last executing test programs:

59.202512005s ago: executing program 0 (id=282):
r0 = syz_open_procfs(0x0, &(0x7f0000000a80)='fdinfo\x00')
fchdir(r0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
syz_open_dev$usbfs(&(0x7f0000000000), 0x8000000000000001, 0x0)

59.143049295s ago: executing program 0 (id=283):
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r2, 0xee00)
keyctl$chown(0x4, r0, r2, 0x0)

59.049579574s ago: executing program 0 (id=284):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x48c})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, 0x0)

58.184808082s ago: executing program 0 (id=291):
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000180)={[{}, {@dioread_lock}, {@dax_never}, {@usrjquota}]}, 0xfe, 0x463, &(0x7f0000001200)="$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")
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x9)

57.868543381s ago: executing program 0 (id=292):
r0 = syz_open_dev$sndctrl(&(0x7f0000001ac0), 0x0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, &(0x7f0000000200)={0x9, 0x6, 0x0, 0xfffffff7, 'syz0\x00', 0xffffff7d})
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r1, 0xc1105511, &(0x7f0000000040)={0x9})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0xc1105511, &(0x7f0000000040))

57.38314963s ago: executing program 0 (id=296):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_emit_ethernet(0x6e, &(0x7f0000000340)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0080f3", 0x38, 0x3a, 0x0, @empty, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x9, '\x00', {0x0, 0x6, "000010", 0x0, 0x21, 0x0, @mcast1, @loopback, [], "1e520b4c941ee12e"}}}}}}}, 0x0)

57.22607717s ago: executing program 32 (id=296):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_emit_ethernet(0x6e, &(0x7f0000000340)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "0080f3", 0x38, 0x3a, 0x0, @empty, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x9, '\x00', {0x0, 0x6, "000010", 0x0, 0x21, 0x0, @mcast1, @loopback, [], "1e520b4c941ee12e"}}}}}}}, 0x0)

5.067707542s ago: executing program 2 (id=702):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000040)={0x4, 0x4, 0x1})
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000008502"])

4.595211531s ago: executing program 2 (id=703):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x331, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x20, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x2, 0x0, 0x1, {0x22, 0x8}}, {{{0x9, 0x5, 0x81, 0x3, 0x10, 0x0, 0xfe}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
accept4(0xffffffffffffffff, 0x0, &(0x7f0000000200), 0x800)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x8, {[@main=@item_4={0x3, 0x0, 0xb, "0267f5f9"}, @main=@item_012={0x2, 0x0, 0x8, "bf51"}]}}, 0x0}, 0x0)

3.943284879s ago: executing program 5 (id=706):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r2, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x14, r2, 0x1, 0x0, 0x4}, 0x14}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000)

3.93836591s ago: executing program 3 (id=707):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r1, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
connect$unix(r0, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e20}, 0x6e)

3.856011379s ago: executing program 5 (id=708):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000280)={[{@orlov}, {@nodelalloc}, {@errors_remount}, {@grpquota}, {@auto_da_alloc}, {@dioread_nolock}, {@quota}]}, 0xff, 0x493, &(0x7f0000000640)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='.\x02\x00', 0x10c00, 0x0, 0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f00000001c0)='./file0\x00', r0, &(0x7f0000000200)='.\x02\x00', 0x4)

3.371201178s ago: executing program 5 (id=709):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
syz_clone(0x0, 0x0, 0x21a9964e16e9c816, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)

3.370659518s ago: executing program 3 (id=711):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
fallocate(r0, 0x0, 0x0, 0x8020000)
unlink(&(0x7f0000000000)='./file0/file0\x00')

2.758315467s ago: executing program 4 (id=713):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000340)={0x0, 0x1}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000040)={r1, 0x2259}, 0x8)

2.571202906s ago: executing program 4 (id=714):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x9, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000340)={r1, &(0x7f0000000080)="f73ce20b3173c581", 0x20000000}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000440), &(0x7f0000000480)=r0}, 0x20)
close(r0)

2.570963906s ago: executing program 1 (id=715):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x6, &(0x7f0000000100), 0x4)
connect$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000080)="a5", 0x1, 0x20008845, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev}, 0x1c)

2.449298596s ago: executing program 1 (id=716):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x64, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x28, 0xe, {{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_TX_RATES={0x8, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x4}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x10000001}, 0x0)

2.403724505s ago: executing program 2 (id=717):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001740)={0x1c, r0, 0x701, 0x0, 0x0, {{0x6b}, {@void, @val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0)

2.324915695s ago: executing program 3 (id=718):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0xfffffffa)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.318410895s ago: executing program 1 (id=719):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x40000000009}, 0x18)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x1e8, 0xc, 0x5002004a, 0xb, 0x310, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248)

2.253736755s ago: executing program 2 (id=720):
ftruncate(0xffffffffffffffff, 0xc17a)
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000200)='./bus\x00', 0x10, &(0x7f0000000480)=ANY=[], 0x5, 0xa5a, &(0x7f0000001b40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x40086e8b, &(0x7f0000000080)={@desc={0x40002, 0x0, @desc1}})

2.211131425s ago: executing program 4 (id=721):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
clock_gettime(0x0, &(0x7f00000002c0)={<r1=>0x0, <r2=>0x0})
clock_settime(0x0, &(0x7f0000000380)={r1, r2+60000000})

2.180867365s ago: executing program 1 (id=722):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="646973636172642c71756f74612c6572726f72733d72656d6f756e742d726f2c696f636861727365743d6d61637475726b6973682c6572726f72733d72656d6f756e742d726f2c71756f74612c696f636861727365743d6d616363726f617469616e006572726f72733d72656df1cd6e742d726f2c75737271756f74612c71756f74612c726573697a653d3078666666666666666666666666666666652c67727071756f74612c726573697a652c646973636172642c61707072616973652c7375626a5f757365723d21952c7375626a5f726f6c653d726573697a652c00"], 0x1, 0x61ae, &(0x7f0000007640)="$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")
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.891562404s ago: executing program 3 (id=723):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd\x00')
getdents(r0, &(0x7f0000000b80)=""/269, 0x10d)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000000, 0x12, r1, 0x3fd0000)
getdents(r0, &(0x7f0000001440)=""/228, 0xe4)

1.843188644s ago: executing program 4 (id=724):
openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81)
r0 = syz_io_uring_setup(0x110, &(0x7f0000000140)={0x0, 0xfad6}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0)

1.585967163s ago: executing program 2 (id=725):
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r0 = syz_io_uring_setup(0xd0, &(0x7f0000000480), &(0x7f00000000c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)=[{&(0x7f0000001800)=""/224, 0xe0}], 0x1})
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0)

1.573853674s ago: executing program 3 (id=726):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='ns\x00')
r1 = open_tree(r0, &(0x7f0000000100)='.\x00', 0x0)
fchdir(r1)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1.495194394s ago: executing program 4 (id=727):
r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
io_setup(0x80, &(0x7f0000000440)=<r1=>0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000004c0)='.\x00', &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x0)
setresuid(0x0, r2, 0x0)
io_submit(r1, 0x1, &(0x7f0000000300)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}])

1.383930483s ago: executing program 3 (id=728):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x4421, &(0x7f0000008940)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14907e, 0x3)
write$UHID_INPUT2(r0, &(0x7f0000000040)=ANY=[], 0x6)
creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fallocate(r0, 0x3, 0x1, 0x10)

1.359838103s ago: executing program 2 (id=729):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b23, 0x0)

1.328021133s ago: executing program 5 (id=730):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000380)='./file1\x00', 0x3014850, &(0x7f00000006c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$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")
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
rename(&(0x7f0000000400)='./file0\x00', &(0x7f0000000f00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlink(&(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0/file0\x00', &(0x7f0000000280)='./file0\x00')

