last executing test programs:

21.802401008s ago: executing program 2 (id=1160):
r0 = socket$phonet(0x23, 0x2, 0x1)
bind$phonet(r0, &(0x7f0000000000), 0x10)
sendto$phonet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

21.291223761s ago: executing program 2 (id=1161):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
ioctl$VIDIOC_G_CROP(r0, 0xc014563b, &(0x7f0000000080)={0x7})

20.630436587s ago: executing program 2 (id=1164):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000340)='./file2\x00', 0x14552, &(0x7f0000000240)=ANY=[], 0x1, 0x11f3, &(0x7f0000001b80)="$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")
r0 = open(&(0x7f0000000200)='./bus\x00', 0x141a42, 0x0)
open_by_handle_at(r0, &(0x7f0000000400)=@shmem={0xc, 0x1, {0x1}}, 0xc000)

20.280151467s ago: executing program 1 (id=1166):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000201d7a2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
brk(0x80000000007)

19.348777014s ago: executing program 2 (id=1167):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x44e, 0x120c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000040)={0x0, 0x0, 0x5, {0x5, 0x0, "a7ea31"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

19.038625737s ago: executing program 1 (id=1168):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x46d, 0xc714, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0x2, {[@global=@item_012={0x1, 0x1, 0x0, '\''}]}}, 0x0}, 0x0)

18.364706726s ago: executing program 4 (id=1169):
r0 = epoll_create1(0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0x20002)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x3000000c})

18.111512916s ago: executing program 3 (id=1170):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x7, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

17.869822121s ago: executing program 4 (id=1171):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0xc, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0), &(0x7f00000007c0), 0xc2a, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f0000000080)='\\', &(0x7f0000000000)=""/10, 0x2}, 0x20)

17.375124739s ago: executing program 4 (id=1172):
r0 = socket(0x2, 0x3, 0x6)
setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000140)=0x6, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000002400)={0x2, 0x0, @multicast2}, 0x10)

16.964605397s ago: executing program 4 (id=1174):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @hash={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_HASH_DREG={0x8}, @NFTA_HASH_MODULUS={0x8}, @NFTA_HASH_TYPE={0x8, 0x7, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x84}}, 0x0)

16.861460752s ago: executing program 3 (id=1175):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="8510000004000000950000000000000018000000000000000000000000000000950000000000000085100000fcffffff95"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close_range(r0, 0xffffffffffffffff, 0x0)

16.64146875s ago: executing program 2 (id=1177):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x1, 0x4441, &(0x7f0000004480)="$eJzs3cFvG1UaAPA3k+w27bbdpNtDV1ppLW2lRYCipCcglUjTtGnShqJCK8QldRK3DThxlTiIQw/hVokTEgfEoQIJDiinKgeOlD+BCzfKuRIcuCBVQgTZniSesU3cKE5o9ftJ9Xjem/fmsz/P85tKzosT5VtzS7m5pVx+IVeaubF0Kvdeqbg8XwjxHtnv89OeTuRJ7vfP5bPn37h2KoRvZ79/tL6+vh4qukNTg3XPf/3lzkz9dkOcaVPpt3lvu+XtEMLxhrgqukIIb30dQhRCOJOUjSTbgyGEo6FWd+3Oh9dzdT3+8Hjn0dx/WDgdwuTdtaGTE6v31lq/9iiET4v/fvHm/E//6xr68fmdnxEAAAAAAAAAAAAAAAAAgGfJ2JXLV18fGAwPotC9GjX+Xncs2eZatF/fNf/t/IsFAAAAAAAAAAAAAAAAAACAv6it3//nomNNfv8/mmyHW7Rff7Vu56vOxUlnjL92efTcwGCy/nvUUP9SUvTzma7Q12Td9+z672cy7Zuv/954np2qxte1td8borg/iePLbyr7cdzfH8LnycLvJ6JDcbG0VH7hRml5YXbXwnhqpfNfW70/lZ1kQf928z+S6b/z6///q+HTVNm/vnsfsWdaOv9dLY/74oOorfyfzbTbi/yzc+n8d1fLDtYfMFwbACr5/6h7+/yPZvrvVP6PhhByUSXWXGoEqMxhKuWt5iukpfP/t2pZauhM3shW1//jTP7PZfrfr/F/JftFRFPp/P+9WtaTOmLr+u+Lt7/+z2f634/8V+JfSRd2dzaGp1c6/wdqhel3q/pOtjv+j2X671T+r8bVOKsTlvpPwGpUi7/V36sjLZ3/nob6rfu/uK3534VM+z25/6s778b938bw/1xUu/+juSeZ/7dz/Y9n2nV6/B+uzv/YqXT+D1XL0nPn3upju/mfyPTfqfxXZyU9G/nfGk9+P1Ar/8z8ry3p/P+jVhjXH7FSeeipzv+i7ef/FzP9/0n+d+lLoHH+V4l/Jd6d3p916fwfbnlcJf/ftfH9fynTrvPz/xAG/F/fjqXzf6TlcdXrv2f7/E9m2nU6///vZOcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAT4GRZNsborg/tR/H/f0hnE32T4RD0XR+dmq6WJp5dymE0aQ8F45FN4ul6Xxxam6hNFuYyheLpZkQziX1x0NPtFQslafm87fPb/Z1MLpVyC+Wpwv5cghhLCn/Tziy0df0XHk+fzuEcGGz7p9xafH2rfzC1Ozc4isDAwMDYXwzhr6o8H65sFCunb1WG8LEZtveqC64avXFzVgOR++UlhcX8sVq+aW6NsXSTL5Y12Yyqfs49EXlxeWFmXy5MFUs3dw4334aTraj41fevHJpsKH+elTbjuxtWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8oQdDL38SQuiu7cUhhFyUPImSfyn3HxZOT/02eXdt6OTE6r21R82OAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAPduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrBL/ygNBFEcgN+MhZYew2rZ7WxXFNHCFcET6DE8jB7FS3gHixRpU4RAMgth/8A2SfV9zYP5MfMezAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFju8a17f62biBRX28uI38+//+P8udTvu+n7F2eYkdN5eunuH+qm/Hsa5bflaNXmfbpZf33ERO39DPZkuE8H4z5Dc/s2N1/f9zpSriKiLflNyrmqlr0FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALBjBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCjtwLAAAAAAgzN86ir4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAXwEAAP//xX0hlw==")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40046f01, 0x0)

16.46147614s ago: executing program 1 (id=1178):
syz_mount_image$xfs(&(0x7f0000009800), &(0x7f0000000140)='./file1\x00', 0x1000000, &(0x7f0000000280)={[{@pqnoenforce}, {@noquota}, {@nouuid}, {@noikeep}, {@pquota}, {@pqnoenforce}, {@nodiscard}]}, 0x1, 0x9895, &(0x7f0000009840)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0x80405880, &(0x7f00000000c0)=ANY=[@ANYBLOB="00050000000000000000000001"])

16.451149575s ago: executing program 4 (id=1179):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f0000000140)={[{@journal_async_commit}, {@heartbeat_none}, {@localflocks}, {@inode64}, {@localalloc={'localalloc', 0x3d, 0xfffffffffffffffa}}, {@noacl}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
creat(&(0x7f0000000380)='./bus\x00', 0x0)

15.977991671s ago: executing program 3 (id=1181):
r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)={0x14, r0, 0x1}, 0x14}}, 0x0)

15.11000951s ago: executing program 3 (id=1182):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
syz_open_dev$usbfs(&(0x7f0000000080), 0x1ff, 0x101301)
ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0285629, &(0x7f0000000080)={0x3, @win={{0x2}, 0x0, 0x0, &(0x7f0000000240)={{0x0, 0x0, 0x0, 0x4}}, 0x0, 0x0, 0x81}})

