last executing test programs:

22.938253343s ago: executing program 2:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='bridge0\x00', 0x10)
sendmmsg$inet6(r0, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)="83cb432abf84aa", 0x7}, {&(0x7f0000000880)="8856d0f6144cc63b0d12cf964939b1877468e6e12d55d6ff2f63d4275848b51ddf979999b3e7d25f13124d44043f956feb7fcdc4654d8a5e1f335729c843ad95a2905aa88ddefe0000a4f81979ea9ef2b943a60942e03e08011e749047879164ea87667eadf359217377b5d0894db664bdf66d44c55a7a43a2d6b40bca5e91fe066248a3928d054fddc5e485a14d052f00f2af0eceb01a0128988db641ba5b0b2f44157de7f485943e7e8a7b067151b9884bfc6024", 0xb5}, {&(0x7f0000000240)="0ecafb4b41db4b4181882a08528b69c38313a4d059f0f950aeae093c50996e4c92983387124fd13ad03a0f6f44a9a94c0eebcc06d6d8f03d8579a485b1c762f72d2a59e8ded49561c7259a3ae26e93749e4ff37d21d497885855bf2c7ad5c32e571ce3c5da3dcc72014c4880402dfc14b711d0f131ff1ed81e35bde619cd17f4c008e8e6b3e42edf87db869db7736fce178793c94ca51b9fa2cc71981a2f1982c51c70f6a23f245044f4ccb75ff39dc1ac2cf14027e0c8b4fbbfc0deec5d07febe47b4bd32b226e1e81fc8ca3fca", 0xce}, {&(0x7f0000000940)="6a6d84c59437f7fa7834214530a31e431b6e9d038df0ac2e0ab7f09fcb0a0d8d066f5aaf97ff068fe98cf5a8f74ab1b944abc607bd660b3a9fb343c59d5dc67f5804ffcb956dabc4d106eaf370c6b60ef26b5f392af5d2c6d4f55c3232a8e393e472edaaa78d1d0144c838707611e97bd2d3fd30efb2fd728d35201eddbf5eedf4cb88ec2bdfb256926c116b4cbcaef0e5e0480e162fd9a188e49592a3dcfa9dbbfaed0f8cbf2bee9215ba72c647e3fc710f828bf2a7f20a757eb4d9d9123aaf798576ecc6195dc749fac0ba480c940865317813394041d4fa39208b9afbad905dc511f77dde02256a4ff20fb2d5d19c5b1ed24d28b8f60fdb471b87b0b192f78ed20786c7e1c21971ffaff0b0acd2b09f2710ad7c43a1d9b542a5b4104af75569fda5cb264819ec03aa0fc671d25035c7cee1d336a4372e3e6a26f62df158c208de47a63950c11d396215c5457d5fa1e66630501ec6f0a03653ceafe326478f284512ec24615a8be4a646a491e51a9a67eed2dbadb5fe826bdbff272795f84635c8001182df706c1c68915009accd28e83f0c64386d603b819abe9cd40f3fc294b63a390767de88aac5352f01f06e92d0430c3de1c69066fe015a641c1355cfc978e55b7b2f2d6baffa2f7b3bd03f640862644a8228e1826283dc2e4ebcabe4fbe2534dabc298979426b3f54fc852ca74239f4fc3efdf4e6deb8f1f0bc68de36d4c50d26b01d72cccc161e99fa5729be07486ecb5a7689e9f0fb622607ec35a436874b5c81ce56d4a4d5cd5ce921013c55fa0e4ef778c0db8bb090364337e7d2608f6c29ceb9ff6ef1d5783fd2cb0a076c611facd1b38e1e603a2df9d1987ca0f6b2bc58716c168d55798fe52016a63fdc5499fdcd0906442d54511af9f722009c19d69dbb345e80f6084f672d94e3cf1fbd0be788e1a1020602e2eaecf2b252ce80ba2d1e43132426c8e2f628b1e322df4f0642eda2eb37d07f867d7e5835305beeeb3cafec8d52f3672d075068e27a2c7a9d40d79a1bba1cf190c3a99be3430914f8f2a357f73ef73ee28ebfdac90c443f06a7c8463217c29b957d149660ec461322c0eefde7263275e5667efc3fff2f0d7427a5e0b4daa809b3afbd954eb2056614c05126eb29860c9ff2ff486298cbc7cadf609f0e0a66ad8f7d07b236dd9d7561dc2f29cf75dabcabcd836d0d99cf9551f7a93fa7b3e0ba5073490243e727e4cd9db9035aae196f3528c70ca26f21f18a70828ef76aa7b0ca8484a56d460a2906fe7f6bc930f529cb7e400d439efeb95d40e12e283523556b1e8cb9b571b39a2090e3aac5373352673ac0e71128b5d382969c1856785101b7156aa1a467740e014c689661259c3ac8a4cf17fea41d79a9c69c98134b02e5e99656d4dc4f0a3d92cb47ee5be24322023b808c1a6733df588fc8b70000ead10c3382bc04147fe7df8d15b0c0ee7b158ba4740dc3752d19f13f29f55dcc78f8572df878d8bff7a431273bd8b7b6abcbe8d77d74b5371a7caba47dafcd60b3b3d5c4e84a1e474e795d035758f18bbdad9820cdf0a276f8fa18507596027c02346979079261a0ca14009e2edcad68366193d26ecccc12052bfc73c9ff444aca62b04b3f86a0180442ed5b997b954d150cb0e8f66d5e0c4ee963ac40750da3b585e1c33008680e67404754e195500ea637efb41e5ad32c0ae08d1a0a9b854de986c121d2c337025461c93561515c48d33d8817dfda8fdb622bf3f2b2acb0790eaf1587474954db96b5f29931ba42934e3a9f5f49dcee39b39de44fd049b0ea339aefcb105176b01de1fb79635e209a7d7d5f06c2774ac314328bda4dd2c4180bc1b7cf6fcba7f73af6b3e", 0x524}, {&(0x7f0000000840)="90bcd78ab8c742", 0x7}], 0x5}}], 0x1, 0x0)

22.054679128s ago: executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
unshare(0x2040400)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, 0x0)

21.024317243s ago: executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x302, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0)

10.912809369s ago: executing program 0:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000340), 0xffffff46)
dup3(r2, r1, 0x0)
sendmsg$netlink(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000380)=ANY=[], 0x10}], 0x1}, 0x0)
close(r1)
socket$inet_udp(0x2, 0x2, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @local}, 0x80, 0x0}, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
rt_sigreturn()
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{}, {0x0, 0x3938700}}, 0x0)
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)

9.496782804s ago: executing program 0:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8)
readv(r1, 0x0, 0x0)
close(r1)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/devices/system', 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000200)={{}, {0x0, 0x989680}}, 0x0)
rt_sigreturn()
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000))
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f00000006c0)={0x1})

7.012399661s ago: executing program 0:
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8921, 0x0)

5.910845503s ago: executing program 4:
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0x5450, 0x0)

5.809071108s ago: executing program 0:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000180), 0x8, 0x0)
write(r0, 0x0, 0x0)

5.463321352s ago: executing program 1:
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file1/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

5.013341556s ago: executing program 4:
open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000080)='./bus/file1\x00', 0x0, 0x0, 0x1, 0x0, &(0x7f0000000000))
syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000040)='./bus/file1\x00', 0xa, 0x0, 0x1, 0x0, &(0x7f0000000000))

4.840132573s ago: executing program 3:
open$dir(&(0x7f0000000b80)='./file0\x00', 0x200, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
fcntl$lock(r1, 0x8, &(0x7f0000000200)={0x0, 0x0, 0x4, 0x100000401})
poll(0x0, 0x0, 0x0)
fcntl$lock(r0, 0x9, &(0x7f0000000080)={0x0, 0x0, 0x100000000000000, 0x100000001})

4.743989712s ago: executing program 0:
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5406, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x103042, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0xfffffdef)

4.535414055s ago: executing program 1:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
write$binfmt_script(r1, &(0x7f0000000200)={'#! ', '', [{0x20, '#!2'}, {0x20, '#! '}, {0x20, '/proc/sys/net/ipv4/tcp_congestion_control\x00'}, {}], 0xa, "8855d1bef46f70e481dbdabbfc3bcc3f005c1079e7344e4392717247b88b05708cd1663511237737ac00004c03fa9d00005380"}, 0xfffffe59)
sendmsg$unix(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)='c', 0x1}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000640)=[{{&(0x7f0000000240)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast2}}}, 0x80, 0x0, 0x0, 0x0, 0xfffffffffffffcaf}}], 0x18, 0x0, 0x0)
rt_sigreturn()
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8)
readv(r2, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
r3 = eventfd(0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$P9_RSTATFS(r4, &(0x7f0000000080)={0x43}, 0x43)
write$FUSE_LK(r4, &(0x7f0000002340)={0x28, 0xfffffffffffffffe}, 0x28)

4.154322858s ago: executing program 4:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000040), 0x8, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r0, 0x5451, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r2 = eventfd(0x0)
fcntl$dupfd(r2, 0x0, r2)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{}, {0x0, 0x3938700}}, 0x0)
poll(0x0, 0x0, 0x100)
pipe2$9p(&(0x7f0000000280)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r3, &(0x7f0000000000)={0x7}, 0x69ff9a93bfc25838)
r4 = dup(r3)
write$P9_RGETATTR(r4, 0x0, 0x0)
close(r4)
socket(0x1, 0x3, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
mknod(&(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)

3.819545912s ago: executing program 3:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
poll(0x0, 0x0, 0x401)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
r1 = memfd_create(&(0x7f0000000340)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\x91\xfdy\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0`\xaa8\xc7\xc8\x9d\xfdA\b\x10\x92(c\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdI\x83\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7 \x1d\xa1\xce\x8b\xac \xe8\x88\xdc\x02\xd7\x04\x9b\x9aL\x9f([4\x81\xf6\xb6\xdf\x16J\xab\xecC\xe2{\xfd\x8a\xb4\x8e\x9c\xfb\xf6\xe9\xd8]B6{\xf0(\xd4\x00\x00\x00\x00\x00\x00\x00\x12G\xd8\xa4y\xcb\xdb\xa2\x1e\xfb%\xd4jN\x83', 0x0)
r2 = dup(r1)
write$cgroup_pid(r2, &(0x7f0000000040)=0xffffffffffffffff, 0xe)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(0xffffffffffffffff, 0x5450, 0x0)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4, 0x11, r1, 0x0)
r3 = memfd_create(&(0x7f0000000ac0)='\xc0\x87:*\x18\xc1k\xa7\x87[\xa0o8\xaaK\xa5\x8d}\xd8\xf2G\xb8\xeae)\x90\x86\xe3\xf4\b\xe0\xfa\xb1\xd8N\xb2W\x06\xcd\xba{\x99$\xc3\x93u\x86\xfc\xc3\b\x1b\b\x1d\xcb\x8d}3lm8\xa57\xc9\x00HOA\xc8\x05kR\xfc\xcb[\xc7%\x88 \xeeQR\x9f\x81\x8b\xdc\xc7\xdc\xdem\xbe\x7f2\x11)W\x9c\xb9.\aw4\x95\xc8\xf1\xf5\xc5\xe3\x8d.\xd1=\xcf\xbf\x81\b\x8d%K\x1d\xe7_\xde\x87\xdd\xc1\xf0\x91\x1a!\x9c\xd3\v\xc9\x95d\xe3*\xa9\xfa\x99\x9d\xb8\x89>\xc9\xf2/\x13{\x1a\x7f\x00\x00\x00\x00+\x00\x02X\xb7KV\x90\xc3D\x82`\xea\x16\xc6\xcef\xab\x05\x19\x96\xb9_6*-\xf3\x8c\x9a\x15\x9c\xf5\xb4O\x17@d\x81+\xf6\xe6+\xed\r\x12\xd2\xbb\xf8g\xb6\xa9\xb1\x11\x9d\xd2\xb3\xaa\x9b\x7fC\'\xa2\xf6\x12\xa1\x15Punfo\x7f\vG\x0e.\xce\xd8h\xb9p2\xccC\xba\x92\xad\xfbJ\x02\x1d\x91-\xc3\x0e\t&\xbd\xeb\x05\x9f\t5\x06\xdd\xaf\x84\xf4\"\x13\xcf\xe5\x93D\x8d~\x01\t\x00\x00\xaa\xc4F\xc1\xc08\x94\xe6\xe5\x1f\xa7\xf6\xcaA\x90T\x1b\xe6\xb9\xe7\xff\xc5H\x04\x8d\xca\xad\x17UlY\x9a}\r4\xac\x93\xac\v2\xc6\xf9\xbe\xfeI\x8b\xd4/\xf2\x1d\xf0`\xab\x1e\xcf\x7f\b\x94 2.{\xc1\xbe\x9bth~\xcb\xb9E\x10W\xed\xed51[\xc5\xeb\xb1ux\x94\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x10\x00\x00\x00\x00\xdem\xe3)q:3\xfa*\x98o\'f\xbcY\x8e?\xf9\x84y\x89Y\x1c]\xad$\x7fp\xf1\xa3\x99b\xff\x1f\x94\xc2\xdb\xbaG\xa6UD\x88Y6\x11Y\xb2\xd1x\x17/\v0\x9e\xde\x9a{]\xe2\x98W\xb9\x13\x17<\x8b!?\x8e\xbc\xae\x8e\x8b\b\x90n\x15\x7f\xd5WS\xfbN\xec)B\xe7R\xa5\xd7O\x83\x80}\xcc5\x99\xdb\xd6\xbd\x9c\x05l\xfc.\xf4\xbbeF\xa3\xea\x04\xf0\xd0\x00}\xfa}\xf1\x8bz\xca\xad\x8a\xd9IRV5\xa77\'\x1a&\x89\xef:\xee\x10\xb2\xd6\xc8\xf4gu\xcd\x16\xbf?d\x8d)\x14\xdf\xb5\xdd\xd8c!@JRY\t\x00Pjk\xf7\xa5d\xc2\xecn\xc9X\x05\xca\x1322L\xaa\xa4\xb67\x89D\x93L\xc0\xa41\xf9sNG\x02\x83\xe6Bl\xd2\x02\xfb[\x82\xc0I\xb7\xf6}\xee}\x8b\x89\x04\x8a\'\xc7J\xca\xdf:\x8ft\xe0\xf8\a\xf6\xf6\xa6\x88\xfd\xc2\xa9\x14\xf3\xe1}\r.\a\x97\xf1A\x16\xbb1\xe3\xb7-\x96\xc1\x19\x85\x00\x00\x00\x00\x00\xf2\x80\x87^\xe7\x94\x00b\xab\xc6\xa31\xd4\xba\xca|\n\xab\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x89o\x8e`l\x0f\x83\vEc\xda5\xb2x[\xe2\x17\xed\xb8\x0e\x84Xh{\xe0\xa5\x03\x0f\x94U\xf6\xe3\xc3\xa4 \xff\xb3{\xe2u\xa57\xd8\xa3\xcb\xbc\xc2\xed\xaa!PU\xdb\xb7u\x04\xc8UMe\f\xb7\x9c\a\x9a\x1f\xe5\xfd\xd6c\xf4\x8e\x03\x90\xdaoOs\x10\x89J\xe2r\x06.}\xe0\x82t\xa44\x9cG\x0e_\x13H\xae\xb7\x18l\x82BJ,\xea\xfe\xff\x88\xb6\xcbM\x975g]\xd5\xc2mBSx\xc5|5\x9e\b\xbb\\pAt\xe2]\xa4A9\xc1\xbd:\x83\x15B\x1c\t\xdd\xbf\xd6\xach\xb2\xcf`LM0Z\xda\xe4\x89\xdbPS\xd1\x15\xe3\x9fK\xd6\xf3\xb2\xd9\b\v\xf2\xb1\xbd\xebb\xc0\xe3\x97{\xb3\xc6\x06oB\a\t/;\xa5\x1f\xc5\xa2\v*\x87\xa6$\xd5>a\v\xdd\xe6\xc77\fSS\xe6l\xdf\n\xcc\xc8\xc8\xdd\x96I\x12\xcej\xbf\xc9\xec\xc0\xe3$\x8a\x10\x8b\xd1L\xcb\xfd\xdd\x8f<^\x02;\xb5W>\x93\a\x90\xd1\r.\x00\x00\x00\x00\x00\x00\x00\x00\xc4\x9f\x11RI\xa7\x14\x04h\xcdF\xe9\xae\xe5mP1A\b\xdb\xd8:\xf8K\xc1\xe9\x1c\xfa!\x9f?y\xa1.\xadxC\xbf\x06*\xf7\xcc\xb5\xd5\xab\x18\xfd{{\x97p0\xc8\x19,\xe4R\x93\x8b\b\xee\xe8\xe7\x03\xe9Q\x13\xe2\x94\xb8\xeb$1\xd0e\x05\xd7\'7', 0x0)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x5, 0x11, r3, 0x0)
fallocate(r3, 0x0, 0x0, 0x800000b)
sendfile(r2, r2, &(0x7f0000000100), 0x6c07)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
gettid()