1.247071113s ago: executing program 4 (id=731):
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f0000000600)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1c802, &(0x7f0000002740)=ANY=[], 0x3, 0x5f7e, &(0x7f0000001d80)="$eJzs3VtvHGf9B/DfHrw+9N80qv6qQsSFm0JpKc05gXJqygUXgAQSyjWJXLcKpAUlAdEqIq5ygbjg8BLgpjdc9I0UiVeAeAFESriqBGXQeJ8nGU/WWYfYO2s/n4/kzPz2mfX+Jl+Pd9czsxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQHzn2z881YuIS79INxyO+L8YRPQjlut6NeqZC3n5YUQcic3heC4iBosR9f03/3km4mxEfHwo4u69m2v1zad32Me5kzeuffrdb/3t17+/feTHb/7ow/b4D/7/zEe/uRVx+PuvffTprd1ZdwAAAChFVVVVL73NP5re3/e7bgoAmIn8/F8l+Xa1Wq1W72r9u/589aMutG6qJrvVLCJio3mf+jWD3fEAsM9sxCddt0CH5F+0YUQ81XUTwFzrdd0Ae+LuvZtrvZRvr/l8sDoez3+n3JL/Ru/++R3bTadpH2Myq5+v2zGIZ7fpZ3lGPcyTnH+/nf+l8fgoLbfX+c/KdvmPxqc+FSfnP2jn37Il/z9ExL7Nvz8x/1Ll/IePk//GYB9v//IHAAAAAODgy3//P9zx/t/FJ1+VHXnU/t/VGfUAAAAAAAAAALvtSa//d5/r/wEAAMDcqt+r1/546MFt230WW337xV7E063lgcKkk2VWuu4DAAAAAAAAAAAAAEoyHB/De7EXsRART6+sVFVVfzW168f1pPff70pffyhZ17/kAQBg7ONDrXP5exFLEXExfdbfwsrKSlUtLa9UK9XyYn49O1pcqpYb72vztL5tcbSDF8TDUVV/s6XG/ZqmvV+eNt7+fvVjjarBDhqbjQ4DB4CIGD8b3fWMdMBU1TPR9asc9gfb/8Fj+2cnuv45BQAAAPZeVVVVL32c99G0z7/fdVMAwCws5ef/9n4BtVqtVquLrjfmrJ9dqpuqyW41i4j8PzFWv2ZwOX4A2Gc24pOuW6BD8i/aMCKOdN0EMNd6XTfAnrh77+ZaL+Xbaz4fpOu752NBtuS/0du8X77/pOk07WNMZvXzdTsG8ew2/Tw3ox7mSc6/387/0nh8lJbb6/xnZbv86/U83EE/Xcv5D9r5txyc/PsT8y9Vzn/4WPkP5A8AAAAAAHMs//3/cLn7fwe5n9UZ9QAAAAAAAAAAu+3uvZtr+bzXvP//sxOW6zXnnP95YOT8ezvO3/m/B0nOv9/Ov3VAzqAxf+eNB/n/897NtQ9v/OMzeTr3+S8MRvVjL/T6g2E65qdaeCuuxNVYj5MPLT/cMn7qofGFLeOnp4yfeWh8VI8v5/HjsRY/javx5v3xxSkHRi1NGa+mjOf8B7b/IuX8h42vOv+VNN5rTWt3Pug/tN03p5Me58Kf//3iw1vX7N2Owf11a6rX71gH/Wz+nzw1ip9fX792/JeXb9y4dirSZMutpyNNdlnOfyF95fxfemE8nn/vN7fXOx+MHjv/eXE7htvm/0Jjvl7fl2fcWxdy/qP0lfPPz0CTt//9nP/22/8rHfQDAAAAAAAAAAAAAAAAj1JV1eYpohci4nw6/6erczMBgJn67ffSTJWEWq1Wq9XqA1s3VZO93ixiaet9zkfEryZ9MwBgnv0nIv7edRN0Rv4Fy5/3V08/13UzwExdf+/9n1y+enX92vWuOwEAAAAAAAAA/lf5+p+rjes/bx4H1Lpu9Jbrv74Rq/v2+p/90WDzWudphZ6PR1//+1g8+vrfwymPtzBlfDRlfHHK+NKU8YknejTk/J9PGef8j6YVK+n6ry910E/Xcv7H0rWec/5faC3XzL/6037Ov78l/xM33vnZievvvf/qlXcuv73+9vq7p06eP3vm3Nkz586deOvK1fWT43877Hhv5fzzta8dB1qWnH/OXP5lyfl/PtXyL0vO/8VUy78sOf/8ek/+Zcn55/c+8i9Lzv/lVMu/LDn/L6Za/mXJ+b+SavmXJef/pVTLvyw5/1dTLf+y5PyPp1r+Zcn5n0i1/MuS8897uORflpx/PrJB/mXJ+Z9OtfzLkvM/k2r5lyXnfzbV8i9Lzv9cquVflpz/+VTLvyw5/y+nWv5lyfl/JdXyL0vO/7VUy78sOf+vplr+Zcn5fy3V8i9Lzv/rqZZ/WXL+30i1/MuS8/9mquVflpz/66mWf1kefP6/mRnP/OsvEXPQhplSZ97966OW6fo3EwAAAAAAAAAAAADQNosjjbteRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+yw4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsHd3MXKd9RnA3/2y104gLgkhBEPWjhMM2Xh3/ZWYYDCfTUNL00BoaaGOsdeOwV/1riFBqFka2oJAaqT2gl6UAqIIqa0SIaRSiaJIRWrvyhUoN6iVuLBUqEwElahItjpz3vfdmdnZmfXaG8+c8/tF8d87c2bmnTNnZvdZ65kBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJpte8fsnw+FEIr/G39sCeH64u+bwqHiy4X913qFAAAAwJV6ofHnP9yQTzi0igs1bfNvr/uPby0uLi6Gjzx/8cW/XFzMZ0yEMLIxhMZ5yb//8heLzdtET4bxoeGmr4d73PxIj/NHe5w/1uP8DT3O39jj/PEe5y/bActsKn8f07iyHY2/bil3abgpjDXO29HhUk8ObRweTr/LaRhqXGZx7Hg4GU6F2TC97DJDjf9C+M624rbuD+m2hptua2sI4dLPPnU0rWEo7uMdoeXGGpofu5++LUw8/7NPHf36/E9e3Wn23A3LVhrCzu3FOj8TwtKvq8JQ2Jj3SVrncNM6t3ZY50jLOocalyv+3r7OS6tcZ7rf43Gd3++yzq3xtMduDyEshBW3afdkGA6b22417+/x8ogorqN4KF8RRi/rONm2iuOkuMyPb289TtqPybT/t8V9MrrCGpofjp9+esOy/b7W46S41/1wrBbX/WBxo+Pjzb9abTlWi20+dcfKx0DHx67DMZCP5aZjYHuvY2B4w0jjGBheWvP2lmNgZtllhsNQ47Yu3tH9GJiaP31uau7xT9598vSRE7MnZs/MTO/fu2ff3j379k0dP3lqdrr88/J26QDZHIbzMbg9vtakY/D1bds2H5KLX7l6z4PxPnkeFPf9/XcWC7p+OKxwjBfbfGbnlT8P8vf9pufBaNPzoONraofnwegqngfFNpd2ru575mjT/53WsF6vhVuajoFr+f2wuM0PvWHl18KtcV2ffePlfj8cWXYMpLs1FJ97xSn5573xe+N+WX5c3Fqccd2GcGFu9vyux47Mz5+fCXG8JG5seqzaj5fNTfcpLDtehi/7eDn097+689YOp2+J+2r8ru6PVbHN3snuj1Xj1b11f24I5f5sOXV3iOMqe6n3Z6fvZsX+zFmiy/4stvnM3Vf+s2DOJU2vf2O9Xv9GxkbL17+RvDfGWl7/lj80I42VhXDp7tW9/o3F/1/q17+b+uT1r9hXH9rV/Rgotvns1OUeA6NdX/9uj3MorucNMTGMN+X+FxvnL5SHadNj2fO4GR0di8fNaLrF1uNmz7LLFNdW3PbO6bUdNztvb32sWn5uqeBxU+yrv5ruftwU2zw7c+WvHZvSX5teOzb0OgbGRjYU6x3LB0H5ere4KR0Du8LRcDacCsfyZYpHubityd2rOwY2xP9f6teOW/rkGCj21Rd3dz8Gim2+t+fq/uy0M56St2n62an99wsrZf5bR5eur323Xe3MX6zznT94bz6tU4YotvnJ3svNGd33013xlOs67Kf2589Kx/Sx8NLsp1viOk/t6/67qWKbm/av8ng6FEJ4bua5xu+74u93v3nhB99q+b1vp98pPzfz3ANTD/3wctYPAMDavdj4c2FD+bNm079Yr+bf/wEAAICBkHL/cJyZ/A8AAACVkXL/SJyZ/A8AAACVkXL/aJxZTfL/o/ceePqFJ0J+N8DFKJ2fdsODbym3Sx3vhfj1xOKS4vS3f23s6c89sbrbHg4h/OqB13Tc/tG3pHWVzqV1vqn19GVuuW1Vt//Iw0vbNb9/wqUD5fWn+7PawyB1lb8ztbtxvROPzzTmsw+Exnxo4bNPltdffp22v7in3P5v4puWHDo+1HL5nXE9O+KciO8p8+Chpf1QzHS5p7e+7l9v/MDS7aXLDW1/eeNufvGPy+tN7xH11I3l9ul+r7T+f/n8N54utn/sjs7rf2K48/ovxuv9cZy/PFhu37zPP9e0/j+N60+3ly6366vf7bj+Z15Vbv9MPC6+HGf7+t/2F699odPjlW7n0H3l5dLtT//v3sbl0vWl629f//gTMy37o/36n32+vJ6DH//5SPP26fR0O8kj97Ue30Px8W3pkYcQvvFnoWU/hzeXl/vntvWn6zt3X+f139W2znNDtzUuv3R/trTcry/93e6O9zet59A/bmm5P0+9K+6/56e+V1zvxYfi8RjP/7/vl9fX/l6mz7yr9fUmbf/lLeXzNl3fVNv6n2pb/8Jtxb7rvf77ny/X/8xbN7as/9C74/F0fzl7rf/E397QcvmvfL18PM5/YvLM2bkLJ4817dXm5/HG8U2br7v+ZS+/Ib6Wtn99+Oz8o7PnJ6YnpkOYGMC3DFzv9X81zv8px8LVv4XSD39eHndfeE/5fev1vyi/fiqe/kh8PNP3xy/99VjL8dr+uC+8tZxXuv43xnWs1qs+/1+3rWrDix/+zoV/+pOftP9ckO7PuVeON+7fF7fd3Dhv6Nny/PbXq17+85Wtz+sfjU435rfjfl2M78y8/eby9tqvP703yRfeVz5/009y6fKh7f1Etoy03o8rXf+P4s8x372l9fUvHR/ffqLt3Zy3hKFiCQvx9SEslOenrdL+/sKlmzveXnofnrDw6stZ5ormHp+bOnXyzIXHpuZn5+an5h7/5OHTZy+cmT/ceO/Swx/tdfml5/fmxvP72Oz+vaHxbD9bjnV2rdd/7uGjx+6ZvvPY7PEjF47PP3xu9vyJo3NzR2ePzd155Pjx2U/0uvzJYwdndh/Yc8/uyRMnjx2898CBPQcmT545WyyjXFQP+6c/Nnnm/OHGReYO7j0ws2/f3unJ02ePzR68Z3p68kKvyze+N00Wl/745PnZU0fmT56enZw7+cnZgzMH9u/f3fPdH0+fOz43MXX+wpmpC3Oz56fK+zIx3zi5+N7X6/LUw9zZ+HrXZij+dP7Bu/bn98ctfO3TK15VuUnrj6fhp/G9oNL3t15fp9w/FmdWk/wPAAAAdZByf3zj/6Uz5H8AAACojJT7N8aZyf8AAABQGSn3l8l/PH/8e13y/9Xq/39a/79B/1//P+j/Z/r/+v9B/1//vwf9f/3/QV6//r/+P731W/8/5v6wKQT//g8AAAAVlXL/5jgz+R8AAAAqI+X+6+LM5H8AAACojJT7r48zq0n+9/n/+v/6/936/2lb/f+g/98P/f8d/63/v4z+v/5/0P9fs2vdnx/09fdh/3+T/j/9pt/6/yn3vyzOrCb5HwAAAOog5f6Xx5nJ/wAAAFAZKfffEGcm/wMAAEBlpNy/Jc6sJvlf/1//X//f5//r/w9M/9/n/3eg/6//H/T/1+xa9+cHff192P/3+f/0nX7r/6fc/2txZjXJ/wAAAFAHKfe/Is5M/gcAAIDKSLn/xjgz+R8AAAAqI+X+m+LMapL/69n//3EIQf8/6P/r/7etU/9f/3896P/r/3ej/6//P8jr1//X/6e3fuv/p9z/yjizmuR/AAAAqIOU+2+OM5P/AQAAoDJS7n9VnJn8DwAAAJWRcv8tcWY1yf/17P/7/H/9/5L+f+s69f/1/9eD/r/+fzf6//r/g7x+/X/9f3rrt/5/yv2vjjOrSf4HAACAOki5/9Y4M/kfAAAAKiPl/tfEmcn/AAAAUBkp92+NM6tJ/tf/1//X/9f/1//X/19Pg9X/H17xHP3/kv5/q6vX/19YWoD+/8CsX/9f/5/e+q3/n3L/a+PMapL/AQAAoA5S7n9dnJn8DwAAAJWRcv9tcWbyPwAAAFRGyv0TcWY1yf/6//r/+v/6//r/+v/rabD6/yvT/y/p/7fy+f/6//r/+v9012/9/5T7t8WZ1ST/AwAAQB2k3L89zkz+BwAAgMpIuf/2ODP5HwAAACoj5f4dcWY1yf/6//r/+v/6//r/+v/rSf9f/78b/X/9/0Fev/6//j+99Vv/P+X+O+LMapL/AQAAoA5S7r8zzkz+BwAAgMpIuf/1cWbyPwAAAFRGyv0748xqkv/1//X/9f8HuP8/ov8f9P/7nv6//n83+v/6/4O8fv1//X9667f+f8r9b4gzq0n+BwAAgDpIuf+NcWbyPwAAAFRGyv13xZnJ/wAAAFAZKfdPxpnVJP/r/+v/6/8PcP+/Xz//P75Q6P/r/wf9/wHq/4+1fqn/vyr6//r/+v/6/3TXb/3/lPvvjjOrSf4HAACAOki5f1ecmfwPAAAAlZFy/1ScmfwPAAAAlZFy/3ScWU3yv/6//r/+v/6/z//X/19P+v+D0v9vo/+/Kvr/+v/6//r/dNdv/f+U+2fizGqS/wEAAKAOUu7fHWcm/wMAAEBlpNy/J85M/gcAAIDKSLl/b5xZTfL/gPT/d+UClP6//r/+v/6//v9A0f/X/+9G/1//f5DXr/+v/0+r4Q6n9Vv/P+X+fXFmNcn/AAAAUAcp9++PM5P/AQAAoDJS7r8nzkz+BwAAgMpIuf/eOLOa5P8B6f/7/H/9f/3/Jvr/+v+DRP9f/78b/X/9/0Fev/6//j+99Vv/P+X+A3FmNcn/AAAAUAcp978pzkz+BwAAgMpIuf++ODP5HwAAAAZKp88hTFLuf3OcWU3yv/5/1fv/ixv1//X/9f+7r1//f33p/+v/d6P/r/8/yOvX/9f/p7d+6/+n3H8wzqwm+R8AAADqIOX+t8SZyf8AAABQGSn3vzXOTP4HAACAyki5/1CcWU3y/zr3/7d3u239f5//H/T/9f/1//X/r5D+v/5/0P9fs7X25+OPLfr/fdT/L44h/X/6Ub/1/1Puf1ucWU3yPwAAANRByv1vjzOT/wEAAKAyUu5/R5yZ/A8AAACVkXL/O+PMapL/ff6//r/+v/6//r/+/3rS/1+3/n/jpVD/v6T/vzbXuj8/6Ovvp/6/z/+nX/Vb/z/l/nfFmdUk/wMAAEAdpNz/7jgz+R8AAAAqI+X+X48zk/8BAACgMlLuvz/OrCb5X/9f/1//X/9f/1//fz3p//v8/270//X/B3n9+v/6//TWb/3/lPt/I86sJvkfAAAA6iDl/gfizOR/AAAAqIyU+98TZyb/AwAAwIDZsOI5Kff/ZpxZTfL/4PX/Jway/z+cr1//X/9f/1//X///atL/1/8P+v9rdq3784O+fv1//X9667f+f8r9vxVnVpP8DwAAAHWQcv9740w2XbMVAQAAAFdbyv2/HWfm3/8BAACgMlLufzDOrCb5/2r3/9sv343P/9f/D/r/+v/6//r/V0j/X/8/6P+v2bXuzw/w+tOPIvr/+v/00G/9/5T7fyfOrCb5HwAAAOog5f6H4szkfwAAAOhTj172JVLuf1+cmfwPAAAAlZFy//vjzGqS/wfv8//1//X/9f/1//X/B4n+v/5/N/r/+v+DvH6f/6//T2/91v9Puf/hOLOa5H8AAACog5T7PxBnJv8DAABAZaTc/7txZvI/AAAAVEbK/b8XZ1aT/K//r/+v/6//r/+v/7+e9P+X9/+L1zD9/5L+v/7/IK9f/1//n976rf+fcv8H48xqkv8BAACgDlLu//04M/kfAAAAKiPl/j+IM5P/AQAAoDJS7v9QnFlN8r/+v/6//r/+f737/0v1Sv3/9aH/7/P/u9H/1/8f5PXr/+v/01u/9f9T7v9wnFlN8j8AAADUQcr9fxhnJv8DAABAZaTcfzjOTP4HAACAyki5/5E4s5rkf/1//X/9f/3/evf/ff7/etP/1//vRv9f/3+Q16//r/9Pb/3W/0+5/0ic2aHWmwEAAAAGV8r9H4kzq8m//wMAAEAdpNx/NM5M/gcAAIDKSLn/WJxZTfK//r/+v/6//r/+v/7/etL/1//vRv9f/3+Q11/2/8fiV/r/+v900m/9/5T7Z+PMapL/AQAAoA5S7j8eZyb/AwAAQGWk3H8izkz+BwAAgMpIuf/ROLOa5H/9f/1//f/a9v+//822der/6/+vB/1//f9u9P/1/wd5/T7/X/+f3vqt/59y/8k4s5rkfwAAAKiDlPs/Gmcm/wMAAEBlpNz/sTgz+R8AAAAqI+X+U3FmNcn/+v/6//r/te3/r+7z/zct3a7+v/7/Wuj/6/93o/+v/z/I69f/1/+nt37r/6fcfzrOrCb5HwAAAOog5f4zcWbyPwAAAFRGyv1n48zkfwAAAKiMlPvPxZnVJP/r/19e/39ohW6g/n/n9ev/V6D/30T/X/9/LfT/9f+70f/X/x/k9ev/6//TW7/1/1Pu/6M4s5rkfwAAAKiDlPvPx5nJ/wAAAFAZKffPxZnJ/wAAAFAZKffPx5nVJP/r//v8f/1//X/9f/3/9aT/r//fjf6//v8gr1//X/+f3v6fvftM8qys4jjeDg4ORbkHyh24ApfgAnxlleUOzAnMmBVzTpgTZsWcc86Yc0Ixxyotus85SNt9bw/T/5nnPufzecHBQYsHGav8OX7rjtb/5+6/X9zSZP8DAABAB7n77x+32P8AAAAwjdz9D4hb7H8AAACYRu7+B8YtTfa//l//r//X/+v/9f+7pP/X/y/R/+v/t/x+/b/+n3Wj9f+5+x8UtzTZ/wAAANBB7v4Hxy32PwAAAEwjd/9D4hb7HwAAAKaRu/+hcUuT/a//1//r//X/+n/9/y7p//X/S/T/+v8tv1//r/9n3Wj9f+7+h8UtTfY/AAAAdJC7/+Fxi/0PAAAA08jd/4i4xf4HAACAaeTuvzpuabL/9f/6f/3/Bvv/O+v/9f/bof/X/y/R/+v/t/x+/b/+n3Wj9f+5+6+JW5rsfwAAAOggd/8j4xb7HwAAADbnbvc9+sdz9z8qbrH/AQAAYBq5+x8dtzTZ//p//b/+f4P9v+//6/83RP+v/1+i/9f/b/n9+n/9P+tG6/9z9z8mbmmy/wEAAKCD3P2PjVvsfwAAAJhG7v7HxS32PwAAAGzd2fyd3P2Pj1ua7H/9v/5f/6//1//r/3dJ/6//X6L/1/9v+f36f/0/63be/9/z2v170v4/d/+1cUuT/Q8AAAAd5O5/Qtxi/wMAAMA0cvc/MW6x/wEAAGAaufufFLc02f/6f/3/bf3/f+6k/9f/6/9v+3H9/+nQ/+v/l+j/9f9bfr/+X//Pup33/yu9/+F/nLv/yXFLk/0PAAAAHeTuf0rcYv8DAADANHL3PzVusf8BAABgGrn7nxa3NNn/+n/9v+//6//1//r/XdL/D9v/H/6P3u3p/09E/6//P67/v8cJ3q//p4PR+v/c/U+PW5rsfwAAAOggd/8z4hb7HwAAAKaRu/+6uMX+BwAAgGnk7n9m3NJk/+v/9f/6f/3/7fv/My37/1t/TP+/G/r/Yfv/Zfr/E9H/6/99/1//z7LR+v/c/c+KW5rsfwAAAOggd/+z4xb7HwAAAKaRu/85cYv9DwAAANPI3f/cuKXJ/tf/6//1//r/C/r+/2Vz9P++/787+n/9/xL9v/5/y+/X/+v/WTda/5+7/3lxS5P9DwAAANM7s1e7//lxi/0PAAAA08jd/4K4xf4HAACAaeTuf2Hc0mT/6//1//p//f8F9f+TfP9f/787+n/9/5KT9v97+v/6a9H/j/N+/b/+n3Wj9f+5+18UtzTZ/wAAANBB7v4Xxy32PwAAAEwjd/9L4hb7HwAAAKaRu/+lcUuT/a//1//r//X/+n/9/y7p//X/S3z/X/+/5ffr//X/rBut/8/d/7K4pcn+BwAAgA5y9788brH/AQAAYBq5+18Rt9j/AAAAMI3c/a+MWw7v/zMX81UXj/5f/6//1//r//X/u6T/1/8v0f8f3f+fO+bPp/8f6/36f/0/60br/3P3Xx+3+PV/AAAAmEbu/lfFLfY/AAAATCN3/6vjFvsfAAAAppG7/zVxS5P9f1z/f8uVB39c/38y+v+j36//1//r//X/+n/9/xL9v+//b/n9+n/9P+tG6/9z9782bmmy/wEAAKCD3P2vi1vsfwAAAJhG7v7Xxy32PwAAAEwjd/8b4pYm+//0v/9/lf5f/6//j6v/1//r//X/+v9l+n/9/5bfr//X/7NutP4/d/8b45Ym+x8AAAA6yN3/prjF/gcAAIBp5O5/c9xi/wMAAMA0cve/JW5psv9Pv//3/X/9/3n2/2f0/0n/H39f9f/6//Og/9f/7+n/77BL3c9v/f36f/0/60br/3P337A/9frtfwAAAOjghv3fntt7a9xi/wMAAMA0cve/LW6x/wEAAGAaufvfHrc02f/6f/3/Je//ff+/6P/j76v+X/9/HvT/+v89/f8ddqn7+a2/X/+v/2fdaP1/7v53xC1N9j8AAAB0kLv/nXGL/Q8AAADTiN1/8H9+t/8BAABgSu/a/+25vXfHLU32f+P+/6oL7f+v+J/f1/8f/X79/6n0/zcc/rmn/9f/b4n+X/+/RP+v/9/y+8fp/+MHrtb/M57R+v/c/e+JW5rsfwAAAOggd/974xb7HwAAAKaRu//GuMX+BwAAgGnk7n9f3NJk/zfu/yf5/v+9b44X6P/n7f99/z+u/l//fxT9/wT9/63/9Uv/X39+/f923j9O/+/7/4xrtP4/d//745Ym+x8AAAA6yN3/gbjF/gcAAIBp5O7/YNxi/wMAAMA0cvd/KG5psv/1/1vv/33/X/+v/9f/j03/r/9f4vv/+v8tv1//r/9n3Wj9f+7+D8ctTfY/AAAAdJC7/yNxi/0PAAAA08jd/9G4xf4HAACAaeTu/1jc0mT/6//1/7vq/2/9k+j/m/T/1+j/9/T/x9L/6/+X6P/1/1t+v/5f/8+60fr/3P0fj1ua7H8AAADoIHf/J+IW+x8AAACmkbv/k3GL/Q8AAADTyN3/qbjh7ne9dE86XWeP+fHozfX/+n/f/9f/+/6//n+X9P/6/yX6f/3/lt+v/9f/s260/j93/6fjFr/+DwAAANPI3f+ZuMX+BwAAgGnk7v9s3GL/AwAAwDRy938ubmmy//X/+n/9/2b7/yv0/7d/v/5/TPp//f8S/b/+f8vvP3H/f9PR/3r9Px2M1v/n7v983NJk/wMAAEAHufu/ELfY/wAAADCN3P1fjFvsfwAAAJhG7v4vxS1N9r/+X/+v/99s/+/7/4fer/8fk/5f/79E/6//3/L7ff9f/8+60fr/3P1fjlua7H8AAADoIHf/V+IW+x8AAACmkbv/q3GL/Q8AAADTyN3/tbilyf7X/+v/9f/6f/2//n+X9P/6/yX6f/3/lt+v/9f/s260/j93/9fjlib7HwAAADrI3f+NuMX+BwAAgGnk7v9m3GL/AwAAwDRy938rbmmy/2fu/5f+afr/A7P1//e6/ODfD/2//n9P/z8M/b/+f4n+X/+/5ffr//X/rBut/8/d/+24pcn+BwAAgA5y938nbrH/AQAAYBq5+2+KW+x/AAAAmEbu/u/GLU32/8z9/xL9/4HZ+n/f/9f/6//Ho//X/y/R/+v/t/x+/b/+n3WXqP8/u3dM/5+7/3txS5P9DwAAAB3k7v9+3GL/AwAAwDRy9/8gbrH/AQAAYBq5+38Yt8yz/+9z48If1P+fev+//5NI/6//39P/6//1//v0//r/Jfp//f+W36//1/+zbrTv/+fu/1HcMs/+BwAAgPZy9/84brH/AQAAYBq5+38St9j/AAAAMI3c/T+NW5rsf/2/7//r/1v1/5ft6f/1/xeZ/l//v0T/r//f8vv1//p/1o3W/+fu/1ncksPvyjvyVwkAAACMJHf/z+OWJr/+DwAAAB3k7v9F3GL/AwAAwDRy9/8ybmmy//X/+n/9f6v+3/f/9f8Xnf5f/79E/6//3/L7s//Pn3f6f/0//2+0/j93/6/ilib7HwAAADrI3f/ruMX+BwAAgGnk7v9N3GL/AwAAwDRy9/82bmmy//X/+n/9v/5f/6//3yX9v/5/if5f/7/l9/v+v/6fdaP1/7n7b45bmux/AAAA2LTDv8BzjNz9v4tb7H8AAACYRu7+38ct9j8AAABMI3f/LXFLk/2v/9f/T9n/30X/r//X/49C/6//X6L/1/9v+f36f/0/60br/3P3/yFuabL/AQAAoIPc/X+MW+x/AAAAmEbu/j/FLfY/AAAATCN3/5/jlib7X/+v/z///v9s/XUP2//7/r/+X/8/jHn7/8v1/0f1/+fO7/3d+//rrj/4Yf3/Nt+v/9f/s260/j93/1/ilib7HwAAADrI3f/XuMX+BwAAgGnk7v9b3GL/AwAAwDRy9/89bv1PAE32v/5f/z/l9//1//p//f8w5u3/ff/f9/99/1//r//X/7NmtP4/d/8/4pYm+x8AAAA6yN3/z7jF/gcAAIBp5O7/V9xi/wMAAMA0cvf/O25psv/1//p//b/+/0L7/6T/1/8fRf+v/1+i/9f/b/n9+n/9P+tG6/9z9/83AAD//10JJYI=")
lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740), 0x0, 0x0, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