14.393131271s ago: executing program 3 (id=1185):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f00000004c0)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x7}}, {@journal_dev={'journal_dev', 0x3d, 0x1ff}}, {@grpid}, {@data_ordered}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}]}, 0x1, 0x47a, &(0x7f0000000ac0)="$eJzs3M9vFFUcAPDvTLel5YdFxB8gaBWMxB8tLT/kYGI0mnjQaKIHjKd1WwhSwEBNhBBFDxjjwZB4Nx5N/As86cWoJxOveDckxHABPa2ZnRnaLrulpQu7uJ9PMux7M7O89903b/fNe7sNoG+NZf8kEesj4mJEjEZEpfmEsfzh2pWztX+unK0lUa+/9XeSPS2uXjlbK/6LxpZZl++o14v8mhblnn83ojo7O3OyyE/MHftg4tTpM88eOVY9PHN45vjUgQN792wf2j+1ryNxZnFd3frxiW1bXn3nwuu1gxfe+/X7rL7ri+NlHJ00lr+6LT3R6cK6bMOCdFLpYkVYkazdBovtYozGQIxcPzYar3zW1coBt1ul1edz4Vwd+B/LBupAPyo/6LP733K7Q+OOnnD5xXzCI4v7WrHlRyqRFucMNt3fdtJwRBw89+832Ra3aR4CAGChH7PxzzOtxn9pPLDgvHuKNZSNEXFvRGyKiPsiYnNE3B/ROPfBiHhoheU3r5DcOP5JLy3K1gdWWMLSsvHf88Xa1uLxXzn6i40DRW5DI/7B5NCR2ZndxWuyKwbXZPnJRU9Z7KeX//iqed+XxTT72ILxX7Zl5S+OML3UPEE3XZ2rrj7y3OVPI7ZWWsWfXF8HTCJiS0RsvcUyjjz13bZ2x1rFX46Fb6oD60z1byOezNv/XDTFX0rark9OPrd/at/EcMzO7J4or4ob/fb7+Tfblb+q+Dsga/+1La//PP7sHjEZjjh1+szRxnrtqVso5M/Pa0mbQ5tvGv+N139tZ8RQ8nYjPVSeVTwOJa9lDyPl/o+qc3Mnp+afW+Ybj5N5/Lt2zMdfjfn+vym/PWu8Eg9HRHYRb4+IRyLi0aLtHouIxyNixxLh//LSzvfbHWvf/kvMyndQFv/0Eu2fveVlqfn2X3li4OjPP7Qrv76s9t/bSO0q9izn/W+5FVzNawcAAAB3i7TxHfgkHb+eTtPx8fw7/JtjbVqJiKcPnfjw+HT+XfmNMZiWM12jC+ZDJ4u54TI/1ZTfU8wbfz0w0siP107MTnc7eOhz69r0/8xfnV1qAXqR32tB/9L/oX/p/9C/9H/oXy90uwJAdwy13v3Jna4H0BUrH/8P35Z6AHee+3/oX/o/9C/9H/pS29/Gp6v6yf/dmqj0RjVaJkZ6oxplItKeqEbnEm98kXeJXqlPmags+49Z3GJiTctD3X5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6Iz/AgAA///NIdoS")

12.604957964s ago: executing program 2 (id=1188):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x101042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100))
write$ppp(r0, 0x0, 0x0)

12.604668712s ago: executing program 1 (id=1189):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
r0 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r0, &(0x7f00000005c0)={&(0x7f0000000380)=@l2tp6={0xa, 0x0, 0x0, @dev}, 0x80, &(0x7f0000000080), 0x1}, 0x0)

12.348584421s ago: executing program 4 (id=1191):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000d40)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001240)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000780)=""/56, 0x38}, {&(0x7f0000002cc0)=""/4109, 0x100d}, {&(0x7f0000000880)=""/136, 0x88}, {&(0x7f0000000a00)=""/77, 0x4d}, {&(0x7f0000000a80)=""/195, 0xc3}, {&(0x7f0000000b80)=""/233, 0xe9}, {&(0x7f0000000e80)=""/167, 0xa7}, {&(0x7f0000000180)=""/42, 0x2a}, {&(0x7f0000000d80)=""/244, 0xf4}, {&(0x7f0000000940)=""/155, 0x9b}], 0xa}, 0x2}], 0x1, 0x100, 0x0)

11.837301683s ago: executing program 3 (id=1192):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000012000000080007000000002018000180140002006e657464657673696d300000000000000800080000000000080009"], 0x44}}, 0x0)

11.49708624s ago: executing program 1 (id=1193):
r0 = socket$netlink(0x10, 0x3, 0xb)
bind$netlink(r0, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc)
close(r0)

11.186321991s ago: executing program 1 (id=1194):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e002176820ecc76c0b0f938f1a2bd6fc37110017f"], 0x1c}}, 0x0)
recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1}}], 0x2, 0x0, 0x0)

2.753744316s ago: executing program 0 (id=1205):
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = socket$kcm(0x2, 0x1, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000040)={r1})

2.649180968s ago: executing program 0 (id=1206):
r0 = syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x0)
ioctl$I2C_PEC(r0, 0x708, 0x6)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000040)={0x0, 0x0, 0x2, &(0x7f0000000100)={0x0, "fd5a44032b7e1b00200112fa31820000000002000800"}})

2.430498491s ago: executing program 0 (id=1208):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f00000002c0), 0x4, 0x76b, &(0x7f0000001400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x81009431, &(0x7f0000000140)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

1.892719798s ago: executing program 0 (id=1210):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="500100001a0001000000000002000000020000000000c808ffffffea080006000700000008000400", @ANYRES32=r0, @ANYBLOB="06001c004e21000008000140ac1414"], 0x150}}, 0x0)

1.217519695s ago: executing program 0 (id=1212):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x31, &(0x7f0000fee000), 0x4)

0s ago: executing program 0 (id=1214):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000030000005800018044000400200001000a00000400000000fe8000000000000000000000000000aafeff0000200002000a004e2200000007ff010000000000000000000000000001050000000d0001007564703a"], 0x6c}}, 0x0)

kernel console output (not intermixed with test programs):

 T6298] Buffer I/O error on dev loop1, logical block 8768635, async page read
[  117.862350][ T6298] syz.1.345: attempt to access beyond end of device
[  117.862350][ T6298] loop1: rw=0, sector=13466417, nr_sectors = 1 limit=128
[  117.942566][ T6298] Buffer I/O error on dev loop1, logical block 13466417, async page read
[  117.972712][ T6298] syz.1.345: attempt to access beyond end of device
[  117.972712][ T6298] loop1: rw=0, sector=209285, nr_sectors = 1 limit=128
[  117.992367][    T8] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  118.022278][ T6298] Buffer I/O error on dev loop1, logical block 209285, async page read
[  118.074298][ T6298] syz.1.345: attempt to access beyond end of device
[  118.074298][ T6298] loop1: rw=0, sector=8767744, nr_sectors = 1 limit=128
[  118.091463][ T6323] loop2: detected capacity change from 0 to 2048
[  118.102264][ T6298] Buffer I/O error on dev loop1, logical block 8767744, async page read
[  118.122424][ T6298] syz.1.345: attempt to access beyond end of device
[  118.122424][ T6298] loop1: rw=0, sector=13269809, nr_sectors = 1 limit=128
[  118.172459][    T8] usb 5-1: Using ep0 maxpacket: 32
[  118.190837][    T8] usb 5-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[  118.213960][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.214829][ T6323] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  118.239249][    T8] usb 5-1: Product: syz
[  118.257764][    T8] usb 5-1: Manufacturer: syz
[  118.265254][ T6323] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  118.272129][    T8] usb 5-1: SerialNumber: syz
[  118.286057][    T8] usb 5-1: config 0 descriptor??
[  118.305455][ T6298] Buffer I/O error on dev loop1, logical block 13269809, async page read
[  118.327004][ T6323] netlink: 16 bytes leftover after parsing attributes in process `syz.2.355'.
[  118.348553][ T6298] syz.1.345: attempt to access beyond end of device
[  118.348553][ T6298] loop1: rw=0, sector=1157, nr_sectors = 1 limit=128
[  118.389385][ T6298] Buffer I/O error on dev loop1, logical block 1157, async page read
[  118.447348][   T29] audit: type=1800 audit(1728568589.693:22): pid=6298 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.345" name="/" dev="loop1" ino=2 res=0 errno=0
[  118.578178][ T5240] sysv_free_block: trying to free block not in datazone
[  118.624278][ T6319] loop3: detected capacity change from 0 to 40427
[  118.646833][ T5240] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  118.670211][ T6319] F2FS-fs (loop3): Image doesn't support compression
[  118.685641][ T6319] F2FS-fs (loop3): invalid crc value
[  118.710209][ T6319] F2FS-fs (loop3): Found nat_bits in checkpoint
[  118.854316][ T6336] loop0: detected capacity change from 0 to 16
[  118.871855][ T6319] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  118.920284][ T6336] erofs: (device loop0): mounted with root inode @ nid 36.
[  118.959465][   T29] audit: type=1800 audit(1728568590.233:23): pid=6319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.352" name="bus" dev="loop3" ino=10 res=0 errno=0
[  119.020384][    T8] peak_usb 5-1:0.0 can0: unable to request usb[type=2 value=5] err=-71
[  119.124174][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 205 @ nid 36
[  119.145542][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 204 @ nid 36
[  119.164608][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 197 @ nid 36
[  119.178573][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 196 @ nid 36
[  119.191205][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 192 @ nid 36
[  119.208956][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 180 @ nid 36
[  119.219212][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 172 @ nid 36
[  119.232715][ T6335] loop2: detected capacity change from 0 to 32768
[  119.236786][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 168 @ nid 36
[  119.259711][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 160 @ nid 36
[  119.269974][ T5235] F2FS-fs (loop3): Remounting filesystem read-only
[  119.276918][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 149 @ nid 36
[  119.303014][    T8] peak_usb 5-1:0.0: probe with driver peak_usb failed with error -71
[  119.320427][ T6335] JBD2: Ignoring recovery information on journal
[  119.337021][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 148 @ nid 36
[  119.359560][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 144 @ nid 36
[  119.369112][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 140 @ nid 36
[  119.399807][    T8] usb 5-1: USB disconnect, device number 4
[  119.414524][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 92 @ nid 36
[  119.424814][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 77 @ nid 36
[  119.435715][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 76 @ nid 36
[  119.445965][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 69 @ nid 36
[  119.456525][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 68 @ nid 36
[  119.475862][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 64 @ nid 36
[  119.493344][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 60 @ nid 36
[  119.536727][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 40 @ nid 36
[  119.561566][ T6335] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  119.574680][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 36 @ nid 36
[  119.603093][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 32 @ nid 36
[  119.622641][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 24 @ nid 36
[  119.759808][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 19 @ nid 36
[  119.816300][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 18 @ nid 36
[  119.829170][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 17 @ nid 36
[  119.861035][ T5246] ocfs2: Unmounting device (7,2) on (node local)
[  119.876885][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 16 @ nid 36
[  119.889292][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 12 @ nid 36
[  119.906208][ T6336] erofs: (device loop0): z_erofs_readahead: readahead error at folio 8 @ nid 36
[  120.085693][ T6350] loop1: detected capacity change from 0 to 32768
[  120.143963][ T6350] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  120.407071][ T6350] XFS (loop1): Ending clean mount
[  120.423004][    T8] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  120.435362][ T6350] XFS (loop1): Quotacheck needed: Please wait.
[  120.500749][ T6368] loop3: detected capacity change from 0 to 256
[  120.527069][ T6370] loop2: detected capacity change from 0 to 256
[  120.540971][ T6350] XFS (loop1): Quotacheck: Done.
[  120.573404][ T6368] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  120.621632][    T8] usb 5-1: Using ep0 maxpacket: 16
[  120.651596][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.684057][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.706546][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  120.721578][    T8] usb 5-1: New USB device found, idVendor=28bd, idProduct=0078, bcdDevice= 0.00
[  120.734756][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.747974][    T8] usb 5-1: config 0 descriptor??
[  120.836648][ T5240] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  120.934897][ T6366] loop0: detected capacity change from 0 to 32768
[  120.994986][ T6366] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.370 (6366)
[  121.029965][ T6366] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  121.044337][ T6366] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  121.071315][ T6366] BTRFS info (device loop0): using free-space-tree
[  121.190912][    T8] uclogic 0003:28BD:0078.000F: interface is invalid, ignoring
[  121.483093][ T5285] usb 5-1: USB disconnect, device number 5
[  121.498678][ T6366] BTRFS info (device loop0): checking UUID tree
[  121.572214][ T6393] warning: `syz.1.372' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  121.809532][ T5231] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  121.822344][ T6405] netlink: 'syz.3.380': attribute type 29 has an invalid length.
[  121.859910][ T6405] netlink: 'syz.3.380': attribute type 29 has an invalid length.
[  122.001633][ T6387] loop2: detected capacity change from 0 to 32768
[  122.049512][ T6387] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.377 (6387)
[  122.120953][ T6410] loop3: detected capacity change from 0 to 64
[  122.142205][ T6387] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  122.176504][ T6387] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  122.245714][ T6387] BTRFS info (device loop2): using free-space-tree
[  122.322948][ T6416] loop4: detected capacity change from 0 to 1024
[  122.380905][ T6387] BTRFS info (device loop2): rebuilding free space tree
[  122.637916][ T6435] loop4: detected capacity change from 0 to 8
[  122.785082][ T5246] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  123.452677][ T6448] loop3: detected capacity change from 0 to 4096
[  123.558234][ T6462] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  123.606429][   T29] audit: type=1800 audit(1728568594.883:24): pid=6448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.391" name="file1" dev="loop3" ino=15 res=0 errno=0
[  123.718703][ T6464] loop0: detected capacity change from 0 to 512
[  123.783927][ T6464] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  123.849880][ T6464] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  123.913317][ T6464] EXT4-fs (loop0): 1 truncate cleaned up
[  123.920022][ T6464] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.040220][ T6464] EXT4-fs error (device loop0): ext4_ext_precache:631: inode #15: comm syz.0.398: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964)
[  124.042242][   T29] audit: type=1800 audit(1728568595.313:25): pid=6464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.398" name="file1" dev="loop0" ino=15 res=0 errno=0
[  124.136608][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.151953][ T6439] loop1: detected capacity change from 0 to 32768
[  124.268711][ T6474] loop0: detected capacity change from 0 to 512
[  124.341644][ T6474] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.342007][ T6454] loop4: detected capacity change from 0 to 32768
[  124.378565][ T6474] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.442888][ T6439] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  124.470134][ T6454] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  124.512775][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.555600][    T8] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  124.603907][ T6439] XFS (loop1): Ending clean mount
[  124.660021][ T6439] XFS (loop1): syz.1.386 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[  124.716630][ T6454] XFS (loop4): Ending clean mount
[  124.725533][ T5240] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  124.792505][    T8] usb 3-1: Using ep0 maxpacket: 32
[  124.833641][ T6454] XFS (loop4): Quotacheck needed: Please wait.
[  124.928166][ T6505] loop3: detected capacity change from 0 to 4096
[  124.982812][ T6454] XFS (loop4): Quotacheck: Done.
[  125.146065][ T6507] loop0: detected capacity change from 0 to 32768
[  125.157588][    T8] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  125.167699][ T6507] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.417 (6507)
[  125.180474][    T8] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x2 has an invalid bInterval 129, changing to 11
[  125.193354][    T8] usb 3-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  125.207167][    T8] usb 3-1: config 0 interface 0 has no altsetting 0
[  125.242155][ T6507] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  125.274133][ T6507] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  125.287760][ T6507] BTRFS info (device loop0): using free-space-tree
[  125.295733][    T8] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  125.305519][ T5238] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  125.340449][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.353030][    T8] usb 3-1: config 0 descriptor??
[  125.697950][ T6527] loop1: detected capacity change from 0 to 256
[  125.795743][    T8] hid-thrustmaster 0003:044F:B65D.0010: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.2-1/input0
[  125.837737][ T6527] FAT-fs (loop1): Directory bread(block 64) failed
[  125.862877][ T6527] FAT-fs (loop1): Directory bread(block 65) failed
[  125.910259][ T6527] FAT-fs (loop1): Directory bread(block 66) failed
[  125.967196][ T6527] FAT-fs (loop1): Directory bread(block 67) failed
[  125.976697][ T6527] FAT-fs (loop1): Directory bread(block 68) failed
[  125.990667][ T6527] FAT-fs (loop1): Directory bread(block 69) failed
[  126.000032][    T8] hid-thrustmaster 0003:044F:B65D.0010: setup data couldn't be sent
[  126.016409][ T6527] FAT-fs (loop1): Directory bread(block 70) failed
[  126.029248][    C0] hid-thrustmaster 0003:044F:B65D.0010: URB to get model id failed with error -71
[  126.051180][ T6527] FAT-fs (loop1): Directory bread(block 71) failed
[  126.057012][    T8] usb 3-1: USB disconnect, device number 8
[  126.072447][ T5231] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  126.095913][ T6527] FAT-fs (loop1): Directory bread(block 72) failed
[  126.134203][ T6527] FAT-fs (loop1): Directory bread(block 73) failed
[  126.408589][ T6543] loop4: detected capacity change from 0 to 512
[  126.448078][ T6543] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.519868][ T6543] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.655212][ T6543] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.415: path /100/file1: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  126.731669][ T6543] EXT4-fs (loop4): Remounting filesystem read-only
[  126.870788][ T6557] loop1: detected capacity change from 0 to 512
[  126.933179][   T46] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  126.962685][ T6557] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  127.066112][ T6557] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.421: bg 0: block 425: padding at end of block bitmap is not set
[  127.076108][ T6557] EXT4-fs (loop1): Remounting filesystem read-only
[  127.082288][   T46] usb 1-1: Using ep0 maxpacket: 32
[  127.139082][   T46] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.139123][   T46] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.139161][   T46] usb 1-1: New USB device found, idVendor=258a, idProduct=0033, bcdDevice= 0.00
[  127.139197][   T46] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.141281][   T46] usb 1-1: config 0 descriptor??
[  127.171103][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.418197][ T5238] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.521089][ T6566] can0: slcan on ptm0.
[  127.589734][   T46] glorious 0003:258A:0033.0011: item fetching failed at offset 0/3
[  127.632791][   T46] glorious 0003:258A:0033.0011: probe with driver glorious failed with error -22
[  127.789052][ T6565] can0 (unregistered): slcan off ptm0.
[  127.791795][   T46] usb 1-1: USB disconnect, device number 9
[  127.881331][ T6561] loop2: detected capacity change from 0 to 32768
[  128.032787][ T6581] openvswitch: netlink: Actions may not be safe on all matching packets
[  128.380018][ T6592] loop4: detected capacity change from 0 to 256
[  128.390941][ T6594] netlink: 4096 bytes leftover after parsing attributes in process `syz.2.435'.
[  128.397432][ T6592] exfat: Deprecated parameter 'utf8'
[  128.405776][ T6594] openvswitch: netlink: Actions may not be safe on all matching packets
[  128.505012][ T6592] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  128.871811][ T6609] netlink: 12 bytes leftover after parsing attributes in process `syz.3.446'.
[  128.891248][ T6610] program syz.4.447 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.523316][ T6596] loop1: detected capacity change from 0 to 65536
[  129.545440][ T6596] XFS (loop1): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  129.638548][ T6596] XFS (loop1): Ending clean mount
[  129.752945][ T5240] XFS (loop1): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  129.874150][ T6646] netlink: 'syz.2.461': attribute type 11 has an invalid length.
[  130.065793][ T6652] loop4: detected capacity change from 0 to 1024
[  130.172760][ T6652] hfsplus: bad catalog entry type
[  130.265898][ T6658] loop3: detected capacity change from 0 to 1024
[  130.318368][ T1061] hfsplus: b-tree write err: -5, ino 4
[  130.392827][ T6658] hfsplus: bad catalog entry type
[  130.466109][ T6662] loop4: detected capacity change from 0 to 256
[  130.513039][ T6660] loop0: detected capacity change from 0 to 4096
[  130.523648][   T52] hfsplus: b-tree write err: -5, ino 4
[  130.556884][ T6662] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x12727065, utbl_chksum : 0xe619d30d)
[  130.585052][ T6656] loop2: detected capacity change from 0 to 8192
[  130.621188][ T6656] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  130.719295][ T6665] loop3: detected capacity change from 0 to 4096
[  130.799529][ T6667] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  130.832665][ T6656] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  130.852928][ T6656] REISERFS (device loop2): using ordered data mode
[  130.859498][ T6656] reiserfs: using flush barriers
[  130.939594][ T6656] REISERFS warning (device loop2): sh-458 journal_init_dev: cannot init journal device unknown-block(7,2): -16
[  131.000709][ T6656] REISERFS warning (device loop2): sh-462 journal_init: unable to initialize journal device
[  131.048077][ T6656] REISERFS warning (device loop2): sh-2022 reiserfs_fill_super: unable to initialize journal space
[  131.175424][ T6679] loop0: detected capacity change from 0 to 512
[  131.239989][ T6679] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.473: corrupted in-inode xattr: invalid ea_ino
[  131.384190][ T6679] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.473: couldn't read orphan inode 15 (err -117)
[  131.404764][ T6679] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.572268][ T5324] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  131.734792][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.744192][ T5324] usb 3-1: Using ep0 maxpacket: 8
[  131.761106][ T5324] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.809110][ T5324] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.860319][ T5324] usb 3-1: New USB device found, idVendor=056a, idProduct=0028, bcdDevice= 0.00
[  131.922184][ T5324] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.951299][ T6695] loop4: detected capacity change from 0 to 40427
[  131.982249][ T6695] F2FS-fs (loop4): Invalid segment count (0)
[  131.988306][ T6695] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  132.054440][ T5324] usb 3-1: config 0 descriptor??
[  132.124060][ T6695] F2FS-fs (loop4): invalid crc value
[  132.258719][ T6697] loop1: detected capacity change from 0 to 256
[  132.262352][ T6689] loop3: detected capacity change from 0 to 40427
[  132.289469][ T6697] exfat: Deprecated parameter 'namecase'
[  132.306491][ T6689] F2FS-fs (loop3): heap/no_heap options were deprecated
[  132.315679][ T6689] F2FS-fs (loop3): invalid crc value
[  132.323609][ T6695] F2FS-fs (loop4): Found nat_bits in checkpoint
[  132.340131][ T6689] F2FS-fs (loop3): Found nat_bits in checkpoint
[  132.353815][ T6697] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  132.463683][ T6689] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  132.543755][ T5324] wacom 0003:056A:0028.0012: Unknown device_type for 'HID 056a:0028'. Assuming pen.
[  132.555794][ T6695] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  132.578753][ T5324] wacom 0003:056A:0028.0012: hidraw0: USB HID v0.00 Device [HID 056a:0028] on usb-dummy_hcd.2-1/input0
[  132.592002][ T6695] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  132.626974][ T5324] input: Wacom Intuos5 touch L Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0028.0012/input/input11
[  132.648248][ T5235] bio_check_eod: 62 callbacks suppressed
[  132.648270][ T5235] syz-executor: attempt to access beyond end of device
[  132.648270][ T5235] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  132.704884][ T5235] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  132.725162][ T5238] syz-executor: attempt to access beyond end of device
[  132.725162][ T5238] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  132.752287][ T5238] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  132.793442][ T5285] usb 3-1: USB disconnect, device number 9
[  133.079081][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  133.085958][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  133.114132][ T6711] loop0: detected capacity change from 0 to 4096
[  133.168475][ T6711] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  133.289954][ T6711] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  133.877758][ T6729] loop3: detected capacity change from 0 to 1024
[  133.894320][ T6729] EXT4-fs: Ignoring removed nomblk_io_submit option
[  133.911166][ T6729] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  133.938491][ T6729] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e055c09c, mo2=0002]
[  133.962174][ T6707] loop1: detected capacity change from 0 to 32768
[  133.963566][ T6729] System zones: 0-1, 3-36
[  134.000347][ T6729] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.006083][ T6738] loop0: detected capacity change from 0 to 256
[  134.055415][ T6738] exfat: Deprecated parameter 'utf8'
[  134.071637][ T6707] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  134.087114][ T5235] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.122417][ T6738] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  134.137471][ T6707] XFS (loop1): Ending clean mount
[  134.269076][ T5240] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  134.333328][    T8] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  134.502114][    T8] usb 3-1: Using ep0 maxpacket: 32
[  134.668112][    T8] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[  134.679156][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.696410][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.706348][    T8] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[  134.720202][    T8] usb 3-1: New USB device found, idVendor=056a, idProduct=00b3, bcdDevice= 0.00
[  134.729854][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.755248][    T8] usb 3-1: config 0 descriptor??
[  134.955106][ T6761] nbd: illegal input index 67108864
[  135.033163][ T6767] loop3: detected capacity change from 0 to 1024
[  135.186348][    T8] wacom 0003:056A:00B3.0013: unknown main item tag 0x0
[  135.196565][    T8] wacom 0003:056A:00B3.0013: Unknown device_type for 'HID 056a:00b3'. Assuming pen.
[  135.223605][    T8] wacom 0003:056A:00B3.0013: hidraw0: USB HID v0.00 Device [HID 056a:00b3] on usb-dummy_hcd.2-1/input0
[  135.280196][    T8] input: Wacom Intuos3 12x12 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:00B3.0013/input/input14
[  135.344861][ T6775] overlayfs: missing 'lowerdir'
[  135.375054][   T35] hfsplus: found bad thread record in catalog
[  135.381519][   T35] hfsplus: found bad thread record in catalog
[  135.455172][    T8] usb 3-1: USB disconnect, device number 10
[  135.902232][ T5314] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  135.999982][ T6800] loop1: detected capacity change from 0 to 512
[  136.003256][ T6801] MTD: Couldn't look up 'memory.events': -15
[  136.056930][ T5314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.076652][ T5314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  136.094798][ T5314] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  136.105381][ T5314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.115286][ T6800] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.522: bg 0: block 5: invalid block bitmap
[  136.134544][ T5314] usb 4-1: config 0 descriptor??
[  136.139810][ T6800] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  136.162225][ T6800] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.522: invalid indirect mapped block 3 (level 2)
[  136.188253][ T6800] EXT4-fs (loop1): 1 orphan inode deleted
[  136.194754][ T6800] EXT4-fs (loop1): 1 truncate cleaned up
[  136.201898][ T6800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.291816][ T6808] loop0: detected capacity change from 0 to 1024
[  136.348698][ T6808] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.378867][ T6808] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.486850][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.502688][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.708560][ T5314] prodikeys 0003:041E:2801.0014: item fetching failed at offset 5/7
[  136.719168][ T5314] prodikeys 0003:041E:2801.0014: hid parse failed
[  136.725814][ T5314] prodikeys 0003:041E:2801.0014: probe with driver prodikeys failed with error -22
[  136.923023][ T5314] usb 4-1: USB disconnect, device number 5
[  136.953925][ T6823] loop0: detected capacity change from 0 to 512
[  136.982797][ T6823] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  137.025364][ T6823] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[  137.050510][ T6809] loop4: detected capacity change from 0 to 32768
[  137.057164][ T6823] System zones: 1-12
[  137.078941][ T6823] EXT4-fs (loop0): 1 truncate cleaned up
[  137.091338][ T6809] JBD2: Ignoring recovery information on journal
[  137.147541][ T6823] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.283676][ T6831] loop1: detected capacity change from 0 to 512
[  137.305064][ T6823] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  137.317113][ T6809] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  137.339693][ T6831] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  137.370254][ T6831] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.396261][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.452362][ T6815] loop2: detected capacity change from 0 to 32768
[  137.527060][ T6815] debugfs: Directory '03E7AA51A951448EB9EB6DD609435E20' with parent 'ocfs2' already present!
[  137.588491][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  137.606182][ T6815] JBD2: Ignoring recovery information on journal
[  137.675062][ T5238] ocfs2: Unmounting device (7,4) on (node local)
[  137.688799][ T6839] loop3: detected capacity change from 0 to 4096
[  137.704472][ T6839] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  137.744742][ T6815] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  138.029569][ T6846] netlink: 16 bytes leftover after parsing attributes in process `syz.3.541'.
[  138.082425][ T5246] ocfs2: Unmounting device (7,2) on (node local)
[  138.091620][ T6850] netlink: 8 bytes leftover after parsing attributes in process `syz.3.545'.
[  138.270023][ T6854] netlink: 40 bytes leftover after parsing attributes in process `syz.0.544'.
[  138.378434][ T6857] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  138.509260][ T6865] netlink: 12 bytes leftover after parsing attributes in process `syz.4.537'.
[  138.723516][ T5314] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  138.808260][ T6872] loop4: detected capacity change from 0 to 256
[  138.902242][ T5314] usb 4-1: Using ep0 maxpacket: 32
[  138.916643][ T5314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.922747][ T6868] loop1: detected capacity change from 0 to 40427
[  138.936352][ T5314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.969578][ T5314] usb 4-1: New USB device found, idVendor=172f, idProduct=0501, bcdDevice= 0.00
[  138.979550][ T5314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.980456][ T6868] F2FS-fs (loop1): invalid crc value
[  139.023181][ T5314] usb 4-1: config 0 descriptor??
[  139.048116][ T6868] F2FS-fs (loop1): Found nat_bits in checkpoint
[  139.323412][ T6868] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  139.368921][ T6890] netlink: 'syz.4.558': attribute type 3 has an invalid length.
[  139.461617][ T5314] waltop 0003:172F:0501.0015: item fetching failed at offset 2/5
[  139.502807][ T5314] waltop 0003:172F:0501.0015: probe with driver waltop failed with error -22
[  139.533996][ T5240] syz-executor: attempt to access beyond end of device
[  139.533996][ T5240] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  139.564301][ T5240] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  139.672291][ T5314] usb 4-1: USB disconnect, device number 6
[  139.806210][ T6902] »»»»»»¾ðj�
Áe: renamed from lo (while UP)
[  140.050993][ T6906] loop1: detected capacity change from 0 to 128
[  140.427065][ T6920] loop1: detected capacity change from 0 to 256
[  140.474327][ T6920] exfat: Deprecated parameter 'utf8'
[  140.531669][ T6920] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[  140.917145][ T6928] loop2: detected capacity change from 0 to 4096
[  141.050771][ T6900] loop4: detected capacity change from 0 to 32768
[  141.055229][ T6928] ntfs3(loop2): failed to convert "0080" to cp864
[  141.105302][ T6900] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  141.387602][ T6917] loop3: detected capacity change from 0 to 32768
[  141.569482][ T6953] loop2: detected capacity change from 0 to 256
[  141.590702][ T6917] JBD2: Ignoring recovery information on journal
[  141.646875][ T6917] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  141.692427][   T29] audit: type=1800 audit(1728568612.963:26): pid=6917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.570" name="file1" dev="loop3" ino=16946 res=0 errno=0
[  141.718743][ T6953] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  141.765912][ T6900] XFS (loop4): Ending clean mount
[  141.810614][ T6900] XFS (loop4): Quotacheck needed: Please wait.
[  141.880064][ T6900] XFS (loop4): Quotacheck: Done.
[  142.052364][ T5238] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  142.089629][ T5235] ocfs2: Unmounting device (7,3) on (node local)
[  142.296921][ T6962] netlink: 87 bytes leftover after parsing attributes in process `syz.2.589'.
[  142.303464][ T6947] loop1: detected capacity change from 0 to 40427
[  142.362347][ T6947] F2FS-fs (loop1): invalid crc value
[  142.538869][ T6947] F2FS-fs (loop1): Found nat_bits in checkpoint
[  142.617247][ T6947] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  142.869755][ T6981] program syz.3.594 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  143.258210][ T6985] loop0: detected capacity change from 0 to 4096
[  143.284248][ T6985] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  143.428139][ T6985] ntfs3(loop0): Failed to load $Extend (-22).
[  143.436912][ T6985] ntfs3(loop0): Failed to initialize $Extend.
[  144.234721][ T6972] loop2: detected capacity change from 0 to 40427
[  144.276160][ T6972] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  144.538357][ T7003] loop1: detected capacity change from 0 to 32768
[  144.587710][ T6972] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  144.658763][ T6972] F2FS-fs (loop2): invalid crc value
[  144.737279][ T7021] loop0: detected capacity change from 0 to 4096
[  144.798869][ T7003] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  144.820995][ T7021] NILFS (loop0): invalid segment: Checksum error in segment payload
[  144.829963][ T7021] NILFS (loop0): trying rollback from an earlier position
[  144.844901][ T6972] F2FS-fs (loop2): Found nat_bits in checkpoint
[  145.024021][ T7021] NILFS (loop0): norecovery option specified, skipping roll-forward recovery
[  145.033327][ T6972] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  145.040418][ T6972] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  145.058306][ T7003] XFS (loop1): Ending clean mount
[  145.146121][ T5240] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  145.777692][ T7054] loop1: detected capacity change from 0 to 1024
[  145.808463][ T7056] loop3: detected capacity change from 0 to 512
[  145.841667][ T7056] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.625: invalid block
[  145.864719][ T7056] EXT4-fs (loop3): Remounting filesystem read-only
[  145.873910][ T7056] EXT4-fs (loop3): 2 truncates cleaned up
[  145.885329][ T7056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.903696][ T7054] hfsplus: request for non-existent node 3 in B*Tree
[  145.903767][ T7054] hfsplus: request for non-existent node 3 in B*Tree
[  146.054878][ T5235] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.181310][ T7068] loop1: detected capacity change from 0 to 256
[  146.445914][ T7068] FAT-fs (loop1): Directory bread(block 64) failed
[  146.472373][ T7068] FAT-fs (loop1): Directory bread(block 65) failed
[  146.479172][ T7068] FAT-fs (loop1): Directory bread(block 66) failed
[  146.518061][ T7068] FAT-fs (loop1): Directory bread(block 67) failed
[  146.537306][ T7068] FAT-fs (loop1): Directory bread(block 68) failed
[  146.547961][ T7068] FAT-fs (loop1): Directory bread(block 69) failed
[  146.560428][ T7068] FAT-fs (loop1): Directory bread(block 70) failed
[  146.570088][ T7068] FAT-fs (loop1): Directory bread(block 71) failed
[  146.619566][ T7068] FAT-fs (loop1): Directory bread(block 72) failed
[  146.627289][ T7068] FAT-fs (loop1): Directory bread(block 73) failed
[  146.884381][ T7091] loop4: detected capacity change from 0 to 4096
[  147.020772][ T7093] openvswitch: netlink: Actions may not be safe on all matching packets
[  147.037602][ T7097] netlink: 188 bytes leftover after parsing attributes in process `syz.1.641'.
[  147.402293][ T5286] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  147.573592][ T5286] usb 2-1: Using ep0 maxpacket: 8
[  147.604039][ T5286] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.640071][ T5286] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.675506][ T5286] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  147.712378][ T5234] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  147.723290][ T5234] Bluetooth: hci1: Injecting HCI hardware error event
[  147.732873][ T5236] Bluetooth: hci1: hardware error 0x00
[  147.744143][ T5286] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  147.761869][ T5286] usb 2-1: New USB device found, idVendor=1e71, idProduct=2006, bcdDevice= 0.00
[  147.771336][ T5286] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.813544][ T5286] usb 2-1: config 0 descriptor??
[  148.247656][ T7126] loop2: detected capacity change from 0 to 4096
[  148.389236][ T7123] loop3: detected capacity change from 0 to 40427
[  148.397318][ T7123] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  148.412241][ T5286] nzxt-smart2 0003:1E71:2006.0016: unknown main item tag 0x0
[  148.419745][ T5286] nzxt-smart2 0003:1E71:2006.0016: unknown main item tag 0x0
[  148.426211][ T7123] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  148.427501][ T5286] nzxt-smart2 0003:1E71:2006.0016: unknown main item tag 0x0
[  148.444837][ T5286] nzxt-smart2 0003:1E71:2006.0016: unknown main item tag 0x0
[  148.453404][ T5286] nzxt-smart2 0003:1E71:2006.0016: unknown main item tag 0x0
[  148.467873][ T5286] nzxt-smart2 0003:1E71:2006.0016: hidraw0: USB HID v0.00 Device [HID 1e71:2006] on usb-dummy_hcd.1-1/input0
[  148.491262][ T7123] F2FS-fs (loop3): invalid crc value
[  148.556692][ T7114] loop4: detected capacity change from 0 to 32768
[  148.577433][ T7123] F2FS-fs (loop3): Found nat_bits in checkpoint
[  148.684865][    T8] usb 2-1: USB disconnect, device number 3
[  148.719743][ T7123] F2FS-fs (loop3): Start checkpoint disabled!
[  148.949709][ T7123] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  148.957022][ T7123] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  149.072788][ T7123] F2FS-fs (loop3): access invalid blkaddr:3355443200
[  149.080053][ T7123] CPU: 0 UID: 0 PID: 7123 Comm: syz.3.655 Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  149.090196][ T7123] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  149.100306][ T7123] Call Trace:
[  149.103626][ T7123]  <TASK>
[  149.106588][ T7123]  dump_stack_lvl+0x241/0x360
[  149.111317][ T7123]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.116566][ T7123]  ? filemap_dirty_folio+0xae/0x360
[  149.121816][ T7123]  ? f2fs_dirty_node_folio+0x510/0xaf0
[  149.127330][ T7123]  __f2fs_is_valid_blkaddr+0xe16/0x1460
[  149.132946][ T7123]  f2fs_truncate_data_blocks_range+0x658/0x1000
[  149.139260][ T7123]  ? f2fs_do_truncate_blocks+0x6e3/0x1180
[  149.145039][ T7123]  f2fs_do_truncate_blocks+0x6e3/0x1180
[  149.150647][ T7123]  ? __pfx_f2fs_do_truncate_blocks+0x10/0x10
[  149.156687][ T7123]  ? __pfx___dquot_initialize+0x10/0x10
[  149.162301][ T7123]  f2fs_truncate_blocks+0x10d/0x300
[  149.167561][ T7123]  ? f2fs_setattr+0xc08/0x12d0
[  149.172378][ T7123]  f2fs_truncate+0x407/0x700
[  149.177036][ T7123]  ? truncate_setsize+0xcf/0xf0
[  149.181960][ T7123]  f2fs_setattr+0xc08/0x12d0
[  149.186624][ T7123]  ? __pfx_f2fs_setattr+0x10/0x10
[  149.191818][ T7123]  notify_change+0xbca/0xe90
[  149.196485][ T7123]  do_truncate+0x220/0x310
[  149.200969][ T7123]  ? __pfx_do_truncate+0x10/0x10
[  149.205957][ T7123]  ? apparmor_file_truncate+0x297/0x350
[  149.211604][ T7123]  path_openat+0x2e1e/0x3590
[  149.216295][ T7123]  ? __pfx_path_openat+0x10/0x10
[  149.221328][ T7123]  ? rcu_is_watching+0x15/0xb0
[  149.226181][ T7123]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  149.232054][ T7123]  ? getname_kernel+0x140/0x2f0
[  149.236971][ T7123]  ? do_file_open_root+0x4e3/0x680
[  149.242136][ T7123]  do_file_open_root+0x356/0x680
[  149.247122][ T7123]  ? __lock_acquire+0x1384/0x2050
[  149.252196][ T7123]  ? __pfx_do_file_open_root+0x10/0x10
[  149.257740][ T7123]  ? __pfx_lock_acquire+0x10/0x10
[  149.262833][ T7123]  ? alloc_fd+0x610/0x680
[  149.267233][ T7123]  ? __pfx_lock_release+0x10/0x10
[  149.272302][ T7123]  ? do_raw_spin_lock+0x14f/0x370
[  149.277480][ T7123]  ? build_open_flags+0x448/0x5b0
[  149.282604][ T7123]  file_open_root+0x247/0x2a0
[  149.287341][ T7123]  ? do_raw_spin_unlock+0x13c/0x8b0
[  149.292606][ T7123]  ? __pfx_file_open_root+0x10/0x10
[  149.297901][ T7123]  ? _raw_spin_unlock+0x28/0x50
[  149.302826][ T7123]  ? alloc_fd+0x610/0x680
[  149.307229][ T7123]  do_handle_open+0x861/0x9a0
[  149.312005][ T7123]  ? __pfx_do_handle_open+0x10/0x10
[  149.317275][ T7123]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  149.323331][ T7123]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  149.329728][ T7123]  ? do_syscall_64+0x100/0x230
[  149.334570][ T7123]  ? do_syscall_64+0xb6/0x230
[  149.339315][ T7123]  do_syscall_64+0xf3/0x230
[  149.343886][ T7123]  ? clear_bhb_loop+0x35/0x90
[  149.348633][ T7123]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.354613][ T7123] RIP: 0033:0x7f9299d7dff9
[  149.359090][ T7123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.378773][ T7123] RSP: 002b:00007f929ac2e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  149.387253][ T7123] RAX: ffffffffffffffda RBX: 00007f9299f35f80 RCX: 00007f9299d7dff9
[  149.395279][ T7123] RDX: 000000000000ffa1 RSI: 00000000200005c0 RDI: 0000000000000004
[  149.403388][ T7123] RBP: 00007f9299df0296 R08: 0000000000000000 R09: 0000000000000000
[  149.411406][ T7123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.419438][ T7123] R13: 0000000000000000 R14: 00007f9299f35f80 R15: 00007ffe2f873138
[  149.429131][ T7123]  </TASK>
[  149.832679][ T7135] loop0: detected capacity change from 0 to 32768
[  149.959908][ T5236] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  150.203991][ T7135] JBD2: Ignoring recovery information on journal
[  150.288658][ T7147] loop1: detected capacity change from 0 to 32768
[  150.302862][ T7147] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.663 (7147)
[  150.347276][ T7135] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  150.370591][ T7141] loop2: detected capacity change from 0 to 32768
[  150.527268][ T5231] ocfs2: Unmounting device (7,0) on (node local)
[  150.771111][ T7151] loop4: detected capacity change from 0 to 40427
[  150.778361][ T7147] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  150.778454][ T7147] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  150.778490][ T7147] BTRFS info (device loop1): using free-space-tree
[  150.809215][ T7151] F2FS-fs (loop4): invalid crc value
[  150.814932][ T7151] F2FS-fs (loop4): Found nat_bits in checkpoint
[  150.867187][ T7141] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  150.988554][ T7141] XFS (loop2): Ending clean mount
[  151.015255][ T7151] F2FS-fs (loop4): Start checkpoint disabled!
[  151.083769][ T7141] XFS (loop2): Quotacheck needed: Please wait.
[  151.100522][ T7182] loop3: detected capacity change from 0 to 16
[  151.110562][ T7151] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  151.163201][ T7182] erofs: (device loop3): mounted with root inode @ nid 36.
[  151.185174][   T29] audit: type=1800 audit(1728568622.463:27): pid=7151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.665" name="bus" dev="loop4" ino=10 res=0 errno=0
[  151.275306][ T5240] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  151.306243][ T7141] XFS (loop2): Quotacheck: Done.
[  151.353306][ T7151] syz.4.665: attempt to access beyond end of device
[  151.353306][ T7151] loop4: rw=2049, sector=77824, nr_sectors = 976 limit=40427
[  151.490500][ T5246] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  151.562181][ T5286] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  151.674040][   T81] kworker/u8:4: attempt to access beyond end of device
[  151.674040][   T81] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  151.702431][   T81] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  151.710222][   T81] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  151.772223][ T5286] usb 1-1: Using ep0 maxpacket: 16
[  151.789966][ T5286] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.826090][ T5286] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.902221][ T5286] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  151.941296][ T5286] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  151.984432][ T5286] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.028083][ T5286] usb 1-1: config 0 descriptor??
[  152.472745][ T5286] microsoft 0003:045E:07DA.0017: ignoring exceeding usage max
[  152.503726][ T5286] microsoft 0003:045E:07DA.0017: unbalanced collection at end of report description
[  152.536576][ T5286] microsoft 0003:045E:07DA.0017: parse failed
[  152.552198][ T5286] microsoft 0003:045E:07DA.0017: probe with driver microsoft failed with error -22
[  152.677353][ T5283] usb 1-1: USB disconnect, device number 10
[  152.884249][ T7208] loop1: detected capacity change from 0 to 128
[  152.935553][ T7206] loop4: detected capacity change from 0 to 4096
[  152.949130][ T7208] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  152.973205][ T7206] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  152.999255][ T7194] loop3: detected capacity change from 0 to 32768
[  153.013988][ T7208] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  153.100493][ T7194] JBD2: Ignoring recovery information on journal
[  153.127449][ T7198] loop2: detected capacity change from 0 to 32768
[  153.148915][ T7198] (syz.2.671,7198,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  153.172229][ T7198] (syz.2.671,7198,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  153.229200][ T7194] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  153.243829][ T7198] JBD2: Ignoring recovery information on journal
[  153.352513][ T7194] (syz.3.673,7194,1):ocfs2_verify_group_and_input:428 ERROR: add a group which is in the current volume.
[  153.422415][ T7194] (syz.3.673,7194,1):ocfs2_group_add:511 ERROR: status = -22
[  153.448710][ T7219] loop4: detected capacity change from 0 to 256
[  153.474949][ T7198] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  153.480094][ T7217] loop0: detected capacity change from 0 to 512
[  153.494244][ T7217] EXT4-fs: Ignoring removed nomblk_io_submit option
[  153.528437][ T5235] ocfs2: Unmounting device (7,3) on (node local)
[  153.536947][ T7219] exfat: Deprecated parameter 'utf8'
[  153.589796][ T7219] exfat: Deprecated parameter 'utf8'
[  153.623188][ T7217] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.626682][ T7219] exfat: Deprecated parameter 'utf8'
[  153.636857][ T7217] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.699661][ T7219] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  153.705325][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.917419][ T5246] ocfs2: Unmounting device (7,2) on (node local)
[  154.012201][ T5283] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  154.284774][ T7238] loop0: detected capacity change from 0 to 1024
[  154.331496][ T7244] netlink: 'syz.4.691': attribute type 1 has an invalid length.
[  154.339827][ T7244] netlink: 9364 bytes leftover after parsing attributes in process `syz.4.691'.
[  154.349175][ T7244] netlink: 'syz.4.691': attribute type 1 has an invalid length.
[  154.421892][ T5283] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  154.431613][ T5283] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.440207][ T5283] usb 2-1: Product: syz
[  154.444752][ T5283] usb 2-1: Manufacturer: syz
[  154.449395][ T5283] usb 2-1: SerialNumber: syz
[  154.458440][ T5283] usb 2-1: config 0 descriptor??
[  154.574686][ T7252] capability: warning: `syz.3.692' uses 32-bit capabilities (legacy support in use)
[  154.683294][ T5283] hso 2-1:0.0: Failed to find BULK IN ep
[  154.695044][ T5283] usb-storage 2-1:0.0: USB Mass Storage device detected
[  154.704657][ T7254] netlink: 12 bytes leftover after parsing attributes in process `syz.0.695'.
[  154.892613][ T5283] usb 2-1: USB disconnect, device number 4
[  155.128112][ T7272] loop3: detected capacity change from 0 to 256
[  155.290853][ T7278] netlink: 'syz.4.706': attribute type 2 has an invalid length.
[  155.321908][ T7274] loop0: detected capacity change from 0 to 4096
[  155.389114][ T7274] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  155.592217][ T7274] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  155.644739][ T7290] loop3: detected capacity change from 0 to 128
[  155.939454][ T7298] loop3: detected capacity change from 0 to 512
[  155.968291][ T7298] EXT4-fs: Ignoring removed nobh option
[  156.064032][ T7298] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.152336][ T7298] ext4 filesystem being mounted at /146/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.194602][ T7295] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.716: bg 0: block 224: padding at end of block bitmap is not set
[  156.248316][ T7295] EXT4-fs (loop3): Remounting filesystem read-only
[  156.456361][ T5235] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.598961][ T7280] loop2: detected capacity change from 0 to 32768
[  156.666252][ T7280] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.708 (7280)
[  156.732288][ T7280] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  156.775246][ T7280] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  156.807603][ T7280] BTRFS info (device loop2): using free-space-tree
[  156.943767][    T8] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  157.091561][ T5246] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  157.095504][ T7321] loop3: detected capacity change from 0 to 4096
[  157.149295][ T7321] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  157.152893][    T8] usb 2-1: Using ep0 maxpacket: 16
[  157.184498][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.197515][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.209079][    T8] usb 2-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00
[  157.218885][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.252745][    T8] usb 2-1: config 0 descriptor??
[  157.366966][ T7321] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  157.687999][ T7313] loop0: detected capacity change from 0 to 32768
[  157.711621][    T8] kye 0003:0458:5012.0018: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  157.763336][    T8] kye 0003:0458:5012.0018: hidraw0: USB HID v0.00 Device [HID 0458:5012] on usb-dummy_hcd.1-1/input0
[  157.774832][    T8] kye 0003:0458:5012.0018: tablet-enabling feature report not found
[  157.783986][    T8] kye 0003:0458:5012.0018: tablet enabling failed
[  157.797954][   T29] audit: type=1800 audit(1728568629.073:28): pid=7340 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.726" name="file0" dev="loop3" ino=0 res=0 errno=0
[  157.801942][ T7313] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  157.916915][ T5285] usb 2-1: USB disconnect, device number 5
[  158.119766][ T7313] XFS (loop0): Ending clean mount
[  158.126802][ T7358] loop4: detected capacity change from 0 to 1024
[  158.173564][ T7358] EXT4-fs: Ignoring removed oldalloc option
[  158.340450][ T5231] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  158.552799][ T7350] loop2: detected capacity change from 0 to 32768
[  158.746622][ T7370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.738'.
[  159.162852][ T5324] kernel write not supported for file /284/loginuid (pid: 5324 comm: kworker/1:5)
[  159.348311][ T7392] loop0: detected capacity change from 0 to 4096
[  159.368836][ T7392] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  159.448193][ T7394] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  159.698278][ T7404] loop4: detected capacity change from 0 to 256
[  159.778103][ T7404] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  160.165744][ T7402] loop2: detected capacity change from 0 to 32768
[  160.260939][ T7406] loop1: detected capacity change from 0 to 32768
[  160.324679][ T7402] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  160.454903][ T7406] JBD2: Ignoring recovery information on journal
[  160.620475][ T7376] loop3: detected capacity change from 0 to 40427
[  160.639767][ T7406] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  160.702538][ T7376] F2FS-fs (loop3): invalid crc value
[  160.746822][ T5314] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  160.776809][ T7431] loop0: detected capacity change from 0 to 256
[  160.820591][ T7376] F2FS-fs (loop3): Found nat_bits in checkpoint
[  160.876528][ T5240] ocfs2: Unmounting device (7,1) on (node local)
[  160.889498][ T7376] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  160.902717][ T5314] usb 5-1: Using ep0 maxpacket: 16
[  160.910274][ T5314] usb 5-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00
[  160.932253][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.946294][ T5314] usb 5-1: config 0 descriptor??
[  161.012758][ T7402] XFS (loop2): Ending clean mount
[  161.168295][ T7402] XFS (loop2): Quotacheck needed: Please wait.
[  161.205958][ T7438] netlink: 56 bytes leftover after parsing attributes in process `syz.1.762'.
[  161.356655][ T7402] XFS (loop2): Quotacheck: Done.
[  161.406210][ T5314] logitech 0003:046D:CA04.0019: hidraw0: USB HID v0.00 Device [HID 046d:ca04] on usb-dummy_hcd.4-1/input0
[  161.418569][ T5314] logitech 0003:046D:CA04.0019: no inputs found
[  161.436621][ T5246] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  161.585673][ T5285] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  161.633285][ T5286] usb 5-1: USB disconnect, device number 6
[  161.669838][ T5314] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  161.769066][ T5285] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  161.790111][ T5285] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  161.818753][ T5285] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  161.839408][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  161.848808][ T5285] usb 1-1: SerialNumber: syz
[  161.868330][ T5314] usb 2-1: Using ep0 maxpacket: 8
[  161.888505][ T5314] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  161.903007][ T5314] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  161.922452][ T5314] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  161.972332][ T5314] usb 2-1: New USB device found, idVendor=056a, idProduct=005e, bcdDevice= 0.00
[  162.001913][ T5314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.028144][ T5314] usb 2-1: config 0 descriptor??
[  162.034574][ T7450] loop3: detected capacity change from 0 to 256
[  162.090016][ T5285] usb 1-1: 0:2 : does not exist
[  162.106571][ T7450] FAT-fs (loop3): Directory bread(block 64) failed
[  162.150138][ T7450] FAT-fs (loop3): Directory bread(block 65) failed
[  162.163338][ T7450] FAT-fs (loop3): Directory bread(block 66) failed
[  162.170219][ T7450] FAT-fs (loop3): Directory bread(block 67) failed
[  162.177399][ T7450] FAT-fs (loop3): Directory bread(block 68) failed
[  162.185747][ T5285] usb 1-1: USB disconnect, device number 11
[  162.228257][ T5465] udevd[5465]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  162.249831][ T7450] FAT-fs (loop3): Directory bread(block 69) failed
[  162.288172][ T7450] FAT-fs (loop3): Directory bread(block 70) failed
[  162.324346][ T7450] FAT-fs (loop3): Directory bread(block 71) failed
[  162.331248][ T7450] FAT-fs (loop3): Directory bread(block 72) failed
[  162.351593][ T7450] FAT-fs (loop3): Directory bread(block 73) failed
[  162.679153][ T5314] usb 2-1: USB disconnect, device number 6
[  163.498755][ T7475] loop4: detected capacity change from 0 to 32768
[  163.519983][ T7475] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.780 (7475)
[  163.622271][ T7475] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  163.632904][ T7475] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  163.642585][ T7475] BTRFS info (device loop4): using free-space-tree
[  163.976251][ T7471] loop0: detected capacity change from 0 to 32768
[  164.015013][ T7491] loop1: detected capacity change from 0 to 8
[  164.084030][ T7491] SQUASHFS error: xz decompression failed, data probably corrupt
[  164.092133][ T7491] SQUASHFS error: Failed to read block 0xa8: -5
[  164.160664][ T7477] loop3: detected capacity change from 0 to 32768
[  164.162271][ T7461] loop2: detected capacity change from 0 to 32768
[  164.187276][ T7491] SQUASHFS error: xz decompression failed, data probably corrupt
[  164.196501][ T7491] SQUASHFS error: Failed to read block 0xa8: -5
[  164.212355][   T29] audit: type=1800 audit(1728568635.483:29): pid=7491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.785" name="file0" dev="loop1" ino=3 res=0 errno=0
[  164.306427][ T7475] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  164.333620][ T7471] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  164.442309][ T7461] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  164.520415][ T5238] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  164.595382][ T5231] ocfs2: Unmounting device (7,0) on (node local)
[  164.848818][ T7461] XFS (loop2): