilding free space tree
[  198.292038][ T8025] BTRFS info (device loop2): disabling free space tree
[  198.301377][ T8025] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  198.312091][ T8025] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  198.351940][ T8025] BTRFS info (device loop2): checking UUID tree
[  198.354394][ T8076] loop1: detected capacity change from 0 to 1024
[  198.405789][ T8029] BTRFS info (device loop4): enabling ssd optimizations
[  198.412832][ T8029] BTRFS info (device loop4): auto enabling async discard
[  198.447371][ T8076] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  198.611902][ T1075] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  198.668323][ T5778] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  199.018092][ T6400] BTRFS info (device loop4): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  200.053552][ T8083] loop0: detected capacity change from 0 to 131072
[  200.084569][ T8083] F2FS-fs (loop0): Invalid log sectors per block(570425347) log sectorsize(9)
[  200.093624][ T8083] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  200.130370][ T8083] F2FS-fs (loop0): invalid crc value
[  200.223799][ T8083] F2FS-fs (loop0): Try to recover 2th superblock, ret: -30
[  200.231247][ T8083] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b
[  200.864961][ T8103] input: syz1 as /devices/virtual/input/input15
[  201.020924][ T8099] loop4: detected capacity change from 0 to 8192
[  201.077869][ T8099] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  201.199585][ T8099] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  201.255293][ T8099] ntfs3: loop4: Failed to load $Extend (-2).
[  201.261473][ T8099] ntfs3: loop4: Failed to initialize $Extend.
[  201.895329][ T5152] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  201.926065][ T8124] loop4: detected capacity change from 0 to 512
[  202.028541][ T8124] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.071663][ T8124] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  202.085335][ T5152] usb 2-1: Using ep0 maxpacket: 32
[  202.093821][ T5152] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.105708][ T5152] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  202.115639][ T5152] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  202.124909][ T5152] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.155326][ T5152] usb 2-1: config 0 descriptor??
[  202.175980][ T5152] hub 2-1:0.0: USB hub found
[  202.186707][ T8124] EXT4-fs (loop4): shut down requested (2)
[  202.310038][ T6400] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.395516][ T5152] hub 2-1:0.0: 1 port detected
[  202.713059][ T8116] loop2: detected capacity change from 0 to 40427
[  202.755400][ T8116] F2FS-fs (loop2): invalid crc value
[  202.781282][ T5152] usb 2-1: USB disconnect, device number 12
[  202.801727][ T8116] F2FS-fs (loop2): Found nat_bits in checkpoint
[  202.951031][ T8116] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  203.166605][ T8132] loop0: detected capacity change from 0 to 32768
[  203.175731][ T5778] syz-executor: attempt to access beyond end of device
[  203.175731][ T5778] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  203.192485][ T8132] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop0 scanned by syz.0.771 (8132)
[  203.220320][ T5778] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  203.272137][ T8132] BTRFS info (device loop0): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  203.288190][ T8132] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  203.316735][ T8132] BTRFS info (device loop0): using free space tree
[  203.408380][ T8134] loop4: detected capacity change from 0 to 32768
[  203.490672][ T8134] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.772 (8134)
[  203.536185][ T8134] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  203.575437][ T8132] BTRFS info (device loop0): enabling ssd optimizations
[  203.583848][ T8134] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  203.603248][ T8132] BTRFS info (device loop0): auto enabling async discard
[  203.630872][ T8134] BTRFS info (device loop4): force clearing of disk cache
[  203.654465][ T8134] BTRFS info (device loop4): enabling auto defrag
[  203.686744][ T8134] BTRFS info (device loop4): enabling ssd optimizations
[  203.693879][ T8134] BTRFS info (device loop4): setting nodatacow, compression disabled
[  203.766522][ T8134] BTRFS info (device loop4): enabling disk space caching
[  203.773706][ T8134] BTRFS info (device loop4): disk space caching is enabled
[  204.091289][ T8134] BTRFS info (device loop4): rebuilding free space tree
[  204.192606][ T5772] BTRFS info (device loop0): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  204.204125][ T8134] BTRFS info (device loop4): disabling free space tree
[  204.248862][ T8134] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  204.288773][ T8134] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  204.366585][ T8134] BTRFS info (device loop4): checking UUID tree
[  204.530826][ T5777] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 10 /dev/loop0 scanned by udevd (5777)
[  204.721709][   T12] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared)
[  204.780207][ T8190] nbd1: detected capacity change from 0 to 127
[  204.793211][ T5774] block nbd1: Receive control failed (result -32)
[  204.793812][ T8193] loop1: detected capacity change from 0 to 16
[  204.818386][ T8193] erofs: (device loop1): mounted with root inode @ nid 36.
[  204.836940][ T6400] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  204.865154][   T96] block nbd1: Dead connection, failed to find a fallback
[  204.873261][   T96] block nbd1: shutting down sockets
[  204.882738][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  204.892974][   T96] Buffer I/O error on dev nbd1, logical block 0, async page read
[  204.903037][   T96] Buffer I/O error on dev nbd1, logical block 1, async page read
[  204.911354][   T96] Buffer I/O error on dev nbd1, logical block 2, async page read
[  204.919290][   T96] Buffer I/O error on dev nbd1, logical block 3, async page read
[  204.932036][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  204.941323][   T96] Buffer I/O error on dev nbd1, logical block 0, async page read
[  204.949613][   T96] Buffer I/O error on dev nbd1, logical block 1, async page read
[  204.958386][   T96] Buffer I/O error on dev nbd1, logical block 2, async page read
[  204.966280][   T96] Buffer I/O error on dev nbd1, logical block 3, async page read
[  204.974385][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  204.994355][   T96] Buffer I/O error on dev nbd1, logical block 0, async page read
[  205.002439][   T96] Buffer I/O error on dev nbd1, logical block 1, async page read
[  205.010801][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  205.020271][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  205.045445][   T55] I/O error, dev nbd1, sector 2 op 0x0:(READ) flags 0x0 phys_seg 3 prio class 2
[  205.057063][   T55] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  205.079242][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  205.096620][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 2
[  205.107372][ T6355] ldm_validate_partition_table(): Disk read failed.