3.352640415s ago: executing program 1:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200), 0x106}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000a00)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000009c0), 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000008c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000780), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100), 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000980)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000740), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000b00)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000007c0), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000500), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000640)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="06010000246837f73199aee6fdb9291b3091ec1a2d41d227975ad8ec030f5919f397867997f9c0efa9c9092a31cdbb98ea272787afda0af59a320709c3a59ef05c6f40ceafec53f48d6186e7d8409e35306221caf67b370d875eff3191932728e5ab6c9a3acf6ccee3e352c898f5744abaedfb53f92c37acb126bd143f3e9cdfcf25a8d6129fcc3a141c3f5ab6db772f87c787817a9b699dd60732d952716b103bc1e91ac5b1ed92f35389580994bb0df9bce07e7a80921888f984139f488d256a67fec0cbb5c4e93d5c151d97f676ab93b1efbd46f600dc964231e3257bf358448fddf894c0cdfa9115adbe5b19bc912fcbc8aac7719b649b1ff1267491da", 0xff}], 0x2)

3.261961478s ago: executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x19, &(0x7f0000000000)={0x1, &(0x7f0000000480)=[{0x16}]})

2.737762389s ago: executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000800000095000000000000009500a5050000000077d8f3b423cdac8d8000000000000020e16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f68a7d06d10bfe150a7487535f7866907dc6751dfb265a0e3ccae669e173a649c1cfd6587d452d46b7c57d77578f4c35235138d5521f9453559c3421eed73d5661cfeecf9c66c54c3b3ffe1b4ce25d7c983c044c03bf3ff03fe3e26e7a23129d6606fd28a7f9105f82317874b33d96b39fa4e045469989d552af6200000003a00000000000000abecc2f4a3799af2551ce935b0f327cb3f011a7d06602e2fd5234712596b696418f1623ed38ae89d24e14b40234756ddcebfba2f87925bfacba83109753f543ad027edd68149ee99eebc6f7d6dd4aed4afe1f44ccb19e810879b70a70900000000000000000000d7900a820b6327944e9a217b9800e02a92895614cd50cbf83a1ed25268816b004519c9c5cff097d8000000000009d27d753a30a147b24a48435bd8a568669596e9e08679b3ce48e90defb6670c3d6209000000c773713a66b223fa8b148871c8d31d24000025449f106b99893ed20fa7a050fbbef90327e827e513e9606800000000e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e69ee52b59d13182e1f24ed208ada12f7a1525320e71666f472a972d5eb1affb87ba55b2d72078e9f40b4ae7dc3b2aeb0d11cd22c35d32940f19dff00ffffffff080000ff003853e59de7621e348955735264f34b1046a1813668297a7edad187ef106ae7fcbb25090f17d0baadeb8ae190a1fb5a315f8347fb0379659500000000000000000000000000000000000000002fdf0193ec79c90ed210ebc2fbed6d4216770c1b0dec886b388d138c2b69c6aacb714e7264093061c660a5100b7cc165889eb94c8d7c77b6fa06f1a4f8e4a6b6cb37e319c5c22f276b03cae853f42b07ca0b03b1eb32a6b1a81cd511fd0b59d57a11c6a3ebf9731464ad21f07f618efc31023ac60007426162b57e803519954d7c956fda392fa84be38e937d36af1c35138e05a9e8d6dc0272de72c41500000000304402e22af23437126f330f8eb4075daaeae3134ece35cd86d95bd9836bd186c4b6565e967a4e3e86f299b7400994ba136b4eccf3b0f001a266c0d160b3ce1182001d64b52a5ce7f506295d59eea6903b84ffbabf5a5b91c1d6ecce8728a224aec66c610e3becd60a35e848c224f8251947eed20e2b612cb099bfe8924d33ba7f0691fed04a43e9c64b7a1e3165e86cdb9871c678a6bbb14821f441c6c14d1bd78d8ffdfea12c19ea04264335d60b6b7a7da6fb83f33101db32f6ab137d943dd3c1e8db9f3e1263573dc721ae82fe0bc63598751a5092c9f7dbfc39d564834e3703492c2a651643d8ce5c36d97a4812cf73fc8ea0d68d7489cfcb0176"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb)
unlinkat(0xffffffffffffff9c, 0x0, 0x0)

2.384166106s ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r3, 0x0, r1, 0x0, 0x1, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000040)=ANY=[], 0x18c6)

2.042342156s ago: executing program 4:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000001c0)='ext4_da_reserve_space\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f00000000c0), 0x12)

1.701712975s ago: executing program 2:
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005140)=@newchain={0x24, 0x64, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffe0, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.664911446s ago: executing program 3:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x1e, &(0x7f0000000180)=0x400000001, 0xc2)
setsockopt$inet6_tcp_int(r3, 0x6, 0x2000000000000022, &(0x7f0000000040)=0x1, 0x4)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, 0x0, 0x2, 0x0, 0x0, 0x0)

1.429932011s ago: executing program 1:
msgget$private(0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x2022)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
poll(0x0, 0x0, 0x64)
pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r2, &(0x7f0000000000)={0x7}, 0x69ff9a93bfc25838)
write$P9_RLERRORu(r2, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
close(r2)
msgrcv(0x0, 0x0, 0x0, 0x0, 0x0)
rt_sigreturn()
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'ipvlan0\x00', 0x2})
preadv2(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_delete(0x0)

1.022478659s ago: executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0x541b, &(0x7f0000000000))

958.270858ms ago: executing program 2:
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0)
rt_sigreturn()
r0 = gettid()
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
rt_sigreturn()
timer_create(0x7, &(0x7f0000000780)={0x0, 0x0, 0x0, @tid=r0}, &(0x7f00009b1ffc))
pipe2$9p(&(0x7f0000000280)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r2, &(0x7f0000000000)={0x7, 0x1b, 0x202}, 0x1f)
timer_settime(r1, 0x0, &(0x7f000006b000)={{0x77359400}}, 0x0)
write$FUSE_ATTR(0xffffffffffffffff, 0x0, 0x0)
close(0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r3=>0x0)
timer_settime(r3, 0x0, 0x0, 0x0)
r4 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0x541b, &(0x7f0000000200)={r4, 0x0, 0x401, 0x1})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mknod(&(0x7f0000000180)='./file0\x00', 0x1, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
eventfd(0x0)

817.23811ms ago: executing program 3:
connect$inet(0xffffffffffffffff, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000780), 0x0, 0x0, 0x0, 0x0)
eventfd2(0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/custom1\x00', 0x0, 0x0)
ioctl$TIOCGSOFTCAR(r0, 0x5450, 0x0)

359.677065ms ago: executing program 1:
rt_sigreturn()
r0 = semget$private(0x0, 0x5, 0x0)
futex(&(0x7f0000004580)=0x2, 0x0, 0x2, &(0x7f0000000740)={0x0, 0x3938700}, 0x0, 0x0)
rt_sigreturn()
syz_read_part_table(0x401f, &(0x7f0000000000)="$eJzs0DEOAUEUBuB/NqKgUbuERk2UjrKNTqLRuIrKMSQaB3EBJ9CMZElIVuv7mvlnMjMv741vp1WSMttu2l1eNJ28bJKSZF73Jf/nvedrsjgnGfX5pDvUtPcvNycfzveHGoZ96j4N6ro+Ti+/vAcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAe7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKO3AgAwAAACDM3zqP9gMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEsBAAD//4IoCls=")
lsetxattr(0x0, &(0x7f0000001040)=@known='trusted.overlay.origin\x00', 0x0, 0x0, 0x0)
semtimedop(r0, &(0x7f0000000140)=[{0x0, 0xfff9}], 0x1, 0x0)

132.374587ms ago: executing program 2:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x5, 0x5, 0x2, 0x4}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='ext4_allocate_inode\x00', r5}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x200000000000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r6, 0x20e, 0x113, 0x0, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0x0, 0x0, 0x0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77674e802a0d42bc6099ad238af770b5ed8925161729298900000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24490a660583eecdbf5bcd3de3a83247da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1fcff7a1ef3282837771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969cc1595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d400000000000004011c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0890700eef552fcde2981f48c482bde8a168c3f5db2eaa6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000100000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed90868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121048b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba686fcd2cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c83ae45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422636f949e2ab8f162d7e3f855e378f4a1f40bc96fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6ca0400966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df775e411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88370d9ed9467b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8605000000000000003fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373eaea36546791d04f1ff5f0825a6619e844882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf00000000f3ffffffffffff12a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca0000000000000000000090044ed83fec890f693d54e1c0adf7b3fe6cfcf3b9873cecd116826f1be38a8d61d866516197c199d5a3721a378de95d5c25b3887a271db57518e630dd132a518a3b2490b3a9ac177d286502aa73eb67275de3523ce65e50b67a3820faaab5e7b22850c8265b44085a0d2d3c734712591007e15d7f0b2cd7eb796e8f4318d2eb8343c5176056000000000000000000000007444a9a2b71016c9cf336078fa3fcfbdf4dcfc2f5acc09ad13dda373957ab7ed731565049f1d18bcba118079dc5307fa972f19cdf463cbf159985aeb0d92fceb4d62956f6de3f2a416a740000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
socketpair(0x1d, 0x2, 0x2, &(0x7f0000000380))
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r8 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r8, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r8, 0x8008743f, 0x20000000)

69.072711ms ago: executing program 4:
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x2}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000680)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000400), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000b80)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200), 0x106}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000a00)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000009c0), 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000008c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000780), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100), 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000980)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000740), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000280), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000b00)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000007c0), 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000500), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f0000000640)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000600), 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000380)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000340), 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_CREATE_ID(r4, &(0x7f00000005c0)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f}}, 0x20)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000080)}, {&(0x7f0000000100)="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", 0xff}], 0x2)

0s ago: executing program 3:
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, 0x1)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000680)={0x0, 0x0, 0x8001, 0x8})
socket(0x10, 0x803, 0x0)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000780)={0x9}, 0x0, 0x0, 0x0, 0x0)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000380)={0x0, <r2=>0x0})
ptrace$getenv(0x4204, r2, 0x2, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
set_robust_list(&(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)}, 0x18)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000180)=[{0x6}]})
ptrace$peeksig(0x4209, 0x0, 0x0, 0x0)
r3 = memfd_create(&(0x7f00000002c0)='#\'%nod%v\x00\x7f\xe5\xd0ql\x86\xc9\xe6\x14\x93\xb0\x7f_,y<~\xab\x84\x00\x00\x00\x00\x00\x00\x14}\n\x81\xc7\x85|oC\xca\v\xe3\xba]fn\r\xdf!\x94\x0f\xaf\xb7\x93\xe8\xb6\xc3N\x16&\xab\xf9{\xaf;\xcf\x8c\xa8\xb9\x06\xaf\xd0\xfb:\x90LNF\x13\x9f\xc2\xb7/1\xb9V\xf0*\xcb\xdc\x05n<\xcfi\x02=1\xda\"\xb3\xfe\xf3\x97\xd9\xa5b\xd4\x00Q$\xb2v\\\xa9\xcf*tw\x8a\n_)\x89A\x8f`R\x12zM\a\xc43\xd0d\xee\x13Q', 0x0)
write(r3, &(0x7f0000002000), 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