862.311492ms ago: executing program 1 (id=732):
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$nfc_llcp(r1, &(0x7f0000000240)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "d9298498abdba7f061bd1ca44c226af5160e961711a07760760beeab11e88509de7f1939e8abff005597c8ef039a5be42200", 0x38}, 0x60)
listen(r1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

379.34301ms ago: executing program 5 (id=733):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x40000000000000, &(0x7f0000000100)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f0000000040)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @empty}, r1}}, 0x30)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1}}, 0x10)
write$RDMA_USER_CM_CMD_DESTROY_ID(r0, &(0x7f0000000080)={0x1, 0x10, 0xfa00, {&(0x7f0000000000), r1}}, 0x18)

243.19586ms ago: executing program 1 (id=734):
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, 0x0, 0x4040004)
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000000)=ANY=[@ANYBLOB='filter'], &(0x7f0000000100)=0x28)

0s ago: executing program 5 (id=735):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c040, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000002480)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5, &(0x7f0000000040)}, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000040), 0x4)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01')

kernel console output (not intermixed with test programs):

d
[   77.792031][ T4382] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   77.806237][ T4515] loop4: p6 start 16908804 is beyond EOD, truncated
[   77.869196][ T4371] iowarrior 3-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[   77.934631][ T4371] usb 1-1: USB disconnect, device number 3
[   77.942597][   T26] audit: type=1326 audit(1737487029.469:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4514 comm="syz.4.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[   77.969124][   T26] audit: type=1326 audit(1737487029.499:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4514 comm="syz.4.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[   78.053583][   T26] audit: type=1326 audit(1737487029.529:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4514 comm="syz.4.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[   78.103464][   T26] audit: type=1326 audit(1737487029.529:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4514 comm="syz.4.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[   78.127714][   T26] audit: type=1326 audit(1737487029.529:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4514 comm="syz.4.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[   78.221359][ T4158] udevd[4158]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   78.227211][ T4365] udevd[4365]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   78.246432][ T4291] udevd[4291]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory
[   78.312924][ T4371] usb 3-1: USB disconnect, device number 3
[   78.591871][ T4540] loop1: detected capacity change from 0 to 22
[   78.602172][ T4540] MTD: Attempt to mount non-MTD device "/dev/loop1"
[   78.613309][ T4523] loop3: detected capacity change from 0 to 32768
[   78.630036][ T4539] loop0: detected capacity change from 0 to 2048
[   78.654200][ T4540] romfs: Mounting image 'rom 637cf1fa' through the block layer
[   78.683249][ T4523] XFS (loop3): Mounting V5 Filesystem
[   78.688429][ T4539] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   78.804812][ T4205] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   78.926353][ T4523] XFS (loop3): Ending clean mount
[   78.936489][ T4523] XFS (loop3): Quotacheck needed: Please wait.
[   79.017365][ T4523] XFS (loop3): Quotacheck: Done.
[   79.165277][ T4205] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   79.216032][ T4205] usb 5-1: config 0 has no interfaces?
[   79.250622][ T4175] XFS (loop3): Unmounting Filesystem
[   79.365013][ T4205] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   79.378702][ T4205] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   79.400733][ T4205] usb 5-1: Product: syz
[   79.410643][ T4205] usb 5-1: Manufacturer: syz
[   79.423980][ T4205] usb 5-1: config 0 descriptor??
[   79.444719][ T4553] loop1: detected capacity change from 0 to 32768
[   79.909056][ T4536] udc-core: couldn't find an available UDC or it's busy
[   79.925022][ T4536] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[   79.965538][ T4208] usb 5-1: USB disconnect, device number 4
[   80.362313][ T4556] loop0: detected capacity change from 0 to 65536
[   80.415408][ T4553] find_entry called with index = 0
[   80.446698][ T4553] read_mapping_page failed!
[   80.452428][ T4553] ERROR: (device loop1): txCommit: 
[   80.452428][ T4553] 
[   80.474043][ T4573] ERROR: (device loop1): dbAllocNext: Corrupt dmap page
[   80.474043][ T4573] 
[   80.511256][ T4575] loop2: detected capacity change from 0 to 128
[   80.519599][ T4573] ialloc: diAlloc returned -5!
[   80.541999][ T4556] XFS (loop0): Mounting V5 Filesystem
[   80.588333][ T4583] process 'syz.4.110' launched './file0' with NULL argv: empty string added
[   80.599024][ T4556] XFS (loop0): Ending clean mount
[   80.623783][ T4556] XFS (loop0): Quotacheck needed: Please wait.
[   80.661988][ T4575] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   80.687163][ T4575] ext4 filesystem being mounted at /24/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   80.792350][ T4556] XFS (loop0): Quotacheck: Done.
[   80.829523][ T4587] loop3: detected capacity change from 0 to 512
[   80.909027][ T4587] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   80.973922][ T4587] EXT4-fs (loop3): 1 truncate cleaned up
[   80.986002][ T4587] EXT4-fs (loop3): mounted filesystem without journal. Opts: nogrpid,resuid=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,jqfmt=vfsv0,nombcache,quota,,errors=continue. Quota mode: writeback.
[   81.238810][ T4172] XFS (loop0): Unmounting Filesystem
[   81.495632][ T4606] loop2: detected capacity change from 0 to 512
[   81.517544][   T21] cfg80211: failed to load regulatory.db
[   81.562745][ T4592] loop1: detected capacity change from 0 to 32768
[   81.613871][ T4608] loop3: detected capacity change from 0 to 4096
[   81.652468][ T4606] EXT4-fs (loop2): Ignoring removed orlov option
[   81.671929][ T4613] loop4: detected capacity change from 0 to 4096
[   81.675274][ T4606] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   81.693680][ T4608] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[   81.744274][ T4606] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.121: casefold flag without casefold feature
[   81.791555][ T4606] EXT4-fs (loop2): Remounting filesystem read-only
[   81.821073][ T4606] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.121: couldn't read orphan inode 15 (err -117)
[   81.861357][ T4606] EXT4-fs (loop2): Remounting filesystem read-only
[   81.868461][ T4606] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback.
[   81.869578][ T4592] XFS (loop1): Mounting V5 Filesystem
[   81.916949][ T4613] NILFS (loop4): invalid segment: Checksum error in segment payload
[   81.956646][ T4613] NILFS (loop4): trying rollback from an earlier position
[   82.046812][ T4621] netlink: 312 bytes leftover after parsing attributes in process `syz.0.117'.
[   82.051104][ T4606] EXT4-fs error (device loop2): ext4_check_dx_root:2266: inode #2: comm syz.2.121: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[   82.064831][ T4613] NILFS (loop4): recovery complete
[   82.112105][ T4606] EXT4-fs (loop2): Remounting filesystem read-only
[   82.187544][ T4623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'.
[   82.196839][ T4623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'.
[   82.209155][ T4623] netlink: 8 bytes leftover after parsing attributes in process `syz.0.124'.
[   82.220143][ T4624] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   82.249846][ T4592] XFS (loop1): Ending clean mount
[   82.403432][   T26] audit: type=1800 audit(1737487033.929:9): pid=4613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.123" name="file1" dev="loop4" ino=12 res=0 errno=0
[   82.472101][   T26] audit: type=1804 audit(1737487033.929:10): pid=4613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.123" name="/newroot/37/file1/file1" dev="loop4" ino=12 res=1 errno=0
[   82.596017][ T4166] XFS (loop1): Unmounting Filesystem
[   83.316669][ T4627] loop2: detected capacity change from 0 to 32768
[   83.341094][ T4628] loop0: detected capacity change from 0 to 32768
[   83.415517][ T4627] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.125 (4627)
[   83.472879][ T4627] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[   83.503969][ T4628] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.127 (4628)
[   83.504955][ T4627] BTRFS info (device loop2): turning on flush-on-commit
[   83.534770][ T4627] BTRFS info (device loop2): turning off barriers
[   83.541285][ T4627] BTRFS info (device loop2): turning on sync discard
[   83.568179][ T4627] BTRFS info (device loop2): using free space tree
[   83.594734][ T4627] BTRFS info (device loop2): has skinny extents
[   83.619242][ T4628] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   83.720354][ T4628] BTRFS info (device loop0): turning on sync discard
[   83.745039][ T4628] BTRFS info (device loop0): force zlib compression, level 3
[   83.845366][ T4628] BTRFS info (device loop0): setting nodatacow
[   83.851629][ T4628] BTRFS info (device loop0): using free space tree
[   83.883115][ T4628] BTRFS info (device loop0): has skinny extents
[   83.991388][ T4635] loop4: detected capacity change from 0 to 32768
[   84.020064][ T4673] loop3: detected capacity change from 0 to 1024
[   84.111951][ T4673] EXT4-fs (loop3): Ignoring removed nobh option
[   84.162144][ T4673] EXT4-fs (loop3): Ignoring removed bh option
[   84.194964][ T4673] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   84.218787][ T4635] XFS (loop4): Mounting V5 Filesystem
[   84.326653][ T4673] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[   84.395557][ T4628] BTRFS info (device loop0): enabling ssd optimizations
[   84.540138][ T4635] XFS (loop4): Ending clean mount
[   84.559706][ T4704] device vlan0 entered promiscuous mode
[   84.564097][ T4635] XFS (loop4): Quotacheck needed: Please wait.
[   84.583846][ T4705] EXT4-fs error (device loop3): mb_free_blocks:1865: group 0, inode 15: block 161:freeing already freed block (bit 10); block bitmap corrupt.
[   84.661494][ T4704] team0: Port device vlan0 added
[   84.691267][ T4635] XFS (loop4): Quotacheck: Done.
[   84.924115][ T4170] XFS (loop4): Unmounting Filesystem
[   85.108725][ T4708] team0: Port device vlan0 removed
[   85.461965][ T4277] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.474751][ T4277] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.713168][ T4726] loop4: detected capacity change from 0 to 1024
[   85.788722][ T4715] loop0: detected capacity change from 0 to 32768
[   85.828839][ T4726] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   86.019789][ T4717] loop3: detected capacity change from 0 to 32768
[   86.035907][ T4715] JFS: metapage_get_blocks failed
[   86.042783][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.042783][ T4715] 
[   86.091102][ T4726] EXT4-fs warning (device loop4): empty_inline_dir:1844: bad inline directory (dir #12) - no `..'
[   86.112526][ T4715] ERROR: (device loop0): remounting filesystem as read-only
[   86.125566][ T4715] JFS: metapage_get_blocks failed
[   86.130867][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.130867][ T4715] 
[   86.147881][ T4715] JFS: metapage_get_blocks failed
[   86.152958][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.152958][ T4715] 
[   86.172897][ T4717] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.141 (4717)
[   86.243523][ T4715] JFS: metapage_get_blocks failed
[   86.249206][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.249206][ T4715] 
[   86.259977][ T4715] JFS: metapage_get_blocks failed
[   86.269671][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.269671][ T4715] 
[   86.330214][ T4715] JFS: metapage_get_blocks failed
[   86.338338][ T4717] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   86.348040][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.348040][ T4715] 
[   86.362549][ T4717] BTRFS info (device loop3): using free space tree
[   86.376429][ T4715] JFS: metapage_get_blocks failed
[   86.381499][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.381499][ T4715] 
[   86.401085][ T4717] BTRFS info (device loop3): has skinny extents
[   86.435098][ T4715] JFS: metapage_get_blocks failed
[   86.440198][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.440198][ T4715] 
[   86.464954][ T4715] JFS: metapage_get_blocks failed
[   86.472671][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.472671][ T4715] 
[   86.510532][ T4748] loop1: detected capacity change from 0 to 1024
[   86.537587][ T4715] JFS: metapage_get_blocks failed
[   86.543135][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.543135][ T4715] 
[   86.558552][ T4748] EXT4-fs (loop1): Ignoring removed nobh option
[   86.568206][ T4715] JFS: metapage_get_blocks failed
[   86.573396][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.573396][ T4715] 
[   86.591464][ T4715] JFS: metapage_get_blocks failed
[   86.596910][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.596910][ T4715] 
[   86.607273][ T4715] JFS: metapage_get_blocks failed
[   86.612331][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.612331][ T4715] 
[   86.617436][ T4748] EXT4-fs (loop1): Ignoring removed bh option
[   86.623754][ T4715] JFS: metapage_get_blocks failed
[   86.634385][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.634385][ T4715] 
[   86.645080][ T4748] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   86.668899][ T4747] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[   86.684845][ T4715] JFS: metapage_get_blocks failed
[   86.690174][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.690174][ T4715] 
[   86.724852][ T4715] JFS: metapage_get_blocks failed
[   86.729977][ T4715] ERROR: (device loop0): release_metapage: write_one_page() failed
[   86.729977][ T4715] 
[   86.802279][  T275] blkno = 8ed30, nblocks = 10
[   86.807201][  T275] ERROR: (device loop0): dbUpdatePMap: blocks are outside the map
[   86.807201][  T275] 
[   86.834045][ T4748] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[   86.894386][ T4717] BTRFS info (device loop3): enabling ssd optimizations
[   87.032202][ T4740] loop2: detected capacity change from 0 to 32768
[   87.049749][ T4748] EXT4-fs error (device loop1): mb_free_blocks:1865: group 0, inode 15: block 161:freeing already freed block (bit 10); block bitmap corrupt.
[   87.212626][ T4740] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   87.472100][ T4740] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   87.624394][ T4770] loop4: detected capacity change from 0 to 32768
[   87.859660][ T4770] XFS (loop4): Mounting V5 Filesystem
[   88.009175][ T4795] device vlan0 entered promiscuous mode
[   88.121973][ T4795] team0: Port device vlan0 added
[   88.124516][ T4770] XFS (loop4): Ending clean mount
[   88.157296][ T4770] XFS (loop4): Quotacheck needed: Please wait.
[   88.241256][ T4801] team0: Port device vlan0 removed
[   88.250213][ T4770] XFS (loop4): Quotacheck: Done.
[   88.361690][ T4173] ocfs2: Unmounting device (7,2) on (node local)
[   88.505978][ T4170] XFS (loop4): Unmounting Filesystem
[   88.691343][ T4815] loop0: detected capacity change from 0 to 1024
[   88.837169][ T4815] EXT4-fs (loop0): Ignoring removed nobh option
[   88.843487][ T4815] EXT4-fs (loop0): Ignoring removed bh option
[   88.864769][ T4817] loop2: detected capacity change from 0 to 1024
[   88.900283][ T4815] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   89.031862][ T4815] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[   89.124460][ T4823] hfsplus: filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  leaving read-only.
[   89.158784][ T4806] loop1: detected capacity change from 0 to 32768
[   89.222801][ T4813] loop3: detected capacity change from 0 to 32768
[   89.235093][ T4806] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[   89.263360][ T4806] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   89.399893][ T4813] XFS (loop3): Mounting V5 Filesystem
[   89.419988][ T4815] EXT4-fs error (device loop0): mb_free_blocks:1865: group 0, inode 15: block 161:freeing already freed block (bit 10); block bitmap corrupt.
[   89.627811][ T4813] XFS (loop3): Ending clean mount
[   89.687642][ T4813] XFS (loop3): Quotacheck needed: Please wait.
[   89.710926][ T4166] ocfs2: Unmounting device (7,1) on (node local)
[   89.861359][ T4813] XFS (loop3): Quotacheck: Done.
[   89.861963][ T4837] loop2: detected capacity change from 0 to 32768
[   89.904061][ T4837] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.168 (4837)
[   89.964805][ T4206] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   89.993942][ T4837] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[   90.022276][ T4837] BTRFS info (device loop2): using free space tree
[   90.046908][ T4813] XFS (loop3): User initiated shutdown received.
[   90.054413][ T4813] XFS (loop3): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xde/0x150 (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[   90.080515][ T4837] BTRFS info (device loop2): has skinny extents
[   90.100980][ T4813] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[   90.218210][ T4175] XFS (loop3): Unmounting Filesystem
[   90.257675][ T4206] usb 1-1: Using ep0 maxpacket: 16
[   90.461144][ T4837] BTRFS info (device loop2): enabling ssd optimizations
[   90.595140][ T4206] usb 1-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[   90.604290][ T4206] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.671272][ T4206] usb 1-1: Product: syz
[   90.711861][ T4206] usb 1-1: Manufacturer: syz
[   90.721992][ T4206] usb 1-1: SerialNumber: syz
[   90.748883][ T4206] usb 1-1: config 0 descriptor??
[   90.841422][ T4206] ssu100 1-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[   90.861616][ T4888] netlink: 8 bytes leftover after parsing attributes in process `syz.3.180'.
[   91.354000][ T4877] loop4: detected capacity change from 0 to 32768
[   91.461292][ T4886] loop1: detected capacity change from 0 to 32768
[   91.528460][ T4877] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[   91.607963][ T4890] loop3: detected capacity change from 0 to 32768
[   91.654473][ T4877] (syz.4.182,4877,1):ocfs2_rename:1282 ERROR: status = -2
[   91.680080][ T4886] XFS (loop1): Mounting V5 Filesystem
[   91.697387][ T4877] (syz.4.182,4877,0):ocfs2_rename:1687 ERROR: status = -2
[   91.730890][ T4890] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[   91.758958][ T4890] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[   91.817777][ T4890] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[   91.833592][ T4886] XFS (loop1): Ending clean mount
[   91.894516][ T4894] loop2: detected capacity change from 0 to 32768
[   91.926556][ T4206] ssu100: probe of 1-1:0.0 failed with error -71
[   91.937870][ T4206] usb 1-1: USB disconnect, device number 4
[   91.983787][ T4170] ocfs2: Unmounting device (7,4) on (node local)
[   92.035963][ T4166] XFS (loop1): Unmounting Filesystem
[   92.047653][ T4894] XFS (loop2): Mounting V5 Filesystem
[   92.122470][ T4175] ocfs2: Unmounting device (7,3) on (node local)
[   92.209606][ T4894] XFS (loop2): Ending clean mount
[   92.311319][ T4894] XFS (loop2): Quotacheck needed: Please wait.
[   92.465973][ T4894] XFS (loop2): Quotacheck: Done.
[   92.512469][ T4922] netlink: 60 bytes leftover after parsing attributes in process `syz.0.193'.
[   92.539709][ T4894] XFS (loop2): User initiated shutdown received.
[   92.586033][ T4894] XFS (loop2): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0xde/0x150 (fs/xfs/xfs_fsops.c:487).  Shutting down filesystem.
[   92.614816][ T4894] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[   92.745118][ T4173] XFS (loop2): Unmounting Filesystem
[   92.792751][ T4930] loop4: detected capacity change from 0 to 512
[   92.871006][ T4927] loop3: detected capacity change from 0 to 4096
[   92.924134][ T4930] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e802c019, mo2=0002]