[  205.115674][   T96] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  205.126749][ T6355] Dev nbd1: unable to read RDB block 0
[  205.134462][ T6355]  nbd1: unable to read partition table
[  205.154335][ T6355] ldm_validate_partition_table(): Disk read failed.
[  205.165091][ T6355] Dev nbd1: unable to read RDB block 0
[  205.173366][ T6355]  nbd1: unable to read partition table
[  205.442505][ T5767] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 46
[  205.504521][ T5767] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  205.532793][ T5767] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  205.721919][ T8203] loop2: detected capacity change from 0 to 128
[  205.771318][ T8203] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  205.854001][ T8203] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  206.057717][   T49] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  206.334082][ T8215] input: syz0 as /devices/virtual/input/input16
[  206.393945][ T8199] loop0: detected capacity change from 0 to 32768
[  206.442959][ T8217] loop2: detected capacity change from 0 to 128
[  206.506403][ T8217] EXT4-fs: Ignoring removed nobh option
[  206.586761][ T8217] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  206.650862][ T8217] ext4 filesystem being mounted at /210/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  206.658146][ T8223] netlink: 4 bytes leftover after parsing attributes in process `syz.4.793'.
[  206.752541][ T8217] fscrypt (loop2, inode 12): Reserved bits set in encryption policy
[  206.784007][ T8222] loop1: detected capacity change from 0 to 8192
[  206.842068][ T8222] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  206.855953][ T8222] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  206.866725][ T8222] REISERFS (device loop1): using ordered data mode
[  206.873302][ T8222] reiserfs: using flush barriers
[  206.885591][ T5778] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  206.895715][ T8223] netlink: 4 bytes leftover after parsing attributes in process `syz.4.793'.
[  206.910908][ T8222] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  206.948089][ T8222] REISERFS (device loop1): checking transaction log (loop1)
[  206.998416][ T8222] REISERFS (device loop1): Using r5 hash to sort names
[  207.059788][ T8222] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  207.139894][ T8222] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  207.150846][ T8223] netlink: 4 bytes leftover after parsing attributes in process `syz.4.793'.
[  207.312368][ T8222] REISERFS warning (device loop1): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  207.376489][ T8222] REISERFS warning (device loop1): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  207.457039][ T8236] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  207.494657][ T8238] loop2: detected capacity change from 0 to 128
[  207.501727][ T8235] bridge0: entered allmulticast mode
[  207.517570][ T8222] REISERFS warning (device loop1): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[  207.578411][ T8238] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  207.659694][ T8242] loop4: detected capacity change from 0 to 64
[  207.672027][ T8238] ext4 filesystem being mounted at /212/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  207.774371][ T8238] fscrypt (loop2, inode 12): Unsupported encryption flags (0x10)
[  207.980370][ T5778] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  208.535554][   T27] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  208.585349][ T5841] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  208.709720][ T8265] loop1: detected capacity change from 0 to 512
[  208.725479][   T27] usb 3-1: Using ep0 maxpacket: 8
[  208.740071][   T27] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  208.755729][   T27] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  208.763734][ T8265] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.773714][   T27] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  208.786703][ T5841] usb 5-1: Using ep0 maxpacket: 8
[  208.801763][ T8265] ext4 filesystem being mounted at /228/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.818963][ T5841] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  208.827404][ T5841] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  208.837558][ T5841] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  208.848405][ T5841] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  208.865102][ T5841] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  208.878267][ T5841] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  208.879636][   T27] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  208.887584][ T5841] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.942824][   T27] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  208.963862][   T27] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  208.980610][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.989681][ T8265] EXT4-fs error (device loop1): ext4_get_first_dir_block:3595: inode #12: comm syz.1.809: directory missing '.'
[  209.008176][   T27] usb 3-1: config 0 descriptor??
[  209.028808][ T5774] Bluetooth: hci4: urb ffff88802e56c000 submission failed (90)
[  209.050828][ T8265] EXT4-fs (loop1): Remounting filesystem read-only
[  209.122135][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.152665][ T5841] usb 5-1: GET_CAPABILITIES returned 0
[  209.166427][ T5841] usbtmc 5-1:16.0: can't read capabilities
[  209.279510][   T27] usb 3-1: USB disconnect, device number 12
[  209.394230][ T2132] usb 5-1: USB disconnect, device number 7
[  210.490772][ T8271] loop1: detected capacity change from 0 to 131072
[  210.508546][ T8271] F2FS-fs (loop1): Invalid log sectors per block(570425347) log sectorsize(9)
[  210.517597][ T8271] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  210.544840][ T8271] F2FS-fs (loop1): invalid crc value
[  210.642981][ T8273] loop0: detected capacity change from 0 to 32768
[  210.657778][ T8271] F2FS-fs (loop1): Try to recover 2th superblock, ret: -30
[  210.665080][ T8271] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[  210.817024][ T8273] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  211.109136][ T8273] XFS (loop0): Ending clean mount
[  211.141966][ T8273] XFS (loop0): Quotacheck needed: Please wait.
[  211.323511][ T8273] XFS (loop0): Quotacheck: Done.
