last executing test programs:

3m51.627131841s ago: executing program 3 (id=441):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x84, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x58, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x1c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}]}, @NFTA_IMMEDIATE_DREG={0x8}]}}}, {0x18, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xac}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x3}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x3c}, 0x1, 0x0, 0x0, 0x4011}, 0x4000094)

3m51.492947852s ago: executing program 3 (id=442):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000000c0)={0x0, 0xffffffff, 0x0, 0x9, 0x0, "0006000000df0066952e0d16c708db720800"})
r1 = syz_open_pts(r0, 0x42)
ioctl$TIOCMSET(r1, 0x5418, 0x0)

3m51.355684002s ago: executing program 3 (id=444):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002700)={0x1244, r1, 0x5, 0x4, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x121c, 0x70, [@NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}, @NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x0, 0x8, 0x6}, @NL80211_MESH_SETUP_IE={0x1004, 0x3, "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"}, @NL80211_MESH_SETUP_IE={0x93, 0x3, "7d59f8973b1d1166b27fc649f9f753b3ae44004e26ac98dfd617e11eca756dbf6d92cee9ed0446174c9d211c621ed7c7eb984aa0c86af04f5aba6b0827559ab340f3317b81952f20a3572f06432501ba65d0b951fd82a8e370fd40e70c684b8934b52796e130a12c927d449f9b778a4ddc2a250e944b214bc136525f71656b2066660e71169cab63f277d14ecbf8d8"}, @NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5, 0x2, 0x1}, @NL80211_MESH_SETUP_USERSPACE_AMPE={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5, 0x6, 0x1}, @NL80211_MESH_SETUP_IE={0xae, 0x3, "5302413352446b61e7aa09193d9e673718c2bdc110f716f02700b6139d4b439ecd5e45da283e921efa4fe7236ca7dbcb905c0904bf889758cb35552bfab4a333702592931f46c2d427c7805b12fded976957c045bba4d273c0fbe8d4857708aeacd1ea9d8023ef475e585a1500ea20b576e782f2ab49a08c97a6eac6f66384c0cf5d6fd9e312cec0b588b9302f65cd63dff25a8b17aa945c5094847e83767393e2970fa39a611c2f424d"}, @NL80211_MESH_SETUP_IE={0xe5, 0x3, "09e11ca5263c71f0f60b03558f7237bcdd125d5e7701dd53b9369b12c824437a6b5a336ea9a5f28135f8755eab2d3d05086fad85d5b86af79487a795206246bb9c1b8323ff577e68fccc91e1f64ae0099f7f8b5584642654f0a65190ddbbb0675de189ec856080130ac06adad15a1045c476bdc0a6ca27bc07645d7bd41035342f240b45671a987be9c466c9efcaa727c410cdd983b88645"}, @NL80211_MESH_SETUP_AUTH_PROTOCOL={0x0, 0x8, 0x5}]}]}, 0x1244}}, 0x0)

3m51.192311685s ago: executing program 3 (id=448):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="646973636172642c71756f74612c6572726f72733d72656d6f756e742d726f2c696f636861727365743d6d61637475726b6973682c6572726f72733d72656d6f756e742d726f2c71756f74612c696f636861727365743d6d616363726f617469616e006572726f72733d72656d6f756e742d726f2c75737271756f74612c71756f74612c726573697a653d3078666666666666666666666666666666652c67727071756f74612c726573697a652ce469735e6172642c61707072616973652c7375626a5f757365723d21952c7375626a5f726f6c653d726573697a652c009ef7dedaf99914f1191fa7ecfdcb4ba89dbf29d22120cd30b112936b8472407199197b591330e34b0743dc2a47ac88da456101e95586cd1130427f8548a80e1344c762d93c3bf179c0be3f9ea27cd3efef28ea45a5131b22a7b0b0e1fb4eb7808185b419d038fb7b75b13df45e14ae8316fed98431413f144f69b0657af7cd57f2d331345fa49be4c7960e30d3be3323717fc0e43a7a50ef94ced974489e7edf8bd2d4dd75178232d4bf89704551fb62c1ddcefd1428264d6310790cc6ee19148bef74b26fa42eb17b4b7ae98d9c696c1935325b89ea30785d7cd6fffb6f7803aad98f9577c839e23d8db201f28440f34e5481425ce9e950e6339b3b5fdd3a6f90360022601ba2a181a3faa4a9ea650f8b486b6bbdaa22fa91e2c7d12182db964e379a3066cc881966780feb250ce89140ca9dd07e7d7e3796677b9827cb802c0c4f7aa3d42fe331927229108c015dda7899d755"], 0x1, 0x61ae, &(0x7f0000007640)="$eJzs3c1vHGcdB/DfvvolNLV6qEqEkJuWl1KaxEkJgQJtD3Dg0gPKFSVy3SoiBZQYlFYWceULB078BSAkjghxRBz4A3rgyo0TJyLZSKCeGDT288Szm92uXds7a8/nIzkzv3lmvc/4u7MvmZl9AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACI73/vByutiLj187RgKeIz0YloRyyU9XJELCwv5fW7EfFc7DbHsxHRm4sob7/7z9MRr0bER+cjtnc2VsvFVw/Yj+/+8e+/++G5t/72h97l//5pffx6Dx786j9/fniULQYAAIDmKYqiaKWP+RfS5/t23Z0CAKYiv/4XSV5+5utf//Otv8xSf9RqtVqtnkJdVYz2sFpExGb1NuV7BofjAeCU2YyP6+4CNZJ/o3Uj4lzdnQBmWqvuDnAitnc2Vlsp31b19WB5rz2fCzKQ/2br8fUd46aTDJ9jMq3H11Z04pkx/VmYUh9mSc6/PZz/rb32flrvpPOflnH59/cufWqcnH9nOP8hZyf/9sj8myrn3z1U/h35AwAAAADADMv//79U8/HfuaNvyoF80vHf5Sn1AQAAAAAAAACO21HH/3vsWMf/67w2bj3j/wEAAMDhlZ/VS785v79s3HexlctvtiKeGlofaJh0scxi3f0AAAAAAAAAAAAAgCbp7p3De7MV0YuIpxYXi6Iof6qG68M66u1Pu6ZvPzRZ3U/yAACw56PzQ9fytyLmI+Jm+q6/3uLiYlHMLywWi8XCXH4/25+bLxYqn2vztFw21z/AG+Juvyh/2XzldlWTPi9Pah/+feV99YvOATp2THrprzmmuaawASDZezXa9op0xhTF0+PefMAA+/8ZtBRLdT+umH11P0wBAACAk1cURdFKX+d9IR3zb9fdKQBgKvLr//BxgSPV7THtEcfz+9VqtVqtVn+quqoY7WG1iIjN6m3K9wyG4weAU2YzPq67C9RI/o3WjYjn6u4EMNNadXeAE7G9s7HaSvm2qq8HaXz3fC7IQP6brd3b5duPmk4yfI7JtB5fW9GJZ8b059kp9WGW5Pzbw/nf2mvvp/VOOv9pGZd/f/eSuebJ+XeG8x9ydvJvj8y/qXL+3UPl35E/AAAAAADMsPz//0uO/+ZNBgAAAAAAAIBTZ3tnYzVf95qP/39uxHqu/zybcv6tw+a/kOblf6rl/NtD+X95aL1OZf7Rm/v7/793NlZ/v/6vz+bpQfOfyzOt9MhqpUdEK91Tq5umR9m6J231Ov3ynnqtdqebzvkpeu/Enbgba3FlYN12+nvst68MtJc97Q20Xx1o7z7Rfm2gvZe+d6BYyO2XYjV+Enfj7d32sm1uwvbPT2gvJrTn/Due/xsp59+t/JT5L6b21tC09OjD9hP7fXU66n7euPP5X145+c2ZaCs6j7etqty+izX0Z/dvcq4fP7u/du/Sg9vr6/dWIk0Gll6NNDlmOf/e7s/c/vP/C3vt+Xm/ur8++rB/6PxnxVZ0x+b/QmW+3N6Xpty3OuT8++kn5/92ah+9/5/m/Mfv/y/X0B8AAAAAAAAAAAAAAAD4JEVR7F4i+kZEXE/X/9R1bSYAMF359b9I8nK1Wq1Wq9Vnr64qRnu9WkTEX6u3Kd8z/GLULwMAZtn/IuIfdXeC2si/wfL3/ZXTF+vuDDBV99//4Ee3795du3e/7p4AAAAAAAAAAJ9WHv9zuTL+84sRsTS03sD4r2/G8lHH/+zmmccDjB7zQN9jbLX7nXZluPHnY3d87kvjxv++GE+O/53HxO1Ut2OM3oT2/oT2uQnt8yOX7qc18kKPipz/85Xxzsv8LwwNv96E8V+Hx7xvgpz/xcrjucz/S0PrVfMvfjtz+W8edMWtaA/kf3n9vZ9evv/+B6/cee/2u2vvrv342srKlWvXr9+4cePyO3furl3Z+/dkej0Dcv557GvngTZLzj9nLv9myfl/IdXyb5ac/xdTLf9myfnn93vyb5acf/7sI/9myfm/lGr5N0vO/yupln+zbO9szJX5v5xq+TdL3v+/mmr5N0vO/5VUy79Zcv6XUi3/Zsn5X071AfL39fBnSM4/H+Gy/zdLzn8l1fJvlpz/1VTLv1ly/tdSLf9myfm/mmr5N0vO/2upln+z5Pyvp1r+zZLz/3qq5d8sOf8bqZZ/s+T8v5Fq+TdLzv+bqZZ/s+T8X0u1/Jsl5/+tVMu/WXL+3061/Jsl5/+dVMu/WXL+r6da/s2y//3/ZsyYMZNn6n5mAgAAAAAAAAAAAACGTeN04rq3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4PztwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwt7dxch11mcAP7PetddOQgyE4KQGNokJIXGyazvxB22KCZ8NUAokFPqB43rXZsFfeO0SKJJNAyUSRkUVFelFW0CojVRVRBUXtKI0F1U/rkp7QW8q2kpIjaqAAipSW1G2mnPe992Z2dmZWe9kPXve309K/rszZ+acOXNmdp9dP3sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaHXL6+c+3SiKovlf+b/tRXFt8+OtU9vLy15ztbcQAAAAWKv/K///3PXpgsMD3Khlmb99+T98bXFxcbF476bfnfj84mK6YqooJrYURXld9NS/v6/RukzwWDHZGGv5fKzP6jf1uX68z/UTfa7f3Of6LX2un+xz/bIdsMzW6ucx5Z3tKj/cXu3S4oZiorxuV5dbPdbYMjYWf5ZTapS3WZw4XswXJ4u5YqZt+WrZRrn8N25prustRVzXWMu6djaPkB98/FjchkbYx7va1rV0n9H3XldM/fAHHz/2R+efvanb7Lsb2u6v2s47bm1u5yfDJdW2NootaZ/E7Rxr2c6dXZ6TTW3b2Shv1/y4czufG3A7Ny1t5rrqfM4ni7Hy42+V+2m89cd6aT/tDJf9921FUVxa2uzOZZatqxgrtrVdMrb0/ExWR2TzPpqH0ouK8VUdp7cMcJw25+yu9uO08zURn/9bwu3GV9iG1qfpe5/YvOx5X+1xGjUf9Uqvlc5jcNivlVE5BuNx8a3yQT/e9RjcFR7/x29f+Rjseux0OQbT4245Bm/tdwyObd5UbnN6EhrlbZaOwT1ty28q19Qo5zO39z4Gp8+fOju98NGP3T1/6uiJuRNzp/ft2TOzb//+gwcPTh+fPzk3U/3/Cvf26NtWjKXXwK1h38XXwKs6lm09VBe/NLzX4WSP1+H2jmWH/Toc73xwjfV5QS4/pqvXxkPNnT55eaxY4TVWPj93rv11mB53y+twvOV12PVrSpfX4fgAr8PmMmfvHOx7lvGW/7ptw/P1tWB7yzHY+f1I5zE47O9HRuUYnAzHxb/cufLXgp1hex/fvdrvRzYtOwbTww3vPc1L0vf7kwfL0e24vLl5xTWbiwsLc+fuefTo+fPn9hRhrIsXtxwrncfrtpbHVCw7XsdWfbwenn/54zd3uXx72FeTdzf/N7nic9Vc5t57ej9X5Ve37vuz7dK9RRhDtt77s9tX8+b+TFmyx/5sLvPJ6bV/L55yacv778QK778x9/+kWl+6q8c2TYxXr99Nae9MtL0ftz9V4+V7V6Nc93PTg70fT4T/1vv9+IYe78c7OpYd9vvxROeDi+/HjX4/7VibzudzMhwnJ2d6vx83l9mxd7XH5HjP9+PbwmyE/f/qkBRSLmo5dlY6btO6xscnwuMaj2toP073tS0/EbJZc11P7r2y4/SO26r72pQe3ZL1Ok6nOpYd9nGa3q9WOk4b/X76dmU6n8/JcFzcsK/3cdpc5ul71/7euTV+2PLeubnfMTixaXNzmyfSQVi93y9ujcfgPcWx4kxxspgtr91cHk+Ncl277xvsGNwc/lvv98odPY7BOzqWHfYxmL6OrXTsNcaXP/gh6Hw+J8Nx8cR9vY/B5jJvODDc713vCJekZVq+d+38+dpKP/O6uWM3PZ8/82pu518f6P2z2eYyJw+uNmf23k93hUuu6bKfOl+/K72mZov12U87wnY+e3Dl/dTcnuYynz804PF0uCiKix9+oPx5b/j9yp9d+PbX2n7v0u13Ohc//MD3rzv+N6vZfgA2vp9UY1v1ta7lN1OD/P4fAAAA2BBi7h8LM5H/AQAAoDZi7o//KjyR/wEAAKA2Yu4fDzPJJP/veMOz8z+5WKRm/mIQr0+74cFqudhxnQmfTy0uaV7+wFfmfvQXFwdb91hRFD9+8De6Lr/jwbhdlamwnU+9sf3y5Te8OND6H3l4abnW/voXw/3HxzPoYdCtgjtTFMU3rv9suZ6p910u59MPPlLOd116/LHmMs8dqj6Pt3/mxdXyvx/Kv4ePH227/TNhP3w3zJm3dt8f8XZfvfzqnQfes7S+eLvGrS8oH/YT76/uN/6dnM89Vi0f9/NK2/+Xn3nyq83lH31l9+2/ONZ9+58M9/uVMP/nZdXyrc9B8/N4u0+F7Y/ri7e758vf7Lr9T326Wv7sm6rlHgkzrv+O8PmuNz0737q/Hm0cbXtcxZur5eL6Z7792+X18f7i/Xdu/+SRy237o/P4ePqfqvuZ7lg+Xh7XE/15x/qb99N6fMb1P/lbj7Tt537rf+pdz7yseb+d67+rY7lNHbfv/ItNf/Cpz3ZdX9yew396tu3xHH5neB2H9T/x/nA8huv/96nPtq03euSd7e8/cfkvbr/Y9niit/ywWv9Trz1Rzv+Y+tHvXXPtdS+49IrmviuKb727ur9+6z/xh2fatv9LN95ZPh/x+tjR71z/SuL6z31k9+kzCxfmZ1v2avm3c95Wbc+Wya3bmtt7fXhv7fz8yJnzH5g7NzUzNVMUU/X9E3pX7Mthfr8al1Z7+zsfDs/nzV/4xrbb//Ez8fJ/fqi6/PJbq69brwrLfS5cvr16/hYba1z/E7fcWL6+G09Xn7f12Idg567/PDjQguHxd35fEI/3sy/5QLkfmteVXzfi63qN2/+d2ep+vh7262L4y8y33ri0vtbl499GuPzu6vW+5v0X3ubi8/rH4fl++3er+4/bFR/vd8L3Md/c0f5+F4+Pr18c67z/8q94XArvJ8Wl6vq4VNzfl5+7sevmxb9DUly6qfz8d9L93LSqh7mShY8uTJ+cP33h0enzcwvnpxc++rEjp85cOH3+SPm3PI98sN/tl96ftpXvT7Nz++8tZrYWRXGmmFmHN6znZ/ubHw22/WcfPjZ7YOb22bnjRy8cP//w2blzJ44tLBybm124/ejx43Mf6Xf7+dn79+w9tO/A3t0n5mfvP3jo0L5Du+dPn2luRrVRfeyf+dDu0+eOlDdZuP/eQ3vuu+/emd2nzszO3X9gZmb3hX63L7827W7e+td3n5s7efT8/Km53QvzH5u7f8+h/fv39v1rgKfOHl+Ymj534fT0hYW5c9PVY5k6X17c/NrX7/bU08K/Vt/PdmpUf4iveMdd+9PfZ236yidWvKtqkY4/IPps+Fs0f//CswcH+Tzm/okwk0zyPwAAAOQg5v7NYSbyPwAAANRGzP1bwkzkfwAAAKiNmPsnw0wyyf/6//r/g/X/q+v1//Pq/5/9cNUr3ej9/9if1//Pw1Xu/695/fr/+v/16/8P3p/f6Nuv/6//z3Kj1v+PuX9rUWSZ/wEAACAHMfdvCzOR/wEAAKA2Yu6/JsxE/gcAAIDaiLn/2jCTTPK//v9A/f+9/QpX9e//O/+//n+xMfv/8cnR/8/Gqvv373mo7VP9/0D/X/9f/1//X/+fNZtY8Zqr1f+Puf+6MJNM8j8AAADkIOb+F4SZyP8AAABQGzH3Xx9mIv8DAABAbcTcvz3MJJP8r//v/P/6//r/te7/r/X8/y0bo/+/MTj/f2/6/31ccf9/Uv9/I/b/J4a7/aPd/++7+fr/PC9G7fz/Mfe/MMwkk/wPAAAAOYi5/0VhJvI/AAAA1EbM/S8OM5H/AQAAoDZi7r8hzCST/K//r/8/Wv3/L9zd3PP6/xX9/8pV7f/3PP9/9ZH+/2jR/+9N/78P5//Pq/8/5O0f7f7/sM//P/HGztvr/9PNqPX/Y+5/SZhJJvkfAAAAchBz/41hJvI/AAAA1EbM/S8NM5H/AQAAoDZi7t8RZpJJ/tf/1/8frf6/8//r/2+k/n9F/3+06P/3pv/fh/6//r/+/2D9/y7f/Or/082o9f9j7r8pzCST/A8AAAA5iLn/5jAT+R8AAABqI+b+nwozkf8BAACgNmLu3xlmkkn+1//X/9f/z6v/f9dm/X/9/3rT/+9N/78P/X/9f/3/Ac//v9xq+v9b+t0ZtTFq/f+Y+18WZpJJ/gcAAIAcxNz/8jAT+R8AAABqI+b+V4SZyP8AAABQGzH3T4WZZJL/9f/r1f//k7964hWF/r/+f5/117T/Hw8D/f/M6f/3pv/fh/6//r/+/7r0/8nHqPX/Y+6/Jcwkk/wPAAAAOYi5/9YwE/kfAAAAaiPm/tvCTOR/AAAAqI2Y+3eFmWSS//X/69X/j/T/9f97rb+m/f9E/z9v+v9dtLxI9f/70P/X/8++/x+/+9X/ZzhGrf8fc/8rw0wyyf8AAACQg5j7bw8zkf8BAACgNmLuf1WYifwPAAAAtRFz/x1hJpnkf/1//X/9f/1//f/u69f/35j0/3tbbf9/s/6//r/+f2b9f+f/Z7iufv+/+s4tfh5z/6vDTDLJ/wAAAJCDmPvvDDOR/wEAAKA24r/frP7dq/wPAAAAdRRz/+4wk0zyv/6//n9O/f+G/r/+v/5/7en/9+b8/33o/+v/6//r/zNUV7//3/55zP13h5lkkv8BAAAgBzH33xNmIv8DAABAbcTcPx1mIv8DAABAbcTcPxNmUub/iau0VetH/1//P6f+v/P/6//r/9ef/n9v+v996P/r/9et/18U+v9cVaPW/4+5f0+Yid//AwAAQG3E3L83zET+BwAAgNqIuX9fmIn8DwAAALURc/+9YSaZ5H/9f/1//X/9f/3/7uvX/9+Y9P970//vQ/9f/79u/X/n/+cqG7X+f8z994WZZJL/AQAAIAcx9+8PM5H/AQAAoDZi7j8QZhLyf7d/1w0AAABsLDH3HwwzyeT3//r/Nen//+bfta1b/1//v9f6h9P/36r/H6b+/2hZ6t+Xx2td+v+dL4srpv/fh/6//r/+v/4/QzVq/f+Y+w+FmWSS/wEAACAHMfe/JsxE/gcAAIDaiLn/p8NM5H8AAACojZj7fybMJJP8r/9fk/5/B/1//f9e63f+f/3/OnP+/95q1f8f0//X/x+t7df/1/9nuee//x8/Gqz/H3P//WEmmeR/AAAAyEHM/T8bZiL/AwAAQG3E3P/aMBP5HwAAAGoj5v7DYSaZ5H/9f/1//X/9/+en///aotMo9v+bB4/+f73o//dWq/6/8//r/4/Y9uv/6/+z3Kid/z/m/teFmWSS/wEAACAHMfc/EGYi/wMAAEBtxNz/+jAT+R8AAABqI+b+N4SZZJL/9f/1//X/9f+d/7/7+vX/Nyb9/970//vQ/9f/1//X/2eoRq3/H3P/G8NMMsn/AAAAkIOY+98UZiL/AwAAQG3E3P/mMBP5HwAAAGoj5v63hJlkkv/1//X/9f/1//X/u69/0P5/8W/6/6Mk4/7/xCAL6f/3of+v/6//r//PUI1a/z/m/p8LM8kk/wMAAEAOYu5/MMxE/gcAAIDaiLn/rWEm8j8AAADURsz9bwszyST/6//r/+v/6//r/3dfv/P/b0wZ9/8Hov/fh/6//r/+v/4/QzVq/f+Y+98eZpJJ/gcAAIAcxNz/82Em8j8AAADURsz97wgzkf8BAABgdHUrYvcQc/8vhJlkkv/1//X/R6v/v3ix9Xb6//r/xbD6/80b6f9nQf+/N/3/Prr0/7fo/+v/6//r/3PFRq3/H3P/O8NMMsn/AAAAkIOY+98VZiL/AwAAQG3E3P/uMBP5HwAAAGoj5v6Hwkwyyf/6/1n2/9NDHr3+v/P/6/87/7/+/9ro//em/9+H8/8PqT9/rf6//r/+P6VR6//H3P9wmEkm+R8AAAByEHP/e8JM5H8AAACojZj7fzHMRP4HAACA2oi5/71hJpnkf/3/LPv/I3z+/7r1/8fbjo+c+v+TLc9nOi71//X/14H+f2/6/33o/zv//yj3/8PRvHWF2+v/M4pGrf8fc//7wkwyyf8AAACQg5j7fynMRP4HAACA2oiJ/5fbPpP/AQAAoE5i7v+VMJNM8r/+v/6//r/z/zv/f/f16/9vTPr/ven/96H/r/8/yv3/PvT/GUWj1v+Puf9Xw0xWDH7f/68BHiYAAAAwQmLuf3+YSSa//wcAAIAcxNx/JMxE/gcAAIDaiLn/kTCTTPK//n9n/z+eUVX/X/9f/1//X/9/Ixpe//+l1xWF/r/+v/6//r/+v/4/azFq/f+Y+4+GmWSS/wEAACAHMff/WpiJ/A8AAAC1EXP/sTAT+R8AAABqI+b+2TCTTPL/Vez/T4xm/9/5/6+0//9j/X/9/0D/vzv9//Xh/P+96f/3of+v/6//r//PUI1a/z/m/rkwk0zyPwAAANRY+nFwzP3Hw0zkfwAAAKiNmPtPhJnI/wAAAFAbMfd/IMwkk/zv/P/6/87/fzX6/+Nty+v/V/T/9f+HQf+/N/3/PvT/9f/1//X/GapR6//H3D8fZpJJ/gcAAIAcxNz/wTAT+R8AAABqI+b+D4WZyP8AAABQGzH3nwwzyST/6//r/+fe/28UxSXn/9f/77Z+/f+NSf+/N/3/PvT/9f/1//X/GapR6//H3H8qzCST/A8AAAA5iLn/dJiJ/A/A/7N3H012ndUeh499bYXR5SMwZsQQRuYjMGVGFWOKZHKwTc5gcg7G5JwzmJxzziZjMphoqBLl7rWW1Dqn95bUu8/Z+32fZ7KuVNbtI9z2rf8Vv3oBAGhG7v77xC32PwAAADQjd/9945ZO9r/+X//fe/+/2sn7/wf/ev3/Pv2//n8Ka/39FZv/usOi8EP7/zvf5ep76v/1/9P0/yfrx/r/Se368+v/9f+sm1v/n7v/fnFLJ/sfAAAAepC7//5xi/0PAAAAzcjd/4C4xf4HAACAZuTuvzpu6WT/d93/nzr7OZL+X/+/9xM99/836f/1/8vm/f9h+v8R3v/X/+v/9f9Mam79f+7+B8Ytnex/AAAA6EHu/gfFLfY/AAAANCN3/4PjFvsfAAAAmpG7/yFxSyf7v+v+3/v/+v+wjP7/hPf/z/v96P/1/5vo/4fp/0fo//X/+n/9P5OaW/+fu/+hcUsn+x8AAAB6kLv/YXGL/Q8AAADNyN3/8LjF/gcAAIBm5O5/RNzSyf7X/+v/9f9L6f+39P6//l//v3A3rM7+O0H/v07/P2Kk/1+t9P9DLrif3/zbW87nP4T+X//Purn1/7n7Hxm33G21OnGpv0kAAABgVnL3Pypu6eTP/wEAAKAHufuviVvsfwAAAGhG7v5r45ZO9r/+X/+v/9f/6/83f339/zJ5/3/Y0fv/O93h3vfqt//3/v8w7/9P3f/f/p2h/2fZ5tb/5+6/Lm7pZP8DAABAD3L3Pzpusf8BAACgGbn7HxO32P8AAADQjNz9j41bOtn/+v/W+v//O/Drzun/92oX/b/+X/+v/2+d/n+Y9/9H7P1r7nT9UP+v//f+/7n9//Dr6Pp/Nplb/5+7/3FxSyf7HwAAAHqQu//xcYv9DwAAAM3I3f+EuMX+BwAAgGbk7n9i3NLJ/t9O/785yNf/e/9f/6//1//r/6em/x+m/x/Ryvv/l/hds+t+/qh2/fnb7/+H6f/ZZG79f+7+J8Utnex/AAAA6EHu/ifHLfY/AAAANCN3/1PiFvsfAAAAmpG7/6lxSyf73/v/+v9l9P/5FfT/+v/j7/+T/n+Z9P/D9P8jWun/L9Gu+/mlf379v/6fdXPr/3P3Py1u6WT/AwAAQA9y9z89brH/AQAAoBm5+58Rt9j/AAAA0Izc/c+MWzrZ//p//f8y+n/v/+v/vf+v/78w+v9h+v8R+n/9v/5f/8+k5tb/5+6/Pm7pZP8DAABAD3L3Pytusf8BAACgGbn7nx232P8AAADQjNz9z4lbOtn/+n/9v/5f/6//3/z19f/LpP8fpv8fof/X/+v/9f9Makb9/zm/6tTquXFLJ/sfAAAAepC7/3lxi/0PAAAAzcjd//y4xf4HAACAZuTuf0Hc0sn+1//Ppv/fy/na6v9Pr1Yr/f+q0/7/9Dl/P+v7Uv+v/98C/f+wi+//b7lx/zt3n/5f/z9E/6//1/9zvhn1/3s/zt3/wrilk/0PAAAAPcjd/6K4xf4HAACAZuTuf3HcYv8DAABAM3L3vyRu6WT/6/9n0//vaav/9/7/+d8fPfX/3v9fp//fDv3/MO//j9D/6//1//p/JjW3/j93/0vjphNXXvJvEQAAAJiZ3P0vi1s6+fN/AAAA6EHu/pfHLfY/AAAALNT1az+Tu/8VcUsn+1//P23/f+Kcn9P/6//P//7Q/+v/9f/HT/8/TP8/Qv+v/9f/6/+Z1Nz6/9z9r4xbOtn/AAAA0IPc/TfELfY/AAAANCN3/6viFvsfAAAAmpG7/8a4pZP9r//3/r/+X/+v/9/89fX/y6T/H6b/H6H/1//vtv8/efZ/1P/Thovo/8+cOXPNsff/uftfHbd0sv8BAACgB7n7XxO32P8AAADQjNz9r41b7H8AAABoRu7+18Utnex//X+n/X9+qy+r/792tdL/6//1//r/Yfr/Yfr/Efp//b/3//X/TGpu7//n7n993NLJ/gcAAIAe5O5/Q9xi/wMAAEAzcve/MW6x/wEAAKAZufvfFLd0sv/1/532/97/1//r/7fd/9+20v9vxSL6/9OHf/259//X6f/1/wO66//vftcDP9T/6/9ZN7f+P3f/m+OWTvY/AAAA9CB3/1viFvsfAAAAmpG7/61xi/0PAAAAzcjd/7a46YpO9r/+X/+v/9f/6/83f/0tv/9/YrVa6f8nsIj+f8Dc+/9p3v8//5/ys/T/+v8lf379v/6fdXPr/3P3vz1u6WT/AwAAQA9y978jbrH/AQAAoBm5+98Zt9j/AAAA0Izc/e+KWzrZ//p//b/+f7r+/7JDvh/0//H9sKv+/7pF9P/e/5+I/n/YPPr/w+n/9f9L/vz6f/0/F25X/X/u/nfHLZ3sfwAAAOhB7v73xC32PwAAADQjd/974xb7HwAAAJqRu/99cUsn+1//r/+/mP4/P6f+v633/0/Orv8/deB/Xyfv/+v/J6L/H6b/H6H/1//r/6/X/zOlub3/n7v//XFLJ/sfAAAAepC7/wNx6/91a/8DAABAM3L3fzBusf8BAACgGbn7PxS3dLL/9f/6f+//6/+bf/9f/98V/f8w/f8I/f8x9PO3f2r9/4L6f+//M6m59f+5+z8ct3Sy/wEAAKAHufs/ErfY/wAAANCM3P0fjVvsfwAAAGhG7v6b4pZO9r/+X/+v/9f/6//3/x7q/9ug/x+2nf7/tP5f/1/9/GXxT4H+X/8/9utp09z6/9z9H4tbOtn/AAAA0IPc/R+PW+x/AAAAaEbu/k/ELfY/AAAALNIVG34ud/8n45ZO9r/+X/+v/9f/6/83f339/zLtpP/Pbwr9v/f/Qz/9/x0P/Oio/fy2P//5//dL/6//Z3pz6/9z938qbulk/wMAAEAPcvd/Om6x/wEAAKAZufs/E7fY/wAAANCM3P2fjVs62f/6/2X0//mdqf/X/+v/9f/6/2He/x+m/x+h/9/p+/lL//z6f/0/6+bW/+fu/1zc0sn+BwAAgB7k7v983GL/AwAAQDNy938hbrH/AQAAoBl7uz/jsg73v/5/Gf2/9//1//p//b/+/8Lo/4fp/0fo//X/+n/9P5OaW///xb1fdWr1pbilk/0PAAAAPcjd/+W4xf4HAACAWTr8vypwuNz9X4lb7H8AAABoRu7+r8Ytnex//b/+fxn9/5kzZ67R/+v/D/5+zvb/N+v/Kfr/Yfr/Efp//b/+X//PpObW/+fu/1rc0sn+BwAAgB7k7v963GL/AwAAQDNy938jbrH/AQAAoBm5+78Zt3Sy//X/M+j/T+n/vf+v/195/1//PxH9/zD9/4gW+/9TF/7b33U/f1S7/vz6f/0/6+bW/+fu/1bc0sn+BwAAgB7k7v923GL/AwAAQDNy938nbrH/AQAAoBm5+78bt3Sy//X/2+v/b//Prpf3/0+vNn9+/b/+X/+v/z9u+v9h+v8RLfb/F2HX/fzSP7/+X//Purn1/7n7vxe3HBx+V17c7xIAAACYk9z9349bOvnzfwAAAOhB7v4fxC32PwAAADQjd/8P45ZO9r/+fwbv/zfY/3v/f/P3h/5/1v3/5fr/Nuj/h+n/R+j/9f/6/4n6//xu1v/3bm79f+7+H8Utnex/AAAA6EHu/h/HLfY/AAAANCN3/0/iFvsfAAAAmpG7/+a45Zz9v6ntboX+X/+v/9f/6/83f339/zLp/4ddaP9/cnW0/j/p//X/+v9e+3/v/7Nvbv1/7v6fxi3+/B8AAAAW58pDfj53/8/iFvsfAAAAmpG7/+dxi/0PAAAAzcjd/4u45dbLd/WRtkr/r//X/+v/9f+bv77+f5n0/8O8/z9C/z9FP3+V/r+N/n+10v9zdHPr/3P3/zJu8ef/AAAA0Izc/b+KW+x/AAAAaEbu/l/HLfY/AAAANCN3/2/ilk72v/5f/3/E/n8vzdT/79P/79P/b6b/3w79/zD9/wj9v/f/9f/e/2dSc+v/c/ffErd0sv8BAACgB7n7fxu32P8AAADQjNz9v4tb7H8AAABoRu7+38ctnez/nfX/8R+1/n/x/b/3//X/+n/9/6zo/4fp/0fo//X/+n/9P5OaW/+fu/8PcUsn+x8AAAB6kLv/j3GL/Q8AAADNyN3/p7jF/gcAAIBm5O7/c9zSyf73/v9R+//9QEX/f/Dz6/8P0v/H94P+X/+/Bfr/Yfr/zepvlP5f/6//1/8zqbn1/7n7/xK3dLL/AQAAoAe5+/8at9j/AAAA0Izc/bfGLfY/AAAANCN3/9/ilk72v/7f+//6f/2//n/z19f/L5P+f9gu+/97/P/4l/X+/877//wI+n/9v/6fScyt/8/d//e4pZP9DwAAAD3I3f+PuMX+BwAAgGbk7v9n3GL/AwAAQDNy9/8rbulk/4/0/yfrL9T/D9L/H/z8+v/N3x/6f/2//v/46f+Hef9/hP7f+//6f/0/k5pb/5+7/99xSyf7HwAAAHqQu/+2uMX+BwAAgGbk7v9P3GL/AwAAQDNy9/83bulk/3v/f0n9/1X6f/2//l//r/8fof8fpv8fof/X/+v/9f9Mam79f+7+/wUAAP//h5xMZQ==")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
lgetxattr(&(0x7f0000000140)='./file1\x00', &(0x7f00000001c0)=@random={'os2.', 'system.posix_acl_default\x00'}, 0x0, 0x0)

3m50.010731471s ago: executing program 3 (id=455):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000100), 0x1, 0x599, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x91)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x106, 0x2}}, 0x20)
truncate(&(0x7f0000000080)='./file1\x00', 0x3)

3m48.820629457s ago: executing program 3 (id=462):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000000c0)={0x54, r2, 0x1, 0x70bd29, 0x0, {{}, {@void, @val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "36680451e3fd286f3ca72946c052fa8a6b323b4448bdf49e"}]]}, 0x54}, 0x1, 0x0, 0x0, 0x14}, 0x4000)

3m48.716280475s ago: executing program 32 (id=462):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000000c0)={0x54, r2, 0x1, 0x70bd29, 0x0, {{}, {@void, @val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "36680451e3fd286f3ca72946c052fa8a6b323b4448bdf49e"}]]}, 0x54}, 0x1, 0x0, 0x0, 0x14}, 0x4000)

2m31.97598826s ago: executing program 0 (id=1215):
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_trace', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

2m31.065378544s ago: executing program 0 (id=1219):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000900)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0003}]})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, 0x0, &(0x7f0000000100))

2m30.961223222s ago: executing program 0 (id=1220):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x24, &(0x7f0000000080)={0x20, 0xd, 0x1, "f8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x8000)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000180)={0x1, 0x4, 0x4, &(0x7f0000000200)={0xb, "c6c1f7b51030c4b7c54bf28facb1ed3e27dfe17a04bc517b54520300000047509d"}})

2m29.146458979s ago: executing program 0 (id=1236):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000001c0)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040}, 0x0)

2m28.966239854s ago: executing program 0 (id=1239):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000100)={0x0, 0x0, 0x80, 0x0, 0x2})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2)

2m28.729432522s ago: executing program 0 (id=1244):
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000140)='./bus\x00', 0x14000, &(0x7f0000000000)=ANY=[], 0x4, 0x29b, &(0x7f00000010c0)="$eJzs3c9qE10Yx/Hfmczbd6qlTv+IIIJQLbiStm7EjSLdunclahOhNFTQCuqqdS1egHtvwYtwJd5AXbnyAgqCI+fMTDNJZzJJ2skk+v2AZprMc+Z5Mied8wTKCMA/6/7m4adbP+w/IzXUkHRH8iQFki/poi4Fr3b3tvfarWa/gRouwoaY+ME9dtvabeWF2jgXYd2TQvuTr7nj51CZIIqi73Ungdq5T38OT/o/+XS614OxZ1aN/boTqJk50pFea77uPAAA9Uqu/15ynZ9L1u+eJ60ml/2/6vp/VHcCNctc/33pUJGx5/eCe6nT77kWzq79vLRLHOVYM4pnVtcC05R1lS4Xb/bZdrt1c+t5u+npne4mMrsta0VSM566qWy2ByeHXsnpTU9q5I02nPOuhv9sDRsF+S/lxZ3m3S5jvpiv5pEJ9VHN4/WfHxl7mtyZCnvOVJz/WvGIrsow3qugygV3kMvJERIlVQb5HYnSGbWg7i8IwrI8XdRiT1Rc3XpJ1FJu1EZJ1HJvVGc2F0dWzXwwD82KfuqzNjPrf8++26sa5JNp93F7JjOjbz2+2zOU9DuKaf9K7p7ekHVIBT0rBvBeT3Vb8y/fvN150m63IiPt240X6TNGRjtdzwyxcXWkqPyNg+KX/NEznPwNX5UdIp0EE1LpODZmJU1AGhVv2PX5GQ1Y768njEfnpA8a8aDahDBudt1l4v4v06+sufWV/S/ss06PygbPjLhe0BssunHOFXdwGcHxsIUd3KA917Ub0vXyI6ZCl6dmywqeEmZT3/SY7/8BAAAAAAAAAAAAAAAAAACmzTj+LKHuGgEAAAAAAAAAAAAAAAAAAAAAmHa/kpuynNX9f4PT3v9Xg9z/d2a4IgHk+hMAAP//0/yExA==")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x4)
sync()
rename(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000140)='./bus\x00')

2m13.613597793s ago: executing program 33 (id=1244):
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000140)='./bus\x00', 0x14000, &(0x7f0000000000)=ANY=[], 0x4, 0x29b, &(0x7f00000010c0)="$eJzs3c9qE10Yx/Hfmczbd6qlTv+IIIJQLbiStm7EjSLdunclahOhNFTQCuqqdS1egHtvwYtwJd5AXbnyAgqCI+fMTDNJZzJJ2skk+v2AZprMc+Z5Mied8wTKCMA/6/7m4adbP+w/IzXUkHRH8iQFki/poi4Fr3b3tvfarWa/gRouwoaY+ME9dtvabeWF2jgXYd2TQvuTr7nj51CZIIqi73Ungdq5T38OT/o/+XS614OxZ1aN/boTqJk50pFea77uPAAA9Uqu/15ynZ9L1u+eJ60ml/2/6vp/VHcCNctc/33pUJGx5/eCe6nT77kWzq79vLRLHOVYM4pnVtcC05R1lS4Xb/bZdrt1c+t5u+npne4mMrsta0VSM566qWy2ByeHXsnpTU9q5I02nPOuhv9sDRsF+S/lxZ3m3S5jvpiv5pEJ9VHN4/WfHxl7mtyZCnvOVJz/WvGIrsow3qugygV3kMvJERIlVQb5HYnSGbWg7i8IwrI8XdRiT1Rc3XpJ1FJu1EZJ1HJvVGc2F0dWzXwwD82KfuqzNjPrf8++26sa5JNp93F7JjOjbz2+2zOU9DuKaf9K7p7ekHVIBT0rBvBeT3Vb8y/fvN150m63IiPt240X6TNGRjtdzwyxcXWkqPyNg+KX/NEznPwNX5UdIp0EE1LpODZmJU1AGhVv2PX5GQ1Y768njEfnpA8a8aDahDBudt1l4v4v06+sufWV/S/ss06PygbPjLhe0BssunHOFXdwGcHxsIUd3KA917Ub0vXyI6ZCl6dmywqeEmZT3/SY7/8BAAAAAAAAAAAAAAAAAACmzTj+LKHuGgEAAAAAAAAAAAAAAAAAAAAAmHa/kpuynNX9f4PT3v9Xg9z/d2a4IgHk+hMAAP//0/yExA==")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x4)
sync()
rename(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000140)='./bus\x00')

2m12.291579399s ago: executing program 5 (id=1427):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x50, r0, 0x801, 0x0, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "7ee5d52ffd"}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}]}]}, 0x50}}, 0x0)

2m12.029149561s ago: executing program 5 (id=1432):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000000)=0x40)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
sendfile(r1, r0, 0x0, 0x0)

2m11.9102353s ago: executing program 5 (id=1434):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x11, 0x6c7, &(0x7f0000000a80)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
socket$nl_route(0x10, 0x3, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)

2m11.560968819s ago: executing program 5 (id=1436):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000640)=ANY=[@ANYBLOB='iocharset=iso8859-15,umask=00000000000000000000003,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30303030303030303030303030303030303030303235332c646973636172642c666d61736b3d30303030303030303030303030300000000030303031302c757466382c696f636861727365743d6d6163696e7569742c4ea0a5899b233b5a616c6c6f775f7574696d653d30303030303030303030303030303030303134373037302c00"], 0x1, 0x1528, &(0x7f00000037c0)="$eJzs3AuYT9X6OPD3XWvtMSS+TXIZ1lrv5ptclkmSXJLkkiRJkuSWkDTJkYTEEJI0JCG5DEkMIblMTBr3+/2SkCRNkoTklqz/M+FxOnX+p/M7/XKe37yf59mP9X73ftd+9/f9XvbeZubbrkNrNaldvRERwX8EL/yTBACxADAQAPICQAAA5ePKx2Wtzykx6T/bCftzPZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/D9/+yMv///D8ksM/bLNWWu6wYQ80dTuP/ZG/f//6zgj2zE/c/euP/ZVeyVLoD9F+D3f3aQ45+u4f5nb9x/xrKzK33/+UovEPkvew6O5LzQmL/q+BljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMsb/AaX+ZAoBL4ytdF2OMMcYYY4wxxv48PseVroAxxhhjjDHGGGP/+xAESFAQQAzkgFjICblAAMDVkAfyQgSugTi4FvLBdZAfCkBBKATxUBiKgAYDFghCKArFIArXQ3G4AUpASSgFpcFBGUiAG6Es3ATl4GYoD7dABbgVKkIlqAxV4DaoCrdDNbgDqsOdUANqQi2oDXdBHbgb6sI9UA/uhfpwHzSA+6EhPACN4EFoDA9BE3gYmsIj0AyaQwtoCa3+R/nPQ094AXpBb0iCPtAXXoR+0B8GwEswEF6GQfAKDIZXIRmGwFB4DYbB6zAc3oARMBJGwZswGt6CMTAWxsF4SIEJMBHehknwDkyGd2EKTIVUmAbT4T2YATNhFrwPs+EDmANzYR7MhzT4EBbAQkiHj2ARfAwZsBiWwFJYBsthBayEVbAa1sBaWAfrYQNshE2wGbbAVtgG22EHfAI74VPYBbthD3wGe+HzfzP/1D/kd0NAQIECFSqMwRiMxVjMhbkwN+bGPJgHIxjBOIzDfJgP82N+LIgFMR7jsQgWQYMGCQmLYlGMYhSLY3EsgSWwFJZChw4TMAHL4k1YDstheSyPFbACVsRKWAmrYBWsilWxGlbD6lgda2ANrIW18C68C/tgXayL9bAe1sf6l25PYSNshI2xMTbBJtgUm2IzbIYtsAW2wlbYGltjG2yD7bAdtsf22AE7YCImYkfsiJ2wE3bGztgFu2BX7IrdsDt2z3w+B+AL+AL2xhqiD/bFvtgPk3MMwJfwJXwZB+Er+Aq+isk4BIfia/gavo7D8SSOwJE4CkdhVfEWjsGxSGI8pmAKTsSJOAknYVah7+JUTMVpOB2n4wyciTPxfZyNH+AHOBfn4nxMwzRcgAsxHdNxEZ7CDFyMS3ApLsPluAxX4ipciWtwLa7B9bgeN+JG3IybcStuxe24HT9BBYCf4m7cjcm4F/fiPtyH+3E/HsADmImZeBAP4iE8hIfxMB7BI3gUj+FxPIYn8ASexFN4Gk/jWTyL5/DZ+K8bf1JydTKILEooESNiRKyIFblELpFb5BZ5RB4RERERJ+JEPpFP5Bf5RUFRUMSLeFFEFBFGGEEijAEAERVRUVwUFyVECVFKlBJOOJEgEkRZUVaUE+VEeXGLqCBuFRVFJdHWVRFVRFXRzlUTd4jqorqoIWqKWqK2qC3qiDqirqgr6ol6or6oLxqI+0VD0QcH4IMiqzNNxBBsKoZiM9FcyIufYK3FcGwj2op24nExEkdgB9HaJYqnREcxBjuJv4mx+IzoIsZjV/Gc6Ca6ix7iedFTtHG9RG8xGfuIvmIq9hP9xQDxkpiBNcX7ODtnLfGqSBZDxFDxmpiPr4vh4g0xQowUo8SbYrR4S4wRY8U4MV6kiAlionhbTBLviMniXTFFTBWpYpqYLt4TM8RMMUu8L2aLD8QcMVfME/NFmvhQLBALRbr4SCwSH4sMsVgsEUvFMrFcrBArxSqxWqwRa8U6sV5sEBvFJrFZbBFbxTaxXewQn4id4lOxS+wWe8RnYq/4XOwTX4j94ktxQHwlMsXX4qD4RhwS34rD4jtxRHwvjopj4rj4QZwQP4qT4pQ4Lc6Is+IncU78LM4LL0CiFFJKJQMZI3PIWJlT5pJXydwyuPjsXiPj5LUyn7xO5pcFZEFZSMbLwrKI1NJIK0mGsqgsJqPyellc3iBLyJKylCwtnSwjE+SNsqy8SZaTN8vy8hZZQd4qK8pKsrKsIm+TVeXtEiIX9lFD1pS1ZG15l0yCu2VdeY+sJ++V9eV9soG8XzaUD8hG8kHZWD4km8iHZVP5iGwmm8sWsqVsJR+VreVjso1sK9vJx2V7+YTsIJ+UifIp2VH6iy+RZ2QX+azsKp+T3WR32UP+LM9LL3vJ3hL6gOwrX5T9ZH85IBYA5MtykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZviunyKkyVU6TA+TAX2aaJeW/zH/7d/IH/7L3jXKT3Cy3yK1ym9wud8hP5E65U+6Su+QeuUfulXvlPrlP7pf75QF5QGbKTHlQHpSH5CF5WB6WR+QReVQek2fkD/KE/FGelKfkKXlGnpVn5bmLzwEoVEJJpVSgYlQOFatyqlzqKpVbXa3yqLwqoq5RcepalU9dp/KrAqqgKqTiVWFVRGlllFWkQlVUFVNRdT1efMGoUqq0cqqMSlA3/jv5qri6QZVQJX+Vf6m+pH9SXyvVSrVWrVUb1Ua1U+1Ue9VedVAdVKJKVB1VR9VJdVKdVWfVRXVRXVVX1U11Uz1UD9VT9VS9VC+VpJJUX/Wi6qf6qwHqJTVQvawGqUFqsBqsklWyGqqGqmFqmBquhqsRaoQapUap0Wq0GqPGqHFqnEpRKWqimqgmqUlqspqspqgpKlWlqulqupqhZqhZapaarWarOWqOmqfmqTSVphaoBSpdpatFapHKUIvVYrVULVXL1XK1Uq1Uq9VqtVatVevVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nnfYFIhCBClQQE8QEsUFskCvIFeQOcgd5gjxBJIgEcUFckC+4LsgfFAgKBoWC+KBwUCTQgQlsIC42PRpcHxQPbghKBCWDUkHpwAVlgoTgxqBscFNQLrg5KB/cElQIbg0qBpWCykGV4LaganB7UC24I6ge3BnUCGoGtYLawV1BneDuoG5wT1AvuDeoH9wXNAjuDxoGDwSNggeDxsFDQZPg4aBp8EjQLGgetAhaBq3+1Pm9P1ngMddL99ZJuo/uq1/U/XR/PUC/pAfql/Ug/YoerF/VyXqIHqpf08P063q4fkOP0CP1KP2mHq3f0mP0WD1Oj9cpeoKeqN/Wk/Q7erJ+V0/RU3Wqnqan6/f0DD1Tz9Lv69n6Az1Hz9Xz9Hydpj/UC/RCna4/0ov0xzpDL9ZL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0J3qn/lTv0rv1Hv2Z3qs/1/v0F3q//lIf0F/pTP21Pqi/0Yf0t/qw/k4f0d/ro/qYPq5/0Cf0j/qkPqVP6zP6rP5Jn9M/6/PaZ53cZ329G2WUiTExJtbEmlwml8ltcps8Jo+JmIiJM3Emn8ln8pv8pqApaOJNvCliipgsZMgUNUVN1ERNcVPclDAlTClTyjjjTIJJMGVNWVPOlDPlTXlTwVQwFU1FU9lUNreZ28zt5nZzh7nD3GnuNDVNTVPb1DZ1TB1T19Q19Uw9U9/UNw1MA9PQNDSNTCPT2DQ2TUwT09Q0Nc1MM9PCtDCtTCvT2rQ2bUwb0860M+1Ne9PBdDCJJtF0NB1NJ9PJdDadTRfTxXQ1XU030830MD1MT9PT9DK9TJJJMn1NX9PP9DMDzAAz0Aw0g8wgM9gMNskm2Qw1Q80wM8wMN8PNCDPSjMo6UTVvmTFmrBlnxpsUk2ImmolmkplkJpvJZoqZYlJNqpluppsZZoaZZWaZ2Wa2mWPmmHlmnkkzaWaBWWDSTbpZZBaZDJNhlpglZplZZlaYFWaVWWXWmDVmHawzG8wGs8lsMlvMFrPNbDM7zA6z0+w0u8wus8fsMXvNXrPP7DP7zX5zwBwwmSbTHDQHzSFzyBw2h80Rc8QcNUfNcXPcnDAnzElz0pw2p81ZU+Di96U3sTanzWWvsrnt1TaPzWv/MS5oC9l4W9gWsdrmtwV+FRtrbQlb0paypa2zZWyCvfE3cUVbyVa2Vexttqq93Vb7TVzH3m3r2ntsPXuvrW3v+lVc395nG9iHbUNEANvcNrYtbRP7sG1qH7HNbHPbwra07e0TtoN90ibap2xH+/Rv4gV2oV1lV9s1dq3dZXfb0/aMPWS/tWftT7aX7W0H2pftIPuKHWxftcl2yG/iUfZNO9q+ZcfYsXacHf+beIqdalPtNDvdvmdn2Jm/idPsh3a2Tbdz7Fw7z87/Jc6qKd1+ZBfZj22GDWCJXWqX2eV2hV15qVaf1663G+xGu9N+arfYrXab3W53XDoRtrvtHvuZ3Ws/twftN3a//dIesIdtpv36lzjr+A7b7+wR+709ao/Z4/YHe8L+qC5lZx37D/Zne956C4QEJElRQDGUg2IpJ+Wiqyg3XU15KC9F6BqKo2spH11H+akAFaRCFE+FqQhpMmSJKKSiVIyidD1dKq8UlSZHZSiBbqSydBOVo5upPN1CFehWqkiVqDJVoduoKt1O1egOqk53Ug2qSbWoNt1Fdehuqkv3UD26l+rTfdSA7qeG9AA1ogepMT1ETehhakqPUDNqTi2oJbWiR6k1PUZtqC21o8epPT1BHehJSqSnqCM9TZ3ob9SZnqEu9Cx1peeoG3WnHvQ89aQXqBf1piTqQ33pRepH/WkAvUQD6WUaRK/QYHqVkmkIDaXXaBi9TsPpDRpBI2kUvUmj6S0aQ2NpHI2nFJpAE+ltmkTv0GR6l6bQVEqlaTSd3qMZNJNm0fs0mz6gOTSX5tF8SqMPaQEtpHT6iBbRx5RBi2kJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQJ7STPqVdtJv20Ge0lz6nffQF7acv6QB9RZn0NR2kb+gQfUuH6Tvfm76no3SMjtMPdIJ+pJN0ik7TGTpLP9E5+pnOkycIMRShDFUYhDFhjjA2zBnmCq8Kc4dXh3nCvGEkvCaMC68N84XXhfnDAmHBsFAYHxYOi4Q6NKENKQzDomGxMBpeHxYPbwhLhCXDUmHp0IVlwoTwxrBseFNYLrw5LB/eElYIbw0rhpXCh++tEt4WVg1vD6uFd4TVwzvDGmHNsFZYO7wrrBPeHdYN7wnrhfeG5cL7wgbh/WHD8IGwUfhg2Dh8KGwSPhw2DR8Jm4XNwxZhy7BV+GjYOnwsbBO2DduFj4ftwyfCDuGTYWL4VNgxfPqX9fct/Ofrk8I+Yd/wxfDF0Pt75Lzo/Gha9MPogujCaHr0o+ii6MfRjOji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iboxqj3tXOAQyecdMoFLsblcLEup8vlrnK53dUuj8vrIu4aF+eudfncdS6/K+AKukIu3hV2RZx2xllHLnRFXTEXdde74u4GV8KVdKVcaedcGZfgWrpWrpVr7R5zbVxb18497h53T7gn3JPuSfeU6+iedp3c31xn94zr4p51z7rnXDfX3fVwz7uebkKeC+/JJNfX9XX9XD83wA1wA91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfFTXGpLtVNd9PdDDfDVZ15YS9z3Bw3z81zaS7NLXBZ54zpbpFb5DJchlvilrhlbplb4Va4VW6VW+PWuHVundvgNrhNbpPb4ra4bW6b2+F2uJ1up9vl816Y1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5Mi7kSmRqZHUyLTI9Mh7kRmRmZFZkfcjsyMfROZE5kbmReZH0iIfRhZEFkbSIx9FFkU+jmREFkeWRJZGlkWWR7wvvCX0RX0xH/XX++L+Bl/Cl/SlfGnvfBmf4G/0Zf1Nvpy/2Zf3t/gK/lZf0Vfylf0jvplv7lv4lr6Vf9S39o/5Nr6tb+cf9+39E76Df9In+qd8R/+07+T/5jv7Z3wX/6zv6p/z3Xx338M/73v6F3wv39sn+T6+r3/R9/P9/QD/kh/oX/aD/Ct+sH/VJ/shfqh/zQ/zr/vh/g0/wo/0o2Le9KMvXSLDeJ/iJ/iJ/m0/yb/jJ/t3/RQ/1af6aX66f8/P8DP9LP++n+0/8HP8XD/Pz/dp/kO/wC/06f4jv8h/7DP84ks3lf0Kv9Kv8qv9Gr/Wr/Pr/Qa/0W/ym/0Wv9Vv89v9Dv+J3+k/9bv8br/Hf+b3+s/9Pv+F3++/9Af8Vz7Tf+0P+m/8If+tP+y/80f89/6oP+aP+x/8Cf+jP+lP+dP+jD/rf/Ln/M/+PP/OGmOMMcbYHzLh8lD8es2F2/l9fidH/N3GfQHg6q2FMv9+fdYZ5br8F8b9RXz7CAA81bvrg5eWGjWSkpIubpshISg2F+DS/wRliYHL8WJoB09AIrSFsr9bf3/R/Sz9i/mjtwDk+rucWLgcX57/CwBM+p35H3181IIK4em4/8/8cwFKFLuckxMux4uh3S/3V9pCuX9Sf4HW/6L+nF+mALT5u5zccDm+XH8CPAZPQ+KvtmSMMcYYY4wxxi7oLyp3vnT9eeknPn/v+jxeXc7JAZfjf3V9zhhjjDHGGGOMsSvvme49nnw0MbFt539/UO1/lPWHB03hf2tmHvzuwHuAS48oAPgPJwTIGsi/8ig2/yX7Sr741vnHVcvO+AD+O1r5Zwyu8AcTY4wxxhhj7E93+aT/14+rK1UQY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWDf0Vf07sSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//kfb+pw==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))

2m11.105160315s ago: executing program 5 (id=1439):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="88000000", @ANYRES16=r2, @ANYBLOB="010028bd70be10e7d8388e95de0008000300", @ANYRES32=r1], 0x88}, 0x1, 0x0, 0x0, 0xc0}, 0x10)

2m10.501459094s ago: executing program 5 (id=1443):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001740)={0x4c, r2, 0x1, 0x70bd29, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_FRAME={0x26, 0x33, @auth={{{0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x3}, @broadcast, @device_a, @initial, {0x7, 0xf95}, @value=@ver_80211n={0x0, 0x2, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}}, 0x1, 0x5, 0x25c, @void}}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

2m10.377270974s ago: executing program 34 (id=1443):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001740)={0x4c, r2, 0x1, 0x70bd29, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_FRAME={0x26, 0x33, @auth={{{0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {0x3}, @broadcast, @device_a, @initial, {0x7, 0xf95}, @value=@ver_80211n={0x0, 0x2, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}}, 0x1, 0x5, 0x25c, @void}}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

5.561802531s ago: executing program 2 (id=2662):
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f0000000040)='./file0\x00', 0xc802, &(0x7f0000001980)=ANY=[@ANYBLOB="71756f74612c646973636172642c646973636172642c696f636861727365743d6b6f69382d72752c646973636172642c00f4193eb3ba2a0d5fd0cd7374288ff89ec513a53e007345decb720900f8312da2463eb0edf52fad1a00ebd41c14b3ce75d0cffefd379624b16f7260c835713b263352e03b5cb8fa0c042bd1225ed4ded2b62e12fea4d7e61b738e40781e58d5fff112364ac140f419e5dafecd283b3fab6b142ddbc893b35a81fe9265591ef35fa2928e095fee4c10b22e4212378de59bca0307cc644b9620b63f0000007bbbd422d87856b71348b8f45398b9660b6b3e8ee8a8c32f3234cb46e2cd827ec25c1ca4d046bc004f8df7b1ee690a5e50510700d80c7fa65fa724d0e1b4369f1b64fe249a0312010000004ac983de925f52d735b03fea941b1e948ad8d19cfda5b799325fd69d14fcf6cdde7700a63150eb3699e5314e0827750e244150ec19f3f3f1d8be542c084b5e40bfaa8ad206d2a33b0ddbd7f8e07dc7d17174a4549ffaf5976949cb6d658c42ec7cd9fe8ad82852cefb04646edb3a41eb514eb6a772b3ee9f21e25822b54ec33e592d5c040946721101d53aff21f90351c95aa0f73f1853d6afcbf9448b220e988466066fa5c09e6198fc4520d199b93bdedee87c4043815aa05668a06f8da96680ccc1a139ade90f5c79af46208f9762f54e7c29088d9de69bd2d51c6b9c42209ddc3880051303b855853407d959a5777dce25201c5ea1faa084c36e3e349915ebec53435eb2910c59394ee84ba3baf9c440ae5833c23f46b0eaac543ce0c80ba0603213e53ea59755070b18bc10b9224aa082d967206115b492d825751fcc00000000000000e63d51c5bffa4f712c2d7fafb9cf506c06e1ddad4fc19038407786fedb9afdfb11a5f182676dd84c919f71d5eee2f3b740b68ee7f6518eb9d8baa26f1c3871f863b134ee942eb3af92d19e70d8268839cd7b4637f0627299f99b1873ca165e410f8bd421e1a4859fd9bd6bb34d25c07e1a52b9668a530b10b8585d797124a6975a71aedbe557a17b06bbfe547aa553c3d08b8921a4b0d938c03687bd48a9a387b4c066c056f457fba5738775b900a1e82a89aae1494b05c4bb0fc8ed1a93688bf850a4f7b0942eda1f16ecf043efa6b8c1f9e0fba31f4a58ed0031180fb1b8a00e4a86826b030000002dd1272a3d1609bebb749daef202e0412a73d545b86ca7a6bf569ed35d0000ca23b0de742f6008fdf20928370d88f8c04bc3b97b9a9e0062e8fc5fd2337d85a66bd20730f3153db2459fb34c134c06c19364e9645e83040dd16ee08f18f0ba69ac9ca3e25e15442b07000000d30d38a64613b535fa808a9b3bae00bc371271d45db200a5cbf433e2f6dd03b7c7fcc040781e5151c9badb787e7e1e2f39d60998919aa8dbd156f31a5b7fa5f9e5ec01e8c799edc322703c7fc4a81ab9bc02dd96714ee9d7e75d28d040ff3566404fd6db547a4b553197c1f316d20ea54f9459cd81351a510d101e90eabe6dc6c6ac3ffa189c073a5fb3fc382df620bf5af9e638819c77a051e6875866a849f6f578c068c0e4c7cfbc15033997efa853c96297b3201dd30ea40dc94d010a0c33da9f63a10b8f813dc789b80be3bb3f00ee58b30d5c03a6ddbf418ac1b3d4a13839e4b273c4f914bed13f8806295495d41609478798396aeec06e8d342efd8ac6b422f6c23a011b1400000000000000bc2a02094e19a1ee8bb3c3c0c088ae8efaf68c85001faf7cf5426fb7c5c367ed93eb25c48a293549d15b91b59f1b574b3f6171f8e56a402ec56bdf51d90312b3ca5398f4050000007504be21456ec953bf06f12fff20c31e7c8b55fee5c49aa939830b09995ff149258118f9aae29206f9731288b56b10de51525665fdb4e289b1c177de97af3085f82045fbd012f1dde94ffecd90b7b63d8197d9c24a6fe5915ac7d7240847f6d0bf9099ee117c83e363f2ad36a4a9f4faa5734afe9770c38c565cae87a408d0acbb2db7db9174acab60a344814ee643fa82ba41706d2360269ed276e13dd83abbc258f07b0d58ab0b65200b18b7f9f871bcb43fec5a2e3789ecd0c1069d2da80b93c86dff8933e70c2108346003ddf6b60379eee63b66e7341cdd8f87ed9f11894c9ae040976321d87405b492f419ebfa77eb367ca6e360b8f8451102f54893d7d1695c24bcc184b1e7d19940a2b6931ade8638dd2b85a86dc511dbb97f50520f91fbf7201fc9621d0aee9735d07ca024076e8581db332b1c5f135fe6b2e9d2c18c9d5d5a524d3d5b2657e4b28f1a09696bd5b076a1471c8b2ab2ca3ba57843af1d03590f4e8985e1c463c781bb03ad7ec816ea70bbe06411aae001e0ca72ee7e828ad14bb7a092d883ad000554bf7f00000000000075cc01f8a2e1802192f09e77bc488b3bd3f08a9ce88ba2e2bcc23cf5d7372b339ce1f5003db0ad70fa6e93aa908a2ced81f5514e23e2f94ff03c1c02f5a9195f4735563efd0a1fc7dafcfb3dae043fe0c172ec3a12747d7abf4382bf7453c13df994641017a0f461add956ef8f834b762af30408af6a61f317fd3c7b0816236a768601b7c6606ba52ff126eb13d33c915c5da99d118db488da3f3d7783a608282a93fcbe0910f0389c3ef91de7c84e23daa6554c42b2b3e9f70a9f790f29011a0b5102003bfeba6e52877ed8a188958e39375dd203d434bef4dc82cc8a21fc40c6e6e6a2475f70bf1503beb9555036e63bdc937f8a4d61b21d06a9d3239d1df6f2e9ef16dee590b15ac028c6d873bb2965374b733d8e11ba763ab157ed91dd871b098c0543dcbba4cf67db8c83c84369dc67735fa4faa0fdcf34b1c6a862ccae9fe4fa28746504643b57f02623a2ef34ea90f2e7f7dd771f8f75217c799d978a3533fcfab6c6f5391b626d61b400f08172fc675e2a062d06c31b85452804f7b125c291f60a02a5d62271e96fe70d64bae36e28b42e197259169ebee8f64355544fbad8b83c1c8fad02cd1a2e56a6f6e82ec7719a48a1bea803546b8af7a89faf7cef94d8ada45fc0a98a79ba90c95262f0110725c6bf7c81237534dcd6a8a113bd8ac48b7db5526ab762cec103674742476cd6b92b8c7abcfb1f8e08f0a05c1b209187049f3206bd545e8c20f8db6d8a7cdd0c9ecbb9011b611a013cd581521dfcb028d59d5c69d286fb93e4c498b3aaff7e0cdcf1f41fec65ebdbe4c2bf453140251cdd94c32b87c4634d6500000000000000000000000000000000816e6c33f92dca3e03c40000005e538c77b2b14f63d253705363846bc4e9cd3284ff329330812d2211ae34106e0306376a2b1cfe60a09becae2b05ec9adcac47612af85f598a880fa97891a7a290b6e730800542aea761aeb463f5ff5bdf5099ae8ad4afe99db9e9c4e703cb900e9ae272742fe2ff81d1a4f15668392cdafd2e1757706f47f9f84e532f25e2737cb6f6e89378f8d79ab8507b109c7f1f3653a5bc9d54ccc633de6263526eac105192740da5fa46a74b10a118ec1701819ec25fa0028ec4a8578372418b0953937dec794fc66499056753e9110cd15c349e1a3361f34c32fce848a1406b3eeef89e65e4f0c34ff9ca55aeb1e4e7cb06547478683c5121d248a47164c3c4bf23c53dcc890d0a69a1deea8bcc99d2248189ef0b203854e50ea56ba75a3530897cbe6f6d84695174bf9da4098fc97cfb1e31c7c84187a121b7"], 0x1, 0x5f85, &(0x7f0000008340)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000080)=""/51, 0x18)
getdents(r0, 0x0, 0x58)

4.546183893s ago: executing program 2 (id=2673):
r0 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x310, 0x74, 0xd, 0xcf, 0x40, 0xbda, 0x140, 0xda29, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x6, 0xff, 0xf0, 0x8, [{{0x9, 0x4, 0x9e, 0x8, 0x1, 0xce, 0xe0, 0xa7, 0x4c, [], [{{0x9, 0x5, 0x1, 0x3, 0x200, 0x7, 0x5, 0x6}}]}}]}}]}}, &(0x7f0000000480)={0x0, 0x0, 0x25, 0x0})
syz_usb_control_io$printer(r0, &(0x7f0000000880)={0x14, 0x0, &(0x7f0000000180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x429}}}, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000002900)={0x14, 0x0, &(0x7f00000028c0)={0x0, 0x3, 0x2, @string={0x2}}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

3.590821431s ago: executing program 6 (id=2686):
openat$cachefiles(0xffffffffffffff9c, &(0x7f00000000c0), 0x2040, 0x0)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f0000000280)={'pcl812\x00', [0x2f00, 0x5, 0x3, 0x2, 0x0, 0x1, 0x1, 0x9, 0xffe, 0x1, 0xc, 0x1, 0x4, 0x4, 0xffff, 0x6, 0xffffffa7, 0x40000009, 0x832, 0x30000, 0x3ff, 0x9, 0x800, 0xe2df, 0x2, 0x1, 0x80, 0x3, 0x4, 0x7, 0x70f]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

3.499992128s ago: executing program 6 (id=2687):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000a00)={0x2c, 0x7, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040}, 0x0)

3.388358757s ago: executing program 6 (id=2688):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r0, &(0x7f00000001c0)={0x27, 0x0, 0x0, 0x2, 0x0, 0x9, "c46e9fd1a84b7fefa0bf2cca6beb9363a680b652a86bcf56a1b9f4e6b54cc6beca5462202c484c10ca5386103a5ccbe47b7b9aa6d8d701a3ba6a6c0ce8b978", 0x1}, 0x60)
r1 = dup(r0)
getsockopt$inet_buf(r1, 0x118, 0x26, 0x0, &(0x7f00000003c0))

3.200973492s ago: executing program 6 (id=2691):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000003cc0)=[{{&(0x7f0000000140)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000d40)=[@ip_retopts={{0x14, 0x0, 0x7, {[@ra={0x94, 0x4}]}}}], 0x18}}], 0x1, 0x44008004)
write$binfmt_misc(r0, &(0x7f0000000300), 0xfdef)

2.945489813s ago: executing program 6 (id=2693):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x43, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000000c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_4={0x3, 0x1, 0x1, "60bf90c6"}, @global=@item_4={0x3, 0x1, 0x0, '\f\x00'}, @local=@item_012={0x0, 0x2, 0x2}, @main=@item_4={0x3, 0x0, 0x9, "749e821c"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x0, "09007a15"}, @main=@item_4={0x3, 0x0, 0x9, "85900eb7"}]}}, 0x0}, 0x0)

2.292180285s ago: executing program 7 (id=2700):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000a00)={0x0, 0x0, 0xaaca, 0xffff, 0x2, "87d3514787b8c600004a903184033c6700"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x3)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000002c0)=0x84)

2.228610911s ago: executing program 7 (id=2701):
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000100), 0x3f}, 0x38)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x1, 0x353a, 0x1}}, 0x20)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd6018232500102c"], 0x0)

2.192957583s ago: executing program 7 (id=2702):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000400)={0x0, 0x0, r1, <r2=>0x0})
ioctl$DRM_IOCTL_MODE_DIRTYFB(r0, 0xc01864b1, &(0x7f0000000580)={r2, 0x1, 0x10026, 0x0, 0x0})

2.119100409s ago: executing program 7 (id=2703):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)={0x84, r1, 0x1, 0x0, 0x10000000, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x5e, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @device_a, @initial, {}, @value=@ver_80211n={0x0, 0x64, 0x2, 0x0, 0x0, 0x2}}, 0x0, @random, 0x0, @val={0x0, 0x6, @default_ap_ssid}, @val, @void, @val={0x4, 0x6, {0x0, 0x0, 0x10, 0x2000}}, @val={0x6, 0x2, 0x6}, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4, {0x0, 0x0, 0xb7}}, @void, @val={0x72, 0x6}, @val={0x71, 0x7, {0x0, 0x1, 0xffffffffffffffff, 0x1, 0x2, 0xa, 0x49}}, @void}}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x5b7}]}, 0x84}}, 0x20000000)

2.018164047s ago: executing program 7 (id=2705):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="4400000011000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="000000000000000024001a80200005801c00018008000200000000000800010000000000080003"], 0x44}}, 0x0)

1.98241655s ago: executing program 7 (id=2706):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000007794608cd0c39007b90000000010902120001fc0000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f00000000c0)={&(0x7f00000001c0)=[{0x3c, 0x801, 0x0, 0x0}, {0x3c, 0x6810, 0x0, 0x0}], 0x2})

1.685561604s ago: executing program 1 (id=2712):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x18000000000002a0, 0xa2, 0x0, &(0x7f0000000500)="b9ff03076804268c989e14f088a8a6a7166387d500000000d51ccbd25d3a5a7927d28878279a4f6a6c39958fa7135efcb609d3d3743d5157e4b691e23dd35fc93f6d8668d3c050602ee80978c05ab652d333a47cf33e195deeee2c04f3d4664c0279aa94bdaa44cfafd1340c9daf8bf1f5fc657050ac5d27108942f01c1bcfe2a6bfad7253e24df1211229ab65a83f7152dcbf264cbc4e3c4bd21d17d8ed7970f5c9", 0x0, 0x7ff, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x5}, 0x1c)

1.61916246s ago: executing program 1 (id=2713):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x11)
ioctl$TCSETA(r0, 0x8910, 0x0)

1.538735286s ago: executing program 4 (id=2714):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000440)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x18, 0xfffe, 0x0, 0xa0, 0x2f, 0x0, @loopback, @multicast1}, {0x2001, 0x880b, 0x8}}}}}, 0x0)

1.435683265s ago: executing program 1 (id=2715):
r0 = syz_io_uring_setup(0x126b, &(0x7f00000006c0)={0x0, 0x72de}, &(0x7f0000000140), &(0x7f0000000780))
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0x2, &(0x7f0000002d40)={0x0, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[0xffffffffffffffff]}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000040)={0x7f, 0x0, &(0x7f0000000000)=[r0]}, 0x1)

1.376995679s ago: executing program 1 (id=2716):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.kill\x00', 0x275a, 0x0)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r0, 0x0, 0x6ecd, 0x0)
write$P9_RLERRORu(r2, &(0x7f00000000c0)={0x10, 0x7, 0x2, {{0x3, 'X]\x9b'}, 0x9}}, 0x10)

1.352508421s ago: executing program 2 (id=2717):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x702, 0xe, 0x700, &(0x7f0000000540)="e460334470b8d480eb00c15286dd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.313623725s ago: executing program 4 (id=2718):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fcdbdf254400000008000300", @ANYRES32=r2, @ANYBLOB="0a001800030303030303000004005a8020005a8018000080140005000007"], 0x4c}}, 0x4040810)

1.25191195s ago: executing program 1 (id=2719):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
bind$rxrpc(r0, &(0x7f0000000340)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
bind$rxrpc(r0, &(0x7f0000001280)=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24)
listen(r0, 0x5)

1.196398294s ago: executing program 4 (id=2720):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20400, 0x2000}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MACADDR_MODE={0x8}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x44}}, 0x0)

1.094386352s ago: executing program 1 (id=2721):
syz_mount_image$reiserfs(&(0x7f0000001100), &(0x7f0000000040)='./bus\x00', 0x2, &(0x7f00000000c0)={[{@jqfmt_vfsold}, {@usrjquota_file, 0x4}, {@acl}, {@data_journal}, {@usrjquota, 0x3d}]}, 0x2, 0x110f, &(0x7f0000001140)="$eJzs2LFqFEEYB/D/7B2Y7mTTL4IWFhISzs4qRYRrrW0kpDJVrooI4rv4OJLKPuQBLAKWwshusp5IIGAuhoPfD2Z3+OabmW/KmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCVV/1nu0naMdIkKUnXnS0uknRj/PHXSZOSN0eL5cHJ/PUyyWRIL33rZ/XT0u493Wrn7bzda19u7z9rl6cf3r87Pj46uV6mpMv55foPUq7rudHW+vcDAACATVHvbPb3ktP/uz8AAABwm7U+JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8gzpb9dskP2utaZKUpOvOFhdJuocsEAAAALizkiZvZzfFMzwDrLzIt1kZ4mP7Ufqc3XwZ5j9apR429184AAAAbJTprRnlj/v480xTa/00jj3JNDs7V/3+1w98308mpwfZ/X0n/zx8zy8/Ho6t1Mk9nQcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAXO3BAAgAAACDo/+t2BAoAAAAAAAAAAAAAAAAAAAAAAB8FAAD//6zC3aE=")
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2040, 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x3854052, 0x0, 0x0, 0x0, &(0x7f00000000c0))
renameat2(0xffffffffffffff9c, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file5\x00', 0x0)

1.066120864s ago: executing program 4 (id=2722):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.empty_time\x00', 0x26e1, 0x0)
close(r0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r0, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="01fdfdffff00"})

958.948783ms ago: executing program 4 (id=2723):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f00000000c0)=0x41)
pwritev(r0, &(0x7f0000000040)=[{&(0x7f0000000180)="80fd02000040", 0x6}], 0x1, 0x10, 0x0)

808.908565ms ago: executing program 2 (id=2724):
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x0, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f00000000c0)={0x3, 0x78ab, 0x409fca})

774.518818ms ago: executing program 6 (id=2725):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
fstatfs(0xffffffffffffffff, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x1b, 0xf8, 0xfb, 0x40, 0x45e, 0x2bf, 0x7b41, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xcc, 0xed, 0x1b}}]}}]}}, 0x0)
io_setup(0x59, 0x0)

545.772956ms ago: executing program 4 (id=2726):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})

433.493196ms ago: executing program 2 (id=2727):
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{}, {0x77359400}}, 0x0)
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
timerfd_settime(r0, 0x3, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)

0s ago: executing program 2 (id=2728):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7ffffdbe}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x4800003e, r0, 0x0)

kernel console output (not intermixed with test programs):

 XFS (loop2): Ending clean mount
[  262.135675][ T9546] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  262.145262][ T9503] XFS (loop2): Quotacheck needed: Please wait.
[  262.190236][ T9510] XFS (loop1): Ending clean mount
[  262.237669][ T9546] EXT4-fs (loop4): orphan cleanup on readonly fs
[  262.250386][ T9546] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.1784: bad orphan inode 15
[  262.251126][ T1236] block nbd0: Possible stuck request ffff888020270000: control (read@0,1024B). Runtime 60 seconds
[  262.273490][ T1236] block nbd0: Possible stuck request ffff888020270200: control (read@1024,1024B). Runtime 60 seconds
[  262.284583][ T1236] block nbd0: Possible stuck request ffff888020270400: control (read@2048,1024B). Runtime 60 seconds
[  262.296866][ T1236] block nbd0: Possible stuck request ffff888020270600: control (read@3072,512B). Runtime 60 seconds
[  262.308146][ T9546] ext4_test_bit(bit=14, block=18) = 1
[  262.316415][ T9546] is_bad_inode(inode)=0
[  262.322302][ T9510] XFS (loop1): Quotacheck needed: Please wait.
[  262.326543][ T9546] NEXT_ORPHAN(inode)=1023
[  262.352915][ T4529] usb 7-1: Using ep0 maxpacket: 8
[  262.362471][ T9546] max_ino=32
[  262.365827][ T9546] i_nlink=0
[  262.366695][ T9503] XFS (loop2): Quotacheck: Done.
[  262.377553][ T9546] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2941: inode #15: comm syz.4.1784: corrupted xattr block 19
[  262.422967][ T9546] EXT4-fs warning (device loop4): ext4_evict_inode:302: xattr delete (err -117)
[  262.432486][ T9546] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  262.493954][ T9546] EXT4-fs error (device loop4): ext4_readdir:263: inode #2: block 3: comm syz.4.1784: path /417/éq‰Y’3aK: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=4096 fake=0
[  262.522058][ T4529] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  262.532845][ T9510] XFS (loop1): Quotacheck: Done.
[  262.546391][ T4529] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  262.568755][ T4529] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  262.581728][ T4529] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  262.597200][ T4529] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  262.640547][ T4529] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.650220][ T9549] program syz.7.1786 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  262.682025][ T4193] XFS (loop2): Unmounting Filesystem
[  262.697669][ T4191] XFS (loop1): Unmounting Filesystem
[  262.763074][   T26] audit: type=1326 audit(1754624262.621:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9550 comm="syz.7.1790" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x0
[  262.784879][    C1] vkms_vblank_simulate: vblank timer overrun
[  262.957945][ T4529] usb 7-1: GET_CAPABILITIES returned 0
[  262.963683][ T4529] usbtmc 7-1:16.0: can't read capabilities
[  262.969523][    C1] vkms_vblank_simulate: vblank timer overrun
[  263.166871][ T4529] usb 7-1: USB disconnect, device number 6
[  263.584284][ T9566] loop2: detected capacity change from 0 to 64
[  263.902837][ T9577] netlink: 164548 bytes leftover after parsing attributes in process `syz.7.1797'.
[  263.961229][ T9577] netlink: zone id is out of range
[  263.980636][ T9577] netlink: zone id is out of range
[  263.992947][ T9573] loop4: detected capacity change from 0 to 8192
[  264.000643][ T9577] netlink: zone id is out of range
[  264.041776][ T9577] netlink: zone id is out of range
[  264.071373][ T9577] netlink: zone id is out of range
[  264.086872][ T9577] netlink: zone id is out of range
[  264.104982][ T9577] netlink: zone id is out of range
[  264.110373][ T9577] netlink: zone id is out of range
[  264.128688][ T9577] netlink: zone id is out of range
[  264.139096][ T9577] netlink: zone id is out of range
[  264.142204][ T9573] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  264.206156][ T9573] REISERFS (device loop4): using ordered data mode
[  264.225142][ T9573] reiserfs: using flush barriers
[  264.242265][ T9573] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  264.332985][ T9573] REISERFS (device loop4): checking transaction log (loop4)
[  264.480352][ T9571] loop1: detected capacity change from 0 to 32768
[  264.585757][ T9571] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.1793 (9571)
[  264.620676][ T9603] loop7: detected capacity change from 0 to 256
[  264.674480][ T9571] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  264.700398][ T9603] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  264.715715][ T9571] BTRFS info (device loop1): using free space tree
[  264.741084][ T9571] BTRFS info (device loop1): has skinny extents
[  264.741904][ T9573] REISERFS (device loop4): Using tea hash to sort names
[  264.826769][ T9573] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  264.851203][ T9603] FAT-fs (loop7): error, corrupted directory (invalid entries)
[  265.060543][ T9571] BTRFS info (device loop1): enabling ssd optimizations
[  265.190528][ T5065] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  265.440662][ T5065] usb 7-1: Using ep0 maxpacket: 8
[  265.560864][ T5065] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  265.580540][ T5065] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.591411][ T9641] loop7: detected capacity change from 0 to 16
[  265.683459][ T5065] pvrusb2: Hardware description: Terratec Grabster AV400
[  265.710873][ T5065] pvrusb2: **********
[  265.715050][ T5065] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  265.733837][ T9641] erofs: (device loop7): mounted with root inode @ nid 36.
[  265.769054][ T5065] pvrusb2: Important functionality might not be entirely working.
[  265.779164][ T4190] erofs: (device loop7): z_erofs_lz4_decompress: failed to decompress -16 in[46, 4050] out[9000]
[  265.803374][ T5065] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  265.815569][ T5065] pvrusb2: **********
[  265.848707][ T9641] erofs: (device loop7): z_erofs_lz4_decompress: failed to decompress -16 in[46, 4050] out[4096]
[  265.912088][ T2425] pvrusb2: Invalid write control endpoint
[  265.970857][   T26] audit: type=1800 audit(1754624265.831:40): pid=9641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1815" name="file2" dev="loop7" ino=89 res=0 errno=0
[  266.055208][ T2425] pvrusb2: Invalid write control endpoint
[  266.069683][ T2425] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  266.097515][ T2425] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  266.114771][ T2425] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  266.152791][ T2425] pvrusb2: Device being rendered inoperable
[  266.167622][ T9625] pvrusb2: Attempted to execute control transfer when device not ok
[  266.187285][ T2425] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  266.207086][ T2425] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_b)
[  266.285119][ T2425] pvrusb2: Attached sub-driver cx25840
[  266.304629][ T2425] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  266.318763][ T2425] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  266.387401][ T5150] usb 7-1: USB disconnect, device number 7
[  266.532925][ T9656] tipc: Started in network mode
[  266.548405][ T9656] tipc: Node identity ac14140f, cluster identity 4711
[  266.569408][ T9656] tipc: New replicast peer: 255.255.255.255
[  266.589029][ T9656] tipc: Enabled bearer <udp:syz2>, priority 10
[  266.599275][ T9662] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1820'.
[  266.630143][ T9662] tipc: Disabling bearer <udp:syz2>
[  267.256377][ T9688] netlink: 'syz.1.1834': attribute type 3 has an invalid length.
[  267.311265][ T9688] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1834'.
[  267.337992][ T9696] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1838'.
[  267.388315][ T9694] loop2: detected capacity change from 0 to 1024
[  267.507462][ T9704] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1841'.
[  267.537844][ T9694] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,nodioread_nolock,,errors=continue. Quota mode: none.
[  267.553376][ T9694] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  267.930533][ T4293] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  267.954057][ T9698] loop7: detected capacity change from 0 to 32768
[  267.993925][ T9698] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop7 scanned by syz.7.1839 (9698)
[  268.085106][ T9698] BTRFS info (device loop7): using blake2b (blake2b-256-generic) checksum algorithm
[  268.126680][ T9698] BTRFS info (device loop7): using free space tree
[  268.140652][ T9698] BTRFS info (device loop7): has skinny extents
[  268.200551][ T4293] usb 5-1: Using ep0 maxpacket: 32
[  268.321011][ T4293] usb 5-1: config 0 has an invalid interface number: 35 but max is 0
[  268.329589][ T9698] BTRFS info (device loop7): enabling ssd optimizations
[  268.338451][ T4293] usb 5-1: config 0 has no interface number 0
[  268.430693][ T4724] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  268.460348][ T9719] loop6: detected capacity change from 0 to 40427
[  268.501531][ T4293] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  268.518614][ T4293] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.538077][ T4293] usb 5-1: Product: syz
[  268.543120][ T9719] F2FS-fs (loop6): build fault injection attr: rate: 771, type: 0x1ffff
[  268.556159][ T4293] usb 5-1: Manufacturer: syz
[  268.563476][ T9719] F2FS-fs (loop6): invalid crc value
[  268.568979][ T4293] usb 5-1: SerialNumber: syz
[  268.589303][ T4293] usb 5-1: config 0 descriptor??
[  268.606930][ T9719] F2FS-fs (loop6): Found nat_bits in checkpoint
[  268.680719][ T4724] usb 3-1: Using ep0 maxpacket: 8
[  268.814516][ T9719] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  268.956025][ T8506] attempt to access beyond end of device
[  268.956025][ T8506] loop6: rw=2049, want=45104, limit=40427
[  268.996268][ T4724] usb 3-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  269.020609][ T4724] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  269.042116][ T4724] usb 3-1: Product: syz
[  269.046496][ T4724] usb 3-1: Manufacturer: syz
[  269.060703][ T4293] radio-si470x 5-1:0.35: DeviceID=0x9242 ChipID=0x0000
[  269.077371][ T4293] radio-si470x 5-1:0.35: This driver is known to work with firmware version 12,
[  269.088063][ T4724] usb 3-1: SerialNumber: syz
[  269.099732][ T4293] radio-si470x 5-1:0.35: but the device has firmware version 0.
[  269.120499][ T9747] loop7: detected capacity change from 0 to 512
[  269.121644][ T4724] usb 3-1: config 0 descriptor??
[  269.195705][ T9747] EXT4-fs (loop7): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  269.207990][ T4724] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  269.211446][ T9747] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  269.230945][ T4724] usb 3-1: setting power ON
[  269.235532][ T4724] dvb-usb: bulk message failed: -22 (2/0)
[  269.244564][ T4724] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  269.271016][ T4724] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  269.279695][ T4293] radio-si470x 5-1:0.35: software version 146, hardware version 66
[  269.298125][ T4293] radio-si470x 5-1:0.35: If you have some trouble using this driver,
[  269.306531][ T4724] usb 3-1: media controller created
[  269.331292][ T4293] radio-si470x 5-1:0.35: please report to V4L ML at linux-media@vger.kernel.org
[  269.341030][ T4724] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  269.373946][ T4724] usb 3-1: selecting invalid altsetting 6
[  269.379742][ T4724] usb 3-1: digital interface selection failed (-22)
[  269.386546][ T4724] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  269.408152][ T9722] dvb-usb: bulk message failed: -22 (3/0)
[  269.414322][ T9722] dvb-usb: bulk message failed: -22 (3/0)
[  269.430701][ T4724] usb 3-1: setting power OFF
[  269.435488][ T4724] dvb-usb: bulk message failed: -22 (2/0)
[  269.453502][ T4724] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  269.483937][ T4724] (NULL device *): no alternate interface
[  269.510597][ T4293] radio-si470x 5-1:0.35: si470x_set_report: usb_control_msg returned -71
[  269.545157][ T4724] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  269.555115][    C1] radio-si470x 5-1:0.35: non-zero urb status (-71)
[  269.570649][ T4293] radio-si470x 5-1:0.35: si470x_set_report: usb_control_msg returned -71
[  269.579686][ T4293] radio-si470x: probe of 5-1:0.35 failed with error -22
[  269.607819][ T4724] usb 3-1: USB disconnect, device number 15
[  269.650606][ T4293] radio-raremono 5-1:0.35: this is not Thanko's Raremono.
[  269.703022][ T4293] usb 5-1: USB disconnect, device number 13
[  270.134574][ T9770] loop4: detected capacity change from 0 to 64
[  270.435844][ T9755] loop6: detected capacity change from 0 to 40427
[  270.453038][   T26] audit: type=1326 audit(1754624270.311:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9780 comm="syz.4.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc86bb19be9 code=0x7ffc0000
[  270.512006][   T26] audit: type=1326 audit(1754624270.311:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9780 comm="syz.4.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc86bb19be9 code=0x7ffc0000
[  270.564808][ T9755] F2FS-fs (loop6): invalid crc value
[  270.605806][ T9755] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  270.654211][   T26] audit: type=1326 audit(1754624270.311:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9780 comm="syz.4.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7fc86bb19be9 code=0x7ffc0000
[  270.685118][ T9791] loop7: detected capacity change from 0 to 1024
[  270.771791][   T26] audit: type=1326 audit(1754624270.311:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9780 comm="syz.4.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc86bb19be9 code=0x7ffc0000
[  270.809062][ T9791] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  270.907569][ T9803] sp0: Synchronizing with TNC
[  270.942338][ T9800] EXT4-fs error (device loop7): ext4_get_inode_usage:834: inode #2: comm syz.7.1869: corrupted in-inode xattr
[  270.975574][ T9755] F2FS-fs (loop6): Start checkpoint disabled!
[  271.010703][   T26] audit: type=1326 audit(1754624270.311:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9780 comm="syz.4.1863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc86bb19be9 code=0x7ffc0000
[  271.081499][ T9755] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  271.220617][ T9808] loop2: detected capacity change from 0 to 128
[  271.310133][ T8601] attempt to access beyond end of device
[  271.310133][ T8601] loop6: rw=2049, want=45104, limit=40427
[  271.476446][ T9815] loop4: detected capacity change from 0 to 512
[  271.548868][ T9815] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  271.723143][ T9819] loop7: detected capacity change from 0 to 512
[  271.737809][ T9815] EXT4-fs (loop4): 1 truncate cleaned up
[  271.807956][ T9822] netlink: 'syz.6.1879': attribute type 1 has an invalid length.
[  271.850627][ T9815] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,jqfmt=vfsold,minixdf,quota,,errors=continue. Quota mode: writeback.
[  271.859514][ T9819] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  271.988103][ T9819] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002]
[  272.080707][ T9819] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2228: inode #15: comm syz.7.1882: corrupted in-inode xattr
[  272.160545][ T9819] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.1882: couldn't read orphan inode 15 (err -117)
[  272.228684][ T9819] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsold,max_batch_time=0x0000000000000001,debug,noload,jqfmt=vfsv1,noblock_validity,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000002,usrjquota=,,errors=continue. Quota mode: none.
[  272.539848][ T9834] device bond1 entered promiscuous mode
[  272.613868][ T9834] 8021q: adding VLAN 0 to HW filter on device bond1
[  272.743004][ T9834] bond1 (unregistering): Released all slaves
[  272.858429][ T9843] loop1: detected capacity change from 0 to 1024
[  272.955558][ T9843] hfsplus: bad catalog entry type
[  273.023561][  T154] hfsplus: b-tree write err: -5, ino 4
[  273.035755][ T9828] loop6: detected capacity change from 0 to 32768
[  273.229006][ T9828] XFS (loop6): Mounting V5 Filesystem
[  273.493716][ T9828] XFS (loop6): Ending clean mount
[  273.530777][ T9649] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  273.574673][ T9871] loop1: detected capacity change from 0 to 256
[  273.622788][ T8506] XFS (loop6): Unmounting Filesystem
[  273.961035][ T9649] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  274.011782][ T9649] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  274.110580][ T4293] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  274.210810][ T9649] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  274.220037][ T9649] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  274.267162][ T9649] usb 3-1: Product: syz
[  274.291057][ T9649] usb 3-1: Manufacturer: syz
[  274.295759][ T9649] usb 3-1: SerialNumber: syz
[  274.415955][ T9897] loop6: detected capacity change from 0 to 512
[  274.471142][ T4293] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  274.490605][ T4293] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.533433][ T9897] EXT4-fs (loop6): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  274.546823][ T9901] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1912'.
[  274.554585][ T4293] usb 5-1: config 0 descriptor??
[  274.562835][ T9897] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  274.603233][ T9649] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 16 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  274.661868][ T4293] cp210x 5-1:0.0: cp210x converter detected
[  274.847023][ T4720] usb 3-1: USB disconnect, device number 16
[  274.858832][ T4720] usblp0: removed
[  274.864386][ T9910] loop1: detected capacity change from 0 to 4096
[  274.951986][ T9914] loop6: detected capacity change from 0 to 8192
[  274.995733][ T9910] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  275.090729][ T4293] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32
[  275.140061][ T9910] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  275.150312][ T4293] usb 5-1: cp210x converter now attached to ttyUSB0
[  275.171977][ T9921] loop7: detected capacity change from 0 to 512
[  275.190794][ T9910] ntfs3: loop1: Failed to load $Extend.
[  275.264981][ T9921] EXT4-fs error (device loop7): ext4_orphan_get:1401: inode #15: comm syz.7.1921: iget: bad extended attribute block 1
[  275.305764][ T9921] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.1921: couldn't read orphan inode 15 (err -117)
[  275.371823][ T4293] usb 5-1: USB disconnect, device number 14
[  275.391158][ T9921] EXT4-fs (loop7): mounted filesystem without journal. Opts: noblock_validity,resgid=0x000000000000ee00,acl,noload,journal_dev=0x0000000000000003,nodiscard,,errors=continue. Quota mode: none.
[  275.442022][ T4293] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  275.498420][   T26] audit: type=1800 audit(1754624275.351:46): pid=9921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1921" name="file2" dev="loop7" ino=16 res=0 errno=0
[  275.519726][ T9649] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  275.523867][ T4293] cp210x 5-1:0.0: device disconnected
[  275.558783][   T26] audit: type=1326 audit(1754624275.411:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.1.1933" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb78d579be9 code=0x0
[  275.756702][ T9935] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1926'.
[  275.820745][ T9649] usb 7-1: Using ep0 maxpacket: 16
[  275.960784][ T9649] usb 7-1: config 0 interface 0 has no altsetting 0
[  275.969029][ T9649] usb 7-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  275.998928][ T9649] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.032967][ T9649] usb 7-1: config 0 descriptor??
[  276.301304][ T9940] loop2: detected capacity change from 0 to 40427
[  276.313104][ T4531] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  276.327930][ T9940] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  276.340347][ T9940] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  276.351402][ T9940] F2FS-fs (loop2): invalid crc value
[  276.380237][ T9940] F2FS-fs (loop2): Found nat_bits in checkpoint
[  276.417151][ T9954] loop1: detected capacity change from 0 to 512
[  276.458298][ T9940] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  276.465503][ T9940] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  276.513776][ T9649] hid (null): unknown global tag 0xd
[  276.519469][ T9649] hid (null): unknown global tag 0xd
[  276.525997][ T9954] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  276.556278][ T9954] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002]
[  276.579782][ T9649] hid (null): usage index exceeded
[  276.585519][ T4531] usb 5-1: Using ep0 maxpacket: 8
[  276.590578][ T4293] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  276.646264][ T9954] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2228: inode #15: comm syz.1.1934: corrupted in-inode xattr
[  276.665390][ T9954] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1934: couldn't read orphan inode 15 (err -117)
[  276.700250][ T9954] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsold,max_batch_time=0x0000000000000001,debug,noload,jqfmt=vfsv1,noblock_validity,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000002,usrjquota=,,errors=continue. Quota mode: none.
[  276.725496][    C1] vkms_vblank_simulate: vblank timer overrun
[  276.754713][   T13] usb 7-1: USB disconnect, device number 8
[  276.864401][ T4293] usb 8-1: Using ep0 maxpacket: 32
[  276.952971][    C1] vkms_vblank_simulate: vblank timer overrun
[  276.960979][ T4531] usb 5-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  276.990794][ T4293] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 16129, setting to 1024
[  277.000276][ T4531] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  277.009106][ T4293] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  277.033542][ T4531] usb 5-1: Product: syz
[  277.046800][ T4531] usb 5-1: Manufacturer: syz
[  277.066338][ T4531] usb 5-1: SerialNumber: syz
[  277.091392][ T4531] usb 5-1: config 0 descriptor??
[  277.143381][ T4531] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  277.163818][ T9967] loop2: detected capacity change from 0 to 512
[  277.171096][ T4293] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  277.186042][ T4293] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  277.200503][ T4293] usb 8-1: Product: syz
[  277.208409][ T4293] usb 8-1: Manufacturer: syz
[  277.214802][ T4293] usb 8-1: SerialNumber: syz
[  277.283346][ T9967] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  277.312368][ T9967] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a003c11c, mo2=0002]
[  277.345365][ T9967] System zones: 1-12
[  277.359391][ T9967] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2228: inode #15: comm syz.2.1940: corrupted in-inode xattr
[  277.398852][ T9967] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1940: couldn't read orphan inode 15 (err -117)
[  277.481415][ T9967] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,grpid,debug,auto_da_alloc=0x000000000000df07,noauto_da_alloc,commit=0x0000000000000005,init_itable=0x0000000000000009,debug,usrjquota=,nolazytime,norecovery,,errors=continue. Quota mode: none.
[  277.507145][    C1] vkms_vblank_simulate: vblank timer overrun
[  277.550821][ T4293] cdc_ncm 8-1:1.0: bind() failure
[  277.558046][   T26] audit: type=1326 audit(1754624277.411:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9979 comm="syz.6.1945" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0991f36be9 code=0x0
[  277.566943][ T4293] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  277.596554][ T4293] cdc_ncm 8-1:1.1: bind() failure
[  277.639999][ T4293] usb 8-1: USB disconnect, device number 3
[  278.089961][ T4531] gspca_sonixj: reg_r err -71
[  278.096203][ T4531] sonixj: probe of 5-1:0.0 failed with error -71
[  278.124209][ T4531] usb 5-1: USB disconnect, device number 15
[  278.242037][T10000] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1953'.
[  278.309025][ T9993] loop1: detected capacity change from 0 to 32768
[  278.340279][T10002] loop7: detected capacity change from 0 to 1024
[  278.368440][T10002] EXT4-fs (loop7): Ignoring removed orlov option
[  278.419255][ T9993] XFS (loop1): Mounting V5 Filesystem
[  278.433737][T10002] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsv1,resgid=0x0000000000000000,nodioread_nolock,norecovery,debug_want_extra_isize=0x0000000000000080,resgid=0x0000000000000000,errors=remount-ro,grpid,orlov,. Quota mode: none.
[  278.572034][T10002] EXT4-fs (loop7): shut down requested (0)
[  278.590541][ T9649] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  278.605704][ T9993] XFS (loop1): Ending clean mount
[  278.726183][ T4191] XFS (loop1): Unmounting Filesystem
[  278.737262][T10019] netlink: 1 bytes leftover after parsing attributes in process `syz.6.1968'.
[  278.868299][ T9649] usb 3-1: Using ep0 maxpacket: 32
[  279.024267][T10029] loop6: detected capacity change from 0 to 128
[  279.054302][ T9649] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 16129, setting to 1024
[  279.069628][ T9649] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[  279.260938][ T4531] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  279.272770][T10033] loop4: detected capacity change from 0 to 512
[  279.280919][ T9649] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  279.295546][ T9649] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.328238][ T9649] usb 3-1: Product: syz
[  279.338370][ T9649] usb 3-1: Manufacturer: syz
[  279.343334][ T9649] usb 3-1: SerialNumber: syz
[  279.414211][T10033] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,acl,max_dir_size_kb=0x0000000000000001,. Quota mode: writeback.
[  279.442579][ T8601] attempt to access beyond end of device
[  279.442579][ T8601] loop6: rw=1, want=1041, limit=128
[  279.480635][T10033] ext4 filesystem being mounted at /447/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  279.550867][ T4531] usb 8-1: Using ep0 maxpacket: 16
[  279.669844][    C1] vkms_vblank_simulate: vblank timer overrun
[  279.685780][T10041] loop6: detected capacity change from 0 to 1024
[  279.701202][ T4531] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.708330][ T4531] usb 8-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  279.740818][ T4531] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  279.759365][T10041] EXT4-fs (loop6): mounted filesystem without journal. Opts: user_xattr,nodioread_nolock,,errors=continue. Quota mode: none.
[  279.777780][ T4531] usb 8-1: config 0 descriptor??
[  279.783621][ T9649] cdc_ncm 3-1:1.0: bind() failure
[  279.794822][ T9649] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  279.802394][ T9649] cdc_ncm 3-1:1.1: bind() failure
[  279.818062][ T9649] usb 3-1: USB disconnect, device number 17
[  279.885822][T10041] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.942882][   T26] audit: type=1800 audit(1754624279.801:49): pid=10041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1965" name="file1" dev="loop6" ino=15 res=0 errno=0
[  280.238867][T10052] loop6: detected capacity change from 0 to 1024
[  280.292322][ T4531] hid (null): unknown global tag 0xd
[  280.297711][ T4531] hid (null): unknown global tag 0xd
[  280.346903][ T4531] hid (null): usage index exceeded
[  280.381588][T10056] loop1: detected capacity change from 0 to 512
[  280.438447][  T144] hfsplus: b-tree write err: -5, ino 4
[  280.535809][T10056] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  280.552361][ T4531] usb 8-1: USB disconnect, device number 4
[  280.572913][T10056] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a003c11c, mo2=0002]
[  280.632626][T10056] System zones: 1-12
[  280.660856][T10056] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2228: inode #15: comm syz.1.1973: corrupted in-inode xattr
[  280.674535][T10056] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1973: couldn't read orphan inode 15 (err -117)
[  280.687190][T10056] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsold,grpid,debug,auto_da_alloc=0x000000000000df07,noauto_da_alloc,commit=0x0000000000000005,init_itable=0x0000000000000009,debug,usrjquota=,nolazytime,norecovery,,errors=continue. Quota mode: none.
[  280.759989][T10054] loop2: detected capacity change from 0 to 32768
[  280.995161][T10054] XFS (loop2): Mounting V5 Filesystem
[  281.207310][T10054] XFS (loop2): Ending clean mount
[  281.311610][T10079] loop4: detected capacity change from 0 to 4096
[  281.332314][ T4193] XFS (loop2): Unmounting Filesystem
[  281.361116][T10079] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512)
[  281.689051][T10090] ntfs3: loop4: ino=1b, "file0" Internal error
[  281.698976][T10090] ntfs3: loop4: ntfs3_write_inode r=1b failed, -22.
[  281.718393][T10090] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  282.125998][T10108] loop2: detected capacity change from 0 to 256
[  282.149239][T10110] loop7: detected capacity change from 0 to 512
[  282.175991][T10102] loop6: detected capacity change from 0 to 4096
[  282.260839][T10102] ntfs3: loop6: Different NTFS' sector size (1024) and media sector size (512)
[  282.354461][T10110] EXT4-fs (loop7): mounted filesystem without journal. Opts: errors=remount-ro,acl,max_dir_size_kb=0x0000000000000001,. Quota mode: writeback.
[  282.411581][T10110] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  282.545682][T10122] ntfs3: loop6: ino=1b, "file0" Internal error
[  282.571750][T10122] ntfs3: loop6: ntfs3_write_inode r=1b failed, -22.
[  282.584631][T10122] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  283.193769][T10151] loop4: detected capacity change from 0 to 256
[  283.249063][T10153] loop2: detected capacity change from 0 to 1024
[  283.314272][T10153] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  283.353831][T10157] loop7: detected capacity change from 0 to 1024
[  283.398139][T10153] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,min_batch_time=0x0000000000000005,dioread_nolock,. Quota mode: none.
[  283.438796][T10157] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  283.485631][T10153] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  283.644242][T10166] loop1: detected capacity change from 0 to 1024
[  283.676634][T10153] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  283.710078][T10153] EXT4-fs (loop2): Remounting filesystem read-only
[  283.862337][   T26] audit: type=1800 audit(1754624283.721:50): pid=10166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2028" name="file1" dev="loop1" ino=3 res=0 errno=0
[  283.930531][T10166] hfsplus: bad catalog file entry
[  284.065807][  T144] hfsplus: b-tree write err: -5, ino 3
[  284.112345][  T144] hfsplus: bad catalog file entry
[  284.856867][T10203] loop6: detected capacity change from 0 to 1764
[  285.036961][T10177] loop4: detected capacity change from 0 to 32768
[  285.117050][T10209] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2037'.
[  285.189060][T10173] loop7: detected capacity change from 0 to 40427
[  285.209766][T10177] XFS (loop4): Mounting V5 Filesystem
[  285.234427][T10173] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  285.275498][T10173] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  285.417533][T10223] loop1: detected capacity change from 0 to 256
[  285.461806][T10173] F2FS-fs (loop7): invalid crc value
[  285.489784][T10177] XFS (loop4): Ending clean mount
[  285.504709][T10177] XFS (loop4): Quotacheck needed: Please wait.
[  285.527485][T10173] F2FS-fs (loop7): Found nat_bits in checkpoint
[  285.581258][T10223] exfat: Deprecated parameter 'namecase'
[  285.617358][T10223] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  285.642107][T10228] loop6: detected capacity change from 0 to 512
[  285.719956][T10177] XFS (loop4): Quotacheck: Done.
[  285.793792][T10228] EXT4-fs (loop6): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  285.817928][T10173] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  285.830588][T10173] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  285.869086][T10228] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.894393][T10201] loop2: detected capacity change from 0 to 32768
[  285.955742][ T4187] XFS (loop4): Unmounting Filesystem
[  286.023829][T10201] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.2032 (10201)
[  286.204134][T10234] loop1: detected capacity change from 0 to 1024
[  286.240794][T10201] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  286.279687][T10201] BTRFS info (device loop2): using free space tree
[  286.352467][T10201] BTRFS info (device loop2): has skinny extents
[  286.625332][T10201] BTRFS info (device loop2): enabling ssd optimizations
[  286.700967][ T8602] hfsplus: b-tree write err: -5, ino 4
[  286.977204][T10262] netlink: 88 bytes leftover after parsing attributes in process `syz.6.2057'.
[  287.027910][T10262] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2057'.
[  287.176549][T10269] loop4: detected capacity change from 0 to 256
[  287.193086][T10267] vivid-004: disconnect
[  287.294341][ T5190] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 10 /dev/loop2 scanned by udevd (5190)
[  287.323750][T10272] loop6: detected capacity change from 0 to 2048
[  287.874502][T10272] EXT4-fs (loop6): Mount option "nouser_xattr" will be removed by 3.5
[  287.874502][T10272] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  287.874502][T10272] 
[  287.895786][ T4530] vivid-004: reconnect
[  288.072758][T10272] EXT4-fs (loop6): mounted filesystem without journal. Opts: debug_want_extra_isize=0x0000000000000004,usrjquota=,nouser_xattr,nouid32,errors=continue,grpjquota=,init_itable,sb=0x0000000000000007,nombcache,jqfmt=vfsv0,,errors=continue. Quota mode: none.
[  288.416325][T10287] loop4: detected capacity change from 0 to 8192
[  288.590521][T10287] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[  288.676555][T10287] REISERFS (device loop4): using ordered data mode
[  288.677799][T10282] loop7: detected capacity change from 0 to 32768
[  288.760020][T10287] reiserfs: using flush barriers
[  288.794978][T10282] XFS (loop7): Mounting V5 Filesystem
[  288.891313][T10287] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  288.974791][T10287] REISERFS (device loop4): checking transaction log (loop4)
[  289.001772][T10287] REISERFS (device loop4): Using r5 hash to sort names
[  289.020359][T10287] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  289.130017][T10282] XFS (loop7): Ending clean mount
[  289.145754][T10282] XFS (loop7): Quotacheck needed: Please wait.
[  289.335513][T10282] XFS (loop7): Quotacheck: Done.
[  289.516379][T10296] loop2: detected capacity change from 0 to 32768
[  289.559813][ T8577] XFS (loop7): Unmounting Filesystem
[  289.630365][T10329] loop4: detected capacity change from 0 to 4096
[  289.951512][T10296] XFS (loop2): Mounting V5 Filesystem
[  290.118934][    C1] vkms_vblank_simulate: vblank timer overrun
[  290.205070][T10296] XFS (loop2): Ending clean mount
[  290.441401][ T4193] XFS (loop2): Unmounting Filesystem
[  290.459697][T10332] loop6: detected capacity change from 0 to 131072
[  290.505647][T10329] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  290.612979][T10332] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  290.621159][T10332] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  290.631878][T10332] F2FS-fs (loop6): invalid crc value
[  290.675976][T10332] F2FS-fs (loop6): Found nat_bits in checkpoint
[  290.753387][T10332] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  290.761026][T10332] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  290.807257][T10329] overlayfs: upper fs does not support tmpfile.
[  291.067640][T10329] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  291.112883][T10329] overlayfs: failed to verify origin (/, ino=5, err=-22)
[  291.120132][T10329] overlayfs: failed to verify upper root origin
[  291.208389][T10362] loop7: detected capacity change from 0 to 16
[  291.287419][T10362] MTD: Attempt to mount non-MTD device "/dev/loop7"
[  291.307044][ T4614] ntfs3: loop4: ntfs3_write_inode r=9 failed, -22.
[  291.321268][ T4187] ntfs3: loop4: ntfs_sync_fs r=9 failed, -22.
[  291.343895][ T4187] ntfs3: loop4: ntfs_evict_inode r=9 failed, -22.
[  291.357198][T10360] loop1: detected capacity change from 0 to 1024
[  291.644461][T10368] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2071'.
[  291.708702][T10372] loop2: detected capacity change from 0 to 512
[  291.751835][  T514] hfsplus: b-tree write err: -5, ino 4
[  291.836899][T10372] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  291.859078][T10382] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2074'.
[  291.860862][T10372] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  292.073997][T10372] EXT4-fs (loop2): 1 truncate cleaned up
[  292.109662][T10372] EXT4-fs (loop2): mounted filesystem without journal. Opts: nomblk_io_submit,nouid32,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,quota,,errors=continue. Quota mode: writeback.
[  292.331323][ T1236] block nbd0: Possible stuck request ffff888020270000: control (read@0,1024B). Runtime 90 seconds
[  292.342044][ T1236] block nbd0: Possible stuck request ffff888020270200: control (read@1024,1024B). Runtime 90 seconds
[  292.358860][ T1236] block nbd0: Possible stuck request ffff888020270400: control (read@2048,1024B). Runtime 90 seconds
[  292.370498][ T1236] block nbd0: Possible stuck request ffff888020270600: control (read@3072,512B). Runtime 90 seconds
[  292.382641][ T4530] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  292.445384][T10402] loop4: detected capacity change from 0 to 1024
[  292.674561][T10402] hfsplus: xattr searching failed
[  292.709623][T10415] loop2: detected capacity change from 0 to 1024
[  292.733825][T10414] loop1: detected capacity change from 0 to 512
[  292.735892][T10402] hfsplus: xattr searching failed
[  292.770829][ T4530] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  292.780063][ T4530] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.839126][ T4530] usb 8-1: config 0 descriptor??
[  292.877872][T10414] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  292.903194][ T4530] cp210x 8-1:0.0: cp210x converter detected
[  292.938310][  T154] hfsplus: b-tree write err: -5, ino 3
[  293.133308][T10414] EXT4-fs (loop1): re-mounted. Opts: (null). Quota mode: none.
[  293.238779][ T4614] hfsplus: b-tree write err: -5, ino 4
[  293.371244][ T4530] cp210x 8-1:0.0: failed to get vendor val 0x000e size 3: -32
[  293.385520][T10430] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2088'.
[  293.445180][T10433] program syz.4.2090 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  293.473628][ T4530] usb 8-1: cp210x converter now attached to ttyUSB0
[  293.673400][ T9649] usb 8-1: USB disconnect, device number 5
[  293.701376][ T9649] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  293.744874][ T9649] cp210x 8-1:0.0: device disconnected
[  293.807472][T10444] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2095'.
[  294.093893][T10406] loop6: detected capacity change from 0 to 40427
[  294.169522][T10459] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2110'.
[  294.207197][T10406] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  294.254800][T10406] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  294.391934][T10406] F2FS-fs (loop6): Found nat_bits in checkpoint
[  294.636060][T10406] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  294.654251][T10406] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  294.668906][T10472] loop2: detected capacity change from 0 to 4096
[  294.726406][T10472] ntfs3: loop2: Different NTFS' sector size (2048) and media sector size (512)
[  294.922244][   T26] audit: type=1800 audit(1754624294.781:51): pid=10472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2102" name="file1" dev="loop2" ino=33 res=0 errno=0
[  295.088608][T10447] loop1: detected capacity change from 0 to 32768
[  295.155768][T10482] input: syz0 as /devices/virtual/input/input27
[  295.215036][T10447] XFS (loop1): Mounting V5 Filesystem
[  295.486084][T10496] loop4: detected capacity change from 0 to 512
[  295.491157][T10494] device bond0 entered promiscuous mode
[  295.556146][T10447] XFS (loop1): Ending clean mount
[  295.556861][T10494] device bond_slave_0 entered promiscuous mode
[  295.586243][T10466] loop7: detected capacity change from 0 to 32768
[  295.602185][T10494] device bond_slave_1 entered promiscuous mode
[  295.699479][T10494] device bond0 left promiscuous mode
[  295.705158][T10494] device bond_slave_0 left promiscuous mode
[  295.705254][ T4191] XFS (loop1): Unmounting Filesystem
[  295.720839][T10494] device bond_slave_1 left promiscuous mode
[  295.742836][T10496] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  295.852628][    C1] vkms_vblank_simulate: vblank timer overrun
[  295.911150][T10466] XFS (loop7): Mounting V5 Filesystem
[  295.981017][T10466] XFS (loop7): Ending clean mount
[  296.309216][ T8577] XFS (loop7): Unmounting Filesystem
[  296.671509][T10521] loop4: detected capacity change from 0 to 64
[  297.251921][T10526] program syz.1.2108 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  297.588361][T10523] loop2: detected capacity change from 0 to 131072
[  297.645187][T10523] F2FS-fs (loop2): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  297.653980][T10523] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  297.664136][T10523] F2FS-fs (loop2): invalid crc value
[  297.767791][T10519] loop6: detected capacity change from 0 to 32768
[  297.779424][T10523] F2FS-fs (loop2): Found nat_bits in checkpoint
[  297.838330][T10523] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  297.845642][T10523] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  297.982067][T10523] fscrypt (loop2, inode 8): Error -61 getting encryption context
[  298.011638][T10519] XFS (loop6): Mounting V5 Filesystem
[  298.366209][T10556] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2120'.
[  298.427285][T10519] XFS (loop6): Ending clean mount
[  298.458738][T10519] XFS (loop6): Quotacheck needed: Please wait.
[  298.625511][T10565] netlink: 164548 bytes leftover after parsing attributes in process `syz.1.2125'.
[  298.690820][T10565] net_ratelimit: 5 callbacks suppressed
[  298.690836][T10565] netlink: zone id is out of range
[  298.750812][T10565] netlink: zone id is out of range
[  298.765224][T10519] XFS (loop6): Quotacheck: Done.
[  298.770836][T10565] netlink: zone id is out of range
[  298.781099][T10565] netlink: zone id is out of range
[  298.786464][T10565] netlink: zone id is out of range
[  298.798598][T10565] netlink: zone id is out of range
[  298.804301][T10565] netlink: zone id is out of range
[  298.821919][T10565] netlink: zone id is out of range
[  298.840142][T10565] netlink: zone id is out of range
[  298.870685][T10565] netlink: zone id is out of range
[  299.171292][ T8506] XFS (loop6): Unmounting Filesystem
[  299.779949][T10585] loop1: detected capacity change from 0 to 256
[  299.862751][T10574] loop4: detected capacity change from 0 to 131072
[  299.975886][T10574] F2FS-fs (loop4): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  299.984656][T10574] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  299.997916][T10574] F2FS-fs (loop4): invalid crc value
[  300.067546][T10574] F2FS-fs (loop4): Found nat_bits in checkpoint
[  300.076452][T10585] FAT-fs (loop1): Directory bread(block 64) failed
[  300.114769][T10585] FAT-fs (loop1): Directory bread(block 65) failed
[  300.126805][T10574] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  300.134061][T10574] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  300.215174][T10585] FAT-fs (loop1): Directory bread(block 66) failed
[  300.260517][T10585] FAT-fs (loop1): Directory bread(block 67) failed
[  300.291583][T10574] fscrypt (loop4, inode 8): Error -61 getting encryption context
[  300.318155][T10585] FAT-fs (loop1): Directory bread(block 68) failed
[  300.379205][T10585] FAT-fs (loop1): Directory bread(block 69) failed
[  300.425792][T10585] FAT-fs (loop1): Directory bread(block 70) failed
[  300.454350][T10585] FAT-fs (loop1): Directory bread(block 71) failed
[  300.498592][T10585] FAT-fs (loop1): Directory bread(block 72) failed
[  300.534923][T10585] FAT-fs (loop1): Directory bread(block 73) failed
[  300.636199][T10568] loop2: detected capacity change from 0 to 40427
[  300.778515][T10568] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff
[  300.854031][T10568] F2FS-fs (loop2): invalid crc value
[  300.869699][T10585] attempt to access beyond end of device
[  300.869699][T10585] loop1: rw=2049, want=1236, limit=256
[  300.887354][T10568] F2FS-fs (loop2): Found nat_bits in checkpoint
[  301.044020][T10616] loop6: detected capacity change from 0 to 128
[  301.064762][T10568] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  301.189393][T10619] loop1: detected capacity change from 0 to 256
[  301.317311][T10619] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  301.373901][ T4193] attempt to access beyond end of device
[  301.373901][ T4193] loop2: rw=2049, want=45104, limit=40427
[  301.483125][T10623] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2150'.
[  301.981946][ T4720] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  302.380806][ T4720] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  302.410855][ T4720] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.466588][ T4720] usb 7-1: config 0 descriptor??
[  302.531788][ T4720] cp210x 7-1:0.0: cp210x converter detected
[  302.646140][T10646] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.664130][T10638] loop4: detected capacity change from 0 to 32768
[  302.739742][T10640] loop1: detected capacity change from 0 to 32768
[  302.758441][T10638] XFS (loop4): Mounting V5 Filesystem
[  302.776575][T10640] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.2157 (10640)
[  302.860382][T10640] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  302.889075][T10640] BTRFS info (device loop1): using free space tree
[  302.906211][T10646] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.923695][T10640] BTRFS info (device loop1): has skinny extents
[  302.964094][T10638] XFS (loop4): Ending clean mount
[  302.975467][ T4720] cp210x 7-1:0.0: failed to get vendor val 0x000e size 3: -32
[  303.011005][T10638] XFS (loop4): Quotacheck needed: Please wait.
[  303.092358][ T4720] usb 7-1: cp210x converter now attached to ttyUSB0
[  303.102815][T10646] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.248761][T10640] BTRFS info (device loop1): enabling ssd optimizations
[  303.291233][T10638] XFS (loop4): Quotacheck: Done.
[  303.315995][T10646] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.350104][ T4292] usb 7-1: USB disconnect, device number 9
[  303.387918][ T4292] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  303.420969][ T4292] cp210x 7-1:0.0: device disconnected
[  303.454936][ T4187] XFS (loop4): Unmounting Filesystem
[  303.714756][T10660] loop2: detected capacity change from 0 to 32768
[  303.826916][T10660] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.2161 (10660)
[  303.887958][T10660] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  303.938871][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2163'.
[  303.939380][T10660] BTRFS info (device loop2): using free space tree
[  303.999775][T10660] BTRFS info (device loop2): has skinny extents
[  304.413608][T10660] BTRFS info (device loop2): enabling ssd optimizations
[  304.663830][T10646] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  304.756086][T10646] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  304.807133][T10646] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  305.056745][T10715] loop6: detected capacity change from 0 to 1024
[  305.126316][T10646] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  305.466983][T10721] loop7: detected capacity change from 0 to 128
[  305.480218][T10724] tap0: tun_chr_ioctl cmd 1074025677
[  305.502111][T10724] tap0: linktype set to 825
[  305.614259][T10731] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2167'.
[  305.701990][T10734] loop6: detected capacity change from 0 to 256
[  305.868502][T10734] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  305.912383][T10734] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  305.955347][T10734] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  305.998334][T10734] UDF-fs: Scanning with blocksize 512 failed
[  306.082799][T10734] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  306.150176][T10734] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  306.250373][T10752] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.381624][T10761] net_ratelimit: 5 callbacks suppressed
[  306.381643][T10761] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  306.395415][T10761] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  306.595697][T10752] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.637105][T10766] loop6: detected capacity change from 0 to 512
[  306.677857][T10766] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[  306.695092][T10766] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  306.695150][T10729] loop1: detected capacity change from 0 to 40427
[  306.761365][T10729] F2FS-fs (loop1): invalid crc value
[  306.764307][T10752] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.801857][T10729] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  306.813339][T10766] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  306.828141][T10766] System zones: 1-12
[  306.844635][T10766] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2228: inode #15: comm syz.6.2191: corrupted in-inode xattr
[  306.872779][T10766] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.2191: couldn't read orphan inode 15 (err -117)
[  306.887870][T10766] EXT4-fs (loop6): mounted filesystem without journal. Opts: init_itable=0x000000000000faca,nolazytime,debug,noload,mblk_io_submit,commit=0x0000000000000005,lazytime,acl,,errors=continue. Quota mode: none.
[  306.927683][T10752] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.942678][T10729] F2FS-fs (loop1): Start checkpoint disabled!
[  306.953731][T10729] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  307.177463][T10752] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  307.215116][ T4614] attempt to access beyond end of device
[  307.215116][ T4614] loop1: rw=2049, want=45104, limit=40427
[  307.251534][T10752] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  307.280177][T10752] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  307.296349][T10752] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  307.565404][T10784] loop7: detected capacity change from 0 to 8192
[  307.665755][T10784] REISERFS (device loop7): found reiserfs format "3.6" with non-standard journal
[  307.681072][T10784] REISERFS (device loop7): using ordered data mode
[  307.695746][T10784] reiserfs: using flush barriers
[  307.731304][T10784] REISERFS (device loop7): journal params: device loop7, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  307.782803][T10784] REISERFS (device loop7): checking transaction log (loop7)
[  308.128615][T10784] REISERFS (device loop7): Using tea hash to sort names
[  308.147443][T10784] REISERFS (device loop7): Created .reiserfs_priv - reserved for xattr storage.
[  308.166932][T10810] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2210'.
[  308.403263][T10819] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2213'.
[  308.675373][T10826] loop7: detected capacity change from 0 to 256
[  308.695508][ T4190] Bluetooth: hci3: link tx timeout
[  308.701764][ T4190] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  308.714242][ T4190] Bluetooth: hci3: link tx timeout
[  308.719559][ T4190] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  308.750344][ T4190] Bluetooth: hci3: link tx timeout
[  308.755677][ T4190] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  308.767448][ T4190] Bluetooth: hci3: link tx timeout
[  308.773276][ T4190] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  308.860315][T10826] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  308.930960][T10826] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=512, location=512
[  308.934631][T10816] loop6: detected capacity change from 0 to 32768
[  308.984666][T10826] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[  309.007198][T10826] UDF-fs: Scanning with blocksize 512 failed
[  309.017749][T10826] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  309.044862][T10816] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop6 scanned by syz.6.2211 (10816)
[  309.095325][T10816] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  309.110167][T10826] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  309.140906][T10816] BTRFS info (device loop6): using free space tree
[  309.171181][T10816] BTRFS info (device loop6): has skinny extents
[  309.354508][T10821] loop2: detected capacity change from 0 to 40427
[  309.442353][T10821] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  309.495846][T10821] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  309.538149][T10821] F2FS-fs (loop2): invalid crc value
[  309.621037][T10816] BTRFS info (device loop6): enabling ssd optimizations
[  309.647949][T10821] F2FS-fs (loop2): Found nat_bits in checkpoint
[  309.680023][T10873] mmap: syz.1.2227 (10873): VmData 35377152 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  309.897939][T10821] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  309.920908][T10821] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  310.096368][T10888] loop4: detected capacity change from 0 to 512
[  310.120118][T10885] 8021q: adding VLAN 0 to HW filter on device bond1
[  310.129680][T10885] bond0: (slave bond1): Enslaving as an active interface with an up link
[  310.192602][T10893] loop1: detected capacity change from 0 to 256
[  310.270232][T10893] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  310.311286][T10888] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  310.326129][T10893] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  310.367701][T10893] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  310.397274][T10893] UDF-fs: Scanning with blocksize 512 failed
[  310.488360][T10893] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  310.545845][T10893] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  310.969282][    C1] vkms_vblank_simulate: vblank timer overrun
[  311.100285][   T21] Bluetooth: hci3: command 0x0406 tx timeout
[  311.305363][T10895] loop7: detected capacity change from 0 to 40427
[  311.462621][T10895] F2FS-fs (loop7): invalid crc value
[  311.564038][T10895] F2FS-fs (loop7): Found nat_bits in checkpoint
[  311.638351][T10913] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2244'.
[  311.769333][T10895] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  312.019651][ T8577] attempt to access beyond end of device
[  312.019651][ T8577] loop7: rw=2049, want=45104, limit=40427
[  312.276782][T10904] loop4: detected capacity change from 0 to 32768
[  312.568153][T10904] XFS (loop4): Mounting V5 Filesystem
[  312.844524][T10904] XFS (loop4): Ending clean mount
[  312.856276][T10904] XFS (loop4): Quotacheck needed: Please wait.
[  313.002510][T10904] XFS (loop4): Quotacheck: Done.
[  313.264017][ T4187] XFS (loop4): Unmounting Filesystem
[  313.287431][T10923] loop2: detected capacity change from 0 to 40427
[  313.384808][T10923] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  313.415036][T10923] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  313.484746][T10923] F2FS-fs (loop2): invalid crc value
[  313.590037][T10923] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669)
[  313.639836][T10953] loop6: detected capacity change from 0 to 4096
[  313.751704][T10953] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  313.790613][T10923] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  313.797853][T10923] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  313.815857][T10962] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2261'.
[  314.312580][ T4527] kernel write not supported for file /339/attr/exec (pid: 4527 comm: kworker/0:10)
[  314.478229][T10978] loop7: detected capacity change from 0 to 128
[  314.701087][    C1] vkms_vblank_simulate: vblank timer overrun
[  314.947129][ T4716] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  315.201453][ T4716] usb 3-1: Using ep0 maxpacket: 8
[  315.216090][T10994] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2273'.
[  315.322321][ T4716] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  315.345349][ T4716] usb 3-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  315.364990][ T4716] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.388903][ T4716] usb 3-1: config 0 descriptor??
[  315.406799][T10918] syz.1.2245 (10918): drop_caches: 1
[  315.442856][ T4716] gspca_main: vc032x-2.14.0 probing 046d:0892
[  315.461985][T10998] loop4: detected capacity change from 0 to 4096
[  315.475096][T10915] syz.1.2245 (10915): drop_caches: 1
[  315.525407][T10998] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  315.613219][T11007] loop1: detected capacity change from 0 to 512
[  315.646378][T11007] EXT4-fs (loop1): Ignoring removed nobh option
[  315.724618][T11007] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.2277: iget: bad i_size value: 38620345925642
[  315.761158][T11007] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.2277: couldn't read orphan inode 15 (err -117)
[  315.799642][T11007] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,auto_da_alloc,debug_want_extra_isize=0x0000000000000014,,errors=continue. Quota mode: writeback.
[  315.948193][ T4285] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm kworker/u4:5: bg 0: block 5: invalid block bitmap
[  315.989333][ T4285] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 64 with error 28
[  316.015165][ T4285] EXT4-fs (loop1): This should not happen!! Data will be lost
[  316.015165][ T4285] 
[  316.025663][ T4285] EXT4-fs (loop1): Total free blocks count 0
[  316.032047][ T4285] EXT4-fs (loop1): Free/Dirty block details
[  316.046517][ T4285] EXT4-fs (loop1): free_blocks=0
[  316.051902][ T4285] EXT4-fs (loop1): dirty_blocks=64
[  316.056716][T11012] loop4: detected capacity change from 0 to 4096
[  316.061892][ T4285] EXT4-fs (loop1): Block reservation details
[  316.074208][ T4285] EXT4-fs (loop1): i_reserved_data_blocks=64
[  316.099889][T11012] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[  316.218836][T11020] loop1: detected capacity change from 0 to 128
[  316.300630][ T4716] gspca_vc032x: reg_w err -71
[  316.305438][ T4716] vc032x: probe of 3-1:0.0 failed with error -71
[  316.360708][ T4716] usb 3-1: USB disconnect, device number 18
[  316.654080][T11032] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.685285][T11031] loop7: detected capacity change from 0 to 4096
[  316.730381][T11031] ntfs3: loop7: Different NTFS' sector size (2048) and media sector size (512)
[  316.858920][T11032] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.044923][T11032] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.218344][T11032] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.294823][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  317.301382][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  317.387038][T11032] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.434039][T11032] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.458330][T11030] loop1: detected capacity change from 0 to 32768
[  317.468328][T11034] loop4: detected capacity change from 0 to 32768
[  317.482489][T11032] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.505711][T11032] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  317.536613][T11030] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.2288 (11030)
[  317.563689][T11034] (syz.4.2289,11034,1):ocfs2_verify_volume:2364 ERROR: found superblock with bad version: found 5076.90, should be 0.90
[  317.594067][T11030] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  317.643943][T11034] (syz.4.2289,11034,1):ocfs2_verify_volume:2392 ERROR: status = -22
[  317.654819][T11030] BTRFS info (device loop1): use no compression
[  317.700352][T11030] BTRFS info (device loop1): force zlib compression, level 3
[  317.718367][T11034] (syz.4.2289,11034,1):ocfs2_fill_super:991 ERROR: superblock probe failed!
[  317.719493][T11030] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[  317.758506][T11034] (syz.4.2289,11034,1):ocfs2_fill_super:1177 ERROR: status = -22
[  317.819015][T11030] BTRFS info (device loop1): use lzo compression, level 0
[  317.863307][T11030] BTRFS info (device loop1): turning on flush-on-commit
[  317.892845][T11030] BTRFS info (device loop1): enabling auto defrag
[  317.899627][T11030] BTRFS info (device loop1): using free space tree
[  317.916338][T11030] BTRFS info (device loop1): has skinny extents
[  318.167418][T11030] BTRFS info (device loop1): enabling ssd optimizations
[  318.234011][T11085] loop2: detected capacity change from 0 to 512
[  318.309915][T11085] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  318.405677][T11085] EXT4-fs (loop2): 1 truncate cleaned up
[  318.416089][T11085] EXT4-fs (loop2): mounted filesystem without journal. Opts: discard,inode_readahead_blks=0x0000000000000040,norecovery,,errors=continue. Quota mode: none.
[  318.500633][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.650838][    C1] vkms_vblank_simulate: vblank timer overrun
[  319.340554][ T4527] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  319.731136][ T4527] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  319.750597][ T4527] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.785274][ T4527] usb 8-1: config 0 descriptor??
[  319.846067][ T4527] cp210x 8-1:0.0: cp210x converter detected
[  320.002234][T11121] loop6: detected capacity change from 0 to 32768
[  320.023174][T11150] kvm [11149]: vcpu3, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc0010002 data 0xff
[  320.093575][T11121] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.2318 (11121)
[  320.172589][T11121] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[  320.228009][T11121] BTRFS info (device loop6): use no compression
[  320.245286][T11121] BTRFS info (device loop6): force zlib compression, level 3
[  320.266979][T11121] BTRFS info (device loop6): setting incompat feature flag for COMPRESS_LZO (0x8)
[  320.327499][T11121] BTRFS info (device loop6): use lzo compression, level 0
[  320.363293][T11121] BTRFS info (device loop6): turning on flush-on-commit
[  320.388707][T11121] BTRFS info (device loop6): enabling auto defrag
[  320.440779][T11121] BTRFS info (device loop6): using free space tree
[  320.466832][T11121] BTRFS info (device loop6): has skinny extents
[  320.501055][ T4527] cp210x 8-1:0.0: failed to get vendor val 0x000e size 678: -71
[  320.508929][ T4527] cp210x 8-1:0.0: GPIO initialisation failed: -71
[  320.576901][ T4527] usb 8-1: cp210x converter now attached to ttyUSB0
[  320.631850][ T4527] usb 8-1: USB disconnect, device number 6
[  320.662590][T11166] xt_CT: No such helper "snmp"
[  320.670988][ T4527] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  320.728526][ T4527] cp210x 8-1:0.0: device disconnected
[  320.762606][T11194] netlink: 'syz.4.2342': attribute type 10 has an invalid length.
[  320.847357][T11121] BTRFS info (device loop6): enabling ssd optimizations
[  320.997826][T11204] loop1: detected capacity change from 0 to 512
[  321.045628][T11204] EXT4-fs (loop1): Ignoring removed nobh option
[  321.251348][T11204] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.2345: iget: bad i_size value: 38620345925642
[  321.282647][T11204] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.2345: couldn't read orphan inode 15 (err -117)
[  321.301070][T11204] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,journal_dev=0x0000000000000002,data_err=ignore,,errors=continue. Quota mode: writeback.
[  321.794637][T11218] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2353'.
[  321.856478][T11210] loop7: detected capacity change from 0 to 32768
[  322.002863][    C1] vkms_vblank_simulate: vblank timer overrun
[  322.027002][T11231] loop4: detected capacity change from 0 to 512
[  322.239690][T11210] XFS (loop7): Mounting V5 Filesystem
[  322.395985][T11231] EXT4-fs (loop4): Test dummy encryption mode enabled
[  322.422125][ T1236] block nbd0: Possible stuck request ffff888020270000: control (read@0,1024B). Runtime 120 seconds
[  322.433730][ T1236] block nbd0: Possible stuck request ffff888020270200: control (read@1024,1024B). Runtime 120 seconds
[  322.444965][ T1236] block nbd0: Possible stuck request ffff888020270400: control (read@2048,1024B). Runtime 120 seconds
[  322.456171][ T1236] block nbd0: Possible stuck request ffff888020270600: control (read@3072,512B). Runtime 120 seconds
[  322.469250][T11231] EXT4-fs error (device loop4): __ext4_iget:4894: inode #11: block 1: comm syz.4.2356: invalid block
[  322.520937][T11231] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.2356: couldn't read orphan inode 11 (err -117)
[  322.521003][T11210] XFS (loop7): Ending clean mount
[  322.551453][T11210] XFS (loop7): Quotacheck needed: Please wait.
[  322.589818][T11231] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,nogrpid,max_dir_size_kb=0x0000000000000004,journal_dev=0x0000000000000005,nodiscard,dax=inode,nojournal_checksum,noauto_da_alloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  322.716665][T11210] XFS (loop7): Quotacheck: Done.
[  322.795490][T11210] XFS (loop7): User initiated shutdown received.
[  322.811075][T11210] XFS (loop7): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[  322.830519][T11210] XFS (loop7): Please unmount the filesystem and rectify the problem(s)
[  322.939913][ T8577] XFS (loop7): Unmounting Filesystem
[  323.145909][T11265] loop2: detected capacity change from 0 to 16
[  323.275502][T11265] erofs: (device loop2): mounted with root inode @ nid 36.
[  323.577945][T11276] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2374'.
[  323.692408][T11280] loop1: detected capacity change from 0 to 64
[  323.708454][T11282] loop6: detected capacity change from 0 to 128
[  323.794039][T11284] netlink: 'syz.7.2377': attribute type 6 has an invalid length.
[  323.805005][T11282] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,usrjquota=,acl,grpjquota=,,errors=continue. Quota mode: none.
[  323.806053][T11284] netlink: 'syz.7.2377': attribute type 6 has an invalid length.
[  323.888870][T11282] ext4 filesystem being mounted at /179/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  323.951132][T11280] hfs: request for non-existent node 16777216 in B*Tree
[  323.961056][T11280] hfs: request for non-existent node 16777216 in B*Tree
[  323.973273][T11280] hfs: request for non-existent node 16777216 in B*Tree
[  323.980380][T11280] hfs: request for non-existent node 16777216 in B*Tree
[  323.994610][T11280] hfs: request for non-existent node 16777216 in B*Tree
[  324.001810][T11280] hfs: request for non-existent node 16777216 in B*Tree
[  324.054436][  T154] hfs: request for non-existent node 16777216 in B*Tree
[  324.090873][  T154] hfs: request for non-existent node 16777216 in B*Tree
[  324.421622][T11282] overlayfs: Failed to create volatile/dirty file.
[  324.433133][T11304] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2386'.
[  324.579076][T11274] loop2: detected capacity change from 0 to 32768
[  324.662438][T11274] XFS: attr2 mount option is deprecated.
[  324.693654][T11314] loop1: detected capacity change from 0 to 256
[  324.786288][T11314] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  324.866851][T11274] XFS (loop2): Mounting V5 Filesystem
[  324.897112][T11323] loop6: detected capacity change from 0 to 512
[  324.966488][T11274] XFS (loop2): Ending clean mount
[  325.011572][T11306] loop4: detected capacity change from 0 to 32768
[  325.016080][T11274] XFS (loop2): Quotacheck needed: Please wait.
[  325.109902][T11323] EXT4-fs (loop6): Test dummy encryption mode enabled
[  325.144044][T11306] JBD2: Ignoring recovery information on journal
[  325.261482][T11323] EXT4-fs error (device loop6): __ext4_iget:4894: inode #11: block 1: comm syz.6.2390: invalid block
[  325.281140][T11323] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.2390: couldn't read orphan inode 11 (err -117)
[  325.335142][T11274] XFS (loop2): Quotacheck: Done.
[  325.342524][T11306] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  325.392892][T11323] EXT4-fs (loop6): mounted filesystem without journal. Opts: noauto_da_alloc,nogrpid,max_dir_size_kb=0x0000000000000004,journal_dev=0x0000000000000005,nodiscard,dax=inode,nojournal_checksum,noauto_da_alloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  325.499730][T11306] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bad parent pointer (0, expected 74)
[  325.534805][T11306] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  325.542723][T11334] loop1: detected capacity change from 0 to 1024
[  325.553026][T11306] OCFS2: File system is now read-only.
[  325.558553][T11306] (syz.4.2387,11306,0):ocfs2_search_one_group:1684 ERROR: status = -30
[  325.559782][ T4193] XFS (loop2): Unmounting Filesystem
[  325.589306][T11306] (syz.4.2387,11306,0):ocfs2_claim_suballoc_bits:1920 ERROR: status = -30
[  325.608577][T11334] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  325.635620][T11334] EXT4-fs (loop1): Ignoring removed nobh option
[  325.650762][T11306] (syz.4.2387,11306,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  325.665809][T11334] EXT4-fs (loop1): Ignoring removed bh option
[  325.720787][T11306] (syz.4.2387,11306,1):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  325.729186][T11306] (syz.4.2387,11306,1):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  325.730303][T11334] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  325.790119][T11306] (syz.4.2387,11306,0):ocfs2_mknod_locked:639 ERROR: status = -30
[  325.823479][T11306] (syz.4.2387,11306,0):ocfs2_mknod:385 ERROR: status = -30
[  325.876597][T11306] (syz.4.2387,11306,0):ocfs2_mknod:502 ERROR: status = -30
[  325.893614][T11343] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2400'.
[  325.904975][T11334] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,data_err=abort,mblk_io_submit,dioread_lock,data_err=ignore,resgid=0x0000000000000000,data_err=ignore,jqfmt=vfsv0,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: none.
[  325.930166][T11306] (syz.4.2387,11306,0):ocfs2_create:676 ERROR: status = -30
[  326.064696][ T4187] ocfs2: Unmounting device (7,4) on (node local)
[  326.342338][T11352] loop4: detected capacity change from 0 to 1024
[  326.407602][T11356] loop7: detected capacity change from 0 to 256
[  326.502449][T11356] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  326.523994][T11352] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  326.719781][T11365] loop2: detected capacity change from 0 to 512
[  326.885322][T11371] loop1: detected capacity change from 0 to 2048
[  326.959860][T11365] EXT4-fs (loop2): 1 truncate cleaned up
[  327.003887][T11371] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  327.024939][T11365] EXT4-fs (loop2): mounted filesystem without journal. Opts: prjquota,grpquota,debug_want_extra_isize=0x000000000000005c,sysvgroups,lazytime,errors=continue,grpjquota=,,errors=continue. Quota mode: writeback.
[  327.180766][T11350] syz.6.2403 (11350): drop_caches: 1
[  327.230240][T11379] loop7: detected capacity change from 0 to 64
[  327.283039][T11383] loop1: detected capacity change from 0 to 128
[  327.403066][T11379] hfs: request for non-existent node 16777216 in B*Tree
[  327.429635][T11383] EXT4-fs (loop1): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,usrjquota=,acl,grpjquota=,,errors=continue. Quota mode: none.
[  327.454849][T11379] hfs: request for non-existent node 16777216 in B*Tree
[  327.514709][T11383] ext4 filesystem being mounted at /522/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  327.515206][T11347] syz.6.2403 (11347): drop_caches: 1
[  327.566529][T11392] mkiss: ax0: crc mode is auto.
[  327.571643][T11379] hfs: request for non-existent node 16777216 in B*Tree
[  327.571714][T11379] hfs: request for non-existent node 16777216 in B*Tree
[  327.703870][T11388] hfs: request for non-existent node 16777216 in B*Tree
[  327.732207][T11383] overlayfs: Failed to create volatile/dirty file.
[  327.759511][T11388] hfs: request for non-existent node 16777216 in B*Tree
[  328.009079][ T3031] hfs: request for non-existent node 16777216 in B*Tree
[  328.039149][ T3031] hfs: request for non-existent node 16777216 in B*Tree
[  328.139762][T11347] syz.6.2403 (11347): drop_caches: 1
[  328.379000][T11395] infiniband syz0: set active
[  328.407443][T11395] infiniband syz0: added bond_slave_1
[  328.521894][T11395] RDS/IB: syz0: added
[  328.527952][T11395] smc: adding ib device syz0 with port count 1
[  328.535708][T11395] smc:    ib device syz0 port 1 has pnetid 
[  328.670709][ T4720] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  328.952690][ T4720] usb 8-1: Using ep0 maxpacket: 32
[  329.080768][ T4720] usb 8-1: config 0 has an invalid interface number: 67 but max is 0
[  329.099206][ T4720] usb 8-1: config 0 has no interface number 0
[  329.170229][T11412] loop1: detected capacity change from 0 to 32768
[  329.269825][T11412] XFS (loop1): Mounting V5 Filesystem
[  329.292703][ T4720] usb 8-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  329.302068][ T4720] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  329.310126][ T4720] usb 8-1: Product: syz
[  329.314942][ T4720] usb 8-1: Manufacturer: syz
[  329.319632][ T4720] usb 8-1: SerialNumber: syz
[  329.327070][ T4720] usb 8-1: config 0 descriptor??
[  329.370381][T11412] XFS (loop1): Ending clean mount
[  329.371783][ T4720] smsc95xx v2.0.0
[  329.474043][ T4191] XFS (loop1): Unmounting Filesystem
[  329.562512][T11445] loop4: detected capacity change from 0 to 4096
[  329.684004][    C1] vkms_vblank_simulate: vblank timer overrun
[  329.804245][T11445] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  329.980629][ T8602] ntfs3: loop4: ntfs3_write_inode r=9 failed, -22.
[  330.011036][ T4187] ntfs3: loop4: ntfs_sync_fs r=9 failed, -22.
[  330.018093][ T4187] ntfs3: loop4: ntfs_evict_inode r=9 failed, -22.
[  330.070629][ T4720] smsc95xx 8-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  330.090582][ T4720] smsc95xx 8-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  330.151355][ T4720] smsc95xx 8-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  330.170862][ T4720] smsc95xx: probe of 8-1:0.67 failed with error -71
[  330.207142][ T4720] usb 8-1: USB disconnect, device number 7
[  330.454607][T11456] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2444'.
[  330.728164][T11464] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2448'.
[  330.834987][T11469] loop7: detected capacity change from 0 to 512
[  330.971088][ T4248] Bluetooth: hci6: command 0x1003 tx timeout
[  330.978330][ T4192] Bluetooth: hci6: sending frame failed (-49)
[  331.018176][T11450] loop4: detected capacity change from 0 to 32768
[  331.060659][T11469] EXT4-fs (loop7): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  331.079067][T11469] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  331.191850][T11450] XFS (loop4): Mounting V5 Filesystem
[  331.207052][T11467] loop2: detected capacity change from 0 to 32768
[  331.435738][T11467] XFS (loop2): Mounting V5 Filesystem
[  331.447185][T11450] XFS (loop4): Ending clean mount
[  331.593166][T11467] XFS (loop2): Ending clean mount
[  331.599295][ T4187] XFS (loop4): Unmounting Filesystem
[  331.635219][T11467] XFS (loop2): Quotacheck needed: Please wait.
[  331.960023][T11467] XFS (loop2): Quotacheck: Done.
[  332.012796][T11467] XFS (loop2): User initiated shutdown received.
[  332.038658][T11467] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[  332.090380][T11467] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  332.177112][ T4193] XFS (loop2): Unmounting Filesystem
[  332.251560][T11517] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2463'.
[  332.370715][ T4248] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  332.760782][ T4248] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  332.780594][ T4248] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  332.805916][ T4248] usb 8-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00
[  332.825431][ T4248] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.856715][ T4248] usb 8-1: config 0 descriptor??
[  333.060600][ T4720] Bluetooth: hci6: command 0x1001 tx timeout
[  333.066839][ T4192] Bluetooth: hci6: sending frame failed (-49)
[  333.211701][T11539] loop4: detected capacity change from 0 to 32768
[  333.347014][ T4248] kye 0003:0458:5019.0013: hidraw0: USB HID v0.00 Device [HID 0458:5019] on usb-dummy_hcd.7-1/input0
[  333.371885][ T4248] kye 0003:0458:5019.0013: tablet-enabling feature report not found
[  333.387143][ T4248] kye 0003:0458:5019.0013: tablet enabling failed
[  333.524485][T11541] loop2: detected capacity change from 0 to 32768
[  333.546395][ T4234] usb 8-1: USB disconnect, device number 8
[  333.606048][T11541] JBD2: Ignoring recovery information on journal
[  333.723578][T11541] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  333.813469][T11541] OCFS2: ERROR (device loop2): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bad parent pointer (0, expected 74)
[  333.836682][T11543] fido_id[11543]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  333.861109][T11541] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  333.880685][T11541] OCFS2: File system is now read-only.
[  333.896565][T11541] (syz.2.2472,11541,0):ocfs2_search_one_group:1684 ERROR: status = -30
[  333.927671][T11541] (syz.2.2472,11541,0):ocfs2_claim_suballoc_bits:1920 ERROR: status = -30
[  333.939939][T11541] (syz.2.2472,11541,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  333.959579][T11541] (syz.2.2472,11541,0):ocfs2_claim_new_inode:2216 ERROR: status = -30
[  333.970679][T11541] (syz.2.2472,11541,0):ocfs2_claim_new_inode:2231 ERROR: status = -30
[  333.978909][T11541] (syz.2.2472,11541,0):ocfs2_mknod_locked:639 ERROR: status = -30
[  333.986918][T11541] (syz.2.2472,11541,0):ocfs2_mknod:385 ERROR: status = -30
[  333.994400][T11541] (syz.2.2472,11541,0):ocfs2_mknod:502 ERROR: status = -30
[  334.001776][T11541] (syz.2.2472,11541,0):ocfs2_create:676 ERROR: status = -30
[  334.038300][ T4193] ocfs2: Unmounting device (7,2) on (node local)
[  334.288028][T11555] loop7: detected capacity change from 0 to 764
[  334.300728][ T4248] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  334.394499][T11555] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  334.550541][ T4248] usb 5-1: Using ep0 maxpacket: 32
[  334.553945][T11563] loop2: detected capacity change from 0 to 4096
[  334.643359][T11563] ntfs: volume version 3.1.
[  334.665753][T11563] ntfs: (device loop2): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set iso8859-3.  You might want to try to use the mount option nls=utf8.
[  334.687104][T11563] ntfs: (device loop2): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[  334.710901][ T4248] usb 5-1: config 0 has an invalid interface number: 126 but max is 0
[  334.719999][ T4248] usb 5-1: config 0 has no interface number 0
[  334.726586][ T4248] usb 5-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[  334.737312][ T4248] usb 5-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 8
[  334.748179][ T4248] usb 5-1: config 0 interface 126 has no altsetting 0
[  334.790714][ T4722] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  334.920766][ T4248] usb 5-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[  334.931384][ T4248] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  334.952967][ T4248] usb 5-1: Product: syz
[  334.957225][ T4248] usb 5-1: Manufacturer: syz
[  334.963705][ T4248] usb 5-1: SerialNumber: syz
[  334.984574][ T4248] usb 5-1: config 0 descriptor??
[  335.000869][T11547] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  335.013244][T11547] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  335.067493][ T4722] usb 8-1: Using ep0 maxpacket: 32
[  335.093137][T11574] loop1: detected capacity change from 0 to 2048
[  335.127337][T11578] loop2: detected capacity change from 0 to 512
[  335.140962][ T5065] Bluetooth: hci6: command 0x1009 tx timeout
[  335.177071][T11578] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  335.204925][T11578] UDF-fs: Scanning with blocksize 512 failed
[  335.210751][ T4722] usb 8-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  335.223095][T11578] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  335.235730][ T4722] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.245438][T11574] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  335.258201][T11578] UDF-fs: Scanning with blocksize 1024 failed
[  335.265478][T11578] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  335.293070][T11578] UDF-fs: Scanning with blocksize 2048 failed
[  335.320697][T11578] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  335.334624][    C1] vkms_vblank_simulate: vblank timer overrun
[  335.343340][ T4722] usb 8-1: config 0 descriptor??
[  335.362596][T11578] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  335.502506][ T4248] ir_usb 5-1:0.126: IR Dongle converter detected
[  335.630812][ T4722] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  335.638963][T11592] loop2: detected capacity change from 0 to 64
[  335.652576][ T4722] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  335.680934][ T4722] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  335.688638][ T4722] usb 8-1: media controller created
[  335.720783][ T4248] usb 5-1: IRDA class descriptor not found, device not bound
[  335.733322][ T4722] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  335.831785][T11565] az6027: more than 2 i2c messages at a time is not handled yet. TODO.
[  335.863037][ T4722] az6027: usb out operation failed. (-71)
[  335.894917][ T4722] az6027: usb out operation failed. (-71)
[  335.901705][ T4722] stb0899_attach: Driver disabled by Kconfig
[  335.909172][ T4722] az6027: no front-end attached
[  335.909172][ T4722] 
[  335.948378][ T4720] usb 5-1: USB disconnect, device number 16
[  335.962244][ T4722] az6027: usb out operation failed. (-71)
[  335.968251][ T4722] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  335.975954][T11601] loop2: detected capacity change from 0 to 16
[  335.997822][ T4722] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.7/usb8/8-1/input/input28
[  336.024717][T11601] erofs: (device loop2): mounted with root inode @ nid 36.
[  336.051562][ T4722] dvb-usb: schedule remote query interval to 400 msecs.
[  336.064536][ T4722] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  336.075767][ T4722] usb 8-1: USB disconnect, device number 9
[  336.158467][ T4722] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  336.352125][T11611] loop1: detected capacity change from 0 to 512
[  336.397077][T11611] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found
[  336.407311][T11611] UDF-fs: Scanning with blocksize 512 failed
[  336.458116][T11611] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found
[  336.469323][T11611] UDF-fs: Scanning with blocksize 1024 failed
[  336.520325][T11611] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found
[  336.576843][T11611] UDF-fs: Scanning with blocksize 2048 failed
[  336.585675][T11611] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  336.616899][T11615] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  336.632810][T11611] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  336.645409][T11615] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  336.661041][T11615] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  336.696817][T11615] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  336.734226][T11615] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  336.776705][T11615] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  336.811431][T11615] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4)
[  336.819290][T11615] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  336.881343][T11615] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  336.887922][T11615] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  336.899856][    C1] vkms_vblank_simulate: vblank timer overrun
[  336.907945][T11627] loop1: detected capacity change from 0 to 16
[  336.929875][T11615] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  336.949760][T11627] erofs: (device loop1): mounted with root inode @ nid 36.
[  336.970648][T11615] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  336.977189][T11615] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4)
[  337.022231][T11615] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  337.426959][T11623] loop4: detected capacity change from 0 to 32768
[  337.516622][T11623] ERROR: (device loop4): diAllocBit: iag inconsistent
[  337.516622][T11623] 
[  337.579877][T11623] ialloc: diAlloc returned -5!
[  337.703051][T11629] loop7: detected capacity change from 0 to 32768
[  337.849217][T11651] loop2: detected capacity change from 0 to 4096
[  337.964107][T11651] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[  337.984085][T11657] netlink: 'syz.1.2525': attribute type 2 has an invalid length.
[  338.159556][T11651] ntfs3: loop2: ino=5, "/" directory corrupted
[  338.204178][T11651] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  338.236894][T11651] ntfs3: loop2: ino=5, "/" directory corrupted
[  338.269938][T11666] loop1: detected capacity change from 0 to 64
[  338.286479][T11651] ntfs3: loop2: ino=5, "/" directory corrupted
[  338.331709][ T4193] ntfs3: loop2: ntfs_sync_fs r=1a failed, -22.
[  338.360658][ T4722] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  338.375583][ T4193] ntfs3: loop2: ntfs_evict_inode r=1a failed, -22.
[  338.793323][ T4722] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  338.812423][ T4722] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  338.832824][ T4722] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  338.860137][ T4722] usb 5-1: config 220 has no interface number 2
[  338.879160][ T4722] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  338.927365][ T4722] usb 5-1: config 220 interface 0 has no altsetting 0
[  338.946924][ T4722] usb 5-1: config 220 interface 76 has no altsetting 0
[  338.954430][ T4722] usb 5-1: config 220 interface 1 has no altsetting 0
[  339.048466][T11697] loop1: detected capacity change from 0 to 256
[  339.135496][T11699] option changes via remount are deprecated (pid=11698 comm=syz.2.2543)
[  339.146867][ T4722] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  339.150232][T11697] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  339.176351][ T4722] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  339.220753][ T4722] usb 5-1: Product: syz
[  339.224993][ T4722] usb 5-1: Manufacturer: syz
[  339.247092][ T4722] usb 5-1: SerialNumber: syz
[  339.266487][T11701] loop6: detected capacity change from 0 to 512
[  339.312954][T11697] exFAT-fs (loop1): error, invalid size(size(0) > aligned(9223372036854777344)
[  339.312954][T11697] 
[  339.326105][T11697] exFAT-fs (loop1): Filesystem has been set read-only
[  339.350797][T11701] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  339.391534][T11701] EXT4-fs (loop6): 1 truncate cleaned up
[  339.397375][T11701] EXT4-fs (loop6): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,stripe=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,noinit_itable,minixdf,quota,,errors=continue. Quota mode: writeback.
[  339.419499][    C1] vkms_vblank_simulate: vblank timer overrun
[  339.434604][   T26] audit: type=1800 audit(1754624339.291:52): pid=11701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2544" name="file1" dev="loop6" ino=15 res=0 errno=0
[  339.601760][T11709] netlink: 32 bytes leftover after parsing attributes in process `syz.7.2549'.
[  339.636206][T11709] netem: unknown loss type 13
[  339.660327][T11709] netem: change failed
[  339.716489][ T4722] usb 5-1: selecting invalid altsetting 0
[  339.743234][ T4722] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  339.749924][ T4722] usb 5-1: No valid video chain found.
[  339.852015][ T4722] usb 5-1: selecting invalid altsetting 0
[  339.858560][ T4722] usbtest: probe of 5-1:220.1 failed with error -22
[  339.881764][ T4722] usb 5-1: USB disconnect, device number 17
[  339.951834][ T4716] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  339.985830][   T26] audit: type=1326 audit(1754624339.841:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.037133][   T26] audit: type=1326 audit(1754624339.841:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.039359][T11729] option changes via remount are deprecated (pid=11728 comm=syz.6.2557)
[  340.135663][   T26] audit: type=1326 audit(1754624339.871:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.227958][   T26] audit: type=1326 audit(1754624339.931:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.250439][    C1] vkms_vblank_simulate: vblank timer overrun
[  340.269187][T11737] vivid-002: disconnect
[  340.279532][   T26] audit: type=1326 audit(1754624339.931:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.302204][    C1] vkms_vblank_simulate: vblank timer overrun
[  340.315189][T11736] vivid-002: reconnect
[  340.336877][   T26] audit: type=1326 audit(1754624339.931:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.360454][   T26] audit: type=1326 audit(1754624339.931:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.382740][    C1] vkms_vblank_simulate: vblank timer overrun
[  340.400816][ T4716] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  340.417220][   T26] audit: type=1326 audit(1754624339.931:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.434125][T11744] netlink: 'syz.7.2563': attribute type 2 has an invalid length.
[  340.447676][ T4716] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  340.457967][ T4716] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  340.468066][   T26] audit: type=1326 audit(1754624339.931:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11726 comm="syz.7.2556" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3361a6cbe9 code=0x7ffc0000
[  340.500764][ T4716] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.525329][ T4716] usb 3-1: config 0 descriptor??
[  340.592746][T11748] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2565'.
[  340.695688][T11756] loop6: detected capacity change from 0 to 256
[  340.772168][T11756] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  340.866479][T11756] exFAT-fs (loop6): error, invalid size(size(0) > aligned(9223372036854777344)
[  340.866479][T11756] 
[  340.885267][T11756] exFAT-fs (loop6): Filesystem has been set read-only
[  341.005003][T11764] vivid-003: disconnect
[  341.011469][T11763] vivid-003: reconnect
[  341.079016][ T4716] savu 0003:1E7D:2D5A.0014: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.2-1/input0
[  341.101397][T11766] loop6: detected capacity change from 0 to 4096
[  341.219650][T11768] loop4: detected capacity change from 0 to 4096
[  341.234550][T11770] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  341.282155][T11768] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512)
[  341.345208][ T4722] usb 3-1: USB disconnect, device number 19
[  341.394416][T11768] ntfs3: loop4: Failed to load $Extend.
[  341.787126][T11786] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2583'.
[  341.796543][    T7] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  341.796799][T11786] netem: unknown loss type 13
[  341.809696][T11786] netem: change failed
[  341.932602][T11790] loop4: detected capacity change from 0 to 256
[  342.030541][    T7] usb 8-1: Using ep0 maxpacket: 16
[  342.044852][T11790] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  342.112086][T11790] exFAT-fs (loop4): error, invalid size(size(0) > aligned(9223372036854777344)
[  342.112086][T11790] 
[  342.144441][T11790] exFAT-fs (loop4): Filesystem has been set read-only
[  342.150692][    T7] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  342.170549][    T7] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  342.200574][    T7] usb 8-1: New USB device found, idVendor=056a, idProduct=0090, bcdDevice= 0.00
[  342.209855][    T7] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.239909][    T7] usb 8-1: config 0 descriptor??
[  342.472327][T11798] loop2: detected capacity change from 0 to 32768
[  342.518404][T11788] loop6: detected capacity change from 0 to 32768
[  342.579930][T11798] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  342.600571][ T4234] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  342.620789][T11788] XFS (loop6): Mounting V5 Filesystem
[  342.674950][T11788] XFS (loop6): Ending clean mount
[  342.752021][    T7] wacom 0003:056A:0090.0015: hidraw0: USB HID v1f.ff Device [HID 056a:0090] on usb-dummy_hcd.7-1/input0
[  342.930254][ T8506] XFS (loop6): Unmounting Filesystem
[  342.960815][ T4234] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  342.990275][    T7] usb 8-1: USB disconnect, device number 10
[  343.000524][ T4234] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  343.036856][ T4234] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.102556][ T4234] aiptek 5-1:17.0: interface has no int in endpoints, but must have minimum 1
[  343.249425][ T4193] ocfs2: Unmounting device (7,2) on (node local)
[  343.400092][ T4234] usb 5-1: USB disconnect, device number 18
[  343.584521][T11829] loop2: detected capacity change from 0 to 1024
[  343.592907][T11826] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2604'.
[  343.797445][  T154] hfsplus: b-tree write err: -5, ino 4
[  344.101211][T11854] loop2: detected capacity change from 0 to 512
[  344.118185][T11854] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  344.205781][T11854] EXT4-fs (loop2): 1 truncate cleaned up
[  344.211729][T11854] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,stripe=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,noinit_itable,minixdf,quota,,errors=continue. Quota mode: writeback.
[  344.269983][   T26] audit: type=1800 audit(1754624344.121:62): pid=11854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2611" name="file1" dev="loop2" ino=15 res=0 errno=0
[  344.290848][ T4716] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  344.368325][T11863] loop7: detected capacity change from 0 to 4096
[  344.488037][T11865] loop6: detected capacity change from 0 to 1024
[  344.494935][T11866] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  344.561776][ T4716] usb 5-1: Using ep0 maxpacket: 32
[  344.675709][  T514] hfsplus: b-tree write err: -5, ino 4
[  344.690766][ T4716] usb 5-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  344.699915][ T4716] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.743535][ T4716] usb 5-1: config 0 descriptor??
[  344.971225][ T4721] Bluetooth: hci5: command 0x0406 tx timeout
[  345.000705][ T4716] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  345.011755][ T4716] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  345.050947][ T4527] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  345.060883][ T4716] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  345.080475][ T4716] usb 5-1: media controller created
[  345.080645][ T4234] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  345.098659][ T4716] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  345.143081][T11880] loop7: detected capacity change from 0 to 32768
[  345.221101][ T4716] az6027: usb out operation failed. (-71)
[  345.237868][T11880] JBD2: Ignoring recovery information on journal
[  345.244740][ T4716] az6027: usb out operation failed. (-71)
[  345.268884][ T4716] stb0899_attach: Driver disabled by Kconfig
[  345.279123][ T4716] az6027: no front-end attached
[  345.279123][ T4716] 
[  345.287079][T11880] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  345.300693][ T4527] usb 7-1: Using ep0 maxpacket: 32
[  345.340715][ T4716] az6027: usb out operation failed. (-71)
[  345.346500][ T4716] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  345.365272][ T4716] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input33
[  345.384029][T11880] OCFS2: ERROR (device loop7): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bad parent pointer (312, expected 74)
[  345.406647][T11880] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  345.417855][ T4716] dvb-usb: schedule remote query interval to 400 msecs.
[  345.420730][ T4527] usb 7-1: config 0 has an invalid interface number: 126 but max is 0
[  345.426748][ T4716] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  345.447010][ T4527] usb 7-1: config 0 has no interface number 0
[  345.452523][T11880] OCFS2: File system is now read-only.
[  345.459652][T11880] (syz.7.2621,11880,1):_ocfs2_free_suballoc_bits:2479 ERROR: status = -30
[  345.471807][ T4716] usb 5-1: USB disconnect, device number 19
[  345.474782][ T4234] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  345.478426][T11880] (syz.7.2621,11880,1):ocfs2_remove_inode:699 ERROR: status = -30
[  345.490581][ T4527] usb 7-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[  345.497442][T11880] (syz.7.2621,11880,1):ocfs2_wipe_inode:821 ERROR: status = -30
[  345.516381][ T4234] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  345.545276][ T4527] usb 7-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 8
[  345.555853][ T4234] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.583312][T11880] (syz.7.2621,11880,1):ocfs2_delete_inode:1082 ERROR: status = -30
[  345.588871][ T4527] usb 7-1: config 0 interface 126 has no altsetting 0
[  345.607531][ T4716] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  345.642926][ T4234] aiptek 3-1:17.0: interface has no int in endpoints, but must have minimum 1
[  345.759495][ T8577] ocfs2: Unmounting device (7,7) on (node local)
[  345.771049][ T4527] usb 7-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[  345.784724][ T4527] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  345.793387][ T4527] usb 7-1: Product: syz
[  345.797711][ T4527] usb 7-1: Manufacturer: syz
[  345.807772][ T4527] usb 7-1: SerialNumber: syz
[  345.817433][ T4527] usb 7-1: config 0 descriptor??
[  345.861281][T11877] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  345.868703][T11877] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  345.923515][ T4721] usb 3-1: USB disconnect, device number 20
[  346.381833][ T4527] ir_usb 7-1:0.126: IR Dongle converter detected
[  346.546015][T11898] loop4: detected capacity change from 0 to 32768
[  346.590778][ T4527] usb 7-1: IRDA class descriptor not found, device not bound
[  346.612594][T11898] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  346.621204][T11898] gfs2: fsid=syz:syz: Now mounting FS (format 1802)...
[  346.646943][T11898] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  346.646943][T11898]   inode = 0 19
[  346.646943][T11898]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 465
[  346.665357][    C1] vkms_vblank_simulate: vblank timer overrun
[  346.672703][T11898] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  346.686476][T11898] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  346.695471][T11898] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  346.702166][T11898] gfs2: fsid=syz:syz.0: File system withdrawn
[  346.708268][T11898] CPU: 1 PID: 11898 Comm: syz.4.2629 Not tainted 5.15.189-syzkaller #0
[  346.716544][T11898] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  346.726655][T11898] Call Trace:
[  346.729975][T11898]  <TASK>
[  346.732937][T11898]  dump_stack_lvl+0x168/0x230
[  346.737655][T11898]  ? kobject_uevent_env+0x371/0x890
[  346.742895][T11898]  ? show_regs_print_info+0x20/0x20
[  346.748132][T11898]  ? load_image+0x3b0/0x3b0
[  346.752807][T11898]  ? kobject_uevent_env+0x371/0x890
[  346.758147][T11898]  ? lockref_put_or_lock+0x6e/0xb0
[  346.763308][T11898]  gfs2_withdraw+0x111b/0x1460
[  346.768253][T11898]  ? gfs2_lm+0x220/0x220
[  346.772541][T11898]  ? __lock_acquire+0x13ad/0x7c60
[  346.777739][T11898]  ? gfs2_consist_inode_i+0xc0/0xe0
[  346.782984][T11898]  gfs2_inode_refresh+0xb5e/0xfe0
[  346.788057][T11898]  ? do_promote+0x71a/0xab0
[  346.792608][T11898]  ? gfs2_inode_metasync+0xf0/0xf0
[  346.797924][T11898]  ? __lock_acquire+0x7c60/0x7c60
[  346.803007][T11898]  inode_go_lock+0x127/0x470
[  346.807668][T11898]  do_promote+0x741/0xab0
[  346.812069][T11898]  finish_xmote+0x514/0xb70
[  346.816739][T11898]  do_xmote+0x7b6/0x1120
[  346.821198][T11898]  gfs2_glock_nq+0xc7a/0x1550
[  346.825955][T11898]  init_journal+0xc42/0x2220
[  346.830606][T11898]  ? end_bio_io_page+0x100/0x100
[  346.835578][T11898]  ? vsnprintf+0x1905/0x1a00
[  346.840237][T11898]  ? snprintf+0xd7/0x120
[  346.844517][T11898]  ? init_journal+0x710/0x2220
[  346.849318][T11898]  ? vscnprintf+0x80/0x80
[  346.853691][T11898]  ? gfs2_glock_nq_num+0x17a/0x1b0
[  346.858851][T11898]  init_inodes+0xdb/0x320
[  346.863222][T11898]  gfs2_fill_super+0x1701/0x1f50
[  346.868217][T11898]  ? gfs2_reconfigure+0xcd0/0xcd0
[  346.873283][T11898]  ? gfs2_glock_nq_num+0x82/0x1b0
[  346.878347][T11898]  ? preempt_count_add+0x8d/0x190
[  346.883422][T11898]  ? sb_set_blocksize+0xa5/0xe0
[  346.884295][ T4527] usb 7-1: USB disconnect, device number 10
[  346.888314][T11898]  get_tree_bdev+0x3f1/0x610
[  346.888348][T11898]  ? gfs2_reconfigure+0xcd0/0xcd0
[  346.888376][T11898]  gfs2_get_tree+0x4d/0x1e0
[  346.908533][T11898]  vfs_get_tree+0x88/0x270
[  346.912995][T11898]  do_new_mount+0x24a/0xa40
[  346.917549][T11898]  __se_sys_mount+0x2d6/0x3c0
[  346.920708][T11903] loop2: detected capacity change from 0 to 4096
[  346.922260][T11898]  ? __x64_sys_mount+0xc0/0xc0
[  346.933368][T11898]  ? lockdep_hardirqs_on+0x94/0x140
[  346.938603][T11898]  ? __x64_sys_mount+0x1c/0xc0
[  346.943405][T11898]  do_syscall_64+0x4c/0xa0
[  346.947863][T11898]  ? clear_bhb_loop+0x30/0x80
[  346.952735][T11898]  ? clear_bhb_loop+0x30/0x80
[  346.957453][T11898]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  346.963432][T11898] RIP: 0033:0x7fc86bb1b38a
[  346.967897][T11898] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.987725][T11898] RSP: 002b:00007fc869d80e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  346.996179][T11898] RAX: ffffffffffffffda RBX: 00007fc869d80ef0 RCX: 00007fc86bb1b38a
[  347.004191][T11898] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007fc869d80eb0
[  347.012202][T11898] RBP: 0000200000000400 R08: 00007fc869d80ef0 R09: 0000000001000004
[  347.020298][T11898] R10: 0000000001000004 R11: 0000000000000246 R12: 0000200000012500
[  347.028388][T11898] R13: 00007fc869d80eb0 R14: 00000000000126ae R15: 0000200000000580
[  347.036410][T11898]  </TASK>
[  347.039513][    C1] vkms_vblank_simulate: vblank timer overrun
[  347.046487][T11898] gfs2: fsid=syz:syz.0: can't acquire journal inode glock: -5
[  347.117472][T11903] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[  347.137438][T11913] loop1: detected capacity change from 0 to 64
[  347.239656][T11903] ntfs3: loop2: Failed to load $Extend.
[  347.276991][T11916] Trying to free block not in datazone
[  347.389782][T11913] Trying to free block not in datazone
[  347.461108][T11913] Trying to free block not in datazone
[  347.514989][T11913] Trying to free block not in datazone
[  347.564186][T11923] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2640'.
[  347.771710][T11929] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2642'.
[  348.001277][T11939] siw: device registration error -23
[  348.010262][T11938] netlink: 'syz.1.2644': attribute type 1 has an invalid length.
[  348.038787][T11909] loop7: detected capacity change from 0 to 32768
[  348.273393][T11947] loop2: detected capacity change from 0 to 16
[  348.475159][T11947] erofs: (device loop2): mounted with root inode @ nid 36.
[  348.764006][T11949] loop6: detected capacity change from 0 to 65536
[  348.816694][T11961] loop7: detected capacity change from 0 to 2048
[  348.904466][T11949] XFS (loop6): Mounting V5 Filesystem
[  348.960132][T11949] XFS (loop6): Internal error head_block >= tail_block || head_cycle != tail_cycle + 1 at line 1656 of file fs/xfs/xfs_log_recover.c.  Caller xlog_clear_stale_blocks+0x2d6/0x420
[  348.978578][T11949] CPU: 1 PID: 11949 Comm: syz.6.2652 Not tainted 5.15.189-syzkaller #0
[  348.986889][T11949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  348.997064][T11949] Call Trace:
[  349.000378][T11949]  <TASK>
[  349.003349][T11949]  dump_stack_lvl+0x168/0x230
[  349.008071][T11949]  ? xfs_info+0x280/0x280
[  349.012444][T11949]  ? show_regs_print_info+0x20/0x20
[  349.017697][T11949]  ? xfs_rw_bdev+0x476/0x4f0
[  349.022346][T11949]  xfs_corruption_error+0x117/0x170
[  349.027630][T11949]  ? xlog_clear_stale_blocks+0x2d6/0x420
[  349.033318][T11949]  xlog_clear_stale_blocks+0x36f/0x420
[  349.038863][T11949]  ? xlog_clear_stale_blocks+0x2d6/0x420
[  349.044548][T11949]  xlog_find_tail+0x79e/0x9f0
[  349.049292][T11949]  xlog_recover+0x48/0x420
[  349.053851][T11949]  xfs_log_mount+0x393/0x6b0
[  349.058490][T11949]  xfs_mountfs+0xb27/0x1b10
[  349.063053][T11949]  ? xfs_default_resblks+0x70/0x70
[  349.068218][T11949]  ? rcu_is_watching+0x11/0xa0
[  349.073139][T11949]  ? trace_xfs_inode_timestamp_range+0x84/0x1d0
[  349.079458][T11949]  xfs_fs_fill_super+0x11a4/0x13f0
[  349.084713][T11949]  get_tree_bdev+0x3f1/0x610
[  349.089349][T11949]  ? xfs_fs_warn_deprecated+0x190/0x190
[  349.094945][T11949]  vfs_get_tree+0x88/0x270
[  349.099402][T11949]  do_new_mount+0x24a/0xa40
[  349.103949][T11949]  __se_sys_mount+0x2d6/0x3c0
[  349.108795][T11949]  ? __x64_sys_mount+0xc0/0xc0
[  349.113617][T11949]  ? lockdep_hardirqs_on+0x94/0x140
[  349.118983][T11949]  ? __x64_sys_mount+0x1c/0xc0
[  349.123800][T11949]  do_syscall_64+0x4c/0xa0
[  349.128470][T11949]  ? clear_bhb_loop+0x30/0x80
[  349.133396][T11949]  ? clear_bhb_loop+0x30/0x80
[  349.138123][T11949]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  349.144078][T11949] RIP: 0033:0x7f0991f3838a
[  349.148540][T11949] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  349.168185][T11949] RSP: 002b:00007f099019de68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  349.176643][T11949] RAX: ffffffffffffffda RBX: 00007f099019def0 RCX: 00007f0991f3838a
[  349.184657][T11949] RDX: 0000200000000800 RSI: 00002000000000c0 RDI: 00007f099019deb0
[  349.192672][T11949] RBP: 0000200000000800 R08: 00007f099019def0 R09: 0000000000000000
[  349.200679][T11949] R10: 0000000000000000 R11: 0000000000000246 R12: 00002000000000c0
[  349.208683][T11949] R13: 00007f099019deb0 R14: 000000000000b959 R15: 0000200000000080
[  349.216711][T11949]  </TASK>
[  349.219998][    C1] vkms_vblank_simulate: vblank timer overrun
[  349.227068][T11949] XFS (loop6): Corruption detected. Unmount and run xfs_repair
[  349.234964][T11949] XFS (loop6): failed to locate log tail
[  349.240673][T11949] XFS (loop6): log mount/recovery failed: error -117
[  349.303064][T11977] siw: device registration error -23
[  349.341599][T11949] XFS (loop6): log mount failed
[  349.438317][T11981] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2663'.
[  350.226823][T11969] loop4: detected capacity change from 0 to 32768
[  350.280697][ T4721] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  350.334912][T11969] JBD2: Ignoring recovery information on journal
[  350.342297][T11979] loop2: detected capacity change from 0 to 32768
[  350.483831][T11969] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  350.596674][T11969] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bad parent pointer (312, expected 74)
[  350.616205][    C1] vkms_vblank_simulate: vblank timer overrun
[  350.717634][T11969] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  350.747371][ T4721] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  350.769559][ T4721] usb 8-1: config 0 has no interface number 0
[  350.792050][ T4721] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  350.808400][T12020] loop6: detected capacity change from 0 to 256
[  350.828983][ T4721] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  350.841475][T11969] OCFS2: File system is now read-only.
[  350.870548][ T4716] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  350.879382][ T4721] usb 8-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  350.896643][T11969] (syz.4.2658,11969,1):_ocfs2_free_suballoc_bits:2479 ERROR: status = -30
[  350.920918][ T4721] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.929266][T11969] (syz.4.2658,11969,1):ocfs2_remove_inode:699 ERROR: status = -30
[  350.965020][T11969] (syz.4.2658,11969,1):ocfs2_wipe_inode:821 ERROR: status = -30
[  350.981929][ T4721] usb 8-1: config 0 descriptor??
[  350.991837][T11969] (syz.4.2658,11969,1):ocfs2_delete_inode:1082 ERROR: status = -30
[  351.008477][T11995] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  351.145796][T12025] netlink: 'syz.6.2680': attribute type 1 has an invalid length.
[  351.183534][T12027] loop1: detected capacity change from 0 to 16
[  351.229754][T12027] erofs: (device loop1): mounted with root inode @ nid 36.
[  351.249723][ T4187] ocfs2: Unmounting device (7,4) on (node local)
[  351.330813][ T4716] usb 3-1: unable to get BOS descriptor or descriptor too short
[  351.437315][ T4716] usb 3-1: config 6 has an invalid interface number: 158 but max is 0
[  351.446606][ T4716] usb 3-1: config 6 has no interface number 0
[  351.461519][ T4716] usb 3-1: config 6 interface 158 has no altsetting 0
[  351.512613][ T4721] elan 0003:04F3:0755.0016: unknown main item tag 0x0
[  351.525357][ T4721] elan 0003:04F3:0755.0016: unknown main item tag 0x0
[  351.545949][ T4721] elan 0003:04F3:0755.0016: unknown main item tag 0x0
[  351.560509][ T4721] elan 0003:04F3:0755.0016: unknown main item tag 0x0
[  351.588524][ T4721] elan 0003:04F3:0755.0016: unknown main item tag 0x0
[  351.621878][ T4721] elan 0003:04F3:0755.0016: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.7-1/input1
[  351.635900][ T4716] usb 3-1: New USB device found, idVendor=0bda, idProduct=0140, bcdDevice=da.29
[  351.649062][ T4716] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  351.667664][ T4716] usb 3-1: Product: syz
[  351.676807][ T4721] elan 0003:04F3:0755.0016: Input device is not registered
[  351.690720][ T4716] usb 3-1: Manufacturer: syz
[  351.699220][T12042] loop1: detected capacity change from 0 to 256
[  351.712625][ T4716] usb 3-1: SerialNumber: syz
[  351.721093][ T4721] elan: probe of 0003:04F3:0755.0016 failed with error -119
[  351.738832][ T4721] usb 8-1: USB disconnect, device number 11
[  351.792343][T12045] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  351.971464][T12046] fido_id[12046]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  352.171189][T12043] loop4: detected capacity change from 0 to 32768
[  352.312861][ T4721] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  352.490624][ T1236] block nbd0: Possible stuck request ffff888020270000: control (read@0,1024B). Runtime 150 seconds
[  352.502304][ T1236] block nbd0: Possible stuck request ffff888020270200: control (read@1024,1024B). Runtime 150 seconds
[  352.516357][ T1236] block nbd0: Possible stuck request ffff888020270400: control (read@2048,1024B). Runtime 150 seconds
[  352.528474][ T1236] block nbd0: Possible stuck request ffff888020270600: control (read@3072,512B). Runtime 150 seconds
[  352.608140][ T4721] usb 7-1: Using ep0 maxpacket: 16
[  352.691684][T12066] [U] ^C„
[  352.700270][T12065] [U] ^C
[  352.766163][ T4721] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  352.783043][ T4721] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  352.799428][ T4721] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  352.826262][ T4721] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  352.855468][ T4721] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.881719][ T4721] usb 7-1: config 0 descriptor??
[  353.020836][ T4716] rtsx_usb: probe of 3-1:6.158 failed with error -110
[  353.038619][ T4716] usb 3-1: USB disconnect, device number 21
[  353.288972][ T4248] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  353.379962][ T4721] microsoft 0003:045E:07DA.0017: No inputs registered, leaving
[  353.398778][ T4721] microsoft 0003:045E:07DA.0017: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.6-1/input0
[  353.411101][ T4721] microsoft 0003:045E:07DA.0017: no inputs found
[  353.418360][ T4721] microsoft 0003:045E:07DA.0017: could not initialize ff, continuing anyway
[  353.470069][T12095] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82
[  353.550575][ T4248] usb 8-1: Using ep0 maxpacket: 8
[  353.608291][ T4716] usb 7-1: USB disconnect, device number 11
[  353.685780][ T4248] usb 8-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  353.710910][ T4248] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  353.802844][ T4248] pvrusb2: Hardware description: Terratec Grabster AV400
[  353.809944][ T4248] pvrusb2: **********
[  353.823255][ T4248] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  353.835037][ T4248] pvrusb2: Important functionality might not be entirely working.
[  353.843272][ T4248] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  353.861650][ T4248] pvrusb2: **********
[  354.013911][ T2425] pvrusb2: Invalid write control endpoint
[  354.084613][T12113] loop1: detected capacity change from 0 to 8192
[  354.155585][T12113] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  354.174347][T12127] loop2: detected capacity change from 0 to 512
[  354.204600][ T2425] pvrusb2: Invalid write control endpoint
[  354.253851][T12113] REISERFS (device loop1): using journaled data mode
[  354.262421][ T2425] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  354.280965][T12113] reiserfs: using flush barriers
[  354.291676][T12127] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  354.329700][ T2425] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  354.349837][T12113] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  354.379193][T12113] REISERFS (device loop1): checking transaction log (loop1)
[  354.412918][T12113] REISERFS (device loop1): Using r5 hash to sort names
[  354.420367][T12113] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  354.442566][ T2425] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  354.469711][T12113] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  354.531990][ T2425] pvrusb2: Device being rendered inoperable
[  354.540748][    T7] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  354.546117][ T2425] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  354.557557][ T4721] usb 8-1: USB disconnect, device number 12
[  354.588523][ T2425] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_b)
[  354.597298][T12113] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  354.664702][ T2425] pvrusb2: Attached sub-driver cx25840
[  354.670232][ T2425] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  354.736531][ T2425] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  354.796389][T12113] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  354.810254][T12113] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  459.690360][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  459.697394][    C1] rcu: 	0-...!: (1 GPs behind) idle=755/1/0x4000000000000000 softirq=39345/39346 fqs=7 
[  459.709794][    C1] 	(detected by 1, t=10506 jiffies, g=58109, q=636)
[  459.716422][    C1] Sending NMI from CPU 1 to CPUs 0:
[  459.721665][    C0] NMI backtrace for cpu 0
[  459.721676][    C0] CPU: 0 PID: 12137 Comm: syz.4.2726 Not tainted 5.15.189-syzkaller #0
[  459.721694][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  459.721705][    C0] RIP: 0010:do_raw_spin_lock+0x7a/0x280
[  459.721729][    C0] Code: 4c 24 20 48 c1 e9 03 48 b8 f1 f1 f1 f1 04 f3 f3 f3 48 89 4c 24 18 4a 89 04 39 4c 8d 77 04 4c 89 f0 48 c1 e8 03 42 0f b6 04 38 <84> c0 0f 85 9a 01 00 00 41 8b 06 3d ad 4e ad de 0f 85 16 01 00 00
[  459.721744][    C0] RSP: 0018:ffffc90000007b40 EFLAGS: 00000807
[  459.721758][    C0] RAX: 0000000000000000 RBX: ffffffff9633a4b0 RCX: 1ffff92000000f6c
[  459.721771][    C0] RDX: 0000000000000000 RSI: ffffffff8a0b2860 RDI: ffffffff9633a4b0
[  459.721783][    C0] RBP: ffffc90000007bf0 R08: dffffc0000000000 R09: fffffbfff1ff6e19
[  459.721795][    C0] R10: fffffbfff1ff6e19 R11: 1ffffffff1ff6e18 R12: dffffc0000000000
[  459.721808][    C0] R13: ffffffff9633a4a8 R14: ffffffff9633a4b4 R15: dffffc0000000000
[  459.721821][    C0] FS:  00007fc869d816c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  459.721835][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  459.721847][    C0] CR2: 000055558e6c1808 CR3: 000000004fa97000 CR4: 00000000003506f0
[  459.721862][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  459.721872][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  459.721882][    C0] Call Trace:
[  459.721889][    C0]  <IRQ>
[  459.721897][    C0]  ? read_lock_is_recursive+0x10/0x10
[  459.721924][    C0]  ? __rwlock_init+0x140/0x140
[  459.721945][    C0]  _raw_spin_lock_irqsave+0xb0/0xf0
[  459.721965][    C0]  ? _raw_spin_lock+0x40/0x40
[  459.721987][    C0]  debug_object_deactivate+0x63/0x340
[  459.722012][    C0]  debug_deactivate+0x1d/0x1c0
[  459.722033][    C0]  __hrtimer_run_queues+0x2db/0xc40
[  459.722055][    C0]  ? taprio_free_sched_cb+0x190/0x190
[  459.722078][    C0]  ? hrtimer_interrupt+0x8d0/0x8d0
[  459.722096][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  459.722117][    C0]  hrtimer_interrupt+0x3bb/0x8d0
[  459.722147][    C0]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  459.722165][    C0]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  459.722184][    C0]  </IRQ>
[  459.722188][    C0]  <TASK>
[  459.722194][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  459.722211][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x2c/0x80
[  459.722230][    C0] Code: 04 24 65 48 8b 0d 34 a8 8a 7e 65 8b 15 35 a8 8a 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 5b 83 b9 34 16 00 00 00 74 52 <8b> 91 10 16 00 00 83 fa 03 75 47 48 8b 91 18 16 00 00 44 8b 89 14
[  459.722243][    C0] RSP: 0018:ffffc900015df460 EFLAGS: 00000246
[  459.722257][    C0] RAX: ffffffff81b5c6be RBX: 00fff00000080001 RCX: ffff88802b6dbb80
[  459.722270][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  459.722279][    C0] RBP: 0000000000000001 R08: dffffc0000000000 R09: fffffbfff1ff6e19
[  459.722291][    C0] R10: fffffbfff1ff6e19 R11: 1ffffffff1ff6e18 R12: dffffc0000000000
[  459.722303][    C0] R13: dffffc0000000000 R14: ffff8880250b4800 R15: ffff88802b6dbb80
[  459.722320][    C0]  ? __cgroup_throttle_swaprate+0x13e/0x530
[  459.722344][    C0]  __cgroup_throttle_swaprate+0x13e/0x530
[  459.722363][    C0]  shmem_add_to_page_cache+0xb7b/0x14b0
[  459.722389][    C0]  ? put_page+0x200/0x200
[  459.722408][    C0]  ? mark_lock+0x94/0x320
[  459.722425][    C0]  ? verify_lock_unused+0x140/0x140
[  459.722444][    C0]  ? __lock_acquire+0x13ad/0x7c60
[  459.722464][    C0]  shmem_getpage_gfp+0x1793/0x2d40
[  459.722497][    C0]  shmem_fault+0x1a9/0x520
[  459.722518][    C0]  ? shmem_fallocate+0xe20/0xe20
[  459.722537][    C0]  ? filemap_read_page+0x4c0/0x4c0
[  459.722551][    C0]  ? count_memcg_event_mm+0x311/0x360
[  459.722572][    C0]  __do_fault+0x141/0x330
[  459.722590][    C0]  handle_mm_fault+0x2949/0x43c0
[  459.722613][    C0]  ? get_page+0xe0/0xe0
[  459.722631][    C0]  ? follow_page_mask+0xa6e/0x12d0
[  459.722655][    C0]  __get_user_pages+0x93e/0x11c0
[  459.722682][    C0]  ? populate_vma_page_range+0x290/0x290
[  459.722700][    C0]  ? read_lock_is_recursive+0x10/0x10
[  459.722725][    C0]  populate_vma_page_range+0x213/0x290
[  459.722746][    C0]  __mm_populate+0x26f/0x3a0
[  459.722766][    C0]  ? check_vma_flags+0x480/0x480
[  459.722783][    C0]  ? preempt_count_add+0x8d/0x190
[  459.722801][    C0]  ? up_write+0x1bb/0x420
[  459.722819][    C0]  vm_mmap_pgoff+0x203/0x2b0
[  459.722840][    C0]  ? account_locked_vm+0xe0/0xe0
[  459.722860][    C0]  ? __lock_acquire+0x7c60/0x7c60
[  459.722882][    C0]  ksys_mmap_pgoff+0x140/0x780
[  459.722902][    C0]  ? mmap_region+0x15e0/0x15e0
[  459.722925][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  459.722943][    C0]  do_syscall_64+0x4c/0xa0
[  459.722961][    C0]  ? clear_bhb_loop+0x30/0x80
[  459.722976][    C0]  ? clear_bhb_loop+0x30/0x80
[  459.722992][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  459.723012][    C0] RIP: 0033:0x7fc86bb19be9
[  459.723030][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  459.723043][    C0] RSP: 002b:00007fc869d81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  459.723059][    C0] RAX: ffffffffffffffda RBX: 00007fc86bd40fa0 RCX: 00007fc86bb19be9
[  459.723071][    C0] RDX: b635773f06ebbeef RSI: 0000000000b36000 RDI: 0000200000000000
[  459.723083][    C0] RBP: 00007fc86bb9ce19 R08: ffffffffffffffff R09: 0000000000000000
[  459.723094][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  459.723104][    C0] R13: 00007fc86bd41038 R14: 00007fc86bd40fa0 R15: 00007fffc7e44658
[  459.723124][    C0]  </TASK>
[  459.723657][    C1] rcu: rcu_preempt kthread starved for 10470 jiffies! g58109 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  460.272435][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  460.282423][    C1] rcu: RCU grace-period kthread stack dump:
[  460.288317][    C1] task:rcu_preempt     state:R  running task     stack:28128 pid:   15 ppid:     2 flags:0x00004000
[  460.299117][    C1] Call Trace:
[  460.302410][    C1]  <TASK>
[  460.305361][    C1]  __schedule+0x11b8/0x43b0
[  460.309890][    C1]  ? _raw_spin_lock_irqsave+0x7f/0xf0
[  460.315286][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  460.321203][    C1]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  460.327113][    C1]  ? _raw_spin_unlock+0x40/0x40
[  460.331984][    C1]  ? rcu_is_watching+0x11/0xa0
[  460.336759][    C1]  ? release_firmware_map_entry+0x190/0x190
[  460.342686][    C1]  schedule+0x11b/0x1e0
[  460.346857][    C1]  schedule_timeout+0x15c/0x280
[  460.351727][    C1]  ? console_conditional_schedule+0x40/0x40
[  460.357760][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  460.363805][    C1]  ? update_process_times+0x200/0x200
[  460.369352][    C1]  ? prepare_to_swait_event+0x331/0x350
[  460.375098][    C1]  rcu_gp_fqs_loop+0x29e/0x11b0
[  460.379998][    C1]  ? dyntick_save_progress_counter+0x230/0x230
[  460.386196][    C1]  ? rcu_gp_init+0x10e0/0x10e0
[  460.391000][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[  460.396224][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[  460.401444][    C1]  rcu_gp_kthread+0x98/0x350
[  460.406058][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  460.411190][    C1]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  460.417101][    C1]  ? __kthread_parkme+0x157/0x1b0
[  460.422147][    C1]  kthread+0x436/0x520
[  460.426226][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  460.431354][    C1]  ? kthread_blkcg+0xd0/0xd0
[  460.436112][    C1]  ret_from_fork+0x1f/0x30
[  460.440575][    C1]  </TASK>
[  460.443624][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  460.449969][    C1] NMI backtrace for cpu 1
[  460.454441][    C1] CPU: 1 PID: 12145 Comm: syz.2.2728 Not tainted 5.15.189-syzkaller #0
[  460.462709][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  460.473138][    C1] Call Trace:
[  460.476458][    C1]  <IRQ>
[  460.479333][    C1]  dump_stack_lvl+0x168/0x230
[  460.484134][    C1]  ? show_regs_print_info+0x20/0x20
[  460.489358][    C1]  ? load_image+0x3b0/0x3b0
[  460.493899][    C1]  ? irq_work_queue+0xbf/0x140
[  460.498953][    C1]  nmi_cpu_backtrace+0x397/0x3d0
[  460.503930][    C1]  ? nmi_trigger_cpumask_backtrace+0x280/0x280
[  460.510101][    C1]  ? _printk+0xcc/0x110
[  460.514283][    C1]  ? cpu_online+0x1d/0x30
[  460.518642][    C1]  ? load_image+0x3b0/0x3b0
[  460.523168][    C1]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  460.529254][    C1]  nmi_trigger_cpumask_backtrace+0x163/0x280
[  460.535251][    C1]  rcu_check_gp_kthread_starvation+0x1cd/0x250
[  460.541431][    C1]  print_other_cpu_stall+0x10c8/0x1220
[  460.546918][    C1]  ? print_cpu_stall+0x5f0/0x5f0
[  460.551877][    C1]  ? timekeeping_advance+0x7f6/0xac0
[  460.557205][    C1]  ? __lock_acquire+0x7c60/0x7c60
[  460.562269][    C1]  rcu_sched_clock_irq+0x831/0x1110
[  460.567502][    C1]  ? rcutree_dead_cpu+0x20/0x20
[  460.572381][    C1]  ? account_process_tick+0x227/0x3a0
[  460.577788][    C1]  update_process_times+0x193/0x200
[  460.583029][    C1]  tick_sched_timer+0x37d/0x560
[  460.587914][    C1]  __hrtimer_run_queues+0x4fe/0xc40
[  460.593158][    C1]  ? tick_setup_sched_timer+0x2c0/0x2c0
[  460.598742][    C1]  ? hrtimer_interrupt+0x8d0/0x8d0
[  460.603890][    C1]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  460.609992][    C1]  hrtimer_interrupt+0x3bb/0x8d0
[  460.614997][    C1]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  460.621000][    C1]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  460.626656][    C1]  </IRQ>
[  460.629603][    C1]  <TASK>
[  460.632542][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  460.638536][    C1] RIP: 0010:smp_call_function_many_cond+0xb88/0xd70
[  460.645142][    C1] Code: b6 44 05 00 84 c0 0f 85 9d 00 00 00 41 8b 1c 24 89 de 83 e6 01 31 ff e8 a6 46 0b 00 83 e3 01 75 07 e8 3c 43 0b 00 eb 43 f3 90 <48> b8 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 75 11 41 f7
[  460.664759][    C1] RSP: 0018:ffffc9000321f2c0 EFLAGS: 00000246
[  460.670852][    C1] RAX: ffffffff816c810b RBX: 0000000000000001 RCX: 0000000000080000
[  460.678858][    C1] RDX: ffffc9000c3d1000 RSI: 000000000007ffff RDI: 0000000000080000
[  460.687081][    C1] RBP: ffffc9000321f400 R08: dffffc0000000000 R09: fffffbfff1ff6e1a
[  460.695299][    C1] R10: fffffbfff1ff6e1a R11: 1ffffffff1ff6e19 R12: ffff8880b9042a08
[  460.703315][    C1] R13: 1ffff11017208541 R14: ffff8880b913b380 R15: 0000000000000000
[  460.711428][    C1]  ? smp_call_function_many_cond+0xbab/0xd70
[  460.717471][    C1]  ? flush_tlb_all+0x20/0x20
[  460.722105][    C1]  ? smp_call_function_many+0x30/0x30
[  460.727508][    C1]  ? __lock_acquire+0x7c60/0x7c60
[  460.732732][    C1]  ? do_raw_spin_lock+0x11d/0x280
[  460.737797][    C1]  ? __rwlock_init+0x140/0x140
[  460.742603][    C1]  ? flush_tlb_all+0x20/0x20
[  460.747221][    C1]  on_each_cpu_cond_mask+0x3b/0x80
[  460.752379][    C1]  __purge_vmap_area_lazy+0x216/0x18f0
[  460.757866][    C1]  ? cpumask_next+0xb3/0xd0
[  460.762398][    C1]  ? purge_fragmented_blocks_allcpus+0x8b8/0x9d0
[  460.768769][    C1]  ? purge_fragmented_blocks_allcpus+0x950/0x9d0
[  460.775146][    C1]  ? mutex_lock_io_nested+0x60/0x60
[  460.780383][    C1]  ? purge_fragmented_blocks_allcpus+0x9d0/0x9d0
[  460.786736][    C1]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  460.792750][    C1]  _vm_unmap_aliases+0x410/0x4a0
[  460.797735][    C1]  change_page_attr_set_clr+0x311/0xc10
[  460.803309][    C1]  ? __set_memory_prot+0xd0/0xd0
[  460.808277][    C1]  ? find_vm_area+0xfe/0x130
[  460.812883][    C1]  ? __lock_acquire+0x7c60/0x7c60
[  460.817926][    C1]  ? do_raw_spin_lock+0x11d/0x280
[  460.822965][    C1]  set_memory_ro+0x89/0xd0
[  460.827398][    C1]  ? set_memory_nx+0x110/0x110
[  460.832173][    C1]  ? do_raw_spin_unlock+0x11d/0x230
[  460.837390][    C1]  ? _raw_spin_unlock+0x24/0x40
[  460.842286][    C1]  bpf_int_jit_compile+0xc4a8/0xcc80
[  460.847615][    C1]  ? bpf_convert_filter+0x4faa/0x5110
[  460.853022][    C1]  ? kfree+0xef/0x2a0
[  460.857249][    C1]  ? bpf_convert_filter+0x4fdd/0x5110
[  460.862749][    C1]  ? emit_bpf_dispatcher+0x1020/0x1020
[  460.868493][    C1]  bpf_prog_select_runtime+0x74f/0xaa0
[  460.874001][    C1]  ? memcpy+0x3c/0x60
[  460.878008][    C1]  ? bpf_prog_realloc+0x142/0x1c0
[  460.883064][    C1]  bpf_prepare_filter+0x1014/0x11c0
[  460.888288][    C1]  ? seccomp_attach_filter+0xbc0/0xbc0
[  460.893856][    C1]  ? bpf_prog_create+0x1f0/0x1f0
[  460.898818][    C1]  ? memcpy+0x3c/0x60
[  460.902829][    C1]  bpf_prog_create_from_user+0x2ce/0x420
[  460.908483][    C1]  ? seccomp_attach_filter+0xbc0/0xbc0
[  460.913962][    C1]  do_seccomp+0x7b6/0x1630
[  460.918402][    C1]  ? __lock_acquire+0x7c60/0x7c60
[  460.923460][    C1]  ? prctl_set_seccomp+0x60/0x60
[  460.928419][    C1]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  460.934421][    C1]  ? vtime_user_exit+0x2dc/0x400
[  460.939386][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[  460.944606][    C1]  do_syscall_64+0x4c/0xa0
[  460.949041][    C1]  ? clear_bhb_loop+0x30/0x80
[  460.953730][    C1]  ? clear_bhb_loop+0x30/0x80
[  460.958598][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  460.964554][    C1] RIP: 0033:0x7fd2253f5be9
[  460.969021][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  460.988660][    C1] RSP: 002b:00007fd22365d038 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[  460.997269][    C1] RAX: ffffffffffffffda RBX: 00007fd22561cfa0 RCX: 00007fd2253f5be9
[  461.005366][    C1] RDX: 00002000000000c0 RSI: 0000000000000000 RDI: 0000000000000001
[  461.013377][    C1] RBP: 00007fd225478e19 R08: 0000000000000000 R09: 0000000000000000
[  461.021369][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  461.029366][    C1] R13: 00007fd22561d038 R14: 00007fd22561cfa0 R15: 00007ffc3f23eba8
[  461.037379][    C1]  </TASK>
[  461.040972][    C1] vkms_vblank_simulate: vblank timer overrun