[   92.942544][ T4930] System zones: 0-2, 18-18, 34-35
[   92.972405][ T4930] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,discard,nombcache,,errors=continue. Quota mode: writeback.
[   92.997157][ T4927] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[   93.070754][ T4930] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.131319][ T4927] ntfs: (device loop3): read_ntfs_boot_sector(): Primary boot sector is invalid.
[   93.174774][ T4927] ntfs: (device loop3): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[   93.210571][ T4930] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #2: comm syz.4.197: corrupted inode contents
[   93.236037][ T4930] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #2: comm syz.4.197: mark_inode_dirty error
[   93.236131][ T4932] loop0: detected capacity change from 0 to 32768
[   93.254509][ T4927] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[   93.255965][ T4930] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #2: comm syz.4.197: corrupted inode contents
[   93.284955][ T4927] ntfs: (device loop3): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[   93.288313][ T4930] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.197: mark_inode_dirty error
[   93.342645][ T4936] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #2: comm syz.4.197: corrupted inode contents
[   93.354766][ T4927] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[   93.354807][ T4927] ntfs: (device loop3): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[   93.355469][ T4927] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[   93.378366][ T4936] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #2: comm syz.4.197: mark_inode_dirty error
[   93.408316][ T4932] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.195 (4932)
[   93.423000][ T4936] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #2: comm syz.4.197: corrupted inode contents
[   93.468516][ T4927] ntfs: (device loop3): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[   93.493320][ T4937] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #2: comm syz.4.197: corrupted inode contents
[   93.514796][ T4932] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[   93.533723][ T4932] BTRFS info (device loop0): using free space tree
[   93.548992][ T4937] EXT4-fs error (device loop4): ext4_append:88: inode #2: comm syz.4.197: mark_inode_dirty error
[   93.550688][ T4932] BTRFS info (device loop0): has skinny extents
[   93.569839][ T4927] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[   93.599136][ T4937] EXT4-fs error (device loop4) in ext4_append:100: Corrupt filesystem
[   93.599829][ T4927] ntfs: volume version 3.1.
[   93.678763][ T4928] loop1: detected capacity change from 0 to 32768
[   93.783807][ T4928] XFS (loop1): Mounting V5 Filesystem
[   93.784894][ T4932] BTRFS info (device loop0): enabling ssd optimizations
[   93.938865][ T4928] XFS (loop1): Ending clean mount
[   93.957812][ T4928] XFS (loop1): Quotacheck needed: Please wait.
[   94.015698][ T4928] XFS (loop1): Quotacheck: Done.
[   94.113122][ T4928] XFS (loop1): User initiated shutdown received.
[   94.139690][ T4928] XFS (loop1): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xde/0x150 (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[   94.203979][ T4928] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[   94.218364][ T4974] loop4: detected capacity change from 0 to 64
[   94.483751][ T4166] XFS (loop1): Unmounting Filesystem
[   94.735066][ T4206] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   95.036989][ T5001] loop0: detected capacity change from 0 to 4096
[   95.150802][ T4206] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   95.164795][ T5001] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[   95.196481][ T4206] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   95.305486][ T4206] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   95.306984][ T5001] ntfs3: loop0: failed to convert "c46c" to iso8859-13
[   95.324340][ T4206] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   95.345834][ T4206] usb 4-1: SerialNumber: syz
[   95.377698][ T4997] loop4: detected capacity change from 0 to 32768
[   95.637730][ T4206] usb 4-1: 0:2 : does not exist
[   95.686286][ T4206] usb 4-1: USB disconnect, device number 4
[   95.718181][ T5012] loop1: detected capacity change from 0 to 512
[   95.779273][ T5012] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   95.838761][ T4993] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   95.871134][ T5012] EXT4-fs (loop1): 1 truncate cleaned up
[   95.887347][ T5012] EXT4-fs (loop1): mounted filesystem without journal. Opts: resuid=0x0000000000000000,init_itable,minixdf,noblock_validity,,errors=continue. Quota mode: none.
[   95.955680][ T4365] udevd[4365]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   95.974257][ T5017] syz.2.214 uses obsolete (PF_INET,SOCK_PACKET)
[   96.108831][ T4993] usb 1-1: Using ep0 maxpacket: 32
[   96.228939][ T4993] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[   96.255698][ T4993] usb 1-1: config 0 has no interface number 0
[   96.454925][ T4993] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   96.479692][ T4993] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   96.497825][ T4993] usb 1-1: Product: syz
[   96.502687][ T4993] usb 1-1: Manufacturer: syz
[   96.510348][ T4993] usb 1-1: SerialNumber: syz
[   96.522007][ T4993] usb 1-1: config 0 descriptor??
[   96.566052][ T4209] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[   96.586945][ T4993] smsc95xx v2.0.0
[   96.935031][ T4209] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   97.119558][ T4209] usb 3-1: New USB device found, idVendor=22b8, idProduct=6425, bcdDevice=d3.6c
[   97.138232][ T4209] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.172845][ T4209] usb 3-1: Product: syz
[   97.186623][ T4209] usb 3-1: Manufacturer: syz
[   97.201706][ T4209] usb 3-1: SerialNumber: syz
[   97.226250][ T4209] usb 3-1: config 0 descriptor??
[   97.464910][ T4993] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[   97.508202][ T4209] usb 3-1: USB disconnect, device number 4
[   97.684851][ T4993] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[   97.709489][ T4993] smsc95xx: probe of 1-1:0.67 failed with error -71
[   97.732428][ T4993] usb 1-1: USB disconnect, device number 5
[   98.159122][ T5062] device vxcan3 entered promiscuous mode
[   98.606181][ T5074] tipc: Started in network mode
[   98.611324][ T5074] tipc: Node identity 1, cluster identity 8
[   98.634809][ T5074] tipc: Node number set to 1
[   98.807250][ T5080] loop1: detected capacity change from 0 to 4096
[   98.852068][ T5083] loop0: detected capacity change from 0 to 4096
[   98.951935][ T5083] NILFS (loop0): invalid segment: Checksum error in segment payload
[   98.990429][ T5083] NILFS (loop0): trying rollback from an earlier position
[   99.070883][ T5083] NILFS (loop0): recovery complete
[   99.105496][ T5088] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   99.330494][ T5092] netlink: 'syz.3.245': attribute type 10 has an invalid length.
[   99.352030][ T4993] Bluetooth: hci4: command 0x0405 tx timeout
[   99.383984][ T5092] 8021q: adding VLAN 0 to HW filter on device batadv0
[   99.420695][ T5092] team0: Port device batadv0 added
[   99.554377][ T4166] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[   99.624892][ T4166] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[   99.700811][ T5104] netlink: 8 bytes leftover after parsing attributes in process `syz.2.248'.
[   99.716738][ T5104] netlink: 12 bytes leftover after parsing attributes in process `syz.2.248'.
[  100.113306][ T5087] loop4: detected capacity change from 0 to 32768
[  100.203584][ T5087] ERROR: (device loop4): diAllocBit: iag inconsistent
[  100.203584][ T5087] 
[  100.260396][ T5087] ERROR: (device loop4): remounting filesystem as read-only
[  100.298266][ T5087] ialloc: diAlloc returned -5!
[  100.331292][ T5087] ERROR: (device loop4): dbAllocNext: Corrupt dmap page
[  100.331292][ T5087] 
[  100.392095][ T5119] netlink: 8 bytes leftover after parsing attributes in process `syz.2.254'.
[  100.442322][ T5119] netlink: 8 bytes leftover after parsing attributes in process `syz.2.254'.
[  100.448598][ T5112] loop1: detected capacity change from 0 to 4096
[  100.558248][ T5121] loop3: detected capacity change from 0 to 8192
[  100.608869][ T5105] loop0: detected capacity change from 0 to 32768
[  100.785934][   T26] kauditd_printk_skb: 13 callbacks suppressed
[  100.785949][   T26] audit: type=1800 audit(1737487052.319:11): pid=5112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.247" name="file1" dev="loop1" ino=30 res=0 errno=0
[  101.283257][ T5135] loop4: detected capacity change from 0 to 1024
[  101.465628][ T5135] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  101.484855][ T5135] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.564903][    T7] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  101.771302][ T5152] netlink: 8 bytes leftover after parsing attributes in process `syz.0.268'.
[  101.800943][ T5152] netlink: 'syz.0.268': attribute type 22 has an invalid length.
[  101.809801][ T5152] netlink: 4 bytes leftover after parsing attributes in process `syz.0.268'.
[  101.841390][    T7] usb 3-1: Using ep0 maxpacket: 8
[  101.953142][ T5156] device syzkaller1 entered promiscuous mode
[  101.979916][    T7] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  101.992615][    T7] usb 3-1: config 179 has no interface number 0
[  102.002391][    T7] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  102.028520][    T7] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  102.054740][    T7] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  102.086549][    T7] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  102.117467][    T7] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  102.162270][    T7] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  102.189379][    T7] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.235239][ T5137] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  102.275446][ T5164] loop0: detected capacity change from 0 to 4096
[  102.495588][ T5167] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  102.545501][    T7] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input8
[  102.614309][ T5164] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  102.694810][ T5164] Remounting filesystem read-only
[  102.724121][ T5144] loop1: detected capacity change from 0 to 32768
[  102.728221][ T4206] usb 3-1: USB disconnect, device number 5
[  102.736463][    C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  102.736513][    C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  102.776432][ T4206] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  102.841787][ T5162] loop4: detected capacity change from 0 to 32768
[  102.899629][ T4172] NILFS (loop0): discard dirty page: offset=8192, ino=6
[  102.919010][ T5162] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 scanned by syz.4.272 (5162)
[  102.925215][ T4172] NILFS (loop0): discard dirty block: blocknr=25, size=4096
[  102.949469][ T4172] NILFS (loop0): discard dirty page: offset=663552, ino=3
[  102.973872][ T4172] NILFS (loop0): discard dirty block: blocknr=34, size=4096
[  103.009402][ T5162] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  103.026714][ T5162] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  103.053874][ T5162] BTRFS info (device loop4): use zstd compression, level 3
[  103.064454][ T5162] BTRFS info (device loop4): using free space tree
[  103.079632][ T5162] BTRFS info (device loop4): has skinny extents
[  103.194761][ T4209] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  103.225857][ T5162] BTRFS info (device loop4): enabling ssd optimizations
[  103.434960][ T4209] usb 4-1: Using ep0 maxpacket: 8
[  103.714953][ T4209] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  103.747154][ T4209] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.772267][ T4209] usb 4-1: Product: syz
[  103.785656][ T4209] usb 4-1: Manufacturer: syz
[  103.807142][ T4209] usb 4-1: SerialNumber: syz
[  103.841453][ T4209] usb 4-1: config 0 descriptor??
[  103.897470][ T4209] gspca_main: se401-2.14.0 probing 047d:5003
[  103.902690][ T5196] loop4: detected capacity change from 0 to 4096
[  103.979666][ T5196] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512)
[  104.021384][ T5196] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  104.100176][ T5171] udc-core: couldn't find an available UDC or it's busy
[  104.124859][ T5171] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  104.144872][ T4370] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  104.243491][ T5206] loop4: detected capacity change from 0 to 256
[  104.405012][ T4209] gspca_se401: ExtraFeatures: 85
[  104.409995][ T4209] gspca_se401: Frame size: 0x0 1/16th janggu
[  104.423648][ T4209] gspca_se401: Frame size: 256x521 bayer
[  104.430125][ T4209] gspca_se401: Frame size: 36x1 bayer
[  104.436797][ T4209] gspca_se401: Frame size: 0x2304 bayer
[  104.555282][ T4370] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.574699][ T4370] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.595013][ T4370] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  104.624918][ T4370] usb 3-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  104.637023][ T4209] input: se401 as /devices/platform/dummy_hcd.3/usb4/4-1/input/input9
[  104.644304][ T4370] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.663252][ T4370] usb 3-1: config 0 descriptor??
[  104.903067][ T4209] usb 4-1: USB disconnect, device number 5
[  104.928840][ T5216] input: syz1 as /devices/virtual/input/input10
[  105.159278][ T5224] loop0: detected capacity change from 0 to 512
[  105.175832][ T4370] acrux 0003:1A34:0802.0004: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.2-1/input0
[  105.196221][ T4370] acrux 0003:1A34:0802.0004: no inputs found
[  105.202497][ T4370] acrux 0003:1A34:0802.0004: Failed to enable force feedback support, error: -19
[  105.289358][ T5224] EXT4-fs (loop0): Mount option "dioread_lock" incompatible with ext2
[  105.418479][ T4379] usb 3-1: USB disconnect, device number 6
[  105.514204][   T26] audit: type=1326 audit(1737487057.039:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5226 comm="syz.3.293" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc771e3cd29 code=0x0
[  105.961489][  T154] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.109109][  T154] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.222834][  T154] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.291400][ T5241] input: syz0 as /devices/virtual/input/input13
[  106.329610][  T154] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.792170][  T154] tipc: Left network mode
[  106.824504][ T5234] loop4: detected capacity change from 0 to 32768
[  107.001100][ T5253] loop1: detected capacity change from 0 to 4096
[  107.047787][ T5234] XFS (loop4): Mounting V5 Filesystem
[  107.074132][ T5253] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  107.250085][ T5234] XFS (loop4): Ending clean mount
[  107.280984][ T5234] XFS (loop4): Quotacheck needed: Please wait.
[  107.416125][ T5242] chnl_net:caif_netlink_parms(): no params data found
[  107.430022][ T5234] XFS (loop4): Quotacheck: Done.
[  107.488686][   T26] audit: type=1800 audit(1737487059.019:13): pid=5234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.297" name="file2" dev="loop4" ino=9287 res=0 errno=0
[  107.508505][ T5253] ntfs: (device loop1): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  107.519723][ T5269] loop3: detected capacity change from 0 to 512
[  107.592442][ T5253] ntfs: (device loop1): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[  107.683196][ T5269] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e802c019, mo2=0002]
[  107.695053][ T5269] System zones: 0-2, 18-18, 34-35
[  107.704504][ T5253] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  107.729840][ T4170] XFS (loop4): Unmounting Filesystem
[  107.735389][ T5269] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,discard,nombcache,,errors=continue. Quota mode: writeback.
[  107.825225][ T5269] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.835807][ T5253] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  107.890341][ T5269] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #2: comm syz.3.306: corrupted inode contents
[  107.917001][ T5242] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.918624][ T5269] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #2: comm syz.3.306: mark_inode_dirty error
[  107.924325][ T5242] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.944939][ T5269] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #2: comm syz.3.306: corrupted inode contents
[  107.963783][ T5253] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  107.993913][ T5242] device bridge_slave_0 entered promiscuous mode
[  108.007411][ T5269] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.306: mark_inode_dirty error
[  108.034520][ T5253] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[  108.045496][ T5242] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.063770][ T5287] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #2: comm syz.3.306: corrupted inode contents
[  108.109419][ T5242] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.110060][ T5287] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #2: comm syz.3.306: mark_inode_dirty error
[  108.132104][ T5242] device bridge_slave_1 entered promiscuous mode
[  108.132940][ T5253] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  108.143281][ T5287] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #2: comm syz.3.306: corrupted inode contents
[  108.165051][ T5253] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  108.186036][ T5289] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #2: comm syz.3.306: corrupted inode contents
[  108.204209][ T5253] ntfs: volume version 3.1.
[  108.225044][ T5289] EXT4-fs error (device loop3): ext4_append:88: inode #2: comm syz.3.306: mark_inode_dirty error
[  108.267697][ T5289] EXT4-fs error (device loop3) in ext4_append:100: Corrupt filesystem
[  108.365781][ T5242] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  108.419935][ T5242] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  108.559511][ T4370] Bluetooth: hci3: command 0x0409 tx timeout
[  108.573072][ T5242] team0: Port device team_slave_0 added
[  108.603169][ T5242] team0: Port device team_slave_1 added
[  108.705072][ T4994] Bluetooth: hci0: command 0x0c1a tx timeout
[  108.885564][ T5242] batman_adv: batadv0: Adding interface: batadv_slave_0
[  108.897577][ T5242] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.015823][ T5242] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.068611][ T5242] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.085972][ T5242] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.210144][ T5242] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.250853][ T5320] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  109.306934][ T5321] loop1: detected capacity change from 0 to 64
[  109.506643][ T5242] device hsr_slave_0 entered promiscuous mode
[  109.525355][ T5242] device hsr_slave_1 entered promiscuous mode
[  109.555418][ T5242] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  109.563365][ T5242] Cannot create hsr debugfs directory
[  109.720964][  T154] device hsr_slave_0 left promiscuous mode
[  109.756237][  T154] device hsr_slave_1 left promiscuous mode
[  109.809137][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.838024][  T154] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.888948][ T5339] loop2: detected capacity change from 0 to 512
[  109.890876][  T154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  109.903039][  T154] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.949851][  T154] device bridge_slave_1 left promiscuous mode
[  109.971461][  T154] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.046374][  T154] device bridge_slave_0 left promiscuous mode
[  110.052617][  T154] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.063275][ T5339] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e802c019, mo2=0002]
[  110.084888][ T5339] System zones: 0-2, 18-18, 34-35