[  211.705775][ T5772] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  211.792241][ T8310] loop4: detected capacity change from 0 to 512
[  211.890683][ T8310] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.824: invalid indirect mapped block 4294967295 (level 1)
[  211.964176][ T8318] loop2: detected capacity change from 0 to 1024
[  212.008261][ T8310] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.824: invalid indirect mapped block 4294967295 (level 1)
[  212.116591][ T8310] EXT4-fs (loop4): 2 truncates cleaned up
[  212.123750][ T8310] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.148908][ T8318] hfsplus: invalid xattr key length: 0
[  212.272190][ T8310] EXT4-fs (loop4): shut down requested (0)
[  212.276006][ T1003] hfsplus: b-tree write err: -5, ino 8
[  212.533505][ T6400] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.014592][ T8322] loop1: detected capacity change from 0 to 32768
[  213.072634][ T8322] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.829 (8322)
[  213.125434][ T8322] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  213.158162][ T8322] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  213.188915][ T8322] BTRFS info (device loop1): max_inline at 0
[  213.213293][ T8322] BTRFS info (device loop1): setting nodatasum
[  213.230176][ T8322] BTRFS info (device loop1): enabling auto defrag
[  213.245323][ T8322] BTRFS info (device loop1): turning on async discard
[  213.277695][ T8322] BTRFS info (device loop1): max_inline at 0
[  213.283779][ T8322] BTRFS info (device loop1): using free space tree
[  213.495454][ T8322] BTRFS info (device loop1): enabling ssd optimizations
[  213.554123][ T8327] loop4: detected capacity change from 0 to 32768
[  213.645412][   T28] audit: type=1800 audit(1771308905.648:4): pid=8322 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.829" name="file2" dev="loop1" ino=261 res=0 errno=0
[  213.714197][ T8327] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  213.716796][   T27] syz_tun: tun_net_xmit 90
[  213.875648][   T27] syz_tun: tun_net_xmit 90
[  213.886416][ T5767] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  213.933412][ T8327] XFS (loop4): Ending clean mount
[  214.187000][ T5152] usb 1-1: new full-speed USB device number 12 using dummy_hcd
[  214.233116][ T6400] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  214.300908][ T5777] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 10 /dev/loop1 scanned by udevd (5777)
[  214.407563][ T5152] usb 1-1: too many endpoints for config 0 interface 0 altsetting 254: 254, using maximum allowed: 30
[  214.449469][ T5152] usb 1-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  214.505307][ T5152] usb 1-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  214.555434][ T5152] usb 1-1: config 0 interface 0 has no altsetting 0
[  214.562609][ T5152] usb 1-1: New USB device found, idVendor=04f2, idProduct=1123, bcdDevice= 0.00
[  214.605255][ T5152] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.641044][ T5152] usb 1-1: config 0 descriptor??
[  215.128510][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.178079][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.195709][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.204168][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.235417][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.242577][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.285308][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.292467][ T5152] chicony 0003:04F2:1123.000B: unknown main item tag 0x0
[  215.355317][ T5152] chicony 0003:04F2:1123.000B: hidraw0: USB HID v0.04 Device [HID 04f2:1123] on usb-dummy_hcd.0-1/input0
[  215.419555][ T5152] usb 1-1: USB disconnect, device number 12
[  215.579246][ T8387] fido_id[8387]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  215.688788][ T8377] loop1: detected capacity change from 0 to 32768
[  215.744955][ T8382] loop2: detected capacity change from 0 to 32768
[  215.771373][ T8382] (syz.2.844,8382,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  215.798400][ T8382] (syz.2.844,8382,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  215.834521][   T28] audit: type=1800 audit(1771308907.838:5): pid=8377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.843" name="file1" dev="loop1" ino=4 res=0 errno=0
[  215.884621][ T8382] JBD2: Ignoring recovery information on journal
[  216.012667][ T8382] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  216.459325][ T8398] netlink: 56 bytes leftover after parsing attributes in process `syz.4.851'.
[  216.490392][ T8398] netlink: 8 bytes leftover after parsing attributes in process `syz.4.851'.
[  216.501765][ T8400] netlink: 'syz.1.848': attribute type 2 has an invalid length.
[  216.510164][ T8400] netlink: 132 bytes leftover after parsing attributes in process `syz.1.848'.
[  216.631960][ T5778] ocfs2: Unmounting device (7,2) on (node local)
[  217.105490][ T5864] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  217.315345][ T5864] usb 5-1: Using ep0 maxpacket: 32
[  217.327399][ T5864] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  217.335845][ T5864] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  217.365246][ T5864] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  217.398681][ T5864] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  217.432466][ T5864] usb 5-1: config 0 interface 0 has no altsetting 0
[  217.453602][ T5864] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  217.476861][ T5864] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  217.488402][ T5864] usb 5-1: Product: syz
[  217.492723][ T5864] usb 5-1: Manufacturer: syz
[  217.499929][ T5864] usb 5-1: SerialNumber: syz
[  217.510353][ T5864] usb 5-1: config 0 descriptor??
[  217.520993][ T5864] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  217.537592][ T5864] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  217.728493][ T8396] loop0: detected capacity change from 0 to 65536
[  217.790838][ T8396] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  217.864089][ T8396] XFS (loop0): Ending clean mount
[  217.879665][ T8396] XFS (loop0): Quotacheck needed: Please wait.
[  217.994604][ T8396] XFS (loop0): Quotacheck: Done.
[  218.088269][ T5841] usb 5-1: USB disconnect, device number 8
[  218.116046][ T5841] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  218.207975][ T5772] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  218.650413][ T8433] loop1: detected capacity change from 0 to 256
[  219.325275][ T5774] Bluetooth: hci2: command 0x0c1a tx timeout
[  219.752982][ T8446] loop1: detected capacity change from 0 to 32768
[  219.786216][ T8446] (syz.1.866,8446,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  219.807921][ T8446] (syz.1.866,8446,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  219.884150][ T8446] JBD2: Ignoring recovery information on journal
[  220.039870][ T8446] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  220.098393][   T28] audit: type=1326 audit(1771308912.098:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1faf99bf79 code=0x7ffc0000
[  220.178807][   T28] audit: type=1326 audit(1771308912.108:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1faf99bf79 code=0x7ffc0000
[  220.272121][   T28] audit: type=1326 audit(1771308912.108:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f1faf99bf79 code=0x7ffc0000
[  220.353254][   T28] audit: type=1326 audit(1771308912.108:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1faf99bf79 code=0x7ffc0000
[  220.402121][   T28] audit: type=1326 audit(1771308912.108:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f1faf99bf79 code=0x7ffc0000
[  220.426897][   T28] audit: type=1326 audit(1771308912.108:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8470 comm="syz.0.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1faf99bf79 code=0x7ffc0000
[  220.507365][ T8476] loop0: detected capacity change from 0 to 4096
[  220.918843][ T5767] ocfs2: Unmounting device (7,1) on (node local)
[  221.015103][ T8488] netlink: 16 bytes leftover after parsing attributes in process `syz.4.885'.
[  221.510035][ T8485] loop2: detected capacity change from 0 to 32768
[  221.535536][ T8485] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.652806][ T8485] XFS (loop2): Ending clean mount
[  221.803824][ T5778] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  221.841799][ T8497] loop0: detected capacity change from 0 to 32768
[  221.891665][   T28] audit: type=1800 audit(1771308913.898:12): pid=8497 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.887" name="file1" dev="loop0" ino=4 res=0 errno=0
[  222.249096][ T8511] program syz.0.891 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  222.332790][ T8513] loop1: detected capacity change from 0 to 1024
[  222.350575][ T8513] EXT4-fs: Ignoring removed oldalloc option
[  222.379820][ T8513] EXT4-fs: Ignoring removed orlov option
[  222.410187][ T8513] EXT4-fs (loop1): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  222.489745][ T8513] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.678731][ T8513] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.892: error while reading EA inode 32 err=-116
[  222.730800][ T8513] EXT4-fs (loop1): Remounting filesystem read-only
[  222.741239][ T8513] EXT4-fs warning (device loop1): ext4_xattr_inode_inc_ref_all:1135: inode #18: comm syz.1.892: cleanup dec ref error -5
[  222.755986][ T8513] EXT4-fs warning (device loop1): ext4_xattr_block_set:2195: inode #18: comm syz.1.892: dec ref error=-5
[  222.802381][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.035843][ T5841] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  223.243387][ T5841] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  223.271542][ T5841] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.285253][ T5841] usb 1-1: Product: syz
[  223.295267][ T5841] usb 1-1: Manufacturer: syz
[  223.299942][ T5841] usb 1-1: SerialNumber: syz
[  223.324377][ T5841] usb 1-1: config 0 descriptor??
[  223.511539][ T8540] input: syz0 as /devices/virtual/input/input17
[  223.690387][ T8545] loop2: detected capacity change from 0 to 256
[  223.706970][ T8545] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  223.783176][ T8545] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  223.798822][ T8547] overlay: Unknown parameter '/32
[  223.798822][ T8547] time
[  223.798822][ T8547] string
[  223.798822][ T8547] statistic
[  223.798822][ T8547] state
[  223.798822][ T8547] realm
[  223.798822][ T8547] rateest
[  223.798822][ T8547] quota
[  223.798822][ T8547] pkttype
[  223.798822][ T8547] physdev
[  223.798822][ T8547] cgroup
[  223.798822][ T8547] cgroup
[  223.798822][ T8547] cgroup
[  223.798822][ T8547] owner
[  223.798822][ T8547] nfacct
[  223.798822][ T8547] nfacct
[  223.798822][ T8547] mac
[  223.798822][ T8547] limit
[  223.798822][ T8547] ipvs
[  223.798822][ T8547] helper
[  223.798822][ T8547] devgroup
[  223.798822][ T8547] cpu
[  223.798822][ T8547] conntrack
[  223.798822][ T8547] conntrack
[  223.798822][ T8547] conntrack
[  223.798822][ T8547] connlabel
[  223.798822][ T8547] connbytes
[  223.798822][ T8547] comment
[  223.798822][ T8547] bpf
[  223.798822][ T8547] bpf
[  223.798822][ T8547] connmark
[  223.798822][ T8547] mark
[  223.798822][ T8547] srh
[  223.798822][ T8547] srh
[  223.798822][ T8547] rt
[  223.798822][ T8547] rpfilter
[  223.798822][ T8547] dst
[  223.798822][ T8547] hbh
[  223.798822][ T8547] mh
[  223.798822][ T8547] ipv6header
[  223.798822][ T8547] frag
[  223.798822][ T8547] eui64
[  223.798822][ T8547] ah
[  223.798822][ T8547] tcpmss
[  223.798822][ T8547] socket
[  223.798822][ T8547] socket
[  223.798822][ T8547] socket
[  223.798822][ T8547] sctp
[  223.798822][ T8547] recent
[  223.798822][ T8547] recent
[  223.798822][ T8547] policy
[  223.798822][ T8547] multiport
[  223.798822][ T8547] length
[  223.798822][ T8547] l2tp
[  223.798822][ T8547] iprange
[  223.798822][ T8547] ipcomp
[  223.798822][ T8547] hl
[  223.798822][ T8547] hashlimit
[  223.798822][ T8547] hashlimit
[  223.798822][ T8547] hashlimit
[  223.798822][ T8547] esp
[  223.798822][ T8547] ecn
[  223.798822][ T8547] tos
[  223.798822][ T8547] dscp
[  223.798822][ T8547] dccp
[  223.798822][ T8547] connlimit
[  223.798822][ T8547] cluster
[  223.798822][ T8547] addrtype
[  224.256557][ T5841] usb 1-1: Firmware version (0.0) predates our first public release.
[  224.264732][ T5841] usb 1-1: Please update to version 0.2 or newer
[  224.286051][   T51] Bluetooth: hci4: command 0x1003 tx timeout
[  224.286228][ T5774] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  224.479234][ T5841] usb 1-1: USB disconnect, device number 13
[  224.714300][ T2132] hid-generic 0006:0004:0009.000C: unknown main item tag 0x0
[  224.726442][ T2132] hid-generic 0006:0004:0009.000C: unknown main item tag 0x0
[  224.734019][ T2132] hid-generic 0006:0004:0009.000C: unknown main item tag 0x0
[  224.780167][ T2132] hid-generic 0006:0004:0009.000C: hidraw0: VIRTUAL HID v0.04 Device [syz1] on syz0
[  224.974587][ T8568] fido_id[8568]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  225.125288][ T8572] loop1: detected capacity change from 0 to 8192
[  225.434312][ T8578] loop4: detected capacity change from 0 to 256
[  225.458318][ T8578] exfat: Deprecated parameter 'namecase'
[  225.464126][ T8578] exfat: Deprecated parameter 'utf8'
[  225.527149][ T8578] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  225.758062][ T8570] loop2: detected capacity change from 0 to 32768
[  225.882331][   T28] audit: type=1800 audit(1771308917.888:13): pid=8570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.914" name="file1" dev="loop2" ino=4 res=0 errno=0
[  226.109696][ T8590] loop1: detected capacity change from 0 to 256
[  226.188060][ T8590] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  226.425876][ T5152] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  226.620128][ T5152] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  226.629567][ T5152] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.655250][ T5152] usb 5-1: Product: syz
[  226.659529][ T5152] usb 5-1: Manufacturer: syz
[  226.685868][ T5152] usb 5-1: SerialNumber: syz
[  226.704150][ T5152] usb 5-1: config 0 descriptor??
[  226.939597][ T8594] loop0: detected capacity change from 0 to 32768
[  227.070728][ T8594] read_mapping_page failed!
[  227.102685][ T8594] ERROR: (device loop0): txCommit: 
[  227.102685][ T8594] 
[  227.568885][ T5152] usb 5-1: Firmware version (0.0) predates our first public release.
[  227.579201][ T5152] usb 5-1: Please update to version 0.2 or newer
[  227.629245][ T5152] usb 5-1: USB disconnect, device number 9
[  227.969087][   T96] block nbd0: Possible stuck request ffff888022590000: control (read@0,1024B). Runtime 30 seconds
[  227.980579][   T96] block nbd0: Possible stuck request ffff888022590200: control (read@1024,1024B). Runtime 30 seconds
[  227.991696][   T96] block nbd0: Possible stuck request ffff888022590400: control (read@2048,1024B). Runtime 30 seconds
[  228.005267][   T96] block nbd0: Possible stuck request ffff888022590600: control (read@3072,1024B). Runtime 30 seconds
[  228.274835][ T8618] net_ratelimit: 52 callbacks suppressed
[  228.274855][ T8618] Set syz1 is full, maxelem 1038 reached
[  228.421237][ T8625] netlink: 201392 bytes leftover after parsing attributes in process `syz.1.938'.
[  228.771165][ T8631] loop0: detected capacity change from 0 to 512
[  228.792529][ T8631] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  228.850615][ T8631] EXT4-fs (loop0): 1 truncate cleaned up
[  228.861018][ T8619] loop4: detected capacity change from 0 to 32768
[  228.869230][ T8631] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.952389][   T28] audit: type=1800 audit(1771308920.958:14): pid=8619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.935" name="file1" dev="loop4" ino=4 res=0 errno=0
[  228.973587][ T8631] EXT4-fs error (device loop0): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.0.941: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  229.041965][ T8631] EXT4-fs error (device loop0) in ext4_delete_entry:2800: Corrupt filesystem
[  229.172769][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.585778][   T27] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  229.809262][   T27] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  229.822519][   T27] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  229.846543][   T27] usb 1-1: config 220 has an invalid descriptor of length 1, skipping remainder of the config
[  229.861308][   T27] usb 1-1: config 220 has no interface number 2
[  229.868226][   T27] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  229.887613][   T27] usb 1-1: config 220 interface 0 has no altsetting 0
[  229.894576][   T27] usb 1-1: config 220 interface 76 has no altsetting 0
[  229.912277][   T27] usb 1-1: config 220 interface 1 has no altsetting 0
[  229.956107][   T27] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  229.967811][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.976019][ T5864] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  229.994480][   T27] usb 1-1: Product: syz
[  230.000066][   T27] usb 1-1: Manufacturer: syz
[  230.010218][   T27] usb 1-1: SerialNumber: syz
[  230.140509][ T8662] tun0: tun_chr_ioctl cmd 1074025680
[  230.178417][ T5864] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  230.191439][ T5864] usb 5-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00
[  230.205713][ T5864] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.234627][ T5864] usb 5-1: config 0 descriptor??
[  230.250607][   T27] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  230.286931][   T27] usb 1-1: No valid video chain found.
[  230.292581][   T27] usb 1-1: selecting invalid altsetting 0
[  230.348170][   T27] usb 1-1: selecting invalid altsetting 0
[  230.364450][   T27] usbtest: probe of 1-1:220.1 failed with error -22
[  230.385264][   T27] usb 1-1: USB disconnect, device number 14
[  230.699965][ T5864] cypress 0003:04B4:DE61.000D: unknown main item tag 0x0
[  230.713240][ T5864] cypress 0003:04B4:DE61.000D: unknown main item tag 0x0
[  230.721554][ T5864] cypress 0003:04B4:DE61.000D: unknown main item tag 0x0
[  230.729286][ T5864] cypress 0003:04B4:DE61.000D: unknown main item tag 0x0
[  230.745687][ T5864] cypress 0003:04B4:DE61.000D: item fetching failed at offset 4/7
[  230.774898][ T5864] cypress 0003:04B4:DE61.000D: parse failed
[  230.781286][ T5864] cypress: probe of 0003:04B4:DE61.000D failed with error -22
[  230.940227][ T8680] loop0: detected capacity change from 0 to 1024
[  230.948786][ T5152] usb 5-1: USB disconnect, device number 10
[  230.956336][ T8680] EXT4-fs: Ignoring removed oldalloc option
[  230.971311][ T8680] EXT4-fs: Ignoring removed orlov option
[  231.001530][ T8680] EXT4-fs (loop0): stripe (1570) is not aligned with cluster size (16), stripe is disabled
[  231.049401][ T8680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.165546][ T5864] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  231.202536][ T8680] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.964: error while reading EA inode 32 err=-116
[  231.216065][ T8680] EXT4-fs (loop0): Remounting filesystem read-only
[  231.222656][ T8680] EXT4-fs warning (device loop0): ext4_xattr_inode_inc_ref_all:1135: inode #18: comm syz.0.964: cleanup dec ref error -5
[  231.235655][ T8680] EXT4-fs warning (device loop0): ext4_xattr_block_set:2195: inode #18: comm syz.0.964: dec ref error=-5
[  231.286746][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.356436][ T5864] usb 2-1: Using ep0 maxpacket: 8
[  231.377967][ T5864] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  231.398614][ T5864] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  231.418966][ T5864] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  231.442595][ T5864] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  231.462216][ T5864] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  231.496745][ T5864] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  231.507645][ T5864] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.752627][ T5864] usb 2-1: GET_CAPABILITIES returned 0
[  231.771649][ T5864] usbtmc 2-1:16.0: can't read capabilities
[  232.016911][ T5864] usb 2-1: USB disconnect, device number 13
[  232.073752][ T8707] Set syz1 is full, maxelem 1038 reached
[  232.763216][ T8724] loop1: detected capacity change from 0 to 2048
[  232.796794][ T8724] EXT4-fs: Ignoring removed mblk_io_submit option
[  232.803363][ T8724] EXT4-fs: Ignoring removed mblk_io_submit option
[  232.877177][ T8724] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  232.966113][ T8715] loop2: detected capacity change from 0 to 32768
[  232.973750][ T8715] XFS: ikeep mount option is deprecated.
[  233.043042][ T8724] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.984: bg 0: block 234: padding at end of block bitmap is not set
[  233.072898][ T8715] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  233.134855][ T8724] EXT4-fs (loop1): Remounting filesystem read-only
[  233.196098][ T8738] loop0: detected capacity change from 0 to 1024
[  233.204351][ T8738] EXT4-fs: Ignoring removed nobh option
[  233.210352][ T8738] EXT4-fs: Ignoring removed bh option
[  233.214807][ T8715] XFS (loop2): Ending clean mount
[  233.228762][ T8738] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  233.262529][ T8715] XFS (loop2): Quotacheck needed: Please wait.
[  233.284657][ T8738] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.331128][ T8722] loop4: detected capacity change from 0 to 32768
[  233.350068][ T8722] (syz.4.983,8722,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  233.412517][ T8715] XFS (loop2): Quotacheck: Done.
[  233.418861][ T8722] (syz.4.983,8722,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  233.446119][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.483955][ T8738] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4047: comm syz.0.986: Allocating blocks 417-513 which overlap fs metadata
[  233.569006][ T8722] JBD2: Ignoring recovery information on journal
[  233.669456][ T8742] EXT4-fs (loop0): pa ffff88807f9d99f8: logic 15984, phys. 113, len 25
[  233.678803][ T8742] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5388: group 0, free 19, pa_free 25
[  233.841114][ T8722] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  233.947985][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.025899][ T5778] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  234.587463][ T6400] ocfs2: Unmounting device (7,4) on (node local)
[  235.091981][ T8780] loop4: detected capacity change from 0 to 512
[  235.111534][ T8780] EXT4-fs: Ignoring removed bh option
[  235.160348][ T8780] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  235.297240][ T8780] EXT4-fs (loop4): 1 truncate cleaned up
[  235.351343][ T8780] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  235.780563][ T6400] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.112890][ T8803] loop4: detected capacity change from 0 to 128
[  236.143094][ T8803] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  236.178441][ T8803] ext4 filesystem being mounted at /192/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  236.312365][ T8803] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 26915 (only 1 groups)
[  236.500950][ T8795] loop1: detected capacity change from 0 to 32768
[  236.543593][ T8795] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1007 (8795)
[  236.580640][ T8795] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  236.616383][ T8795] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  236.625703][ T8795] BTRFS info (device loop1): force clearing of disk cache
[  236.632894][ T8795] BTRFS info (device loop1): enabling auto defrag
[  236.649503][ T8795] BTRFS info (device loop1): enabling ssd optimizations
[  236.658955][ T6400] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  236.668348][ T8795] BTRFS info (device loop1): max_inline at 0
[  236.698395][ T8795] BTRFS info (device loop1): enabling disk space caching
[  236.715408][ T8795] BTRFS info (device loop1): disk space caching is enabled
[  236.845353][ T2132] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  236.919251][ T8795] BTRFS info (device loop1): rebuilding free space tree
[  236.967720][ T8795] BTRFS info (device loop1): disabling free space tree
[  236.977168][ T8795] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  237.001520][ T8795] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  237.042676][   T28] audit: type=1800 audit(1771308929.048:15): pid=8795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1007" name="file2" dev="loop1" ino=261 res=0 errno=0
[  237.073871][ T2132] usb 3-1: Using ep0 maxpacket: 16
[  237.081813][ T2132] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  237.102736][ T2132] usb 3-1: config 0 interface 0 has no altsetting 0
[  237.111184][ T2132] usb 3-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  237.120944][ T2132] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.141761][ T2132] usb 3-1: config 0 descriptor??
[  237.146364][ T5858] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  237.156367][ T5767] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  237.258262][ T5864] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  237.365731][ T5858] usb 5-1: Using ep0 maxpacket: 8
[  237.389031][ T5858] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  237.425430][ T5858] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  237.445473][ T5858] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  237.485323][ T5858] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  237.502696][ T5864] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[  237.515297][ T5858] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  237.545487][ T5864] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  237.556519][ T5858] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.567318][ T5864] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  237.585401][ T5864] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  237.631686][ T5864] usb 1-1: Manufacturer: syz
[  237.638656][ T2132] nzxt-smart2 0003:1E71:2009.000E: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.2-1/input0
[  237.673486][ T5864] usb 1-1: config 0 descriptor??
[  237.829741][ T5858] usb 5-1: GET_CAPABILITIES returned 0
[  237.843460][ T5858] usbtmc 5-1:16.0: can't read capabilities
[  237.856680][ T5864] rc_core: IR keymap rc-hauppauge not found
[  237.873775][ T5864] Registered IR keymap rc-empty
[  237.915124][ T5864] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  237.949089][ T5864] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input18
[  238.085873][ T5858] usb 5-1: USB disconnect, device number 11
[  238.132122][ T1190] usb 3-1: USB disconnect, device number 13
[  238.209615][ T8839] rc rc0: two consecutive events of type space
[  238.291409][ T1003] wlan1: Trigger new scan to find an IBSS to join
[  238.341187][ T1003] ------------[ cut here ]------------
[  238.347392][ T1003] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0xffffffff with flags 0x20
[  238.359079][ T1003] WARNING: CPU: 0 PID: 1003 at net/mac80211/rate.c:385 __rate_control_send_low+0x635/0x880
[  238.369200][ T1003] Modules linked in:
[  238.373188][ T1003] CPU: 0 PID: 1003 Comm: kworker/u4:6 Not tainted syzkaller #0
[  238.380841][ T1003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  238.391055][ T1003] Workqueue: events_unbound cfg80211_wiphy_work
[  238.397477][ T1003] RIP: 0010:__rate_control_send_low+0x635/0x880
[  238.403811][ T1003] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 80 cc de 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 9b 91 56 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff
[  238.423604][ T1003] RSP: 0018:ffffc9000431f380 EFLAGS: 00010246
[  238.428487][ T5864] usb 1-1: USB disconnect, device number 15
[  238.430112][ T1003] RAX: 530d73676feddd00 RBX: 000000000000000c RCX: ffff88802323bc00
[  238.444015][ T1003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  238.452114][ T1003] RBP: 0000000000000084 R08: ffffc9000431ef87 R09: 1ffff92000863df0
[  238.460197][ T1003] R10: dffffc0000000000 R11: fffff52000863df1 R12: 0000000000000020
[  238.468289][ T1003] R13: dffffc0000000000 R14: ffff88805c363358 R15: ffff888024fa22a8
[  238.476370][ T1003] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  238.485420][ T1003] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  238.492094][ T1003] CR2: 0000001b2d711ff8 CR3: 000000006065b000 CR4: 00000000003506f0
[  238.500202][ T1003] Call Trace:
[  238.503559][ T1003]  <TASK>
[  238.506605][ T1003]  rate_control_send_low+0x194/0x790
[  238.511952][ T1003]  rate_control_get_rate+0x20b/0x5d0
[  238.517459][ T1003]  ieee80211_tx_h_rate_ctrl+0xb63/0x1790
[  238.523203][ T1003]  ? ieee80211_tx_h_select_key+0x19e0/0x19e0
[  238.529304][ T1003]  ? __lock_acquire+0x1273/0x7d40
[  238.534402][ T1003]  ? ieee80211_is_bufferable_mmpdu+0xfb/0x1f0
[  238.540602][ T1003]  invoke_tx_handlers_late+0xb6/0x1810
[  238.546726][ T1003]  ? invoke_tx_handlers_early+0xa11/0x1cf0
[  238.552625][ T1003]  ieee80211_tx+0x2d8/0x460
[  238.557461][ T1003]  ? ieee80211_skb_resize+0x630/0x630
[  238.563004][ T1003]  ? ieee80211_set_qos_hdr+0x1ca/0x510
[  238.568692][ T1003]  ? __bpf_trace_tasklet+0x160/0x160
[  238.574063][ T1003]  ? ieee80211_xmit+0x310/0x3f0
[  238.579043][ T1003]  ? __ieee80211_tx_skb_tid_band+0x490/0x610
[  238.585744][ T1003]  __ieee80211_tx_skb_tid_band+0x4d5/0x610
[  238.591722][ T1003]  ? ieee80211_scan_state_send_probe+0x4b4/0x930
[  238.598281][ T1003]  ieee80211_scan_state_send_probe+0x560/0x930
[  238.604550][ T1003]  ieee80211_scan_work+0x4e9/0x1c40
[  238.609903][ T1003]  cfg80211_wiphy_work+0x225/0x260
[  238.615097][ T1003]  ? process_scheduled_works+0x96f/0x15d0
[  238.621125][ T1003]  process_scheduled_works+0xa5d/0x15d0
[  238.627265][ T1003]  ? assign_work+0x430/0x430
[  238.631937][ T1003]  ? assign_work+0x3d0/0x430
[  238.636682][ T1003]  worker_thread+0xa55/0xfc0
[  238.641351][ T1003]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  238.647353][ T1003]  ? _raw_spin_unlock+0x40/0x40
[  238.652291][ T1003]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  238.658359][ T1003]  kthread+0x2fa/0x390
[  238.662487][ T1003]  ? pr_cont_work+0x560/0x560
[  238.667271][ T1003]  ? kthread_blkcg+0xd0/0xd0
[  238.671940][ T1003]  ret_from_fork+0x48/0x80
[  238.676569][ T1003]  ? kthread_blkcg+0xd0/0xd0
[  238.681232][ T1003]  ret_from_fork_asm+0x11/0x20
[  238.686152][ T1003]  </TASK>
[  238.689217][ T1003] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  238.696537][ T1003] CPU: 0 PID: 1003 Comm: kworker/u4:6 Not tainted syzkaller #0
[  238.704132][ T1003] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  238.714242][ T1003] Workqueue: events_unbound cfg80211_wiphy_work
[  238.720566][ T1003] Call Trace:
[  238.723894][ T1003]  <TASK>
[  238.726883][ T1003]  dump_stack_lvl+0x18c/0x250
[  238.731641][ T1003]  ? show_regs_print_info+0x20/0x20
[  238.737016][ T1003]  ? load_image+0x400/0x400
[  238.741599][ T1003]  panic+0x2dc/0x730
[  238.745554][ T1003]  ? bpf_jit_dump+0xd0/0xd0
[  238.750138][ T1003]  ? ret_from_fork_asm+0x11/0x20
[  238.755139][ T1003]  __warn+0x2e0/0x470
[  238.759164][ T1003]  ? __rate_control_send_low+0x635/0x880
[  238.764871][ T1003]  ? __rate_control_send_low+0x635/0x880
[  238.770563][ T1003]  report_bug+0x2be/0x4f0
[  238.774938][ T1003]  ? __rate_control_send_low+0x635/0x880
[  238.780603][ T1003]  ? __rate_control_send_low+0x635/0x880
[  238.786270][ T1003]  ? __rate_control_send_low+0x637/0x880
[  238.791934][ T1003]  handle_bug+0xcf/0x120
[  238.796215][ T1003]  exc_invalid_op+0x1a/0x50
[  238.800758][ T1003]  asm_exc_invalid_op+0x1a/0x20
[  238.805634][ T1003] RIP: 0010:__rate_control_send_low+0x635/0x880
[  238.811903][ T1003] Code: 30 42 0f b6 04 28 84 c0 0f 85 e6 01 00 00 41 8b 0e 48 c7 c7 80 cc de 8b 48 8b 74 24 10 44 8b 44 24 1c 45 89 e1 e8 9b 91 56 f7 <0f> 0b e9 78 fe ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 03 fa ff
[  238.831629][ T1003] RSP: 0018:ffffc9000431f380 EFLAGS: 00010246
[  238.837921][ T1003] RAX: 530d73676feddd00 RBX: 000000000000000c RCX: ffff88802323bc00
[  238.846027][ T1003] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000002
[  238.854049][ T1003] RBP: 0000000000000084 R08: ffffc9000431ef87 R09: 1ffff92000863df0
[  238.862051][ T1003] R10: dffffc0000000000 R11: fffff52000863df1 R12: 0000000000000020
[  238.870115][ T1003] R13: dffffc0000000000 R14: ffff88805c363358 R15: ffff888024fa22a8
[  238.878152][ T1003]  rate_control_send_low+0x194/0x790
[  238.883502][ T1003]  rate_control_get_rate+0x20b/0x5d0
[  238.888838][ T1003]  ieee80211_tx_h_rate_ctrl+0xb63/0x1790
[  238.894520][ T1003]  ? ieee80211_tx_h_select_key+0x19e0/0x19e0
[  238.900528][ T1003]  ? __lock_acquire+0x1273/0x7d40
[  238.905589][ T1003]  ? ieee80211_is_bufferable_mmpdu+0xfb/0x1f0
[  238.911696][ T1003]  invoke_tx_handlers_late+0xb6/0x1810
[  238.917206][ T1003]  ? invoke_tx_handlers_early+0xa11/0x1cf0
[  238.923063][ T1003]  ieee80211_tx+0x2d8/0x460
[  238.927604][ T1003]  ? ieee80211_skb_resize+0x630/0x630
[  238.933020][ T1003]  ? ieee80211_set_qos_hdr+0x1ca/0x510
[  238.938510][ T1003]  ? __bpf_trace_tasklet+0x160/0x160
[  238.943823][ T1003]  ? ieee80211_xmit+0x310/0x3f0
[  238.948704][ T1003]  ? __ieee80211_tx_skb_tid_band+0x490/0x610
[  238.954721][ T1003]  __ieee80211_tx_skb_tid_band+0x4d5/0x610
[  238.960565][ T1003]  ? ieee80211_scan_state_send_probe+0x4b4/0x930
[  238.967037][ T1003]  ieee80211_scan_state_send_probe+0x560/0x930
[  238.973254][ T1003]  ieee80211_scan_work+0x4e9/0x1c40
[  238.978513][ T1003]  cfg80211_wiphy_work+0x225/0x260
[  238.983664][ T1003]  ? process_scheduled_works+0x96f/0x15d0
[  238.989439][ T1003]  process_scheduled_works+0xa5d/0x15d0
[  238.995041][ T1003]  ? assign_work+0x430/0x430
[  238.999662][ T1003]  ? assign_work+0x3d0/0x430
[  239.004286][ T1003]  worker_thread+0xa55/0xfc0
[  239.008908][ T1003]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  239.014825][ T1003]  ? _raw_spin_unlock+0x40/0x40
[  239.019794][ T1003]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  239.025735][ T1003]  kthread+0x2fa/0x390
[  239.029830][ T1003]  ? pr_cont_work+0x560/0x560
[  239.034536][ T1003]  ? kthread_blkcg+0xd0/0xd0
[  239.039155][ T1003]  ret_from_fork+0x48/0x80
[  239.043600][ T1003]  ? kthread_blkcg+0xd0/0xd0
[  239.048217][ T1003]  ret_from_fork_asm+0x11/0x20
[  239.053027][ T1003]  </TASK>
[  239.056637][ T1003] Kernel Offset: disabled
[  239.061117][ T1003] Rebooting in 86400 seconds..