me 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  363.899388][ T6223] XFS (loop1): Ending clean mount
[  363.981766][ T6223] XFS (loop1): Quotacheck needed: Please wait.
[  364.244821][ T6223] XFS (loop1): Quotacheck: Done.
[  364.698669][ T5903] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  365.246407][ T6242] loop0: detected capacity change from 0 to 32768
[  365.479667][ T6242] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  365.988337][ T6257] loop3: detected capacity change from 0 to 256
[  366.081134][ T6242] XFS (loop0): Ending clean mount
[  366.096102][ T6242] XFS (loop0): Quotacheck needed: Please wait.
[  366.173978][ T6242] XFS (loop0): Quotacheck: Done.
[  366.276708][ T6257] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  366.831333][ T5905] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  369.436125][ T6286] loop4: detected capacity change from 0 to 32768
[  369.742675][ T6286] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  370.279928][ T6286] XFS (loop4): Ending clean mount
[  370.323032][ T6286] XFS (loop4): Quotacheck needed: Please wait.
[  370.707202][ T6286] XFS (loop4): Quotacheck: Done.
[  370.974543][ T5980] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  371.029518][   T29] audit: type=1326 audit(1717854810.462:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6310 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb6f187cf69 code=0x0
[  371.806595][ T6319] mmap: syz-executor.3 (6319): VmData 175796224 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  372.290958][ T6325] ieee802154 phy0 wpan0: encryption failed: -22
[  373.282519][ T6332] loop2: detected capacity change from 0 to 2048
[  373.593789][ T6332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.824674][ T6332] EXT4-fs error (device loop2): ext4_find_extent:936: inode #2: comm syz-executor.2: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  374.024057][ T6332] EXT4-fs (loop2): Remounting filesystem read-only
[  374.441120][ T6345] loop3: detected capacity change from 0 to 32768
[  374.550486][ T6345] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  374.658976][ T5910] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.119434][ T6345] XFS (loop3): Ending clean mount
[  375.143656][ T6345] XFS (loop3): Quotacheck needed: Please wait.
[  375.442565][ T4485] udevd[4485]: worker [6276] terminated by signal 33 (Unknown signal 33)
[  375.457416][ T6345] XFS (loop3): Quotacheck: Done.
[  375.551006][ T4485] udevd[4485]: worker [6276] failed while handling '/devices/virtual/block/loop2'
[  376.011838][ T5918] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  376.729484][ T6374] loop0: detected capacity change from 0 to 40427
[  376.756560][ T6374] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  376.764688][ T6374] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  377.139608][ T6374] F2FS-fs (loop0): Found nat_bits in checkpoint
[  377.449528][ T6374] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  377.584193][ T6384] loop2: detected capacity change from 0 to 32768
[  377.599089][ T6384] btrfs: Deprecated parameter 'usebackuproot'
[  377.605636][ T6384] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  377.632066][ T6384] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (6384)
[  377.657826][ T6374] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  377.668316][ T6374] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  377.703474][ T6384] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  377.717079][ T6384] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm
[  377.728624][ T6384] BTRFS info (device loop2): using free-space-tree
[  378.734497][ T6412] loop1: detected capacity change from 0 to 128
[  378.782304][ T6412] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  378.847383][ T6384] BTRFS info (device loop2): rebuilding free space tree
[  378.905051][ T6384] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  378.961704][ T6412] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  379.467738][ T3006] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  381.515821][ T6428] loop4: detected capacity change from 0 to 32768
[  381.725606][ T6428] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  382.109928][ T6428] XFS (loop4): Ending clean mount
[  382.137142][ T6428] XFS (loop4): Quotacheck needed: Please wait.
[  382.234011][ T6428] XFS (loop4): Quotacheck: Done.
[  382.499257][ T5980] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  383.076499][ T6452] loop3: detected capacity change from 0 to 512
[  383.132043][   T29] audit: type=1804 audit(1717854822.482:5): pid=6451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir3409398365/syzkaller.87BBhh/22/bus" dev="sda1" ino=1952 res=1 errno=0
[  383.157683][   T29] audit: type=1800 audit(1717854822.482:6): pid=6451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1952 res=0 errno=0
[  383.248559][ T6452] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2250: inode #15: comm syz-executor.3: corrupted in-inode xattr: invalid ea_ino
[  383.265976][ T6452] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117)
[  383.283707][ T6452] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  383.488180][ T6459] loop0: detected capacity change from 0 to 256
[  384.269155][ T6459] FAT-fs (loop0): Directory bread(block 64) failed
[  384.276583][ T6459] FAT-fs (loop0): Directory bread(block 65) failed
[  384.283770][ T6459] FAT-fs (loop0): Directory bread(block 66) failed
[  384.290694][ T6459] FAT-fs (loop0): Directory bread(block 67) failed
[  384.297603][ T6459] FAT-fs (loop0): Directory bread(block 68) failed
[  384.304547][ T6459] FAT-fs (loop0): Directory bread(block 69) failed
[  384.311623][ T6459] FAT-fs (loop0): Directory bread(block 70) failed
[  384.318387][ T6459] FAT-fs (loop0): Directory bread(block 71) failed
[  384.325546][ T6459] FAT-fs (loop0): Directory bread(block 72) failed
[  384.332546][ T6459] FAT-fs (loop0): Directory bread(block 73) failed
[  385.209938][ T5918] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.524914][ T6483] loop4: detected capacity change from 0 to 8
[  386.649371][ T6490] loop0: detected capacity change from 0 to 32768
[  386.744151][ T6490] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  387.188889][ T6509] loop4: detected capacity change from 0 to 2048
[  387.215081][ T6513] mmap: syz-executor.3 (6513) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  387.224910][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!!
[  387.302780][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  387.412210][ T6490] XFS (loop0): Ending clean mount
[  387.436253][ T6490] XFS (loop0): Quotacheck needed: Please wait.
[  387.656069][ T6509] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  387.662978][ T6513] loop3: detected capacity change from 0 to 256
[  387.760164][ T6509] EXT4-fs error (device loop4): ext4_find_extent:936: inode #2: comm syz-executor.4: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  387.795828][ T6490] XFS (loop0): Quotacheck: Done.
[  387.891618][ T6509] EXT4-fs (loop4): Remounting filesystem read-only
[  387.902780][ T6513] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  387.934783][ T5905] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  388.165942][ T5980] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.051008][ T6532] x_tables: duplicate underflow at hook 1
[  389.144501][ T6532] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  390.672559][   T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  390.683469][   T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  390.707086][   T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  390.744206][   T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  390.768125][   T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  390.779370][   T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  391.113524][ T6550] loop3: detected capacity change from 0 to 256
[  391.369886][ T6550] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  391.840811][ T6558] loop1: detected capacity change from 0 to 256
[  391.952726][ T6559] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  391.979703][ T6558] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  392.093533][ T6558] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  392.103725][ T6558] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  392.112055][ T6558] UDF-fs: Scanning with blocksize 512 failed
[  392.213755][ T6555] loop2: detected capacity change from 0 to 32768
[  392.251000][ T6558] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  392.381746][ T6555] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  392.382626][ T6558] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  392.631099][ T6545] chnl_net:caif_netlink_parms(): no params data found
[  392.755852][ T6555] XFS (loop2): Ending clean mount
[  392.792551][ T6555] XFS (loop2): Quotacheck needed: Please wait.
[  392.838516][ T6555] XFS (loop2): Quotacheck: Done.
[  392.860767][   T50] Bluetooth: hci0: command tx timeout
[  393.075204][ T6574] x_tables: duplicate underflow at hook 3
[  393.164647][ T5910] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  393.297558][ T3097] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.534028][ T6574] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  393.606562][ T3097] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.677191][ T6576] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.3'.
[  393.687510][ T6576] bridge_slave_1: left allmulticast mode
[  393.693658][ T6576] bridge_slave_1: left promiscuous mode
[  393.700454][ T6576] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.834929][ T6576] bridge_slave_0: left allmulticast mode
[  393.841173][ T6576] bridge_slave_0: left promiscuous mode
[  393.847942][ T6576] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.227628][ T3097] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.452166][ T3097] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.865646][ T3097] bridge_slave_1: left allmulticast mode
[  394.873931][ T3097] bridge_slave_1: left promiscuous mode
[  394.881029][ T3097] bridge0: port 2(bridge_slave_1) entered disabled state
[  394.943721][   T50] Bluetooth: hci0: command tx timeout
[  394.961373][ T3097] bridge_slave_0: left allmulticast mode
[  394.967265][ T3097] bridge_slave_0: left promiscuous mode
[  394.974085][ T3097] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.609350][ T3097] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  395.681640][ T3097] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  395.758686][ T3097] bond0 (unregistering): Released all slaves
[  395.889612][ T6600] netlink: 'syz-executor.1': attribute type 3 has an invalid length.
[  395.898946][ T6600] netlink: 16098 bytes leftover after parsing attributes in process `syz-executor.1'.
[  396.597009][ T6612] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  397.040258][   T50] Bluetooth: hci0: command tx timeout
[  397.098653][ T6545] bridge0: port 1(bridge_slave_0) entered blocking state
[  397.106832][ T6545] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.115096][ T6545] bridge_slave_0: entered allmulticast mode
[  397.124443][ T6545] bridge_slave_0: entered promiscuous mode
[  397.555508][ T3097] hsr_slave_0: left promiscuous mode
[  397.703520][ T6614] loop1: detected capacity change from 0 to 32768
[  397.722725][ T3097] hsr_slave_1: left promiscuous mode
[  397.852286][ T3097] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  397.860049][ T3097] batman_adv: batadv0: Removing interface: batadv_slave_0
[  397.945156][ T6614] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  397.971028][ T3097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  397.979887][ T3097] batman_adv: batadv0: Removing interface: batadv_slave_1
[  398.046718][ T3097] veth1_macvtap: left promiscuous mode
[  398.053381][ T3097] veth0_macvtap: left promiscuous mode
[  398.059273][ T3097] veth1_vlan: left promiscuous mode
[  398.065124][ T3097] veth0_vlan: left promiscuous mode
[  398.538250][ T6637] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  398.724187][  T788] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  398.738104][ T6614] XFS (loop1): Ending clean mount
[  398.765329][ T6614] XFS (loop1): Quotacheck needed: Please wait.
[  399.116505][   T50] Bluetooth: hci0: command tx timeout
[  399.257475][ T6614] XFS (loop1): Quotacheck: Done.
[  400.081831][ T3097] team0 (unregistering): Port device team_slave_1 removed
[  400.196292][ T3097] team0 (unregistering): Port device team_slave_0 removed
[  400.513382][ T6545] bridge0: port 2(bridge_slave_1) entered blocking state
[  400.522558][ T6545] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.530473][ T6545] bridge_slave_1: entered allmulticast mode
[  400.548489][ T6545] bridge_slave_1: entered promiscuous mode
[  400.627366][ T5903] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  400.887040][ T6545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  401.031566][ T6545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  401.321732][ T6545] team0: Port device team_slave_0 added
[  401.382636][ T6545] team0: Port device team_slave_1 added
[  401.712739][ T6545] batman_adv: batadv0: Adding interface: batadv_slave_0
[  401.720168][ T6545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  401.747090][ T6545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  401.936928][ T6545] batman_adv: batadv0: Adding interface: batadv_slave_1
[  401.944273][ T6545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  401.971775][ T6545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  402.598401][ T6545] hsr_slave_0: entered promiscuous mode
[  402.613491][ T6659] loop2: detected capacity change from 0 to 4096
[  402.655679][ T6545] hsr_slave_1: entered promiscuous mode
[  402.671071][ T6659] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  402.689084][ T6545] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  402.697453][ T6545] Cannot create hsr debugfs directory
[  403.458770][ T1220] ieee802154 phy0 wpan0: encryption failed: -22
[  403.466507][ T1220] ieee802154 phy1 wpan1: encryption failed: -22
[  403.759961][ T6671] can0: slcan on ptm0.
[  404.052249][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  404.219384][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  404.242090][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  404.250974][ T6668] can0 (unregistered): slcan off ptm0.
[  404.251525][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  404.265923][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  404.423958][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  405.445219][ T6545] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  405.681541][ T6686] loop0: detected capacity change from 0 to 32768
[  405.706466][ T6545] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  405.716246][ T6688] loop3: detected capacity change from 0 to 256
[  405.737076][ T6545] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  405.768122][ T6688] exfat: Unknown parameter '�\�&"�h������/@��k�����1)25�f�X��'
[  405.826305][ T6686] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  405.950485][ T6545] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  406.481108][ T6686] XFS (loop0): Ending clean mount
[  406.488138][ T6686] XFS (loop0): Quotacheck needed: Please wait.
[  406.554566][ T6686] XFS (loop0): Quotacheck: Done.
[  406.769200][ T5905] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  407.395595][ T6545] 8021q: adding VLAN 0 to HW filter on device bond0
[  407.581636][ T6545] 8021q: adding VLAN 0 to HW filter on device team0
[  407.666834][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  407.674706][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  407.800383][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  407.808179][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  408.118695][ T6545] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  408.129697][ T6545] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  408.530798][    T8] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  408.843328][    T8] usb 4-1: Using ep0 maxpacket: 16
[  409.036327][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  409.047842][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  409.058063][    T8] usb 4-1: New USB device found, idVendor=0dfc, idProduct=e100, bcdDevice= 0.00
[  409.067569][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  409.086643][ T6724] loop1: detected capacity change from 0 to 32768
[  409.105439][ T6724] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6724)
[  409.169169][ T6724] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  409.179951][ T6724] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm
[  409.197356][ T6724] BTRFS info (device loop1): using free-space-tree
[  409.205578][    T8] usb 4-1: config 0 descriptor??
[  410.384663][ T6752] loop0: detected capacity change from 0 to 32768
[  410.747985][ T5903] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  410.965290][ T6755] loop2: detected capacity change from 0 to 40427
[  410.972734][    T8] usbhid 4-1:0.0: can't add hid device: -71
[  410.981182][    T8] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  411.044316][    T8] usb 4-1: USB disconnect, device number 10
[  411.103075][ T6755] F2FS-fs (loop2): Found nat_bits in checkpoint
[  411.412288][ T6755] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  411.540494][   T29] audit: type=1800 audit(1717854850.902:7): pid=6755 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=10 res=0 errno=0
[  411.584932][ T5910] syz-executor.2: attempt to access beyond end of device
[  411.584932][ T5910] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  411.637783][ T6545] 8021q: adding VLAN 0 to HW filter on device batadv0
[  413.040956][ T6766] loop3: detected capacity change from 0 to 32768
[  413.158319][ T6766] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  413.519602][ T6766] XFS (loop3): Ending clean mount
[  413.557529][ T6766] XFS (loop3): Quotacheck needed: Please wait.
[  413.658333][ T6766] XFS (loop3): Quotacheck: Done.
[  414.031297][ T5918] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  414.569670][ T6545] veth0_vlan: entered promiscuous mode
[  414.655580][ T6545] veth1_vlan: entered promiscuous mode
[  415.710050][ T6545] veth0_macvtap: entered promiscuous mode
[  415.805369][ T6545] veth1_macvtap: entered promiscuous mode
[  415.866743][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.877527][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.888678][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.906503][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.918793][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.929566][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.939687][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  415.952414][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  415.967417][ T6545] batman_adv: batadv0: Interface activated: batadv_slave_0
[  416.147576][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.158616][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.168746][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.179492][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.189668][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.207578][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.219590][ T6545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.232003][ T6545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.237625][ T6545] batman_adv: batadv0: Interface activated: batadv_slave_1
[  416.290735][ T6545] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  416.290950][ T6545] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  416.291154][ T6545] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  416.291363][ T6545] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  417.720855][ T6821] loop0: detected capacity change from 0 to 2048
[  417.922876][ T6821] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.936205][ T6821] ext4 filesystem being mounted at /root/syzkaller-testdir2259775596/syzkaller.WYPwi3/33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  418.239698][ T6821] fs-verity: sha512 using implementation "sha512-generic"
[  418.465203][ T6823] loop2: detected capacity change from 0 to 40427
[  418.530107][ T6823] F2FS-fs (loop2): Found nat_bits in checkpoint
[  418.587390][ T6831] syz-executor.1[6831] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  418.587928][ T6831] syz-executor.1[6831] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  418.825570][ T5905] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.858000][ T6823] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  418.957552][   T29] audit: type=1800 audit(1717854858.362:8): pid=6823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=10 res=0 errno=0
[  419.027375][ T5910] syz-executor.2: attempt to access beyond end of device
[  419.027375][ T5910] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  420.274442][ T6846] loop0: detected capacity change from 0 to 32768
[  420.387241][ T6846] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  420.902247][ T6846] XFS (loop0): Ending clean mount
[  420.947537][ T6846] XFS (loop0): Quotacheck needed: Please wait.
[  421.109371][ T6846] XFS (loop0): Quotacheck: Done.
[  421.476971][ T5905] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  422.640889][ T6880] loop3: detected capacity change from 0 to 32768
[  422.773341][ T6880] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  423.288760][ T6880] XFS (loop3): Ending clean mount
[  423.306206][ T6880] XFS (loop3): Quotacheck needed: Please wait.
[  423.404180][ T6895] syz-executor.1 uses obsolete (PF_INET,SOCK_PACKET)
[  423.436648][ T6880] XFS (loop3): Quotacheck: Done.
[  423.466889][   T29] audit: type=1800 audit(1717854862.932:9): pid=6880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=9292 res=0 errno=0
[  423.583527][   T29] audit: type=1800 audit(1717854862.962:10): pid=6880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="loop3" ino=9292 res=0 errno=0
[  423.664210][ T5918] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  424.181021][ T5185] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  424.190806][ T5185] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  424.576906][ T4290] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  424.585135][ T4290] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  424.671313][ T5185] usb 1-1: new low-speed USB device number 16 using dummy_hcd
[  425.046680][ T6899] loop1: detected capacity change from 0 to 40427
[  425.091138][ T5185] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  425.099712][ T5185] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  425.111252][ T5185] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  425.121442][ T5185] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  425.131935][ T5185] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  425.186849][ T6899] F2FS-fs (loop1): Found nat_bits in checkpoint
[  425.475412][ T6899] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  425.502410][   T29] audit: type=1800 audit(1717854864.962:11): pid=6899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=10 res=0 errno=0
[  425.653932][ T5903] syz-executor.1: attempt to access beyond end of device
[  425.653932][ T5903] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  426.201366][ T5185] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  426.211730][ T5185] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  426.220063][ T5185] usb 1-1: Manufacturer: ц
[  426.322941][ T5185] usb 1-1: config 0 descriptor??
[  426.370141][ T5185] hub 1-1:0.0: bad descriptor, ignoring hub
[  426.376514][ T5185] hub 1-1:0.0: probe with driver hub failed with error -5
[  426.391755][ T5185] input: ц as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input5
[  426.813059][ T5185] usb 1-1: USB disconnect, device number 16
[  427.293192][ T6920] loop2: detected capacity change from 0 to 32768
[  427.383577][ T6920] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  427.716303][ T6920] XFS (loop2): Ending clean mount
[  427.783870][ T6920] XFS (loop2): Quotacheck needed: Please wait.
[  427.935817][ T6920] XFS (loop2): Quotacheck: Done.
[  428.133706][ T5910] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  428.349240][ T6948] loop4: detected capacity change from 0 to 256
[  428.367194][ T6948] exfat: Deprecated parameter 'utf8'
[  428.373576][ T6948] exfat: Deprecated parameter 'utf8'
[  428.582865][ T6948] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  429.691972][ T6958] loop0: detected capacity change from 0 to 40427
[  429.833593][ T6958] F2FS-fs (loop0): Found nat_bits in checkpoint
[  430.142362][ T6958] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  430.173255][ T6958] process 'syz-executor.0' launched './file1' with NULL argv: empty string added
[  430.304568][ T5905] syz-executor.0: attempt to access beyond end of device
[  430.304568][ T5905] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  432.101579][ T6987] loop1: detected capacity change from 0 to 32768
[  432.115027][    T8] usb 5-1: new low-speed USB device number 4 using dummy_hcd
[  432.236392][ T6987] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  432.441124][ T6987] XFS (loop1): Ending clean mount
[  432.459402][ T6987] XFS (loop1): Quotacheck needed: Please wait.
[  432.501035][    T8] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  432.509658][    T8] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  432.518321][    T8] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  432.527718][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  432.538048][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  432.606628][ T6987] XFS (loop1): Quotacheck: Done.
[  432.856392][ T5903] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  433.158805][    T8] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  433.168472][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  433.176999][    T8] usb 5-1: Manufacturer: ц
[  433.203841][    T8] usb 5-1: config 0 descriptor??
[  433.269285][    T8] hub 5-1:0.0: bad descriptor, ignoring hub
[  433.276821][    T8] hub 5-1:0.0: probe with driver hub failed with error -5
[  433.291997][    T8] input: ц as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input6
[  433.359130][    T8] input: failed to attach handler mousedev to device input6, error: -5
[  433.541583][    T8] usb 5-1: USB disconnect, device number 4
[  434.668792][ T7026] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  435.922073][ T7033] loop1: detected capacity change from 0 to 32768
[  436.077824][ T7033] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=ro,metadata_checksum=none,data_checksum=none,nojournal_transaction_names,read_only
[  436.093530][ T7033] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  436.278172][ T7033] bcachefs (loop1): alloc_read... done
[  436.284343][ T7033] bcachefs (loop1): stripes_read... done
[  436.290546][ T7033] bcachefs (loop1): snapshots_read... done
[  436.308979][ T7033] bcachefs (loop1): journal_replay... done
[  436.315450][ T7033] bcachefs (loop1): resume_logged_ops... done
[  436.327426][ T7033] bcachefs (loop1): done starting filesystem
[  436.344052][   T43] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  436.451757][ T7033] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  436.560862][ T7058] overlayfs: missing 'lowerdir'
[  436.828442][ T7033] syz-executor.1 (7033) used greatest stack depth: 5224 bytes left
[  436.887976][ T5903] bcachefs (loop1): shutting down
[  436.921302][   T43] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  436.930862][   T43] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  436.939228][   T43] usb 5-1: Product: syz
[  436.944110][   T43] usb 5-1: Manufacturer: syz
[  436.948953][   T43] usb 5-1: SerialNumber: syz
[  436.956398][  T788] usb 1-1: new low-speed USB device number 17 using dummy_hcd
[  437.018874][   T43] usb 5-1: config 0 descriptor??
[  437.033488][ T5903] bcachefs (loop1): shutdown complete
[  437.147399][   T43] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 005
[  437.315421][   T43]  (null): failure setting delay to 10us
[  437.322027][   T43] i2c-tiny-usb 5-1:0.0: probe with driver i2c-tiny-usb failed with error -5
[  437.381607][  T788] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  437.390428][  T788] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  437.404608][  T788] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  437.416938][  T788] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  437.427366][  T788] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  437.460872][   T43] usb 5-1: USB disconnect, device number 5
[  437.727322][ T7067] loop3: detected capacity change from 0 to 1024
[  437.836456][   T29] audit: type=1804 audit(1717854877.272:12): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2790809980/syzkaller.BQxe1w/40/file2/bus" dev="loop3" ino=26 res=1 errno=0
[  437.862908][   T29] audit: type=1804 audit(1717854877.302:13): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2790809980/syzkaller.BQxe1w/40/file2/bus" dev="loop3" ino=26 res=1 errno=0
[  437.888333][   T29] audit: type=1804 audit(1717854877.302:14): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2790809980/syzkaller.BQxe1w/40/file2/bus" dev="loop3" ino=26 res=1 errno=0
[  437.919139][   T29] audit: type=1804 audit(1717854877.302:15): pid=7067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/root/syzkaller-testdir2790809980/syzkaller.BQxe1w/40/file2/bus" dev="loop3" ino=26 res=1 errno=0
[  438.221324][  T788] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  438.231038][  T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  438.239314][  T788] usb 1-1: Manufacturer: ц
[  438.272040][  T788] usb 1-1: config 0 descriptor??
[  438.333134][  T788] hub 1-1:0.0: bad descriptor, ignoring hub
[  438.339311][  T788] hub 1-1:0.0: probe with driver hub failed with error -5
[  438.354606][  T788] input: ц as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input7
[  438.616629][   T43] usb 1-1: USB disconnect, device number 17
[  440.925643][ T7113] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  441.306475][ T7120] fscrypt (sda1, inode 1966): Mutually exclusive encryption flags (0x14)
[  441.344542][ T4429] Bluetooth: hci1: command 0x0406 tx timeout
[  441.351445][ T4429] Bluetooth: hci3: command 0x0406 tx timeout
[  441.358564][ T4429] Bluetooth: hci2: command 0x0406 tx timeout
[  441.367000][ T4429] Bluetooth: hci4: command 0x0406 tx timeout
[  441.429157][ T7114] loop3: detected capacity change from 0 to 32768
[  441.447005][ T7114] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7114)
[  441.482657][ T7114] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  441.502280][ T7114] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm
[  441.513719][ T7114] BTRFS info (device loop3): using free-space-tree
[  441.546069][ T7122] loop1: detected capacity change from 0 to 256
[  442.024290][ T5918] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  442.352462][ T7150] loop2: detected capacity change from 0 to 8
[  442.440694][   T43] usb 1-1: new low-speed USB device number 18 using dummy_hcd
[  442.833568][   T43] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  442.842328][   T43] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  442.850746][   T43] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  442.860139][   T43] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  442.870564][   T43] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  442.942316][ T7157] warning: `syz-executor.2' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  443.522603][   T43] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  443.532134][   T43] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.546115][   T43] usb 1-1: Manufacturer: ц
[  443.582496][   T43] usb 1-1: config 0 descriptor??
[  443.636036][   T43] hub 1-1:0.0: bad descriptor, ignoring hub
[  443.651038][   T43] hub 1-1:0.0: probe with driver hub failed with error -5
[  443.667929][   T43] input: ц as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input8
[  443.728196][   T43] input: failed to attach handler mousedev to device input8, error: -5
[  443.917387][   T43] usb 1-1: USB disconnect, device number 18
[  445.148748][ T7185] loop2: detected capacity change from 0 to 1024
[  445.268469][ T7182] loop4: detected capacity change from 0 to 32768
[  445.290730][ T7182] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7182)
[  445.332005][ T7182] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  445.342604][ T7182] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm
[  445.353965][ T7182] BTRFS info (device loop4): using free-space-tree
[  445.616699][ T3453] hfsplus: b-tree write err: -5, ino 4
[  445.947493][ T6545] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  447.073932][ T7216] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  448.069937][ T7227] mkiss: ax0: crc mode is auto.
[  449.154966][  T788] usb 3-1: new low-speed USB device number 8 using dummy_hcd
[  449.601538][  T788] usb 3-1: config index 0 descriptor too short (expected 1307, got 27)
[  449.610085][  T788] usb 3-1: config 0 has an invalid interface number: 0 but max is -1
[  449.619099][  T788] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 0
[  449.628348][  T788] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  449.638642][  T788] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  450.514464][ T7245] loop1: detected capacity change from 0 to 32768
[  450.655377][ T7245] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7245)
[  451.181909][  T788] usb 3-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  451.191690][  T788] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.199939][  T788] usb 3-1: Manufacturer: ц
[  451.284602][  T788] usb 3-1: config 0 descriptor??
[  451.369454][  T788] hub 3-1:0.0: bad descriptor, ignoring hub
[  451.375912][  T788] hub 3-1:0.0: probe with driver hub failed with error -5
[  451.391091][  T788] input: ц as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input9
[  451.617077][ T7252] netlink: 'syz-executor.3': attribute type 32 has an invalid length.
[  453.176161][  T788] usb 3-1: USB disconnect, device number 8
[  454.990744][    T8] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  455.260853][    T8] usb 4-1: Using ep0 maxpacket: 16
[  455.391978][    T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  455.402707][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  455.412832][    T8] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  455.425495][    T8] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  455.692845][    T8] usb 4-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=b4.5b
[  455.702617][    T8] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=3
[  455.711487][    T8] usb 4-1: Product: syz
[  455.716041][    T8] usb 4-1: Manufacturer: syz
[  455.721030][    T8] usb 4-1: SerialNumber: syz
[  455.863521][    T8] usb 4-1: config 0 descriptor??
[  455.921925][ T7279] loop1: detected capacity change from 0 to 40427
[  455.928412][    T8] usb 4-1: NFC: intf ffff88812b2abc00 id ffffffff915008f0
[  456.001741][ T7279] F2FS-fs (loop1): invalid crc value
[  456.016838][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  456.054866][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  456.065302][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  456.074948][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  456.110603][ T7279] F2FS-fs (loop1): Found nat_bits in checkpoint
[  456.421019][ T7279] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  456.591100][ T5903] syz-executor.1: attempt to access beyond end of device
[  456.591100][ T5903] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  457.005999][ T5126] usb 4-1: USB disconnect, device number 11
[  457.631546][ T7295] capability: warning: `syz-executor.0' uses deprecated v2 capabilities in a way that may be insecure
[  458.220784][ T5185] usb 4-1: new low-speed USB device number 12 using dummy_hcd
[  458.601284][ T5185] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[  458.609846][ T5185] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  458.618454][ T5185] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  458.627760][ T5185] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  458.638102][ T5185] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  459.261149][ T5185] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  459.270913][ T5185] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  459.279173][ T5185] usb 4-1: Manufacturer: ц
[  459.347058][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  459.387339][ T5185] usb 4-1: config 0 descriptor??
[  459.443654][ T7319] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  459.453412][ T7319] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  459.463078][ T7319] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  459.542673][ T5185] hub 4-1:0.0: bad descriptor, ignoring hub
[  459.548858][ T5185] hub 4-1:0.0: probe with driver hub failed with error -5
[  459.564341][ T5185] input: ц as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input10
[  459.769257][ T5185] input: failed to attach handler mousedev to device input10, error: -5
[  459.900961][    T8] usb 4-1: USB disconnect, device number 12
[  459.919651][ T7316] loop1: detected capacity change from 0 to 32768
[  459.987331][ T7316] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  459.998058][ T7316] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm
[  460.009428][ T7316] BTRFS info (device loop1): using free-space-tree
[  460.331999][ T7321] loop2: detected capacity change from 0 to 4096
[  460.379160][ T7321] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  460.479868][ T5903] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  460.604254][ T7321] ntfs3: loop2: Failed to initialize $Extend/$Reparse.
[  462.223064][ T7321] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  462.277434][ T7321] bond1: entered promiscuous mode
[  462.332712][ T7321] ip6gretap1: entered promiscuous mode
[  462.340970][ T7321] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  463.903357][ T5185] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  464.301175][ T5185] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  464.312637][ T5185] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  464.324155][ T5185] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  464.336828][ T5185] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  464.404146][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  464.437830][ T7370] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  464.448340][ T7370] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  464.457982][ T7370] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  464.468947][ T5185] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  464.478687][ T5185] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  464.489521][ T5185] usb 3-1: Manufacturer: syz
[  464.555459][ T5185] usb 3-1: config 0 descriptor??
[  464.883277][ T1220] ieee802154 phy0 wpan0: encryption failed: -22
[  464.889942][ T1220] ieee802154 phy1 wpan1: encryption failed: -22
[  465.127596][ T5185] appleir 0003:05AC:8243.0001: No inputs registered, leaving
[  465.299246][ T5185] appleir 0003:05AC:8243.0001: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  465.340943][    T8] usb 2-1: new low-speed USB device number 23 using dummy_hcd