[  110.135082][ T5339] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,discard,nombcache,,errors=continue. Quota mode: writeback.
[  110.224880][ T5339] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.297166][ T5339] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #2: comm syz.2.319: corrupted inode contents
[  110.310988][ T5339] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #2: comm syz.2.319: mark_inode_dirty error
[  110.341567][  T154] device veth1_macvtap left promiscuous mode
[  110.365178][ T5339] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #2: comm syz.2.319: corrupted inode contents
[  110.379407][ T5346] loop4: detected capacity change from 0 to 4096
[  110.399108][  T154] device veth0_macvtap left promiscuous mode
[  110.409284][  T154] device veth1_vlan left promiscuous mode
[  110.416622][  T154] device veth0_vlan left promiscuous mode
[  110.450742][ T5339] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.319: mark_inode_dirty error
[  110.496135][ T5349] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #2: comm syz.2.319: corrupted inode contents
[  110.555790][ T5349] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #2: comm syz.2.319: mark_inode_dirty error
[  110.560168][ T5346] ntfs: volume version 3.1.
[  110.595629][ T5349] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #2: comm syz.2.319: corrupted inode contents
[  110.624834][ T4993] Bluetooth: hci3: command 0x041b tx timeout
[  110.676263][ T5350] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #2: comm syz.2.319: corrupted inode contents
[  110.734742][ T5350] EXT4-fs error (device loop2): ext4_append:88: inode #2: comm syz.2.319: mark_inode_dirty error
[  110.753421][ T5350] EXT4-fs error (device loop2) in ext4_append:100: Corrupt filesystem
[  110.805419][ T4209] Bluetooth: hci0: command 0x080f tx timeout
[  111.143146][ T5358] netlink: 12 bytes leftover after parsing attributes in process `syz.2.325'.
[  111.166792][  T154] team0 (unregistering): Port device team_slave_1 removed
[  111.201386][  T154] team0 (unregistering): Port device team_slave_0 removed
[  111.225135][  T154] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  111.256726][  T154] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  111.408980][ T5354] loop4: detected capacity change from 0 to 32768
[  111.423209][  T154] bond0 (unregistering): Released all slaves
[  111.505766][ T5354] XFS (loop4): Mounting V5 Filesystem
[  111.934161][ T5372] loop1: detected capacity change from 0 to 32768
[  112.000580][ T5379] Cannot find del_set index 1 as target
[  112.058692][ T5372] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  112.093441][ T5372] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #32 has an invalid fs_generation of #3909091328
[  112.111517][ T5372] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  112.121449][ T5372] OCFS2: File system is now read-only.
[  112.127014][ T5372] (syz.1.329,5372,0):ocfs2_search_chain:1761 ERROR: status = -30
[  112.135380][ T5372] (syz.1.329,5372,0):ocfs2_search_chain:1871 ERROR: status = -30
[  112.143133][ T5372] (syz.1.329,5372,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[  112.151687][ T5372] (syz.1.329,5372,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[  112.160150][ T5372] (syz.1.329,5372,0):__ocfs2_claim_clusters:2355 ERROR: status = -30
[  112.168347][ T5372] (syz.1.329,5372,0):__ocfs2_claim_clusters:2363 ERROR: status = -30
[  112.176539][ T5372] (syz.1.329,5372,0):ocfs2_local_alloc_new_window:1203 ERROR: status = -30
[  112.185342][ T5372] (syz.1.329,5372,0):ocfs2_local_alloc_new_window:1228 ERROR: status = -30
[  112.193966][ T5372] (syz.1.329,5372,0):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30
[  112.203013][ T5372] (syz.1.329,5372,0):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30
[  112.212487][ T5372] (syz.1.329,5372,0):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30
[  112.221273][ T5372] (syz.1.329,5372,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30
[  112.230765][ T5372] (syz.1.329,5372,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30
[  112.239947][ T5372] (syz.1.329,5372,0):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30
[  112.249068][ T5372] (syz.1.329,5372,0):ocfs2_symlink:1911 ERROR: status = -30
[  112.256763][ T5372] (syz.1.329,5372,0):ocfs2_symlink:2065 ERROR: status = -30
[  112.261627][ T5242] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  112.387571][ T5242] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  112.406809][ T5354] XFS (loop4): Ending clean mount
[  112.426587][ T4166] ocfs2: Unmounting device (7,1) on (node local)
[  112.449845][ T5391] loop3: detected capacity change from 0 to 2048
[  112.476960][ T5242] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  112.546801][ T5242] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  112.672352][ T5391] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  112.706052][ T4209] Bluetooth: hci3: command 0x040f tx timeout
[  112.765290][ T5407] device syzkaller1 entered promiscuous mode
[  112.871773][ T4170] XFS (loop4): Unmounting Filesystem
[  113.112200][ T5242] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.233533][ T5242] 8021q: adding VLAN 0 to HW filter on device team0
[  113.273916][ T5418] loop3: detected capacity change from 0 to 32768
[  113.322902][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.335538][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.370027][ T5418] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  113.483310][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.514255][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.539290][ T4175] ocfs2: Unmounting device (7,3) on (node local)
[  113.544611][ T4832] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.552930][ T4832] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.585297][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.684705][ T4993] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  113.780538][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.807292][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.860654][ T4832] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.867897][ T4832] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.886165][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  113.911556][ T4832] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  113.934861][ T4993] usb 2-1: Using ep0 maxpacket: 16
[  113.946673][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  113.964105][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.046346][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  114.055013][ T4993] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.077116][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.092053][ T4993] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.118230][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.140939][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.150804][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.206836][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.221577][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.234405][ T5242] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  114.255216][ T4993] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  114.283766][ T4993] usb 2-1: New USB device strings: Mfr=236, Product=255, SerialNumber=0
[  114.352364][ T4993] usb 2-1: Product: syz
[  114.371659][ T4993] usb 2-1: Manufacturer: syz
[  114.405599][ T4993] usb 2-1: config 0 descriptor??
[  114.714114][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  114.750798][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  114.785236][ T4992] Bluetooth: hci3: command 0x0419 tx timeout
[  114.800771][ T5242] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.918656][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  114.937994][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  114.977893][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  115.024929][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  115.052581][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  115.072881][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  115.103279][ T4993] kovaplus 0003:1E7D:2D50.0005: unknown main item tag 0x0
[  115.147497][ T4993] kovaplus 0003:1E7D:2D50.0005: hidraw0: USB HID v0.07 Device [syz syz] on usb-dummy_hcd.1-1/input0
[  115.289987][ T4212] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[  115.468005][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  115.482564][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  115.534826][ T4993] kovaplus 0003:1E7D:2D50.0005: couldn't init struct kovaplus_device
[  115.542984][ T4993] kovaplus 0003:1E7D:2D50.0005: couldn't install mouse
[  115.576609][ T4993] kovaplus: probe of 0003:1E7D:2D50.0005 failed with error -71
[  115.591484][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  115.609140][ T4993] usb 2-1: USB disconnect, device number 2
[  115.610275][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  115.668926][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  115.695016][ T4212] usb 3-1: config 4 has an invalid interface number: 231 but max is 0
[  115.716314][ T4212] usb 3-1: config 4 has no interface number 0
[  115.725847][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  115.782234][ T5242] device veth0_vlan entered promiscuous mode
[  115.801591][ T5242] device veth1_vlan entered promiscuous mode
[  115.886168][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  115.886795][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  115.893473][ T5242] device veth0_macvtap entered promiscuous mode
[  115.912336][ T5242] device veth1_macvtap entered promiscuous mode
[  115.915305][ T4212] usb 3-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  115.915338][ T4212] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.915361][ T4212] usb 3-1: Product: syz
[  115.915378][ T4212] usb 3-1: Manufacturer: syz
[  115.915394][ T4212] usb 3-1: SerialNumber: syz
[  115.955170][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.955194][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.955206][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.955221][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.955233][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.955247][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.955258][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.955274][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.963503][ T5242] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.100812][ T4212] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  116.133003][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  116.142444][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  116.165731][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  116.192139][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  116.214962][ T4212] vp7045: USB control message 'out' went wrong.
[  116.221875][ T4212] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  116.256214][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.284771][ T4212] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  116.294605][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.328694][ T4212] usb 3-1: USB disconnect, device number 7
[  116.348062][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.405946][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.440512][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.463144][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.501173][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.528544][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.554057][ T5242] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.581378][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  116.605564][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  116.691948][ T5242] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.712052][ T5242] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.732257][ T5242] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.763293][ T5242] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.043410][ T4277] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.060090][ T5535] loop2: detected capacity change from 0 to 512
[  117.091598][ T4277] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.151359][  T374] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.156646][ T1222] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  117.178366][ T5494] loop4: detected capacity change from 0 to 32768
[  117.207977][  T374] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.212342][ T5542] loop3: detected capacity change from 0 to 512
[  117.225335][ T5535] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  117.237834][ T5535] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.265710][ T4209] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  117.266379][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  117.287493][   T26] kauditd_printk_skb: 39 callbacks suppressed
[  117.287508][   T26] audit: type=1800 audit(1737487068.819:16): pid=5535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.366" name="bus" dev="loop2" ino=18 res=0 errno=0
[  117.325185][   T26] audit: type=1804 audit(1737487068.849:17): pid=5535 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.366" name="/newroot/81/file0/bus" dev="loop2" ino=18 res=1 errno=0
[  117.353050][ T5542] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000800,grpquota,minixdf,,errors=continue. Quota mode: writeback.
[  117.369929][ T5542] ext4 filesystem being mounted at /77/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  117.534882][ T4209] usb 2-1: Using ep0 maxpacket: 32
[  117.562187][ T5494] XFS (loop4): Mounting V5 Filesystem
[  117.654970][ T4209] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.686880][ T5494] XFS (loop4): Ending clean mount
[  117.707099][ T4209] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.765016][ T4209] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  117.834839][ T4209] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.883781][ T4209] usb 2-1: config 0 descriptor??
[  117.911324][ T5494] XFS (loop4): Quotacheck needed: Please wait.
[  117.943019][ T4209] hub 2-1:0.0: USB hub found
[  118.048622][ T5494] XFS (loop4): Quotacheck: Done.
[  118.060243][ T5571] loop3: detected capacity change from 0 to 1024
[  118.098699][ T5573] loop2: detected capacity change from 0 to 128
[  118.129043][ T4170] XFS (loop4): Unmounting Filesystem
[  118.152403][ T5573] qnx6: superblock #1 checksum error
[  118.154940][ T4209] hub 2-1:0.0: 1 port detected
[  118.198531][ T5571] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  118.360266][ T5571] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  118.449273][ T5561] loop5: detected capacity change from 0 to 32768
[  118.485729][ T4209] hub 2-1:0.0: hub_hub_status failed (err = -71)
[  118.492516][ T4209] hub 2-1:0.0: config failed, can't get hub status (err -71)
[  118.532615][ T5561] XFS (loop5): Mounting V5 Filesystem
[  118.631669][ T5561] XFS (loop5): Ending clean mount
[  118.634990][ T4209] usbhid 2-1:0.0: can't add hid device: -71
[  118.642973][ T4209] usbhid: probe of 2-1:0.0 failed with error -71
[  118.704123][ T5561] XFS (loop5): Quotacheck needed: Please wait.
[  118.727867][ T4209] usb 2-1: USB disconnect, device number 3
[  118.928212][ T5561] XFS (loop5): Quotacheck: Done.
[  119.028226][ T5561] XFS (loop5): User initiated shutdown received.
[  119.054815][ T5561] XFS (loop5): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xde/0x150 (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[  119.135120][ T5561] XFS (loop5): Please unmount the filesystem and rectify the problem(s)
[  119.222196][ T5242] XFS (loop5): Unmounting Filesystem
[  119.572144][ T5621] loop4: detected capacity change from 0 to 24
[  119.683323][ T5594] loop2: detected capacity change from 0 to 32768
[  119.817892][ T5599] loop3: detected capacity change from 0 to 32768
[  119.911535][ T5599] JBD2: Ignoring recovery information on journal
[  119.933049][ T5631] loop4: detected capacity change from 0 to 128
[  120.104110][ T5599] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  120.148200][ T5638] loop2: detected capacity change from 0 to 64
[  120.282487][   T26] audit: type=1800 audit(1737487071.809:18): pid=5599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.374" name="file1" dev="loop3" ino=16946 res=0 errno=0
[  120.303105][    C1] vkms_vblank_simulate: vblank timer overrun
[  120.370923][ T5650] loop4: detected capacity change from 0 to 8
[  120.445107][ T4175] ocfs2: Unmounting device (7,3) on (node local)
[  120.847723][ T5665] loop2: detected capacity change from 0 to 2048
[  121.061613][ T5665] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  121.236307][ T4993] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  121.500685][ T5663] loop4: detected capacity change from 0 to 32768
[  121.602464][ T5696] loop2: detected capacity change from 0 to 64
[  121.698287][ T5653] loop5: detected capacity change from 0 to 32768
[  121.724916][ T5663] XFS (loop4): Mounting V5 Filesystem
[  121.814090][ T5653] XFS (loop5): Mounting V5 Filesystem
[  121.972372][ T5663] XFS (loop4): Ending clean mount
[  122.051010][ T5653] XFS (loop5): Ending clean mount
[  122.079327][ T4170] XFS (loop4): Unmounting Filesystem
[  122.090703][ T5653] XFS (loop5): Quotacheck needed: Please wait.
[  122.288354][ T5653] XFS (loop5): Quotacheck: Done.
[  122.301563][   T26] audit: type=1800 audit(1737487073.829:19): pid=5653 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.390" name="file1" dev="loop5" ino=9286 res=0 errno=0
[  122.414504][ T5242] XFS (loop5): Unmounting Filesystem
[  122.989640][ T5722] loop3: detected capacity change from 0 to 32768
[  123.241342][ T5722] XFS (loop3): Mounting V5 Filesystem
[  123.253776][ T4179] Bluetooth: hci5: sending frame failed (-49)
[  123.406395][ T4993] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  123.442672][ T5722] XFS (loop3): Ending clean mount
[  123.592937][ T4175] XFS (loop3): Unmounting Filesystem
[  123.672803][ T4993] usb 3-1: Using ep0 maxpacket: 8
[  123.870678][ T5774] loop4: detected capacity change from 0 to 32768
[  123.964832][ T4993] usb 3-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  123.974129][ T4993] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  123.990005][ T5774] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.421 (5774)
[  124.013034][ T4993] usb 3-1: Product: syz
[  124.036285][ T4993] usb 3-1: Manufacturer: syz
[  124.040929][ T4993] usb 3-1: SerialNumber: syz
[  124.073290][ T4993] usb 3-1: config 0 descriptor??
[  124.081524][ T5774] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  124.115361][ T5774] BTRFS info (device loop4): setting nodatacow, compression disabled
[  124.130107][ T5774] BTRFS info (device loop4): force clearing of disk cache
[  124.139215][ T4993] gspca_main: se401-2.14.0 probing 047d:5003
[  124.171678][ T5774] BTRFS info (device loop4): setting datacow
[  124.181820][ T5774] BTRFS info (device loop4): doing ref verification
[  124.195435][ T5774] BTRFS info (device loop4): disabling free space tree
[  124.201242][ T5771] loop1: detected capacity change from 0 to 40427
[  124.219847][ T5774] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  124.240047][ T5774] BTRFS info (device loop4): use zstd compression, level 3
[  124.264036][ T5789] loop3: detected capacity change from 0 to 1024
[  124.271166][ T5774] BTRFS info (device loop4): enabling ssd optimizations
[  124.282042][ T5771] F2FS-fs (loop1): Small segment_count (9 < 1 * 24)
[  124.282594][ T5774] BTRFS info (device loop4): using spread ssd allocation scheme
[  124.305157][ T5771] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  124.323264][ T5774] BTRFS info (device loop4): not using ssd optimizations
[  124.332484][ T5774] BTRFS info (device loop4): not using spread ssd allocation scheme
[  124.341400][ T5774] BTRFS info (device loop4): has skinny extents
[  124.352688][ T5789] EXT4-fs (loop3): Ignoring removed nobh option
[  124.361691][ T5789] EXT4-fs (loop3): Ignoring removed bh option
[  124.369561][ T5789] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  124.370310][ T5771] F2FS-fs (loop1): Found nat_bits in checkpoint
[  124.442865][ T5789] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[  124.497407][ T5771] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  124.514011][ T5771] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  124.546054][ T4993] gspca_se401: Frame size: 0x0 1/16th janggu
[  124.552424][ T4993] gspca_se401: Frame size: 0x0 1/16th janggu
[  124.566125][ T4993] gspca_se401: Frame size: 0x0 1/16th janggu
[  124.572249][ T4993] gspca_se401: Frame size: 17x0 bayer
[  124.582383][ T4993] gspca_se401: Frame size: 0x0 1/16th janggu
[  124.591022][ T4993] gspca_se401: Frame size: 0x0 1/16th janggu
[  124.598550][ T4993] gspca_se401: Frame size: 0x0 1/16th janggu
[  124.605655][ T4993] gspca_se401: Frame size: 0x2 bayer
[  124.620070][ T4166] attempt to access beyond end of device
[  124.620070][ T4166] loop1: rw=2049, want=45104, limit=40427
[  124.622376][ T5774] BTRFS info (device loop4): clearing free space tree
[  124.648191][ T5774] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  124.668078][ T5774] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  124.756947][ T4993] input: se401 as /devices/platform/dummy_hcd.2/usb3/3-1/input/input14
[  124.799326][ T5814] IPVS: sync thread started: state = BACKUP, mcast_ifn = geneve0, syncid = 2, id = 0
[  124.814483][ T4993] usb 3-1: USB disconnect, device number 8
[  125.402165][ T5827] loop2: detected capacity change from 0 to 164
[  125.530112][ T5827] rock: directory entry would overflow storage
[  125.544356][ T4381] Bluetooth: hci5: command 0x1003 tx timeout
[  125.561350][ T4169] Bluetooth: hci5: sending frame failed (-49)
[  125.579787][ T5827] rock: sig=0x66, size=4, remaining=3
[  125.611263][ T5827] rock: directory entry would overflow storage
[  125.644945][ T5827] rock: sig=0x66, size=4, remaining=3
[  125.731251][ T5838] loop4: detected capacity change from 0 to 512
[  125.831921][ T5838] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodelalloc,grpid,auto_da_alloc,,errors=continue. Quota mode: writeback.
[  125.851741][ T5838] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.918967][ T5848] loop1: detected capacity change from 0 to 2048
[  125.959226][ T5848] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  126.042220][ T5853] device ipvlan0 entered promiscuous mode
[  126.049573][ T5853] device ipvlan0 left promiscuous mode
[  126.144922][ T4992] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  126.308516][ T5863] loop1: detected capacity change from 0 to 1024
[  126.389583][ T5863] EXT4-fs (loop1): inline encryption not supported
[  126.398465][ T5863] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  126.406276][ T5863] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  126.434556][ T5863] EXT4-fs (loop1): mounted filesystem without journal. Opts: abort,user_xattr,inlinecrypt,i_version,dioread_nolock,journal_ioprio=0x0000000000000003,min_batch_time=0x0000000000000000,nolazytime,nomblk_io_submit,,errors=continue. Quota mode: none.
[  126.464906][ T4209] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  126.534968][ T4992] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  126.545446][ T4992] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 41280, setting to 1024
[  126.561404][ T4992] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  126.573021][ T5868] loop3: detected capacity change from 0 to 256
[  126.660463][ T5868] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  126.705205][ T5868] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  126.725203][ T4992] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  126.740502][ T4992] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.765963][ T5868] exFAT-fs (loop3): error, invalid access to FAT free cluster (entry 0x00000006)
[  126.766265][ T5870] loop1: detected capacity change from 0 to 512
[  126.784189][ T4992] usb 5-1: Product: syz
[  126.789451][ T4992] usb 5-1: Manufacturer: syz
[  126.794092][ T4992] usb 5-1: SerialNumber: syz
[  126.796427][ T5868] exFAT-fs (loop3): Filesystem has been set read-only
[  126.815431][ T4992] usb 5-1: config 0 descriptor??
[  126.824985][ T4209] usb 3-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  126.834066][ T4209] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.842590][ T5838] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  126.854352][ T5838] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  126.867057][ T4209] usb 3-1: config 0 descriptor??
[  126.881676][ T5870] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2219: inode #15: comm syz.1.447: corrupted in-inode xattr
[  126.894205][ T5870] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.447: couldn't read orphan inode 15 (err -117)
[  126.983196][ T5870] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  127.059749][ T5870] EXT4-fs (loop1): shut down requested (2)
[  127.071692][ T5878] netlink: 44 bytes leftover after parsing attributes in process `syz.3.450'.
[  127.080931][ T5878] netlink: 'syz.3.450': attribute type 1 has an invalid length.
[  127.089544][ T5878] netlink: 24 bytes leftover after parsing attributes in process `syz.3.450'.
[  127.101167][ T5878] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.121915][ T5838] EXT4-fs error (device loop4): ext4_get_first_dir_block:3605: inode #12: block 32: comm syz.4.436: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  127.131034][ T5878] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.154190][ T5838] EXT4-fs error (device loop4): ext4_get_first_dir_block:3608: inode #12: comm syz.4.436: directory missing '.'
[  127.185323][ T4992] dm9601: probe of 5-1:0.0 failed with error -71
[  127.210098][ T4992] usb 5-1: USB disconnect, device number 5
[  127.486462][ T5895] loop1: detected capacity change from 0 to 1024
[  127.579112][ T5895] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  127.588106][ T4379] Bluetooth: hci5: command 0x1001 tx timeout
[  127.594252][ T4169] Bluetooth: hci5: sending frame failed (-49)
[  127.631280][ T5895] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,barrier,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,noquota,nogrpid,noauto_da_alloc,mblk_io_submit,,errors=continue. Quota mode: none.
[  127.861049][ T5902] loop4: detected capacity change from 0 to 4096
[  128.028761][ T4209] pegasus: probe of 3-1:0.0 failed with error -71
[  128.047680][ T4209] usb 3-1: USB disconnect, device number 9
[  128.066240][   T26] audit: type=1326 audit(1737487079.589:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.127924][   T26] audit: type=1326 audit(1737487079.589:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.151346][   T26] audit: type=1326 audit(1737487079.599:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.173432][    C0] vkms_vblank_simulate: vblank timer overrun
[  128.199216][   T26] audit: type=1326 audit(1737487079.599:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.221309][    C0] vkms_vblank_simulate: vblank timer overrun
[  128.283185][   T26] audit: type=1326 audit(1737487079.599:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.338390][   T26] audit: type=1326 audit(1737487079.599:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.393289][   T26] audit: type=1326 audit(1737487079.599:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.416652][   T26] audit: type=1326 audit(1737487079.599:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.439563][   T26] audit: type=1326 audit(1737487079.599:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.462437][   T26] audit: type=1326 audit(1737487079.599:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5880 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc771e3cd29 code=0x7fc00000
[  128.630541][ T5908] loop3: detected capacity change from 0 to 32768
[  128.767358][ T5908] XFS (loop3): Mounting V5 Filesystem
[  128.841622][ T5908] XFS (loop3): Ending clean mount
[  128.889009][ T5935] input: syz0 as /devices/virtual/input/input16
[  128.993754][ T4175] XFS (loop3): Unmounting Filesystem
[  129.024763][ T4379] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  129.170563][ T5943] program syz.1.473 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.382320][ T5947] loop1: detected capacity change from 0 to 256
[  129.454969][ T4379] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.475799][ T5947] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  129.485531][ T4379] usb 3-1: config 0 has no interfaces?
[  129.591994][ T5941] loop4: detected capacity change from 0 to 32768
[  129.670226][ T4209] Bluetooth: hci5: command 0x1009 tx timeout
[  129.675030][ T4379] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  129.693571][ T5953] loop1: detected capacity change from 0 to 128
[  129.695175][ T5941] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.472 (5941)
[  129.726103][ T4379] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.734331][ T4379] usb 3-1: Product: syz
[  129.753249][ T5953] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  129.771412][ T4379] usb 3-1: Manufacturer: syz
[  129.784683][ T4379] usb 3-1: SerialNumber: syz
[  129.808761][ T4379] usb 3-1: config 0 descriptor??
[  129.857992][ T5941] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  129.873660][ T5941] BTRFS info (device loop4): using free space tree
[  129.882868][ T5941] BTRFS info (device loop4): has skinny extents
[  130.041911][ T5949] loop3: detected capacity change from 0 to 32768
[  130.093920][ T5941] BTRFS info (device loop4): enabling ssd optimizations
[  130.121456][ T5941] BTRFS error (device loop4): balance: invalid convert data profile raid10
[  130.236309][ T4994] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  130.331749][ T4370] usb 3-1: USB disconnect, device number 10
[  130.490750][ T4994] usb 2-1: Using ep0 maxpacket: 8
[  130.655975][ T5983] loop4: detected capacity change from 0 to 1024
[  130.728113][ T4832] hfsplus: b-tree write err: -5, ino 4
[  130.761873][ T5985] loop3: detected capacity change from 0 to 8192
[  130.779099][ T4994] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  130.789466][ T4994] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.820893][ T5985] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  130.841617][ T4994] usb 2-1: Product: syz
[  130.865043][ T4994] usb 2-1: Manufacturer: syz
[  130.869679][ T4994] usb 2-1: SerialNumber: syz
[  130.886434][ T5985] REISERFS (device loop3): using ordered data mode
[  130.938954][ T4994] usb 2-1: config 0 descriptor??
[  130.944109][ T5985] reiserfs: using flush barriers
[  130.999441][ T5985] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  131.083379][ T5985] REISERFS (device loop3): checking transaction log (loop3)
[  131.120057][ T5985] REISERFS (device loop3): Using r5 hash to sort names
[  131.127743][ T5985] REISERFS (device loop3): using 3.5.x disk format
[  131.145379][ T5985] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  131.198661][ T5987] loop4: detected capacity change from 0 to 32768
[  131.201152][ T4994] usb 2-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[  131.269851][ T5987] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.484 (5987)
[  131.303569][ T5987] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  131.355814][ T5987] BTRFS info (device loop4): setting nodatacow, compression disabled
[  131.378169][ T5987] BTRFS info (device loop4): force clearing of disk cache
[  131.409585][ T5987] BTRFS info (device loop4): enabling ssd optimizations
[  131.417023][ T5987] BTRFS info (device loop4): using spread ssd allocation scheme
[  131.427776][ T5987] BTRFS info (device loop4): doing ref verification
[  131.434446][ T5987] BTRFS info (device loop4): disabling free space tree
[  131.441942][ T5987] BTRFS info (device loop4): not using ssd optimizations
[  131.452177][ T5987] BTRFS info (device loop4): not using spread ssd allocation scheme
[  131.472703][ T5987] BTRFS info (device loop4): has skinny extents
[  131.721953][ T5987] BTRFS info (device loop4): clearing free space tree
[  131.739570][ T5987] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  131.752686][ T5987] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  132.061551][ T5996] loop2: detected capacity change from 0 to 32768
[  132.081264][ T4994] usb write operation failed. (-71)
[  132.119272][ T4994] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  132.132957][ T4994] dvbdev: DVB: registering new adapter (Terratec H7)
[  132.140659][ T4994] usb 2-1: media controller created
[  132.168931][ T4994] usb read operation failed. (-71)
[  132.196782][ T4994] usb write operation failed. (-71)
[  132.240615][ T5996] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  132.251827][ T4994] dvb_usb_az6007: probe of 2-1:0.0 failed with error -5
[  132.294458][ T4994] usb 2-1: USB disconnect, device number 4
[  132.301856][ T5996] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  132.470553][ T5996] gfs2: fsid=syz:syz.0: journal 0 mapped with 20 extents in 0ms
[  132.535166][ T4986] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  132.542379][ T4986] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  132.716763][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.723265][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  132.787024][ T4986] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 244ms
[  132.816260][ T4986] gfs2: fsid=syz:syz.0: jid=0: Done
[  132.823626][ T5996] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  132.961342][ T6062] capability: warning: `syz.1.505' uses 32-bit capabilities (legacy support in use)
[  133.135013][ T4369] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  133.176915][ T6067] loop1: detected capacity change from 0 to 64
[  133.425989][ T6060] loop4: detected capacity change from 0 to 32768
[  133.585034][ T4369] usb 4-1: unable to get BOS descriptor or descriptor too short
[  133.665384][ T4369] usb 4-1: not running at top speed; connect to a high speed hub
[  133.745583][ T4369] usb 4-1: config 0 has an invalid interface number: 93 but max is 0
[  133.754250][ T4369] usb 4-1: config 0 has no interface number 0
[  133.784430][ T4369] usb 4-1: config 0 interface 93 has no altsetting 0
[  133.918191][    T7] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  134.005091][ T4369] usb 4-1: New USB device found, idVendor=2040, idProduct=7211, bcdDevice=5e.2b
[  134.019444][ T4369] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.037826][ T4369] usb 4-1: Product: syz
[  134.042027][ T4369] usb 4-1: Manufacturer: syz
[  134.065038][ T4369] usb 4-1: SerialNumber: syz
[  134.105512][ T4369] usb 4-1: config 0 descriptor??
[  134.156574][ T6072] loop2: detected capacity change from 0 to 32768
[  134.188550][ T4986] usb 2-1: new low-speed USB device number 5 using dummy_hcd
[  134.204756][    T7] usb 6-1: Using ep0 maxpacket: 32
[  134.233174][ T6072] XFS (loop2): Mounting V5 Filesystem
[  134.295202][ T6072] XFS (loop2): Ending clean mount
[  134.399109][ T4369] usb 4-1: cannot find UAC_HEADER
[  134.422860][ T4369] snd-usb-audio: probe of 4-1:0.93 failed with error -22
[  134.441826][ T4369] usb 4-1: USB disconnect, device number 6
[  134.464302][ T4173] XFS (loop2): Unmounting Filesystem
[  134.525122][    T7] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=4a.83
[  134.541137][    T7] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.567021][    T7] usb 6-1: Product: syz
[  134.571230][    T7] usb 6-1: Manufacturer: syz
[  134.582419][    T7] usb 6-1: SerialNumber: syz
[  134.585167][ T4986] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  134.590565][    T7] usb 6-1: config 0 descriptor??
[  134.595176][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  134.625218][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  134.641152][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  134.658918][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  134.683270][ T4365] udevd[4365]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.93/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  134.749159][ T6093] loop4: detected capacity change from 0 to 40427
[  134.754989][ T4986] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  134.763020][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  134.794737][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  134.804776][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  134.829642][ T6093] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  134.843436][ T6093] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  134.843623][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  134.854908][    T7] snd-usb-6fire 6-1:0.0: unknown device firmware state received from device:
[  134.884060][    T7] 00 00 00 00 00 00 00 00 
[  134.891601][    T7] snd-usb-6fire: probe of 6-1:0.0 failed with error -5
[  134.906729][ T6093] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  134.945116][ T4986] usb 2-1: config 168 descriptor has 1 excess byte, ignoring
[  134.953937][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  134.995050][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  135.033603][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  135.064942][ T4986] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  135.073084][    T7] usb 6-1: USB disconnect, device number 2
[  135.130775][ T6093] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  135.144765][ T6093] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  135.281898][ T6132] netlink: 60 bytes leftover after parsing attributes in process `syz.2.501'.
[  135.305695][ T4170] attempt to access beyond end of device
[  135.305695][ T4170] loop4: rw=2049, want=45104, limit=40427
[  135.334873][ T4986] usb 2-1: string descriptor 0 read error: -22
[  135.341231][ T4986] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  135.368879][ T4986] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.451511][ T4986] adutux 2-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  135.683674][ T6088] usb 2-1: Couldn't submit interrupt_out_urb -90
[  135.721886][ T4369] usb 2-1: USB disconnect, device number 5
[  135.887816][ T6125] loop3: detected capacity change from 0 to 32768
[  135.934885][ T4986] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  136.144219][ T6125] XFS (loop3): Mounting V5 Filesystem
[  136.174923][ T4986] usb 6-1: Using ep0 maxpacket: 16
[  136.239304][ T6156] loop4: detected capacity change from 0 to 32768
[  136.333370][ T6156] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  136.347402][ T6156] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  136.396819][ T6125] XFS (loop3): Ending clean mount
[  136.404577][ T6125] XFS (loop3): Quotacheck needed: Please wait.
[  136.454955][ T4986] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  136.464182][ T4986] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.505114][ T4986] usb 6-1: Product: syz
[  136.509337][ T4986] usb 6-1: Manufacturer: syz
[  136.532406][ T4986] usb 6-1: SerialNumber: syz
[  136.575933][ T4986] r8152-cfgselector 6-1: config 0 descriptor??
[  136.598216][ T4170] ocfs2: Unmounting device (7,4) on (node local)
[  136.646126][ T6125] XFS (loop3): Quotacheck: Done.
[  136.834968][ T4986] r8152-cfgselector 6-1: Unknown version 0x0000
[  136.857375][ T4175] XFS (loop3): Unmounting Filesystem
[  136.914806][    T7] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  137.104875][ T4986] r8152-cfgselector 6-1: Unknown version 0x0000
[  137.114012][ T4986] r8152-cfgselector 6-1: USB disconnect, device number 3
[  137.176833][    T7] usb 2-1: Using ep0 maxpacket: 8
[  137.232846][ T6218] netlink: 8 bytes leftover after parsing attributes in process `syz.4.519'.
[  137.301057][    T7] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  137.319454][    T7] usb 2-1: config 0 has no interface number 0
[  137.337093][    T7] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  137.356847][    T7] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  137.370180][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.400439][    T7] usb 2-1: config 0 descriptor??
[  137.459119][    T7] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  137.871256][    T7] usb 2-1: USB disconnect, device number 6
[  137.920805][ T6213] loop2: detected capacity change from 0 to 40427
[  137.984252][ T6213] F2FS-fs (loop2): Invalid log sectorsize (2)
[  137.991819][ T6213] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  138.052828][ T6213] F2FS-fs (loop2): Found nat_bits in checkpoint
[  138.120358][ T6222] loop4: detected capacity change from 0 to 40427
[  138.155737][ T6213] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  138.163123][ T6213] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  138.180500][ T6222] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  138.189289][ T6222] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  138.215461][ T6222] F2FS-fs (loop4): invalid crc value
[  138.247330][ T6222] F2FS-fs (loop4): Found nat_bits in checkpoint
[  138.253985][ T6213] attempt to access beyond end of device
[  138.253985][ T6213] loop2: rw=10241, want=53256, limit=40427
[  138.278090][ T6213] attempt to access beyond end of device
[  138.278090][ T6213] loop2: rw=2049, want=53376, limit=40427
[  138.292398][ T6213] attempt to access beyond end of device
[  138.292398][ T6213] loop2: rw=2049, want=53256, limit=40427
[  138.327928][ T4173] attempt to access beyond end of device
[  138.327928][ T4173] loop2: rw=2049, want=45104, limit=40427
[  138.338935][ T6232] loop5: detected capacity change from 0 to 32768
[  138.377094][ T6222] F2FS-fs (loop4): Start checkpoint disabled!
[  138.451246][ T6222] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  138.467919][ T6222] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  138.573459][ T6222] attempt to access beyond end of device
[  138.573459][ T6222] loop4: rw=2049, want=53256, limit=40427
[  138.681242][  T374] attempt to access beyond end of device
[  138.681242][  T374] loop4: rw=2049, want=41008, limit=40427
[  138.914838][ T4211] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  139.161988][ T6256] loop3: detected capacity change from 0 to 1024
[  139.193701][ T4211] usb 2-1: Using ep0 maxpacket: 8
[  139.203040][ T6258] loop5: detected capacity change from 0 to 2048
[  139.251785][ T6256] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  139.264775][ T6256] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.281363][ T6258]  loop5: p3 < > p4 < >
[  139.288287][ T6258] loop5: partition table partially beyond EOD, truncated
[  139.314944][ T6258] loop5: p3 start 4284289 is beyond EOD, truncated
[  139.325180][ T4211] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  139.335343][ T4211] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  139.345985][ T4211] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  139.356681][ T4211] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  139.370984][ T4211] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  139.381035][ T4211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.402750][ T3546]  loop5: p3 < > p4 < >
[  139.410748][ T3546] loop5: partition table partially beyond EOD, truncated
[  139.449209][ T3546] loop5: p3 start 4284289 is beyond EOD, truncated
[  139.529621][ T4365] udevd[4365]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  139.586787][ T4365] udevd[4365]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory
[  139.681868][ T4211] usb 2-1: GET_CAPABILITIES returned 0
[  139.688525][ T4211] usbtmc 2-1:16.0: can't read capabilities
[  139.735893][ T6271] loop3: detected capacity change from 0 to 1764
[  139.814946][ T4994] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  139.856841][ T6277] loop5: detected capacity change from 0 to 512
[  139.894718][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.912809][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.922114][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.931233][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.940336][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.949415][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.958656][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.967745][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.976835][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.985933][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  139.995003][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  140.004074][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  140.013175][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  140.022303][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  140.031423][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  140.040502][    C1] usbtmc 2-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -2
[  140.063688][ T4379] usb 2-1: USB disconnect, device number 7
[  140.277112][ T6277] EXT4-fs (loop5): Test dummy encryption mode enabled
[  140.283982][ T6277] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  140.294804][ T4994] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  140.303866][ T4994] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.326682][ T4994] usb 3-1: config 0 descriptor??
[  140.365873][ T6277] EXT4-fs error (device loop5): ext4_orphan_get:1427: comm syz.5.542: bad orphan inode 131083
[  140.379173][ T4994] cp210x 3-1:0.0: cp210x converter detected
[  140.388027][ T6277] EXT4-fs (loop5): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  140.535555][ T6277] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  140.716043][ T6285] loop3: detected capacity change from 0 to 32768
[  140.805032][ T4994] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32
[  140.833781][ T6285] XFS (loop3): Mounting V5 Filesystem
[  140.872446][ T6300] tun0: tun_chr_ioctl cmd 1074025675
[  140.964168][ T6300] tun0: persist enabled
[  140.994358][ T6285] XFS (loop3): Ending clean mount
[  141.012307][ T6315] tun0: tun_chr_ioctl cmd 1074025675
[  141.037685][ T6285] XFS (loop3): Quotacheck needed: Please wait.
[  141.054579][ T6315] tun0: persist enabled
[  141.082884][ T4994] usb 3-1: cp210x converter now attached to ttyUSB0
[  141.212689][ T6285] XFS (loop3): Quotacheck: Done.
[  141.277430][ T4987] usb 3-1: USB disconnect, device number 11
[  141.307570][ T4987] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  141.381768][ T4987] cp210x 3-1:0.0: device disconnected
[  141.405041][ T4175] XFS (loop3): Unmounting Filesystem
[  141.453799][ T6311] loop1: detected capacity change from 0 to 40427
[  141.590611][ T6311] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  141.625477][ T6311] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  141.688593][ T6311] F2FS-fs (loop1): invalid crc value
[  141.743621][ T6311] F2FS-fs (loop1): Found nat_bits in checkpoint
[  141.953262][ T6311] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  141.981103][ T6311] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  142.086859][ T6317] loop5: detected capacity change from 0 to 40427
[  142.155826][ T6317] F2FS-fs (loop5): Insane cp_payload (553648128 >= 504)
[  142.162816][ T6317] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  142.249329][ T6317] F2FS-fs (loop5): invalid crc value
[  142.297215][ T6317] F2FS-fs (loop5): Found nat_bits in checkpoint
[  142.463352][ T6317] F2FS-fs (loop5): Cannot turn on quotas: -2 on 2
[  142.479259][ T6317] F2FS-fs (loop5): Start checkpoint disabled!
[  142.503880][ T6317] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  142.514958][ T6317] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  142.676382][ T6324] loop4: detected capacity change from 0 to 32768
[  142.768154][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  142.768170][   T26] audit: type=1800 audit(1737487094.299:35): pid=6324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.557" name="file1" dev="loop4" ino=4 res=0 errno=0
[  142.882310][  T374] attempt to access beyond end of device
[  142.882310][  T374] loop5: rw=2049, want=40984, limit=40427
[  143.430417][ T6364] loop1: detected capacity change from 0 to 512
[  143.556400][ T6364] EXT4-fs (loop1): inline encryption not supported
[  143.734139][ T6364] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.570: corrupted inode contents
[  143.817216][ T6375] loop5: detected capacity change from 0 to 128
[  143.836515][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  143.863560][ T6364] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #16: comm syz.1.570: mark_inode_dirty error
[  143.866588][ T6377] netlink: 'syz.4.574': attribute type 1 has an invalid length.
[  143.891467][ T6375] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  143.894993][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  143.915018][ T6377] netlink: 16150 bytes leftover after parsing attributes in process `syz.4.574'.
[  143.946326][ T6375] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  143.961104][ T6364] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.570: corrupted inode contents
[  144.014516][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.061973][ T6364] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.570: mark_inode_dirty error
[  144.105822][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.117354][ T6364] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.570: corrupted inode contents
[  144.205754][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.238515][ T6364] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  144.275607][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.282336][ T6364] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.570: corrupted inode contents
[  144.290665][ T6388] loop2: detected capacity change from 0 to 128
[  144.384252][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.393239][ T6364] EXT4-fs error (device loop1): ext4_truncate:4272: inode #16: comm syz.1.570: mark_inode_dirty error
[  144.435142][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.455334][ T6393] rtc_cmos 00:00: Alarms can be up to one day in the future
[  144.465035][ T6364] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  144.484893][ T6388] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  144.515968][ T6364] EXT4-fs (loop1): Remounting filesystem read-only
[  144.523504][ T6364] EXT4-fs (loop1): 1 truncate cleaned up
[  144.530541][ T6364] EXT4-fs (loop1): mounted filesystem without journal. Opts: inlinecrypt,errors=remount-ro,resuid=0x0000000000000000,. Quota mode: writeback.
[  144.545650][ T6364] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.557382][ T6388] ext4 filesystem being mounted at /124/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  145.002161][ T6410] netlink: 'syz.2.588': attribute type 13 has an invalid length.
[  145.047955][ T6410] batman_adv: Cannot find parent device
[  145.079157][ T6410] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  145.114111][ T6410] device gretap1 entered promiscuous mode
[  145.135352][ T6414] fuse: Unknown parameter '
'
[  145.407072][ T4986] rtc_cmos 00:00: Alarms can be up to one day in the future
[  145.430871][ T4986] rtc_cmos 00:00: Alarms can be up to one day in the future
[  145.459667][ T4986] rtc_cmos 00:00: Alarms can be up to one day in the future
[  145.500105][ T4986] rtc_cmos 00:00: Alarms can be up to one day in the future
[  145.534767][ T4986] rtc rtc0: __rtc_set_alarm: err=-22
[  145.671158][ T6390] loop5: detected capacity change from 0 to 40427
[  145.702474][ T6432] loop4: detected capacity change from 0 to 128
[  145.760871][ T6432] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  145.778159][ T6432] ext4 filesystem being mounted at /127/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  145.803709][ T6390] F2FS-fs (loop5): invalid crc value
[  145.854371][ T6390] F2FS-fs (loop5): Found nat_bits in checkpoint
[  145.881098][ T6439] loop3: detected capacity change from 0 to 8192
[  145.952079][ T6439] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  146.044784][ T4211] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  146.108272][ T6390] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  146.327182][ T4211] usb 2-1: Using ep0 maxpacket: 8
[  146.396084][ T5242] attempt to access beyond end of device
[  146.396084][ T5242] loop5: rw=2049, want=45104, limit=40427
[  146.413596][ T6456] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  146.445070][ T4211] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  146.486061][ T4211] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  146.499745][ T4211] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  146.510121][ T4211] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  146.523795][ T4211] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  146.532951][ T4211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.782263][ T6464] loop4: detected capacity change from 0 to 1024
[  146.795544][ T4211] usb 2-1: GET_CAPABILITIES returned 0
[  146.801128][ T4211] usbtmc 2-1:16.0: can't read capabilities
[  146.936224][  T374] hfsplus: b-tree write err: -5, ino 4
[  147.011599][ T4211] usb 2-1: USB disconnect, device number 8
[  147.049851][ T6475] binder: 6474:6475 ioctl c0306201 0 returned -14
[  147.281021][ T6488] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  147.288967][ T6488] IPv6: NLM_F_CREATE should be set when creating new route
[  147.296297][ T6488] IPv6: NLM_F_CREATE should be set when creating new route
[  147.303529][ T6488] IPv6: NLM_F_CREATE should be set when creating new route
[  147.325258][ T6492] loop2: detected capacity change from 0 to 1024
[  147.382804][ T6492] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  147.427578][ T6492] EXT4-fs (loop2): mounted filesystem without journal. Opts: barrier=0x0000000000000009,bsddf,barrier=0x00000000000001ff,data_err=abort,debug_want_extra_isize=0x0000000000000080,block_validity,nodelalloc,noblock_validity,nomblk_io_submit,sysvgroups,auto_da_alloc=0x000000000000faef,,errors=continue. Quota mode: none.
[  147.501803][ T6501] loop5: detected capacity change from 0 to 256
[  147.565169][ T6501] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  147.588379][ T6501] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=512, location=512
[  147.603559][ T6501] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  147.615961][ T6501] UDF-fs: Scanning with blocksize 512 failed
[  147.641127][ T6501] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  147.700853][ T6501] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  147.921575][ T6513] loop1: detected capacity change from 0 to 2048
[  148.103306][ T6513] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  148.196385][   T26] audit: type=1800 audit(1737487099.719:36): pid=6513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.633" name="file1" dev="loop1" ino=15 res=0 errno=0
[  148.223697][   T26] audit: type=1804 audit(1737487099.719:37): pid=6513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.633" name="/newroot/138/file1/file1" dev="loop1" ino=15 res=1 errno=0
[  148.381739][ T6527] loop5: detected capacity change from 0 to 2048
[  148.397269][ T6531] loop4: detected capacity change from 0 to 2048
[  148.487619][ T6527] EXT4-fs (loop5): mounted filesystem without journal. Opts: dioread_nolock,minixdf,nolazytime,stripe=0x0000000000000020,,errors=continue. Quota mode: none.
[  148.522732][ T6531] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  148.578970][ T6527] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.630082][ T6518] loop3: detected capacity change from 0 to 32768
[  148.658133][ T6527] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.637: bg 0: block 345: padding at end of block bitmap is not set
[  148.775219][ T6545] netlink: 20 bytes leftover after parsing attributes in process `syz.1.645'.
[  148.818365][ T6518] XFS (loop3): Mounting V5 Filesystem
[  148.989331][ T6518] XFS (loop3): Ending clean mount
[  149.142704][ T4175] XFS (loop3): Unmounting Filesystem
[  149.161554][ T6565] netlink: 80 bytes leftover after parsing attributes in process `syz.5.650'.
[  149.269887][ T6565] netlink: 80 bytes leftover after parsing attributes in process `syz.5.650'.
[  149.329629][ T6565] netlink: 80 bytes leftover after parsing attributes in process `syz.5.650'.
[  149.888102][ T6562] loop1: detected capacity change from 0 to 131072
[  149.957849][ T6562] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  149.966054][ T6562] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  150.092646][ T6562] F2FS-fs (loop1): Found nat_bits in checkpoint
[  150.202600][ T6562] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  150.210173][ T6562] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  150.451636][ T6580] loop3: detected capacity change from 0 to 1024
[  150.506183][ T6566] loop4: detected capacity change from 0 to 32768
[  150.627341][ T6566] ERROR: (device loop4): dbAllocNext: Corrupt dmap page
[  150.627341][ T6566] 
[  150.648622][ T6566] ERROR: (device loop4): remounting filesystem as read-only
[  150.656334][ T6569] loop5: detected capacity change from 0 to 32768
[  150.773721][ T6569] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.653 (6569)
[  150.815579][ T6569] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm
[  150.884684][ T6569] BTRFS info (device loop5): setting nodatacow, compression disabled
[  150.924934][ T6569] BTRFS info (device loop5): turning on flush-on-commit
[  150.974391][ T6569] BTRFS info (device loop5): enabling auto defrag
[  150.994689][ T6569] BTRFS info (device loop5): max_inline at 0
[  151.024679][ T6569] BTRFS info (device loop5): using free space tree
[  151.044039][ T6569] BTRFS info (device loop5): has skinny extents
[  151.131861][ T6588] loop3: detected capacity change from 0 to 2048
[  151.288022][ T6569] BTRFS info (device loop5): enabling ssd optimizations
[  151.337554][ T6588] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,errors=remount-ro,. Quota mode: none.
[  151.453451][ T6588] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  151.645518][ T6588] EXT4-fs (loop3): Remounting filesystem read-only
[  151.687141][ T6616] loop4: detected capacity change from 0 to 256
[  151.760952][ T6616] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017bf5, chksum : 0xdbcee88d, utbl_chksum : 0xe619d30d)
[  151.824953][ T6616] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  152.291288][ T6583] loop2: detected capacity change from 0 to 32768
[  152.693039][ T6583] XFS (loop2): Mounting V5 Filesystem
[  153.122059][ T6583] XFS (loop2): Ending clean mount
[  153.163235][ T6583] XFS (loop2): Quotacheck needed: Please wait.
[  153.234616][    C0] sched: RT throttling activated
[  153.350124][ T6583] XFS (loop2): Quotacheck: Done.
[  153.822646][ T6647] loop5: detected capacity change from 0 to 8
[  153.936338][ T4173] XFS (loop2): Unmounting Filesystem
[  154.084347][ T6627] loop1: detected capacity change from 0 to 262144
[  154.218611][ T6627] F2FS-fs (loop1): Found nat_bits in checkpoint
[  154.279605][ T6627] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  154.799378][ T6667] loop5: detected capacity change from 0 to 1024
[  154.836593][ T6665] loop4: detected capacity change from 0 to 4096
[  154.890393][ T6665] EXT4-fs (loop4): Test dummy encryption mode enabled
[  154.906597][ T6665] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  154.976582][ T6665] EXT4-fs (loop4): mounted filesystem without journal. Opts: norecovery,test_dummy_encryption,nombcache,user_xattr,nomblk_io_submit,,errors=continue. Quota mode: writeback.
[  155.047027][ T6665] EXT4-fs (loop4): re-mounted. Opts: . Quota mode: writeback.
[  155.122001][ T6667] EXT4-fs (loop5): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,noquota,nogrpid,nodelalloc,nodiscard,,errors=continue. Quota mode: none.
[  155.848074][ T6690] netlink: 4 bytes leftover after parsing attributes in process `syz.2.685'.
[  155.944736][    T7] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  156.234716][    T7] usb 6-1: Using ep0 maxpacket: 8
[  156.345389][ T6695] loop4: detected capacity change from 0 to 8192
[  156.395706][    T7] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  156.436935][    T7] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  156.455240][ T6695] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[  156.474476][ T6695] REISERFS (device loop4): using ordered data mode
[  156.482666][    T7] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  156.493113][    T7] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  156.500681][ T6695] reiserfs: using flush barriers
[  156.506677][    T7] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  156.520729][    T7] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.553311][ T6695] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  156.635177][ T6695] REISERFS (device loop4): checking transaction log (loop4)
[  156.657603][ T6695] REISERFS (device loop4): Using r5 hash to sort names
[  156.685329][ T6695] REISERFS (device loop4): using 3.5.x disk format
[  156.692222][ T6695] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  156.794840][    T7] usb 6-1: GET_CAPABILITIES returned 0
[  156.800376][    T7] usbtmc 6-1:16.0: can't read capabilities
[  157.000355][ T4370] usb 6-1: USB disconnect, device number 4
[  157.056707][ T6679] loop3: detected capacity change from 0 to 40427
[  157.158725][ T6679] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  157.199662][ T6679] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  157.258909][ T6710] TCP: MD5 Hash failed for (0.0.0.0, 0)->(0.0.0.0, 20002) L3 index 0
[  157.279164][ T6679] F2FS-fs (loop3): invalid crc value
[  157.317642][ T4980] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  157.414191][ T6679] F2FS-fs (loop3): Found nat_bits in checkpoint
[  157.495209][ T6716] Zero length message leads to an empty skb
[  157.556366][ T6679] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  157.563448][ T6679] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  157.574699][ T4980] usb 2-1: Using ep0 maxpacket: 8
[  157.649206][ T6721] loop2: detected capacity change from 0 to 512
[  157.694955][ T4980] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  157.713607][ T4980] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  157.755185][ T4980] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  157.794663][ T4980] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  157.818947][ T6721] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  157.844697][ T4980] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  157.860200][ T4980] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  157.870055][ T4980] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.882942][ T6721] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.086965][ T4175] attempt to access beyond end of device
[  158.086965][ T4175] loop3: rw=2049, want=40968, limit=40427
[  158.301847][ T6740] loop5: detected capacity change from 0 to 1024
[  158.346916][ T1110] usb 2-1: USB disconnect, device number 9
[  158.606206][    T7] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  158.874826][    T7] usb 5-1: Using ep0 maxpacket: 16
[  158.955945][ T6747] loop1: detected capacity change from 0 to 512
[  159.030791][    T7] usb 5-1: config 0 has an invalid interface number: 212 but max is 0
[  159.044852][    T7] usb 5-1: config 0 has no interface number 0
[  159.061871][ T4211] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  159.077140][ T6747] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  159.147114][ T6747] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.704: invalid indirect mapped block 4294967295 (level 1)
[  159.221326][    T7] usb 5-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice=d9.5d
[  159.274573][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.282936][    T7] usb 5-1: Product: syz
[  159.300301][ T6747] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.704: invalid indirect mapped block 4294967295 (level 1)
[  159.315379][    T7] usb 5-1: Manufacturer: syz
[  159.331300][    T7] usb 5-1: SerialNumber: syz
[  159.350713][    T7] usb 5-1: config 0 descriptor??
[  159.356200][ T4211] usb 3-1: Using ep0 maxpacket: 8
[  159.368429][ T6747] EXT4-fs (loop1): 2 truncates cleaned up
[  159.399628][ T6747] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,dioread_nolock,,errors=continue. Quota mode: writeback.
[  159.463997][ T6747] EXT4-fs (loop1): shut down requested (2)
[  159.501224][ T6759] loop5: detected capacity change from 0 to 512
[  159.524925][ T4211] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  159.548371][ T4211] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  159.553459][ T6759] EXT4-fs (loop5): Ignoring removed orlov option
[  159.595312][ T4211] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  159.604428][ T4211] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.612844][ T6759] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  159.643741][ T4211] usb 3-1: config 0 descriptor??
[  159.691106][ T6759] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.708: casefold flag without casefold feature
[  159.724941][ T6759] EXT4-fs (loop5): Remounting filesystem read-only
[  159.731569][ T6759] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.708: couldn't read orphan inode 15 (err -117)
[  159.775138][ T6759] EXT4-fs (loop5): Remounting filesystem read-only
[  159.781710][ T6759] EXT4-fs (loop5): mounted filesystem without journal. Opts: orlov,nodelalloc,errors=remount-ro,grpquota,auto_da_alloc,dioread_nolock,quota,. Quota mode: writeback.
[  159.865199][ T6739] udc-core: couldn't find an available UDC or it's busy
[  159.872264][ T6739] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  159.955982][    T7] ftdi_sio 5-1:0.212: FTDI USB Serial Device converter detected
[  159.964425][    T7] usb 5-1: Detected FT-X
[  159.999214][ T6765] loop3: detected capacity change from 0 to 1024
[  160.006119][    T7] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  160.070008][    T7] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  160.090198][ T6765] EXT4-fs (loop3): Ignoring removed orlov option
[  160.104822][    T7] ftdi_sio 5-1:0.212: GPIO initialisation failed: -71
[  160.123115][    T7] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  160.167669][    T7] usb 5-1: USB disconnect, device number 6
[  160.174023][ T4211] wacom 0003:056A:0331.0006: hidraw0: USB HID v0.02 Device [HID 056a:0331] on usb-dummy_hcd.2-1/input0
[  160.205741][ T6765] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  160.217154][    T7] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  160.232829][ T6770] netlink: 'syz.1.712': attribute type 1 has an invalid length.
[  160.252965][    T7] ftdi_sio 5-1:0.212: device disconnected
[  160.281890][ T6770] netlink: 'syz.1.712': attribute type 2 has an invalid length.
[  160.302034][ T6765] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  160.365975][ T1110] usb 3-1: USB disconnect, device number 12
[  160.394848][ T6770] netlink: 20 bytes leftover after parsing attributes in process `syz.1.712'.
[  160.450235][ T6771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.712'.
[  161.203221][ T6788] loop2: detected capacity change from 0 to 2048
[  161.232570][   T26] audit: type=1326 audit(1737487112.759:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[  161.330831][   T26] audit: type=1326 audit(1737487112.819:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[  161.357823][ T6788] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  161.358684][ T4158] udevd[4158]: incorrect nilfs2 checksum on /dev/loop2
[  161.456718][   T26] audit: type=1326 audit(1737487112.819:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[  161.496874][ T6797] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  161.624678][   T26] audit: type=1326 audit(1737487112.829:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[  161.683991][   T26] audit: type=1326 audit(1737487112.883:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.4.721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefa3999d29 code=0x7ffc0000
[  162.150729][ T6814] loop5: detected capacity change from 0 to 512
[  162.192843][ T6792] loop1: detected capacity change from 0 to 32768
[  162.332648][ T6814] EXT4-fs (loop5): mounted filesystem without journal. Opts: noquota,barrier=0x0000000000001000,grpjquota=,noauto_da_alloc,dioread_lock,,errors=continue. Quota mode: writeback.
[  162.354822][ T4370] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  162.554849][ T6814] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.644959][ T4370] usb 3-1: Using ep0 maxpacket: 8
[  162.805124][ T4370] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  162.843883][ T4370] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  162.874394][ T4370] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  162.894896][ T4370] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  162.936208][ T4370] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  162.964736][ T4370] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  162.979325][ T6809] loop3: detected capacity change from 0 to 32768
[  162.996200][ T4370] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.141062][ T6809] JBD2: Ignoring recovery information on journal
[  163.305190][ T4370] usb 3-1: usb_control_msg returned -32
[  163.311151][ T4370] usbtmc 3-1:16.0: can't read capabilities
[  163.345763][ T6809] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  163.485542][ T6809] 
[  163.487939][ T6809] ======================================================
[  163.495071][ T6809] WARNING: possible circular locking dependency detected
[  163.502095][ T6809] 5.15.176-syzkaller #0 Not tainted
[  163.507384][ T6809] ------------------------------------------------------
[  163.514409][ T6809] syz.3.728/6809 is trying to acquire lock:
[  163.520326][ T6809] ffff888074ac22e0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xb2/0x330
[  163.531927][ T6809] 
[  163.531927][ T6809] but task is already holding lock:
[  163.539304][ T6809] ffff888074ac2378 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa1/0x330
[  163.549961][ T6809] 
[  163.549961][ T6809] which lock already depends on the new lock.
[  163.549961][ T6809] 
[  163.560376][ T6809] 
[  163.560376][ T6809] the existing dependency chain (in reverse order) is:
[  163.564549][ T6832] loop5: detected capacity change from 0 to 128
[  163.569401][ T6809] 
[  163.569401][ T6809] -> #4 (&oi->ip_xattr_sem){++++}-{3:3}:
[  163.569440][ T6809]        lock_acquire+0x1db/0x4f0
[  163.588666][ T6809]        down_read+0x45/0x2e0
[  163.593366][ T6809]        ocfs2_init_acl+0x398/0x930
[  163.598605][ T6809]        ocfs2_mknod+0x1e8f/0x2cd0
[  163.603744][ T6809]        ocfs2_mkdir+0x194/0x430
[  163.608700][ T6809]        vfs_mkdir+0x3b6/0x590
[  163.613486][ T6809]        do_mkdirat+0x260/0x520
[  163.618445][ T6809]        __x64_sys_mkdirat+0x85/0x90
[  163.623744][ T6809]        do_syscall_64+0x3b/0xb0
[  163.628698][ T6809]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  163.635138][ T6809] 
[  163.635138][ T6809] -> #3 (jbd2_handle){++++}-{0:0}:
[  163.642458][ T6809]        lock_acquire+0x1db/0x4f0
[  163.647501][ T6809]        start_this_handle+0x12e1/0x1570
[  163.653163][ T6809]        jbd2__journal_start+0x2d1/0x5c0
[  163.658833][ T6809]        jbd2_journal_start+0x25/0x30
[  163.664224][ T6809]        ocfs2_start_trans+0x3c2/0x6f0
[  163.669733][ T6809]        ocfs2_reserve_local_alloc_bits+0xbf9/0x27a0
[  163.676434][ T6809]        ocfs2_reserve_clusters_with_limit+0x1b4/0xb50
[  163.683308][ T6809]        ocfs2_symlink+0x1424/0x2e20
[  163.688624][ T6809]        vfs_symlink+0x247/0x3d0
[  163.693586][ T6809]        do_symlinkat+0x1fd/0x600
[  163.698639][ T6809]        __x64_sys_symlink+0x7a/0x90
[  163.703954][ T6809]        do_syscall_64+0x3b/0xb0
[  163.708907][ T6809]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  163.715346][ T6809] 
[  163.715346][ T6809] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  163.723884][ T6809]        lock_acquire+0x1db/0x4f0
[  163.728930][ T6809]        down_read+0x45/0x2e0
[  163.733634][ T6809]        ocfs2_start_trans+0x3b7/0x6f0
[  163.739113][ T6809]        ocfs2_reserve_local_alloc_bits+0xbf9/0x27a0
[  163.745814][ T6809]        ocfs2_reserve_clusters_with_limit+0x1b4/0xb50
[  163.752688][ T6809]        ocfs2_symlink+0x1424/0x2e20
[  163.757995][ T6809]        vfs_symlink+0x247/0x3d0
[  163.762950][ T6809]        do_symlinkat+0x1fd/0x600
[  163.767990][ T6809]        __x64_sys_symlink+0x7a/0x90
[  163.773288][ T6809]        do_syscall_64+0x3b/0xb0
[  163.778238][ T6809]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  163.784685][ T6809] 
[  163.784685][ T6809] -> #1 (sb_internal#5){.+.+}-{0:0}:
[  163.792194][ T6809]        lock_acquire+0x1db/0x4f0
[  163.797243][ T6809]        ocfs2_start_trans+0x2b2/0x6f0
[  163.802745][ T6809]        ocfs2_write_begin_nolock+0x2242/0x4d20
[  163.809007][ T6809]        ocfs2_write_begin+0x1fd/0x390
[  163.814502][ T6809]        generic_perform_write+0x2bf/0x5b0
[  163.820337][ T6809]        __generic_file_write_iter+0x243/0x4f0
[  163.826510][ T6809]        ocfs2_file_write_iter+0x1980/0x2120
[  163.832514][ T6809]        vfs_write+0xacd/0xe50
[  163.837304][ T6809]        ksys_write+0x1a2/0x2c0
[  163.838210][ T6815] loop4: detected capacity change from 0 to 32768
[  163.842171][ T6809]        do_syscall_64+0x3b/0xb0
[  163.842195][ T6809]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  163.859939][ T6809] 
[  163.859939][ T6809] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}:
[  163.868747][ T6809]        validate_chain+0x1649/0x5930
[  163.874134][ T6809]        __lock_acquire+0x1295/0x1ff0
[  163.879527][ T6809]        lock_acquire+0x1db/0x4f0
[  163.884587][ T6809]        down_write+0x38/0x60
[  163.889285][ T6809]        ocfs2_try_remove_refcount_tree+0xb2/0x330
[  163.895896][ T6809]        ocfs2_truncate_file+0xe3c/0x14f0
[  163.901637][ T6809]        ocfs2_setattr+0x16dd/0x1ce0
[  163.906934][ T6809]        notify_change+0xc6d/0xf50
[  163.912062][ T6809]        do_truncate+0x21c/0x300
[  163.917016][ T6809]        path_openat+0x28a3/0x2f20
[  163.922153][ T6809]        do_filp_open+0x21c/0x460
[  163.927192][ T6809]        do_sys_openat2+0x13b/0x4f0
[  163.932406][ T6809]        __x64_sys_creat+0x11f/0x160
[  163.937707][ T6809]        do_syscall_64+0x3b/0xb0
[  163.942771][ T6809]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  163.949215][ T6809] 
[  163.949215][ T6809] other info that might help us debug this:
[  163.949215][ T6809] 
[  163.959950][ T6809] Chain exists of:
[  163.959950][ T6809]   &ocfs2_file_ip_alloc_sem_key --> jbd2_handle --> &oi->ip_xattr_sem
[  163.959950][ T6809] 
[  163.973973][ T6809]  Possible unsafe locking scenario:
[  163.973973][ T6809] 
[  163.981453][ T6809]        CPU0                    CPU1
[  163.986831][ T6809]        ----                    ----
[  163.992207][ T6809]   lock(&oi->ip_xattr_sem);
[  163.996831][ T6809]                                lock(jbd2_handle);
[  164.003441][ T6809]                                lock(&oi->ip_xattr_sem);
[  164.010574][ T6809]   lock(&ocfs2_file_ip_alloc_sem_key);
[  164.016262][ T6809] 
[  164.016262][ T6809]  *** DEADLOCK ***
[  164.016262][ T6809] 
[  164.024420][ T6809] 3 locks held by syz.3.728/6809:
[  164.029460][ T6809]  #0: ffff88807ddfa460 (sb_writers#26){.+.+}-{0:0}, at: mnt_want_write+0x3b/0x80
[  164.038740][ T6809]  #1: ffff888074ac2648 (&sb->s_type->i_mutex_key#34){+.+.}-{3:3}, at: do_truncate+0x208/0x300
[  164.049147][ T6809]  #2: ffff888074ac2378 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa1/0x330
[  164.060241][ T6809] 
[  164.060241][ T6809] stack backtrace:
[  164.066155][ T6809] CPU: 1 PID: 6809 Comm: syz.3.728 Not tainted 5.15.176-syzkaller #0
[  164.074427][ T6809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  164.084537][ T6809] Call Trace:
[  164.087829][ T6809]  <TASK>
[  164.090775][ T6809]  dump_stack_lvl+0x1e3/0x2d0
[  164.095482][ T6809]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  164.101142][ T6809]  ? print_circular_bug+0x12b/0x1a0
[  164.106486][ T6809]  check_noncircular+0x2f8/0x3b0
[  164.111451][ T6809]  ? _raw_spin_unlock+0x40/0x40
[  164.116329][ T6809]  ? add_chain_block+0x850/0x850
[  164.121282][ T6809]  ? lockdep_lock+0x11f/0x2a0
[  164.125981][ T6809]  validate_chain+0x1649/0x5930
[  164.130860][ T6809]  ? stack_trace_save+0x113/0x1c0
[  164.135909][ T6809]  ? reacquire_held_locks+0x660/0x660
[  164.141304][ T6809]  ? stack_trace_snprint+0xe0/0xe0
[  164.146437][ T6809]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  164.152444][ T6809]  ? lockdep_unlock+0x166/0x300
[  164.157316][ T6809]  ? mark_lock+0x98/0x340
[  164.161663][ T6809]  __lock_acquire+0x1295/0x1ff0
[  164.166541][ T6809]  lock_acquire+0x1db/0x4f0
[  164.171057][ T6809]  ? ocfs2_try_remove_refcount_tree+0xb2/0x330
[  164.177237][ T6809]  ? read_lock_is_recursive+0x10/0x10
[  164.182633][ T6809]  ? __might_sleep+0xc0/0xc0
[  164.187242][ T6809]  ? rwsem_write_trylock+0x166/0x210
[  164.192550][ T6809]  ? clear_nonspinnable+0x60/0x60
[  164.197602][ T6809]  ? ocfs2_truncate_inline+0x797/0x880
[  164.203087][ T6809]  down_write+0x38/0x60
[  164.207262][ T6809]  ? ocfs2_try_remove_refcount_tree+0xb2/0x330
[  164.213440][ T6809]  ocfs2_try_remove_refcount_tree+0xb2/0x330
[  164.219472][ T6809]  ? ocfs2_remove_refcount_tree+0x1000/0x1000
[  164.225592][ T6809]  ? do_raw_spin_unlock+0x137/0x8b0
[  164.230818][ T6809]  ? ocfs2_resv_discard+0xa2/0x230
[  164.235956][ T6809]  ocfs2_truncate_file+0xe3c/0x14f0
[  164.241177][ T6809]  ? ocfs2_inode_lock_tracker+0x455/0x750
[  164.246926][ T6809]  ? ocfs2_simple_size_update+0x4d0/0x4d0
[  164.252671][ T6809]  ? do_raw_spin_unlock+0x137/0x8b0
[  164.258421][ T6809]  ? memset+0x1f/0x40
[  164.262429][ T6809]  ? _raw_spin_unlock+0x24/0x40
[  164.267307][ T6809]  ? ocfs2_inode_lock_tracker+0x455/0x750
[  164.273045][ T6809]  ? ocfs2_inode_lock_atime+0x5a0/0x5a0
[  164.278612][ T6809]  ? ocfs2_rw_lock+0x13a/0x250
[  164.283394][ T6809]  ? ocfs2_create_new_inode_locks+0x6d0/0x6d0
[  164.289487][ T6809]  ? jbd2_journal_begin_ordered_truncate+0xbc/0x150
[  164.296104][ T6809]  ocfs2_setattr+0x16dd/0x1ce0
[  164.300897][ T6809]  ? ocfs2_extend_allocation+0x1ba0/0x1ba0
[  164.306737][ T6809]  ? seqcount_lockdep_reader_access+0x1d3/0x220
[  164.313004][ T6809]  ? ktime_get_coarse_real_ts64+0x107/0x120
[  164.318919][ T6809]  ? current_time+0x1ba/0x300
[  164.323657][ T6809]  ? atime_needs_update+0x7b0/0x7b0
[  164.328893][ T6809]  ? evm_inode_setattr+0xf7/0x5b0
[  164.333944][ T6809]  ? rwsem_write_trylock+0x166/0x210
[  164.339259][ T6809]  ? bpf_lsm_inode_setattr+0x5/0x10
[  164.344491][ T6809]  ? security_inode_setattr+0xce/0x120
[  164.349978][ T6809]  ? ocfs2_extend_allocation+0x1ba0/0x1ba0
[  164.355814][ T6809]  notify_change+0xc6d/0xf50
[  164.360437][ T6809]  do_truncate+0x21c/0x300
[  164.364871][ T6809]  ? rcu_lock_release+0x20/0x20
[  164.369742][ T6809]  ? ima_bprm_check+0x2b0/0x2b0
[  164.374613][ T6809]  ? bpf_lsm_path_truncate+0x5/0x10
[  164.379838][ T6809]  path_openat+0x28a3/0x2f20
[  164.384467][ T6809]  ? do_filp_open+0x460/0x460
[  164.389174][ T6809]  do_filp_open+0x21c/0x460
[  164.393698][ T6809]  ? vfs_tmpfile+0x2e0/0x2e0
[  164.398332][ T6809]  ? _raw_spin_unlock+0x24/0x40
[  164.403199][ T6809]  ? alloc_fd+0x598/0x630
[  164.407549][ T6809]  do_sys_openat2+0x13b/0x4f0
[  164.412259][ T6809]  ? read_lock_is_recursive+0x10/0x10
[  164.417654][ T6809]  ? do_sys_open+0x220/0x220
[  164.422263][ T6809]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  164.428275][ T6809]  __x64_sys_creat+0x11f/0x160
[  164.433071][ T6809]  ? __x64_compat_sys_openat+0x290/0x290
[  164.438738][ T6809]  ? syscall_enter_from_user_mode+0x2e/0x240
[  164.444739][ T6809]  ? lockdep_hardirqs_on+0x94/0x130
[  164.449959][ T6809]  ? syscall_enter_from_user_mode+0x2e/0x240
[  164.455969][ T6809]  do_syscall_64+0x3b/0xb0
[  164.460406][ T6809]  ? clear_bhb_loop+0x15/0x70
[  164.465198][ T6809]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  164.471118][ T6809] RIP: 0033:0x7fc771e3cd29
[  164.475548][ T6809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.495185][ T6809] RSP: 002b:00007fc76fcad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  164.503718][ T6809] RAX: ffffffffffffffda RBX: 00007fc77202cfa0 RCX: 00007fc771e3cd29
[  164.511712][ T6809] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200001c0
[  164.519707][ T6809] RBP: 00007fc771eb8b08 R08: 0000000000000000 R09: 0000000000000000
[  164.527700][ T6809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.535777][ T6809] R13: 0000000000000000 R14: 00007fc77202cfa0 R15: 00007ffc7577dcb8
[  164.543894][ T6809]  </TASK>
[  164.646204][ T6832] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  164.722345][ T4175] ocfs2: Unmounting device (7,3) on (node local)
[  164.781070][ T6832] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  165.560124][ T4980] usb 3-1: USB disconnect, device number 13