[  465.461008][ T7361] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  465.463890][ T7375] loop0: detected capacity change from 0 to 32768
[  465.469886][ T7361] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  465.502318][ T7375] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7375)
[  465.524834][ T7375] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  465.535635][ T7375] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm
[  465.547022][ T7375] BTRFS info (device loop0): using free-space-tree
[  465.801833][    T8] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  465.810885][    T8] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  465.819223][    T8] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  465.828781][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  465.839116][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  465.941509][ T7397] pim6reg1: entered allmulticast mode
[  466.004674][ T7399] pim6reg1: entered promiscuous mode
[  466.121014][ T5905] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  466.383226][ T5126] usb 3-1: USB disconnect, device number 9
[  466.933592][ T7402] loop4: detected capacity change from 0 to 32768
[  466.961060][ T7402] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7402)
[  467.024034][ T7402] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  467.034769][ T7402] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm
[  467.046166][ T7402] BTRFS info (device loop4): using free-space-tree
[  467.185371][    T8] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  467.197860][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.207216][    T8] usb 2-1: Manufacturer: ц
[  467.249426][    T8] usb 2-1: config 0 descriptor??
[  467.332221][    T8] hub 2-1:0.0: bad descriptor, ignoring hub
[  467.338396][    T8] hub 2-1:0.0: probe with driver hub failed with error -5
[  467.356183][    T8] input: ц as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input11
[  467.564604][    T8] usb 2-1: USB disconnect, device number 23
[  467.588548][ T6545] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  467.682109][ T7424] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  467.865613][ T7424] loop2: detected capacity change from 0 to 2048
[  467.955754][ T7426] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  468.479840][ T7428] loop0: detected capacity change from 0 to 8
[  469.246379][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  469.318823][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  469.328535][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  469.339564][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  469.948019][   T29] audit: type=1326 audit(1717854909.372:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  469.974102][   T29] audit: type=1326 audit(1717854909.372:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.015298][   T29] audit: type=1326 audit(1717854909.382:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.044031][   T29] audit: type=1326 audit(1717854909.402:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.069762][   T29] audit: type=1326 audit(1717854909.402:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.095162][   T29] audit: type=1326 audit(1717854909.412:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.118721][   T29] audit: type=1326 audit(1717854909.412:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.142509][   T29] audit: type=1326 audit(1717854909.412:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.168278][   T29] audit: type=1326 audit(1717854909.412:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7444 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9e347cf69 code=0x7ffc0000
[  470.581287][ T7449] loop4: detected capacity change from 0 to 128
[  470.724144][ T7446] loop1: detected capacity change from 0 to 32768
[  470.742206][ T7446] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7446)
[  470.772199][ T7446] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  470.791006][ T7446] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm
[  470.802429][ T7446] BTRFS info (device loop1): using free-space-tree
[  470.819741][ T7451] pim6reg1: entered allmulticast mode
[  470.878008][ T7451] pim6reg1: entered promiscuous mode
[  471.409843][ T5903] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  471.674508][ T7472] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  471.917390][ T5131] kernel write not supported for file bpf-prog (pid: 5131 comm: kworker/1:6)
[  472.065779][  T780] usb 3-1: new low-speed USB device number 10 using dummy_hcd
[  472.380126][ T7481] pimreg: entered allmulticast mode
[  472.483419][  T780] usb 3-1: config index 0 descriptor too short (expected 1307, got 27)
[  472.492271][  T780] usb 3-1: config 0 has an invalid interface number: 0 but max is -1
[  472.500845][  T780] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 0
[  472.502270][ T7481] loop3: detected capacity change from 0 to 64
[  472.509997][  T780] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  472.529131][ T7481] hfs: unable to parse mount options
[  472.535507][  T780] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  473.629053][ T7490] loop1: detected capacity change from 0 to 32768
[  473.680610][ T7490] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7490)
[  473.695402][  T780] usb 3-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  473.704831][  T780] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.713244][  T780] usb 3-1: Manufacturer: ц
[  473.735070][  T780] usb 3-1: config 0 descriptor??
[  473.772819][ T7490] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  473.783805][ T7490] BTRFS info (device loop1): using crc32c (crc32c-generic) checksum algorithm
[  473.793766][ T7490] BTRFS info (device loop1): using free-space-tree
[  473.805951][  T780] hub 3-1:0.0: bad descriptor, ignoring hub
[  473.813221][  T780] hub 3-1:0.0: probe with driver hub failed with error -5
[  473.827908][  T780] input: ц as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input12
[  474.074337][    T8] usb 3-1: USB disconnect, device number 10
[  474.175381][ T7506] loop0: detected capacity change from 0 to 64
[  474.280820][ T7506] hfs: unable to read volume bitmap
[  474.286452][ T7506] hfs: can't find a HFS filesystem on dev loop0
[  474.411998][ T5903] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  475.030941][ T7518] pim6reg1: entered allmulticast mode
[  475.033144][ T5131] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  475.096104][ T7518] pim6reg1: entered promiscuous mode
[  475.341770][ T5131] usb 5-1: Using ep0 maxpacket: 32
[  475.461414][   T43] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  475.475267][ T5131] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[  475.484189][ T5131] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  475.501211][ T5131] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[  475.704766][ T5131] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  475.714617][ T5131] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  475.723698][ T5131] usb 5-1: Product: syz
[  475.728082][ T5131] usb 5-1: Manufacturer: syz
[  475.732993][ T5131] usb 5-1: SerialNumber: syz
[  475.806831][ T5131] usb 5-1: config 0 descriptor??
[  475.881057][ T5131] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  475.907948][   T43] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[  475.918069][   T43] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.946242][ T5131] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  475.965412][   T43] usb 3-1: config 0 descriptor??
[  476.482468][ T7523] loop2: detected capacity change from 0 to 512
[  476.576006][ T7523] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  476.636478][ T7523] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  476.647204][ T7523] EXT4-fs (loop2): group descriptors corrupted!
[  476.858895][ T7527] loop1: detected capacity change from 0 to 32768
[  476.877642][ T7527] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7527)
[  476.918669][ T7530] loop0: detected capacity change from 0 to 512
[  476.947487][ T7527] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  476.958175][ T7527] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm
[  476.969942][ T7527] BTRFS info (device loop1): using free-space-tree
[  476.998888][ T7530] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  477.043031][ T7530] EXT4-fs (loop0): 1 truncate cleaned up
[  477.049218][ T7530] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  477.135201][   T43] gs_usb 3-1:0.0: Couldn't send data format (err=-71)
[  477.142528][   T43] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -71
[  477.167437][   T43] usb 3-1: USB disconnect, device number 11
[  477.455486][ T5905] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.481314][ T5903] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  477.763857][ T5185] usb 5-1: USB disconnect, device number 6
[  477.798715][ T5185] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[  478.952390][ T7554] loop2: detected capacity change from 0 to 32768
[  478.976688][ T7554] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (7554)
[  479.005593][ T7554] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  479.016558][ T7554] BTRFS info (device loop2): using crc32c (crc32c-generic) checksum algorithm
[  479.026421][ T7554] BTRFS info (device loop2): using free-space-tree
[  479.844320][ T5910] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  479.899711][ T7568] loop4: detected capacity change from 0 to 32768
[  479.975209][ T7568] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7568)
[  480.011088][ T7568] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  480.021807][ T7568] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  480.032022][ T7568] BTRFS info (device loop4): using free-space-tree
[  480.250586][ T7568] loop4: detected capacity change from 32768 to 11
[  480.279839][ T7568] syz-executor.4: attempt to access beyond end of device
[  480.279839][ T7568] loop4: rw=6145, sector=10448, nr_sectors = 8 limit=11
[  480.294173][ T7568] BTRFS error (device loop4): bdev /dev/loop4 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0
[  480.313830][ T7568] syz-executor.4: attempt to access beyond end of device
[  480.313830][ T7568] loop4: rw=6145, sector=10440, nr_sectors = 8 limit=11
[  480.330098][ T7568] BTRFS error (device loop4): bdev /dev/loop4 errs: wr 2, rd 0, flush 0, corrupt 0, gen 0
[  480.349871][ T7568] BTRFS error (device loop4 state AL): Transaction aborted (error -5)
[  480.358531][ T7568] BTRFS: error (device loop4 state AL) in free_log_tree:3245: errno=-5 IO failure
[  480.368133][ T7568] BTRFS info (device loop4 state EAL): forced readonly
[  480.376833][ T7568] BTRFS: error (device loop4 state EAL) in free_log_tree:3245: errno=-5 IO failure
[  480.388032][ T7568] BTRFS warning (device loop4 state EAL): Skipping commit of aborted transaction.
[  480.397579][ T7568] BTRFS: error (device loop4 state EAL) in cleanup_transaction:2005: errno=-5 IO failure
[  480.514071][ T7598] pim6reg1: entered allmulticast mode
[  480.580647][   T43] usb 4-1: new low-speed USB device number 13 using dummy_hcd
[  480.582177][ T6545] BTRFS info (device loop4 state EAL): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  480.626772][ T7598] pim6reg1: entered promiscuous mode
[  480.983318][   T43] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[  480.992002][   T43] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  481.000527][   T43] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  481.009694][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  481.025944][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  481.401336][ T7601] loop1: detected capacity change from 0 to 256
[  481.553855][ T7601] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  482.325428][ T7605] loop0: detected capacity change from 0 to 32768
[  482.360043][ T7605] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7605)
[  482.398894][ T7605] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  482.409543][ T7605] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm
[  482.421449][ T7605] BTRFS info (device loop0): using free-space-tree
[  482.429435][   T43] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  482.439067][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  482.447755][   T43] usb 4-1: Manufacturer: ц
[  482.501038][   T10] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  482.514067][   T43] usb 4-1: config 0 descriptor??
[  482.563002][   T43] hub 4-1:0.0: bad descriptor, ignoring hub
[  482.569185][   T43] hub 4-1:0.0: probe with driver hub failed with error -5
[  482.583893][   T43] input: ц as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input13
[  482.804695][   T43] usb 4-1: USB disconnect, device number 13
[  482.891503][   T10] usb 3-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[  482.901393][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.960593][  T788] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  482.976409][   T10] usb 3-1: config 0 descriptor??
[  483.033623][ T5905] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  483.260733][  T788] usb 2-1: Using ep0 maxpacket: 32
[  483.296216][ T7609] loop2: detected capacity change from 0 to 512
[  483.326951][ T7609] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  483.361598][ T7609] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  483.372359][ T7609] EXT4-fs (loop2): group descriptors corrupted!
[  483.403197][  T788] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[  483.411979][  T788] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  483.424594][  T788] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[  483.612673][  T788] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  483.622851][  T788] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  483.631657][  T788] usb 2-1: Product: syz
[  483.636041][  T788] usb 2-1: Manufacturer: syz
[  483.640924][  T788] usb 2-1: SerialNumber: syz
[  483.731004][  T788] usb 2-1: config 0 descriptor??
[  483.809121][  T788] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  483.942346][  T788] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  484.169463][ T7632] loop4: detected capacity change from 0 to 32768
[  484.187411][ T7632] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7632)
[  484.210524][   T10] gs_usb 3-1:0.0: Couldn't send data format (err=-71)
[  484.217582][   T10] gs_usb 3-1:0.0: probe with driver gs_usb failed with error -71
[  484.235571][   T10] usb 3-1: USB disconnect, device number 12
[  484.264421][ T7632] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  484.275726][ T7632] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm
[  484.285552][ T7632] BTRFS info (device loop4): using free-space-tree
[  484.724425][ T6545] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  485.555990][ T7656] loop2: detected capacity change from 0 to 4096
[  485.623076][ T7656] NILFS (loop2): invalid segment: Checksum error in segment payload
[  485.638073][ T7656] NILFS (loop2): trying rollback from an earlier position
[  485.644539][ T5185] usb 2-1: USB disconnect, device number 24
[  485.702088][ T5185] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[  485.772247][ T7656] NILFS (loop2): recovery complete
[  485.801388][ T7658] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  486.229524][ T7662] pim6reg1: entered allmulticast mode
[  486.294001][ T7662] pim6reg1: entered promiscuous mode
[  487.511887][ T7669] loop4: detected capacity change from 0 to 32768
[  487.834925][ T7669] bcachefs (loop4): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names
[  487.849569][ T7669] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  488.165551][ T7669] bcachefs (loop4): alloc_read... done
[  488.171537][ T7669] bcachefs (loop4): stripes_read... done
[  488.177558][ T7669] bcachefs (loop4): snapshots_read... done
[  488.205867][ T7669] bcachefs (loop4): journal_replay... done
[  488.212168][ T7669] bcachefs (loop4): resume_logged_ops... done
[  488.218737][ T7669] bcachefs (loop4): going read-write
[  488.293706][ T7673] loop1: detected capacity change from 0 to 32768
[  488.312637][ T7673] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (7673)
[  488.348749][ T7673] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  488.358867][ T7669] bcachefs (loop4): done starting filesystem
[  488.359390][ T7673] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm
[  488.376605][ T7673] BTRFS info (device loop1): using free-space-tree
[  488.468302][   T29] audit: type=1326 audit(1717854927.892:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7668 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1a2187cf69 code=0x0
[  488.626971][ T5126] usb 1-1: new low-speed USB device number 19 using dummy_hcd
[  489.178679][ T5126] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  489.187521][ T5126] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  489.196069][ T5126] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  489.205331][ T5126] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  489.221544][ T5126] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  489.272930][ T6545] bcachefs (loop4): shutting down
[  489.278360][ T6545] bcachefs (loop4): going read-only
[  489.284099][ T6545] bcachefs (loop4): finished waiting for writes to stop
[  489.325778][ T5903] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  489.339071][ T7704] loop2: detected capacity change from 0 to 32768
[  489.356908][ T7704] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (7704)
[  489.381617][ T6545] bcachefs (loop4): flushing journal and stopping allocators, journal seq 10
[  489.407843][ T6545] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 10
[  489.427888][ T7704] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  489.438652][ T7704] BTRFS info (device loop2): using crc32c (crc32c-generic) checksum algorithm
[  489.448475][ T7704] BTRFS info (device loop2): using free-space-tree
[  489.536144][ T6545] bcachefs (loop4): shutdown complete, journal seq 11
[  489.543899][ T6545] bcachefs (loop4): marking filesystem clean
[  489.649256][ T6545] bcachefs (loop4): shutdown complete
[  489.952030][   T10] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  489.969055][ T5910] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  489.981268][ T5126] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  489.990707][ T5126] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  489.999149][ T5126] usb 1-1: Manufacturer: ц
[  490.042602][ T5126] usb 1-1: config 0 descriptor??
[  490.082679][ T5126] hub 1-1:0.0: bad descriptor, ignoring hub
[  490.088952][ T5126] hub 1-1:0.0: probe with driver hub failed with error -5
[  490.103713][ T5126] input: ц as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input14
[  490.231711][   T10] usb 4-1: Using ep0 maxpacket: 32
[  490.353150][ T5126] usb 1-1: USB disconnect, device number 19
[  490.386086][   T10] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  490.394754][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  490.633059][   T10] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  490.642699][   T10] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  490.654006][   T10] usb 4-1: Product: syz
[  490.658405][   T10] usb 4-1: Manufacturer: syz
[  490.664183][   T10] usb 4-1: SerialNumber: syz
[  490.732363][   T10] usb 4-1: config 0 descriptor??
[  490.794037][   T10] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  490.826039][   T10] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  491.067429][   T10] usb 4-1: USB disconnect, device number 14
[  491.099083][   T10] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  491.935346][ T7730] loop2: detected capacity change from 0 to 2048
[  492.145089][ T7730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  492.212353][ T7740] pim6reg1: entered allmulticast mode
[  492.231566][ T7740] pim6reg1: entered promiscuous mode
[  492.902811][ T7751] loop1: detected capacity change from 0 to 8
[  493.173198][ T5910] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  493.759393][ T7754] loop4: detected capacity change from 0 to 32768
[  493.777898][ T7754] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7754)
[  494.575345][ T7758] loop3: detected capacity change from 0 to 32768
[  494.583401][ T5126] kernel write not supported for file bpf-prog (pid: 5126 comm: kworker/1:4)
[  494.594219][ T7754] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  494.597353][ T7758] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7758)
[  494.604729][ T7754] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm
[  494.629621][ T7754] BTRFS info (device loop4): using free-space-tree
[  494.714624][ T7758] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  494.726051][ T7758] BTRFS info (device loop3): using crc32c (crc32c-generic) checksum algorithm
[  494.735907][ T7758] BTRFS info (device loop3): using free-space-tree
[  495.125600][ T6545] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  495.227301][ T5918] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  495.233913][    T8] usb 2-1: new low-speed USB device number 25 using dummy_hcd
[  495.633183][    T8] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  495.642378][    T8] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  495.650923][    T8] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  495.660147][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  495.673235][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  496.149126][ T7797] loop2: detected capacity change from 0 to 4096
[  496.282192][    T8] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  496.292081][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  496.302209][    T8] usb 2-1: Manufacturer: ц
[  496.337503][ T7799] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  496.358467][    T8] usb 2-1: config 0 descriptor??
[  496.421376][    T8] hub 2-1:0.0: bad descriptor, ignoring hub
[  496.427573][    T8] hub 2-1:0.0: probe with driver hub failed with error -5
[  496.442743][    T8] input: ц as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input15
[  496.661399][    T8] usb 2-1: USB disconnect, device number 25
[  496.723908][ T5910] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  496.733621][ T5910] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=12)
[  496.811961][ T5910] Remounting filesystem read-only
[  496.817438][ T5910] NILFS (loop2): error -5 truncating bmap (ino=12)
[  496.897295][ T5910] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  496.906755][ T5910] NILFS (loop2): discard dirty page: offset=0, ino=2
[  496.914274][ T5910] NILFS (loop2): discard dirty block: blocknr=14, size=4096
[  496.973310][ T5910] NILFS (loop2): discard dirty page: offset=0, ino=6
[  496.980543][ T5910] NILFS (loop2): discard dirty block: blocknr=23, size=4096
[  496.988142][ T5910] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  496.999127][ T5910] NILFS (loop2): discard dirty block: blocknr=24, size=4096
[  497.008019][ T5910] NILFS (loop2): discard dirty page: offset=8192, ino=6
[  497.015362][ T5910] NILFS (loop2): discard dirty block: blocknr=25, size=4096
[  497.042411][ T5126] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  497.330554][ T5126] usb 4-1: Using ep0 maxpacket: 32
[  497.492322][ T5126] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  497.500952][ T5126] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  497.701016][ T5126] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  497.716423][ T5126] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  497.726893][ T5126] usb 4-1: Product: syz
[  497.731406][ T5126] usb 4-1: Manufacturer: syz
[  497.736244][ T5126] usb 4-1: SerialNumber: syz
[  497.801450][ T5126] usb 4-1: config 0 descriptor??
[  497.879739][ T5126] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  497.955716][ T5126] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  498.057292][    T8] usb 4-1: USB disconnect, device number 15
[  498.090835][ T7819] pim6reg1: entered allmulticast mode
[  498.103306][    T8] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  498.174155][ T7825] pim6reg1: entered promiscuous mode
[  498.245393][ T5131] IPVS: starting estimator thread 0...
[  498.310850][ T7826] loop1: detected capacity change from 0 to 256
[  498.341093][ T7827] IPVS: using max 240 ests per chain, 12000 per kthread
[  498.507883][ T7826] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0x702bb370, utbl_chksum : 0xe619d30d)
[  499.803817][ T7834] loop0: detected capacity change from 0 to 32768
[  499.858243][ T7832] loop4: detected capacity change from 0 to 2048
[  499.886119][ T7836] loop2: detected capacity change from 0 to 32768
[  499.900174][ T7834] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7834)
[  499.927556][ T7836] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (7836)
[  499.943964][ T7834] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  499.955364][ T7834] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm
[  499.970620][ T7834] BTRFS info (device loop0): using free-space-tree
[  499.980841][ T7836] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  499.991450][ T7836] BTRFS info (device loop2): using crc32c (crc32c-generic) checksum algorithm
[  500.001327][ T7836] BTRFS info (device loop2): using free-space-tree
[  500.083348][ T7832] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  500.213933][ T7870] loop1: detected capacity change from 0 to 128
[  500.287033][ T7870] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  500.320154][ T5910] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  500.503669][ T5905] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  500.611795][ T7856] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set
[  500.823234][ T3453] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  500.836209][ T3453] EXT4-fs (loop4): This should not happen!! Data will be lost
[  500.836209][ T3453] 
[  500.846175][ T3453] EXT4-fs (loop4): Total free blocks count 0
[  500.852527][ T3453] EXT4-fs (loop4): Free/Dirty block details
[  500.858646][ T3453] EXT4-fs (loop4): free_blocks=0
[  500.863997][ T3453] EXT4-fs (loop4): dirty_blocks=16
[  500.869355][ T3453] EXT4-fs (loop4): Block reservation details
[  500.875652][ T3453] EXT4-fs (loop4): i_reserved_data_blocks=1
[  500.973647][ T6545] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.681671][   T43] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  501.951639][   T43] usb 5-1: Using ep0 maxpacket: 8
[  502.121746][   T43] usb 5-1: config 0 has an invalid interface number: 98 but max is 1
[  502.130510][   T43] usb 5-1: config 0 has an invalid interface number: 136 but max is 1
[  502.138966][   T43] usb 5-1: config 0 has no interface number 0
[  502.145504][   T43] usb 5-1: config 0 has no interface number 1
[  502.152354][   T43] usb 5-1: config 0 interface 136 altsetting 9 endpoint 0x7 has invalid maxpacket 1024, setting to 64
[  502.163785][   T43] usb 5-1: config 0 interface 136 altsetting 9 has a duplicate endpoint with address 0xD, skipping
[  502.174844][   T43] usb 5-1: config 0 interface 136 altsetting 9 has a duplicate endpoint with address 0x8, skipping
[  502.185912][   T43] usb 5-1: config 0 interface 136 altsetting 9 has an invalid endpoint with address 0x80, skipping
[  502.197367][   T43] usb 5-1: config 0 interface 136 altsetting 9 has an invalid endpoint with address 0x53, skipping
[  502.208443][   T43] usb 5-1: config 0 interface 136 altsetting 9 has a duplicate endpoint with address 0xD, skipping
[  502.225336][   T43] usb 5-1: config 0 interface 136 altsetting 9 has 9 endpoint descriptors, different from the interface descriptor's value: 8
[  502.240576][   T43] usb 5-1: config 0 interface 98 has no altsetting 0
[  502.247542][   T43] usb 5-1: config 0 interface 136 has no altsetting 0
[  502.481907][   T43] usb 5-1: New USB device found, idVendor=04fc, idProduct=5360, bcdDevice=a2.43
[  502.491346][   T43] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.499608][   T43] usb 5-1: Product: 䰊
[  502.504426][   T43] usb 5-1: Manufacturer: 撏᳝ㅨ馝⢞荥祣갟ᚒ賭醥ㅽ໚稲樭谩澝㞙劐얄訓ꐗ嚩牉蛜窐๘캲๷뢆鐫ഈ蓸碕ꍴ霪跀☿ዽ攑꿆戮퐤斯틬쬘㋩녷挈⬫ꥨ詛䂎푕윋ᚤ钕藮爧⫋쾓錬뱹邹ᦏᒛ젼콱ꑭቸᎿ澛
[  502.535159][   T43] usb 5-1: SerialNumber: ㋆Ჯ㲱풣♿ﭛᅱ둲腀앉柍싎検늾뾐같绶㕦Ⅲ᭦詸䄐擹鐭劋ʕआ♋᭸穊瑓㱨题瑨ﵻ벺Ѓ蓫폝鑼⵶䔯ͶỤ䀣疖ڦ곡ㇳ㳄༒᪾碼㪍쬪嫸拻혿ꖺ冚಍昵탅㿔梊儚쌕븮䷲示࢖嚣溕ꊩꃚ㶤ꢦ케噥დത踾ﳄ嗧虞
[  502.541821][  T780] usb 1-1: new low-speed USB device number 20 using dummy_hcd
[  502.611438][   T43] usb 5-1: config 0 descriptor??
[  502.720790][ T7897] pim6reg1: entered allmulticast mode
[  502.778006][ T7899] pim6reg1: entered promiscuous mode
[  502.992206][  T780] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[  503.000935][  T780] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[  503.009382][  T780] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[  503.018759][  T780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  503.030957][  T780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  503.183771][   T43] cdc_ether 5-1:0.136: skipping garbage
[  503.189611][   T43] usb 5-1: bad CDC descriptors
[  503.266028][   T43] usb 5-1: USB disconnect, device number 7
[  503.611449][  T780] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  503.620941][  T780] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  503.629219][  T780] usb 1-1: Manufacturer: ц
[  503.667919][  T780] usb 1-1: config 0 descriptor??
[  503.727556][  T780] hub 1-1:0.0: bad descriptor, ignoring hub
[  503.734013][  T780] hub 1-1:0.0: probe with driver hub failed with error -5
[  503.748634][  T780] input: ц as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input16
[  504.018997][ T5131] usb 1-1: USB disconnect, device number 20
[  504.167213][   T43] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  504.610728][ T7907] loop2: detected capacity change from 0 to 32768
[  504.664071][ T7907] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz-executor.2 (7907)
[  505.017831][ T7910] loop4: detected capacity change from 0 to 32768
[  505.049792][ T7910] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7910)
[  505.070086][ T7907] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  505.081270][ T7907] BTRFS info (device loop2): using sha256 (sha256-generic) checksum algorithm
[  505.096522][ T7907] BTRFS info (device loop2): using free-space-tree
[  505.138554][ T7910] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  505.149441][ T7910] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm
[  505.159340][ T7910] BTRFS info (device loop4): using free-space-tree
[  505.167158][   T43] usb 4-1: Using ep0 maxpacket: 32
[  505.789241][ T6545] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  505.806103][ T5910] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  506.033153][ T7931] loop0: detected capacity change from 0 to 32768
[  506.047234][   T43] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  506.055920][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  506.067949][ T7931] BTRFS: device /dev/loop0 (7:0) using temp-fsid cf17c495-5ea4-4d7c-9e9f-92cc51c13da7
[  506.078037][ T7931] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7931)
[  506.122037][ T7931] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  506.134326][ T7931] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm
[  506.145649][ T7931] BTRFS info (device loop0): using free-space-tree
[  506.242228][   T43] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  506.252423][   T43] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  506.261195][   T43] usb 4-1: Product: syz
[  506.265593][   T43] usb 4-1: Manufacturer: syz
[  506.270537][   T43] usb 4-1: SerialNumber: syz
[  506.373431][   T43] usb 4-1: config 0 descriptor??
[  506.441089][   T43] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  506.543010][   T43] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  506.700323][   T43] usb 4-1: USB disconnect, device number 16
[  506.741565][ T5905] BTRFS info (device loop0): last unmount of filesystem cf17c495-5ea4-4d7c-9e9f-92cc51c13da7
[  506.747061][   T43] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  506.794531][ T7950] loop1: detected capacity change from 0 to 2048
[  506.862366][ T7950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.739118][ T3006] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:11: bg 0: block 234: padding at end of block bitmap is not set
[  507.784853][ T7968] kvm: emulating exchange as write
[  507.839629][ T7970] loop2: detected capacity change from 0 to 64
[  507.870853][ T3006] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  507.883806][ T3006] EXT4-fs (loop1): This should not happen!! Data will be lost
[  507.883806][ T3006] 
[  507.917645][ T7970] hfs: keylen 94 too large
[  507.922469][ T7970] hfs: inconsistency in B*Tree (1,0,1,0,3)
[  507.989947][ T5903] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.115274][ T7976] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[  509.131251][ T7983] pim6reg1: entered allmulticast mode
[  509.212934][ T7983] pim6reg1: entered promiscuous mode
[  510.091250][   T43] usb 4-1: new low-speed USB device number 17 using dummy_hcd
[  510.362983][ T7998] loop1: detected capacity change from 0 to 4096
[  510.392420][ T7998] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  510.998543][ T8004] loop4: detected capacity change from 0 to 32768
[  511.012872][ T8004] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (8004)
[  511.084372][ T8004] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  511.095235][ T8004] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm
[  511.109119][ T8004] BTRFS info (device loop4): using free-space-tree
[  511.245447][ T7998] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  511.275053][ T7998] ntfs3: loop1: Failed to load $Extend (-22).
[  511.281834][ T7998] ntfs3: loop1: Failed to initialize $Extend.
[  511.303222][   T43] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[  511.312084][   T43] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  511.320566][   T43] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  511.335624][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  511.347732][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  511.358632][ T5126] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  511.542819][ T6545] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  511.611727][ T5126] usb 3-1: Using ep0 maxpacket: 32
[  511.756383][ T5126] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[  511.766080][ T5126] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  511.983495][   T43] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  511.992996][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.001476][   T43] usb 4-1: Manufacturer: ц
[  512.032739][ T5126] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  512.042189][ T5126] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  512.056607][ T5126] usb 3-1: Product: syz
[  512.062873][ T5126] usb 3-1: Manufacturer: syz
[  512.067722][ T5126] usb 3-1: SerialNumber: syz
[  512.090134][   T43] usb 4-1: config 0 descriptor??
[  512.113599][ T5126] usb 3-1: config 0 descriptor??
[  512.134179][   T43] hub 4-1:0.0: bad descriptor, ignoring hub
[  512.140503][   T43] hub 4-1:0.0: probe with driver hub failed with error -5
[  512.166068][   T43] input: ц as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input17
[  512.217461][ T5126] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  512.236624][ T5126] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  512.361847][ T5126] usb 4-1: USB disconnect, device number 17
[  512.483639][ T8022] trusted_key: syz-executor.1 sent an empty control message without MSG_MORE.
[  512.905630][ T8026] loop1: detected capacity change from 0 to 256
[  513.021564][ T5075] Bluetooth: hci0: command 0x0406 tx timeout
[  513.240412][ T8028] loop4: detected capacity change from 0 to 2048
[  513.334484][ T8028] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  514.288601][ T5126] usb 3-1: USB disconnect, device number 13
[  514.353479][ T5126] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[  514.581424][ T4290] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:26: bg 0: block 234: padding at end of block bitmap is not set
[  514.629221][ T4290] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  514.642051][ T4290] EXT4-fs (loop4): This should not happen!! Data will be lost
[  514.642051][ T4290] 
[  514.662137][ T6545] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.726706][ T8047] pim6reg1: entered allmulticast mode
[  514.788909][ T8052] pim6reg1: entered promiscuous mode
[  515.083869][ T8055] IPVS: set_ctl: invalid protocol: 0 172.20.20.187:0
[  515.226196][  T780] IPVS: starting estimator thread 0...
[  515.331206][ T8060] IPVS: using max 240 ests per chain, 12000 per kthread
[  515.904656][ T8057] loop3: detected capacity change from 0 to 32768
[  515.921033][ T8057] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (8057)
[  515.979974][ T8057] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  515.990917][ T8057] BTRFS info (device loop3): using sha256 (sha256-generic) checksum algorithm
[  516.002346][ T8057] BTRFS info (device loop3): using free-space-tree
[  516.479385][ T5918] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  516.497697][ T8061] loop2: detected capacity change from 0 to 4096
[  516.583520][ T8061] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  516.820592][  T780] usb 5-1: new low-speed USB device number 8 using dummy_hcd
[  516.883576][ T8061] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  516.904168][ T8061] ntfs3: loop2: Failed to load $Extend (-22).
[  516.910764][ T8061] ntfs3: loop2: Failed to initialize $Extend.
[  517.192093][  T780] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  517.200902][  T780] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  517.218739][  T780] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  517.228130][  T780] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  517.238579][  T780] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  517.871655][  T780] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  517.882266][  T780] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  517.893000][  T780] usb 5-1: Manufacturer: ц
[  517.911813][   T29] audit: type=1800 audit(1717854957.292:26): pid=8085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1945 res=0 errno=0
[  517.982998][  T780] usb 5-1: config 0 descriptor??
[  518.084941][  T780] hub 5-1:0.0: bad descriptor, ignoring hub
[  518.095984][  T780] hub 5-1:0.0: probe with driver hub failed with error -5
[  518.112056][  T780] input: ц as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input18
[  518.245477][ T5185] usb 5-1: USB disconnect, device number 8
[  518.880809][   T43] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  519.079364][ T8095] loop2: detected capacity change from 0 to 2048
[  519.160460][   T43] usb 4-1: Using ep0 maxpacket: 32
[  519.192379][ T8095] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  519.313062][   T43] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  519.327561][   T43] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  519.430645][ T5126] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  519.533377][   T43] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  519.543057][   T43] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  519.551977][   T43] usb 4-1: Product: syz
[  519.556373][   T43] usb 4-1: Manufacturer: syz
[  519.561489][   T43] usb 4-1: SerialNumber: syz
[  519.599023][   T43] usb 4-1: config 0 descriptor??
[  519.663464][   T43] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  519.677675][ T3006] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:11: bg 0: block 234: padding at end of block bitmap is not set
[  519.711003][ T3006] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  519.724311][ T3006] EXT4-fs (loop2): This should not happen!! Data will be lost
[  519.724311][ T3006] 
[  519.744828][   T43] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  519.823525][ T5910] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  519.844595][ T5126] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  519.855922][ T5126] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  519.867538][ T5126] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  519.878077][ T5126] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  520.011845][ T5126] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  520.021905][ T5126] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  520.030430][ T5126] usb 5-1: Manufacturer: syz
[  520.076880][ T5126] usb 5-1: config 0 descriptor??
[  520.234239][ T8103] pim6reg1: entered allmulticast mode
[  520.278094][ T8103] pim6reg1: entered promiscuous mode
[  520.624444][ T5126] appleir 0003:05AC:8243.0002: unknown main item tag 0x0
[  520.654835][ T8109] IPVS: set_ctl: invalid protocol: 0 172.20.20.187:0
[  520.666973][ T5126] appleir 0003:05AC:8243.0002: No inputs registered, leaving
[  520.732914][ T5126] appleir 0003:05AC:8243.0002: hiddev1,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  521.242584][ T8115] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  521.252383][ T8115] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  521.911085][ T8114] loop0: detected capacity change from 0 to 32768
[  521.929582][ T8114] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (8114)
[  521.960475][ T5126] usb 4-1: USB disconnect, device number 18
[  521.971754][ T8114] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  521.986115][ T8114] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm
[  521.997509][ T8114] BTRFS info (device loop0): using free-space-tree
[  522.114433][ T5126] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  522.471243][ T5905] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  522.511157][   T29] audit: type=1326 audit(1717854961.902:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8131 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f698447cf69 code=0x0
[  523.234546][ T8135] loop2: detected capacity change from 0 to 40427
[  523.248154][ T5126] usb 5-1: USB disconnect, device number 9
[  523.264269][ T8135] F2FS-fs (loop2): invalid crc value
[  523.376884][ T8135] F2FS-fs (loop2): Found nat_bits in checkpoint
[  523.666198][ T8135] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  523.908301][ T5910] syz-executor.2: attempt to access beyond end of device
[  523.908301][ T5910] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  524.321933][ T5126] usb 2-1: new low-speed USB device number 26 using dummy_hcd
[  524.603314][ T8150] loop3: detected capacity change from 0 to 2048
[  524.703036][ T8150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  524.753114][ T5126] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  524.761873][ T5126] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  524.770355][ T5126] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  524.779629][ T5126] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  524.789961][ T5126] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  525.349140][ T8163] pim6reg1: entered allmulticast mode
[  525.405814][ T8165] pim6reg1: entered promiscuous mode
[  525.471390][ T5126] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  525.480953][ T5126] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.489244][ T5126] usb 2-1: Manufacturer: ц
[  525.530755][ T3006] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:11: bg 0: block 234: padding at end of block bitmap is not set
[  525.552620][ T5126] usb 2-1: config 0 descriptor??
[  525.591009][ T3006] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117
[  525.604169][ T3006] EXT4-fs (loop3): This should not happen!! Data will be lost
[  525.604169][ T3006] 
[  525.633139][ T5126] hub 2-1:0.0: bad descriptor, ignoring hub
[  525.639417][ T5126] hub 2-1:0.0: probe with driver hub failed with error -5
[  525.654307][ T5126] input: ц as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input19
[  525.714153][ T5918] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  525.807610][  T780] usb 2-1: USB disconnect, device number 26
[  526.139395][ T8170] IPVS: set_ctl: invalid protocol: 0 172.20.20.187:0
[  526.258128][  T780] IPVS: starting estimator thread 0...
[  526.318741][ T1220] ieee802154 phy0 wpan0: encryption failed: -22
[  526.326424][ T1220] ieee802154 phy1 wpan1: encryption failed: -22
[  526.371105][ T5126] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  526.379408][ T8173] IPVS: using max 240 ests per chain, 12000 per kthread
[  526.651167][ T5126] usb 1-1: Using ep0 maxpacket: 32
[  526.811406][ T5126] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  526.820205][ T5126] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  526.843881][ T8177] loop2: detected capacity change from 0 to 1024
[  526.933466][ T8177] EXT4-fs: Ignoring removed orlov option
[  526.939464][ T8177] EXT4-fs: Ignoring removed nomblk_io_submit option
[  527.106000][ T5126] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  527.115982][ T5126] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  527.124847][ T5126] usb 1-1: Product: syz
[  527.129243][ T5126] usb 1-1: Manufacturer: syz
[  527.134208][ T5126] usb 1-1: SerialNumber: syz
[  527.174076][ T8175] loop4: detected capacity change from 0 to 32768
[  527.175529][ T8177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  527.195878][ T8175] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (8175)
[  527.251518][  T788] kernel write not supported for file /sg0 (pid: 788 comm: kworker/1:2)
[  527.255649][ T8175] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  527.263446][ T5126] usb 1-1: config 0 descriptor??
[  527.270819][ T8175] BTRFS info (device loop4): using sha256 (sha256-generic) checksum algorithm
[  527.286630][ T8175] BTRFS info (device loop4): using free-space-tree
[  527.346399][ T5126] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  527.367555][ T5126] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  527.855417][ T6545] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  529.513354][ T5910] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  529.554936][ T8210] loop3: detected capacity change from 0 to 40427
[  529.566490][  T788] usb 1-1: USB disconnect, device number 21
[  529.626678][  T788] ldusb 1-1:0.0: LD USB Device #0 now disconnected
[  529.649720][ T8210] F2FS-fs (loop3): invalid crc value
[  529.745100][ T8210] F2FS-fs (loop3): Found nat_bits in checkpoint
[  530.020815][ T8210] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  530.271634][ T5918] syz-executor.3: attempt to access beyond end of device
[  530.271634][ T5918] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  530.627755][ T8220] loop0: detected capacity change from 0 to 512
[  530.747944][ T8220] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  530.762796][ T8220] ext4 filesystem being mounted at /root/syzkaller-testdir2259775596/syzkaller.WYPwi3/94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  530.854314][ T8220] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz-executor.0: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  530.891009][ T8220] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz-executor.0: bg 0: block 18: invalid block bitmap
[  531.071298][ T8226] pim6reg1: entered allmulticast mode
[  531.142636][ T8220] Quota error (device loop0): write_blk: dquota write failed
[  531.150960][ T8220] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  531.155470][ T8225] pim6reg1: entered promiscuous mode
[  531.161283][ T8220] EXT4-fs error (device loop0): ext4_acquire_dquot:6882: comm syz-executor.0: Failed to acquire dquot type 1
[  531.456611][ T8220] syz-executor.0 (8220) used greatest stack depth: 4984 bytes left
[  531.595541][ T5905] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.853910][ T5185] usb 5-1: new low-speed USB device number 10 using dummy_hcd
[  532.029787][   T25] IPVS: starting estimator thread 0...
[  532.122214][ T8237] IPVS: using max 240 ests per chain, 12000 per kthread
[  532.258761][ T5185] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  532.267549][ T5185] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  532.276167][ T5185] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  532.285787][ T5185] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  532.298973][ T5185] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  532.357458][ T8234] loop2: detected capacity change from 0 to 2048
[  532.518458][ T8234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  532.538076][ T8234] ext4 filesystem being mounted at /root/syzkaller-testdir3409398365/syzkaller.87BBhh/115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  532.901224][ T5185] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  532.910744][ T5185] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  532.919013][ T5185] usb 5-1: Manufacturer: ц
[  532.929486][ T8247] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  532.989407][ T5185] usb 5-1: config 0 descriptor??
[  533.003229][ T8248] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  533.013658][ T5910] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  533.044009][ T8245] loop1: detected capacity change from 0 to 4096
[  533.060839][ T5185] hub 5-1:0.0: bad descriptor, ignoring hub
[  533.067039][ T5185] hub 5-1:0.0: probe with driver hub failed with error -5
[  533.081860][ T5185] input: ц as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input20
[  533.087360][ T8245] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  533.295328][ T5185] usb 5-1: USB disconnect, device number 10
[  533.331073][  T780] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  533.361754][ T8245] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  533.389750][ T8245] ntfs3: loop1: Failed to load $Extend (-22).
[  533.396590][ T8245] ntfs3: loop1: Failed to initialize $Extend.
[  533.713656][  T780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  533.725702][  T780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  533.736212][  T780] usb 1-1: New USB device found, idVendor=056a, idProduct=0043, bcdDevice= 0.00
[  533.747293][  T780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.761816][ T5126] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  533.769979][   T25] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  533.812226][  T780] usb 1-1: config 0 descriptor??
[  534.064560][ T8250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  534.074599][ T8250] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  534.407810][  T780] hid (null): bogus close delimiter
[  534.469773][  T780] wacom 0003:056A:0043.0003: bogus close delimiter
[  534.481171][  T780] wacom 0003:056A:0043.0003: item 0 1 2 10 parsing failed
[  534.587989][  T780] wacom 0003:056A:0043.0003: parse failed
[  534.595008][  T780] wacom 0003:056A:0043.0003: probe with driver wacom failed with error -22
[  534.658599][  T780] usb 1-1: USB disconnect, device number 22
[  534.807111][ T8256] loop1: detected capacity change from 0 to 40427
[  534.840056][ T8256] F2FS-fs (loop1): invalid crc value
[  534.875218][ T8256] F2FS-fs (loop1): Found nat_bits in checkpoint
[  535.173711][ T8256] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  535.200581][ T5126] usb 3-1: Using ep0 maxpacket: 32
[  535.206292][   T25] usb 4-1: Using ep0 maxpacket: 32
[  535.322497][ T5903] syz-executor.1: attempt to access beyond end of device
[  535.322497][ T5903] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  535.361508][   T25] usb 4-1: config 0 has an invalid descriptor of length 154, skipping remainder of the config
[  535.372984][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  535.383054][   T25] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  535.402592][ T5126] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[  535.413442][ T5126] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  535.609983][   T25] usb 4-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=3f.82
[  535.619581][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  535.628108][   T25] usb 4-1: Product: syz
[  535.632639][   T25] usb 4-1: Manufacturer: syz
[  535.637467][   T25] usb 4-1: SerialNumber: syz
[  535.662481][ T8271] pim6reg1: entered allmulticast mode
[  535.748254][   T25] usb 4-1: config 0 descriptor??
[  535.757218][ T8269] pim6reg1: entered promiscuous mode
[  535.773613][ T5126] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  535.783167][ T5126] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  535.783849][ T8270] loop4: detected capacity change from 0 to 4096
[  535.792159][ T5126] usb 3-1: Product: syz
[  535.792273][ T5126] usb 3-1: Manufacturer: syz
[  535.792379][ T5126] usb 3-1: SerialNumber: syz
[  535.827363][ T8270] NILFS (loop4): unrecognized mount option "/dev/net/tun"
[  535.856918][   T25] ims_pcu 4-1:0.0: Zero length descriptor
[  535.863252][   T25] ims_pcu 4-1:0.0: probe with driver ims_pcu failed with error -22
[  535.893204][ T5126] usb 3-1: config 0 descriptor??
[  535.946834][ T5126] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  536.087702][ T5126] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  536.125244][  T780] usb 4-1: USB disconnect, device number 19
[  536.779076][ T8276] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  537.821832][    T8] usb 3-1: USB disconnect, device number 14
[  537.908490][    T8] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[  538.291487][ T8283] loop4: detected capacity change from 0 to 40427
[  538.341155][ T8283] F2FS-fs (loop4): invalid crc value
[  538.386464][ T8283] F2FS-fs (loop4): Found nat_bits in checkpoint
[  538.696847][ T8283] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  538.845747][ T8300] input: syz0 as /devices/virtual/input/input21
[  538.892911][ T6545] syz-executor.4: attempt to access beyond end of device
[  538.892911][ T6545] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  539.683243][ T8304] pim6reg1: entered allmulticast mode
[  539.729292][ T8307] pim6reg1: entered promiscuous mode
[  539.769807][ T8306] QAT: Device 253 not found
[  539.774183][ T5126] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  540.070737][ T5126] usb 3-1: Using ep0 maxpacket: 16
[  540.250817][ T5126] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  540.260041][ T5126] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  540.534659][ T5126] usb 3-1: New USB device found, idVendor=15c2, idProduct=0040, bcdDevice= 7.fb
[  540.544367][ T5126] usb 3-1: New USB device strings: Mfr=7, Product=130, SerialNumber=11
[  540.553150][ T5126] usb 3-1: Product: syz
[  540.557556][ T5126] usb 3-1: Manufacturer: syz
[  540.562532][ T5126] usb 3-1: SerialNumber: syz
[  540.597410][ T5126] usb 3-1: config 0 descriptor??
[  540.656851][ T5126] input: iMON Panel, Knob and Mouse(15c2:0040) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input22
[  540.677031][ T8311] loop0: detected capacity change from 0 to 256
[  541.220728][ T5126] rc_core: IR keymap rc-imon-pad not found
[  541.226965][ T5126] Registered IR keymap rc-empty
[  541.241403][ T5126] imon 3-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  541.254205][ T5126] imon 3-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  541.452511][ T5126] rc rc0: iMON Remote (15c2:0040) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  541.465345][ T5126] input: iMON Remote (15c2:0040) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input23
[  541.630533][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.650440][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.670429][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.690544][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.714051][ T5126] imon 3-1:0.0: iMON device (15c2:0040, intf0) on usb<3:15> initialized
[  541.723254][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.740516][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.770539][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.790411][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.810473][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.830506][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.850656][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.880413][    C1] imon 3-1:0.0: imon usb_rx_callback_intf0: status(-71): ignored
[  541.891336][ T5126] usb 3-1: USB disconnect, device number 15
[  542.056301][ T5131] usb 4-1: new high-speed USB device number 20 using dummy_hcd
acpid: input device has been disconnected, fd 10
acpid: input device has been disconnected, fd 11
[  542.187976][ T8317] loop4: detected capacity change from 0 to 40427
[  542.235304][ T8317] F2FS-fs (loop4): invalid crc value
[  542.338600][ T8317] F2FS-fs (loop4): Found nat_bits in checkpoint
[  542.421375][ T5131] usb 4-1: Using ep0 maxpacket: 32
[  542.595532][ T5131] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  542.604330][ T5131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  542.634555][ T8317] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  542.752948][ T6545] syz-executor.4: attempt to access beyond end of device
[  542.752948][ T6545] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  542.875518][ T5131] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  542.885184][ T5131] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  542.894029][ T5131] usb 4-1: Product: syz
[  542.898411][ T5131] usb 4-1: Manufacturer: syz
[  542.903408][ T5131] usb 4-1: SerialNumber: syz
[  542.933131][ T5131] usb 4-1: config 0 descriptor??
[  543.001976][ T5131] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  543.025101][ T5131] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  543.557364][ T8333] loop0: detected capacity change from 0 to 512
[  543.576910][ T8333] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  543.728993][ T8333] EXT4-fs (loop0): 1 truncate cleaned up
[  543.735248][ T8333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  543.986726][ T8333] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  544.189911][ T8344] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  544.394258][ T8346] pim6reg1: entered allmulticast mode
[  544.478767][ T8346] pim6reg1: entered promiscuous mode
[  544.672770][ T5905] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.792709][   T25] usb 4-1: USB disconnect, device number 20
[  544.858842][   T25] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  546.185087][ T8351] loop4: detected capacity change from 0 to 40427
[  546.312177][ T8351] F2FS-fs (loop4): invalid crc value
[  546.381725][ T8351] F2FS-fs (loop4): Found nat_bits in checkpoint
[  546.698685][ T8357] loop0: detected capacity change from 0 to 40427
[  546.704417][ T8351] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  546.730013][ T8357] F2FS-fs (loop0): invalid crc value
[  546.843963][ T6545] syz-executor.4: attempt to access beyond end of device
[  546.843963][ T6545] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  546.867232][ T8357] F2FS-fs (loop0): Found nat_bits in checkpoint
[  547.351525][ T8357] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  547.543109][ T5905] syz-executor.0: attempt to access beyond end of device
[  547.543109][ T5905] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  547.607829][ T8356] loop2: detected capacity change from 0 to 4096
[  547.908855][ T8371] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  549.070817][   T25] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  549.084933][ T8384] loop2: detected capacity change from 0 to 512
[  549.141767][ T8384] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  549.245655][ T8384] EXT4-fs (loop2): 1 truncate cleaned up
[  549.253035][ T8384] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  549.420659][   T25] usb 4-1: Using ep0 maxpacket: 32
[  549.482799][ T8384] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  549.602953][   T25] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  549.611552][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  549.653892][ T8393] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  549.811328][   T25] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  549.822714][   T25] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  549.837439][   T25] usb 4-1: Product: syz
[  549.843738][   T25] usb 4-1: Manufacturer: syz
[  549.848599][   T25] usb 4-1: SerialNumber: syz
[  549.904177][   T25] usb 4-1: config 0 descriptor??
[  549.950490][   T25] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  549.988140][   T25] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  550.063880][ T5910] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  551.339486][ T8401] loop1: detected capacity change from 0 to 40427
[  551.414687][ T8401] F2FS-fs (loop1): invalid crc value
[  551.508961][ T8401] F2FS-fs (loop1): Found nat_bits in checkpoint
[  551.851326][ T8401] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  552.008406][   T25] usb 4-1: USB disconnect, device number 21
[  552.065733][ T5903] syz-executor.1: attempt to access beyond end of device
[  552.065733][ T5903] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  552.110620][   T25] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  552.314391][ T8410] loop2: detected capacity change from 0 to 40427
[  552.362037][ T8410] F2FS-fs (loop2): invalid crc value
[  552.529900][ T8410] F2FS-fs (loop2): Found nat_bits in checkpoint
[  552.830086][ T8410] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  553.062888][ T5910] syz-executor.2: attempt to access beyond end of device
[  553.062888][ T5910] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  553.159889][ T8426] loop3: detected capacity change from 0 to 512
[  553.190494][ T8426] EXT4-fs: Ignoring removed bh option
[  553.260897][ T8426] EXT4-fs (sda1): changing journal_checksum during remount not supported; ignoring
[  553.270699][ T8426] EXT4-fs (sda1): re-mounted 5941fea2-f5fa-4b4e-b5ef-9af118b27b95 r/w. Quota mode: journalled.
[  554.955730][ T8438] loop3: detected capacity change from 0 to 512
[  555.077435][ T8438] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  555.201300][ T8438] EXT4-fs (loop3): 1 truncate cleaned up
[  555.207252][ T8438] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  555.393670][ T8438] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  555.597332][ T8442] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  556.174690][ T5918] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  557.060819][ T8432] loop1: detected capacity change from 0 to 32768
[  557.132419][ T8432] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (8432)
[  557.174342][ T8432] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  557.185255][ T8432] BTRFS info (device loop1): using sha256 (sha256-generic) checksum algorithm
[  557.196723][ T8432] BTRFS info (device loop1): using free-space-tree
[  557.396229][ T8432] BTRFS error (device loop1): open_ctree failed
[  557.983839][ T8481] loop3: detected capacity change from 0 to 8
[  562.406984][ T8509] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  562.646304][ T8509] team0: Port device bridge1 added
[  563.123025][ T8512] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  576.740991][ T8607] loop0: detected capacity change from 0 to 128
[  576.803519][ T8607] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978)
[  576.856965][ T8607] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  577.007302][ T8607] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  577.026094][ T8607] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  577.128500][ T8615] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  577.144968][ T8615] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  577.339110][ T8607] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #2: comm syz-executor.0: No space for directory leaf checksum. Please run e2fsck -D.
[  577.355750][ T8607] EXT4-fs error (device loop0): __ext4_find_entry:1695: inode #2: comm syz-executor.0: checksumming directory block 0
[  577.632091][ T5905] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  579.094620][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  579.354437][ T8624] loop1: detected capacity change from 0 to 1024
[  579.394261][ T8624] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  579.405941][ T8624] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869)
[  579.415975][ T8624] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  579.432638][ T8624] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[  581.602518][ T8633] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  583.402403][ T8643] hub 9-0:1.0: USB hub found
[  583.416170][ T8643] hub 9-0:1.0: 8 ports detected
[  583.859100][ T8647] loop4: detected capacity change from 0 to 256
[  586.303867][ T8665] loop1: detected capacity change from 0 to 1024
[  586.423991][ T8665] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[  586.435251][ T8665] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (25054!=20869)
[  586.445420][ T8665] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  586.456291][ T8665] EXT4-fs (loop1): filesystem has both journal inode and journal device!
[  587.786053][ T1220] ieee802154 phy0 wpan0: encryption failed: -22
[  587.794432][ T1220] ieee802154 phy1 wpan1: encryption failed: -22
[  592.491357][ T8702] loop0: detected capacity change from 0 to 512
[  592.617320][ T8702] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  592.631174][ T8702] ext4 filesystem being mounted at /root/syzkaller-testdir2259775596/syzkaller.WYPwi3/129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  592.758832][ T8702] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1216: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  592.799622][ T8702] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  592.813037][ T8702] EXT4-fs (loop0): This should not happen!! Data will be lost
[  592.813037][ T8702] 
[  592.818813][   T29] audit: type=1804 audit(1717855032.272:28): pid=8708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2259775596/syzkaller.WYPwi3/129/file0/file1" dev="loop0" ino=15 res=1 errno=0
[  592.823025][ T8702] EXT4-fs (loop0): Total free blocks count 0
[  592.823123][ T8702] EXT4-fs (loop0): Free/Dirty block details
[  592.874183][ T8702] EXT4-fs (loop0): free_blocks=65280
[  592.879725][ T8702] EXT4-fs (loop0): dirty_blocks=32
[  592.888166][ T8702] EXT4-fs (loop0): Block reservation details
[  592.894693][ T8702] EXT4-fs (loop0): i_reserved_data_blocks=32
[  592.929689][ T8708] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28
[  594.185361][   T29] audit: type=1326 audit(1717855033.592:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8718 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f99c267cf69 code=0x0
[  594.208606][   T29] audit: type=1326 audit(1717855033.642:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8718 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=3 compat=0 ip=0x7f99c267be5a code=0x0
[  596.491929][ T8718] =====================================================
[  596.499251][ T8718] BUG: KMSAN: uninit-value in virtqueue_add+0x1e86/0x65c0
[  596.506551][ T8718]  virtqueue_add+0x1e86/0x65c0
[  596.511484][ T8718]  virtqueue_add_sgs+0x186/0x1b0
[  596.516682][ T8718]  virtscsi_add_cmd+0x838/0xad0
[  596.521743][ T8718]  virtscsi_queuecommand+0x898/0xa60
[  596.527191][ T8718]  scsi_queue_rq+0x4cc7/0x5a80
[  596.532116][ T8718]  blk_mq_dispatch_rq_list+0x79b/0x3440
[  596.537862][ T8718]  __blk_mq_sched_dispatch_requests+0x11b7/0x26e0
[  596.544477][ T8718]  blk_mq_sched_dispatch_requests+0x12f/0x270
[  596.550740][ T8718]  blk_mq_run_hw_queue+0x6e4/0xbc0
[  596.556044][ T8718]  blk_mq_flush_plug_list+0x1683/0x2b20
[  596.561785][ T8718]  __blk_flush_plug+0x671/0x740
[  596.566830][ T8718]  blk_finish_plug+0x76/0xa0
[  596.571609][ T8718]  ext4_do_writepages+0x5190/0x62e0
[  596.576962][ T8718]  ext4_writepages+0x312/0x830
[  596.581889][ T8718]  do_writepages+0x427/0xc30
[  596.586806][ T8718]  filemap_fdatawrite_wbc+0x1d8/0x270
[  596.592349][ T8718]  file_write_and_wait_range+0x1bf/0x370
[  596.598164][ T8718]  ext4_sync_file+0x24d/0x13a0
[  596.603098][ T8718]  vfs_fsync_range+0x20d/0x270
[  596.608056][ T8718]  ext4_buffered_write_iter+0x9ad/0xaa0
[  596.613759][ T8718]  ext4_file_write_iter+0x208/0x3450
[  596.619205][ T8718]  __kernel_write_iter+0x64d/0xc80
[  596.624508][ T8718]  dump_user_range+0x8dc/0xee0
[  596.629453][ T8718]  elf_core_dump+0x57c7/0x5ae0
[  596.634408][ T8718]  do_coredump+0x32d5/0x4920
[  596.639253][ T8718]  get_signal+0x267e/0x2d00
[  596.643921][ T8718]  arch_do_signal_or_restart+0x53/0xcb0
[  596.649696][ T8718]  syscall_exit_to_user_mode+0x5d/0x160
[  596.655555][ T8718]  do_syscall_64+0xdc/0x1e0
[  596.660238][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.666333][ T8718] 
[  596.668733][ T8718] Uninit was stored to memory at:
[  596.674197][ T8718]  copy_page_from_iter_atomic+0x12b7/0x2ae0
[  596.680309][ T8718]  generic_perform_write+0x4c1/0xc60
[  596.685813][ T8718]  ext4_buffered_write_iter+0x564/0xaa0
[  596.691561][ T8718]  ext4_file_write_iter+0x208/0x3450
[  596.697003][ T8718]  __kernel_write_iter+0x64d/0xc80
[  596.702304][ T8718]  dump_user_range+0x8dc/0xee0
[  596.707342][ T8718]  elf_core_dump+0x57c7/0x5ae0
[  596.712294][ T8718]  do_coredump+0x32d5/0x4920
[  596.717053][ T8718]  get_signal+0x267e/0x2d00
[  596.721803][ T8718]  arch_do_signal_or_restart+0x53/0xcb0
[  596.727560][ T8718]  syscall_exit_to_user_mode+0x5d/0x160
[  596.733291][ T8718]  do_syscall_64+0xdc/0x1e0
[  596.737983][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.744066][ T8718] 
[  596.746465][ T8718] Uninit was created at:
[  596.750907][ T8718]  __alloc_pages+0x9d6/0xe70
[  596.755662][ T8718]  alloc_pages_mpol+0x299/0x990
[  596.760682][ T8718]  alloc_pages+0x1bf/0x1e0
[  596.765254][ T8718]  dump_user_range+0x4a/0xee0
[  596.770113][ T8718]  elf_core_dump+0x57c7/0x5ae0
[  596.775058][ T8718]  do_coredump+0x32d5/0x4920
[  596.779901][ T8718]  get_signal+0x267e/0x2d00
[  596.784564][ T8718]  arch_do_signal_or_restart+0x53/0xcb0
[  596.790530][ T8718]  syscall_exit_to_user_mode+0x5d/0x160
[  596.796262][ T8718]  do_syscall_64+0xdc/0x1e0
[  596.800958][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  596.807126][ T8718] 
[  596.809610][ T8718] Bytes 0-4095 of 4096 are uninitialized
[  596.815346][ T8718] Memory access of size 4096 starts at ffff888120a17000
[  596.822390][ T8718] 
[  596.824812][ T8718] CPU: 0 PID: 8718 Comm: syz-executor.0 Not tainted 6.9.0-syzkaller-02707-g614da38e2f7a #0
[  596.834952][ T8718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  596.845133][ T8718] =====================================================
[  596.852156][ T8718] Disabling lock debugging due to kernel taint
[  596.858403][ T8718] Kernel panic - not syncing: kmsan.panic set ...
[  596.864939][ T8718] CPU: 0 PID: 8718 Comm: syz-executor.0 Tainted: G    B              6.9.0-syzkaller-02707-g614da38e2f7a #0
[  596.876568][ T8718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  596.886764][ T8718] Call Trace:
[  596.890143][ T8718]  <TASK>
[  596.893171][ T8718]  dump_stack_lvl+0x216/0x2d0
[  596.898050][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  596.904044][ T8718]  dump_stack+0x1e/0x30
[  596.908383][ T8718]  panic+0x4e2/0xcd0
[  596.912462][ T8718]  ? kmsan_get_metadata+0xf1/0x1d0
[  596.917753][ T8718]  kmsan_report+0x2d5/0x2e0
[  596.922445][ T8718]  ? do_get_write_access+0xe7c/0x1990
[  596.928047][ T8718]  ? ext4_mb_new_blocks+0x2215/0x76d0
[  596.933640][ T8718]  ? ext4_ext_map_blocks+0x4e14/0xa000
[  596.939596][ T8718]  ? ext4_map_blocks+0x139e/0x2ae0
[  596.944931][ T8718]  ? ext4_do_writepages+0x264c/0x62e0
[  596.950496][ T8718]  ? kmsan_internal_check_memory+0x48c/0x560
[  596.956698][ T8718]  ? kmsan_handle_dma+0xac/0xc0
[  596.961702][ T8718]  ? virtqueue_add+0x1e86/0x65c0
[  596.966823][ T8718]  ? virtqueue_add_sgs+0x186/0x1b0
[  596.972206][ T8718]  ? virtscsi_add_cmd+0x838/0xad0
[  596.977407][ T8718]  ? virtscsi_queuecommand+0x898/0xa60
[  596.983052][ T8718]  ? scsi_queue_rq+0x4cc7/0x5a80
[  596.988334][ T8718]  ? blk_mq_dispatch_rq_list+0x79b/0x3440
[  596.994268][ T8718]  ? __blk_mq_sched_dispatch_requests+0x11b7/0x26e0
[  597.001073][ T8718]  ? blk_mq_sched_dispatch_requests+0x12f/0x270
[  597.007614][ T8718]  ? blk_mq_run_hw_queue+0x6e4/0xbc0
[  597.013094][ T8718]  ? blk_mq_flush_plug_list+0x1683/0x2b20
[  597.019034][ T8718]  ? __blk_flush_plug+0x671/0x740
[  597.024261][ T8718]  ? blk_finish_plug+0x76/0xa0
[  597.029309][ T8718]  ? ext4_do_writepages+0x5190/0x62e0
[  597.034835][ T8718]  ? ext4_writepages+0x312/0x830
[  597.039946][ T8718]  ? do_writepages+0x427/0xc30
[  597.044865][ T8718]  ? filemap_fdatawrite_wbc+0x1d8/0x270
[  597.050672][ T8718]  ? file_write_and_wait_range+0x1bf/0x370
[  597.056672][ T8718]  ? ext4_sync_file+0x24d/0x13a0
[  597.061776][ T8718]  ? vfs_fsync_range+0x20d/0x270
[  597.066897][ T8718]  ? ext4_buffered_write_iter+0x9ad/0xaa0
[  597.072818][ T8718]  ? ext4_file_write_iter+0x208/0x3450
[  597.078561][ T8718]  ? __kernel_write_iter+0x64d/0xc80
[  597.084062][ T8718]  ? dump_user_range+0x8dc/0xee0
[  597.089188][ T8718]  ? elf_core_dump+0x57c7/0x5ae0
[  597.094315][ T8718]  ? do_coredump+0x32d5/0x4920
[  597.099346][ T8718]  ? get_signal+0x267e/0x2d00
[  597.104196][ T8718]  ? arch_do_signal_or_restart+0x53/0xcb0
[  597.110141][ T8718]  ? syscall_exit_to_user_mode+0x5d/0x160
[  597.116095][ T8718]  ? do_syscall_64+0xdc/0x1e0
[  597.121019][ T8718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.127312][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.132695][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.138064][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.144148][ T8718]  ? __find_get_block+0x4b/0x1d70
[  597.149352][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.154740][ T8718]  kmsan_internal_check_memory+0x48c/0x560
[  597.160785][ T8718]  kmsan_handle_dma+0xac/0xc0
[  597.165623][ T8718]  virtqueue_add+0x1e86/0x65c0
[  597.170584][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.176041][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.181418][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.186797][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.192811][ T8718]  virtqueue_add_sgs+0x186/0x1b0
[  597.197957][ T8718]  virtscsi_add_cmd+0x838/0xad0
[  597.203039][ T8718]  virtscsi_queuecommand+0x898/0xa60
[  597.208559][ T8718]  ? __pfx_virtscsi_queuecommand+0x10/0x10
[  597.214556][ T8718]  scsi_queue_rq+0x4cc7/0x5a80
[  597.219533][ T8718]  ? __pfx_scsi_queue_rq+0x10/0x10
[  597.224825][ T8718]  blk_mq_dispatch_rq_list+0x79b/0x3440
[  597.230898][ T8718]  ? sbitmap_get+0x431/0x670
[  597.235689][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.241708][ T8718]  ? dd_dispatch_request+0x9a1/0xa20
[  597.247203][ T8718]  __blk_mq_sched_dispatch_requests+0x11b7/0x26e0
[  597.253867][ T8718]  ? __blk_mq_sched_dispatch_requests+0x1031/0x26e0
[  597.260695][ T8718]  blk_mq_sched_dispatch_requests+0x12f/0x270
[  597.267181][ T8718]  blk_mq_run_hw_queue+0x6e4/0xbc0
[  597.272507][ T8718]  ? __pfx_dd_insert_requests+0x10/0x10
[  597.278291][ T8718]  blk_mq_flush_plug_list+0x1683/0x2b20
[  597.284086][ T8718]  __blk_flush_plug+0x671/0x740
[  597.289154][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.294609][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.300612][ T8718]  blk_finish_plug+0x76/0xa0
[  597.305434][ T8718]  ext4_do_writepages+0x5190/0x62e0
[  597.310887][ T8718]  ? smc_lgr_cleanup_early+0x380/0x390
[  597.316531][ T8718]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.322903][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.328362][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.334346][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.339716][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.345699][ T8718]  ? percpu_counter_add_batch+0x43/0x290
[  597.351662][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.357028][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.362407][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.367879][ T8718]  ext4_writepages+0x312/0x830
[  597.372861][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.378856][ T8718]  ? __pfx_ext4_writepages+0x10/0x10
[  597.384324][ T8718]  do_writepages+0x427/0xc30
[  597.389076][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.394534][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.400558][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.406550][ T8718]  filemap_fdatawrite_wbc+0x1d8/0x270
[  597.412130][ T8718]  file_write_and_wait_range+0x1bf/0x370
[  597.418097][ T8718]  ext4_sync_file+0x24d/0x13a0
[  597.423043][ T8718]  ? __pfx_ext4_sync_file+0x10/0x10
[  597.428418][ T8718]  ? __pfx_ext4_sync_file+0x10/0x10
[  597.433886][ T8718]  vfs_fsync_range+0x20d/0x270
[  597.438942][ T8718]  ext4_buffered_write_iter+0x9ad/0xaa0
[  597.444713][ T8718]  ext4_file_write_iter+0x208/0x3450
[  597.450165][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.455710][ T8718]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  597.461700][ T8718]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  597.467685][ T8718]  ? stack_depot_save_flags+0x66d/0x6e0
[  597.473404][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.478783][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.484156][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.489540][ T8718]  __kernel_write_iter+0x64d/0xc80
[  597.494946][ T8718]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  597.500856][ T8718]  dump_user_range+0x8dc/0xee0
[  597.505927][ T8718]  elf_core_dump+0x57c7/0x5ae0
[  597.510926][ T8718]  ? 0xffffffffff600000
[  597.515258][ T8718]  ? __pfx_elf_core_dump+0x10/0x10
[  597.520651][ T8718]  do_coredump+0x32d5/0x4920
[  597.525496][ T8718]  get_signal+0x267e/0x2d00
[  597.530210][ T8718]  arch_do_signal_or_restart+0x53/0xcb0
[  597.535982][ T8718]  ? syscall_trace_enter+0x1f5/0x600
[  597.541453][ T8718]  ? kmsan_get_metadata+0x146/0x1d0
[  597.547350][ T8718]  ? kmsan_internal_set_shadow_origin+0x66/0xe0
[  597.553821][ T8718]  syscall_exit_to_user_mode+0x5d/0x160
[  597.559665][ T8718]  do_syscall_64+0xdc/0x1e0
[  597.564452][ T8718]  ? clear_bhb_loop+0x25/0x80
[  597.569429][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  597.575547][ T8718] RIP: 0033:0x7f99c267be5a
[  597.580088][ T8718] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[  597.599882][ T8718] RSP: 002b:00007ffcd7aef880 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  597.608468][ T8718] RAX: 0000000000000003 RBX: 0000000000000004 RCX: 00007f99c267be5a
[  597.616576][ T8718] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  597.624676][ T8718] RBP: ffffffffffffffff R08: 00007f99c2600000 R09: 0000000000000001
[  597.632788][ T8718] R10: 0000000000000001 R11: 0000000000000293 R12: 00007f99c27b3f80
[  597.640957][ T8718] R13: 00007f99c27b3f8c R14: 0000000000000032 R15: 00007f99c27b5980
[  597.649260][ T8718]  </TASK>
[  599.057629][ T8718] Shutting down cpus with NMI
[  599.062569][ T8718] Kernel Offset: disabled
[  599.066968][ T8718] Rebooting in 86400 seconds..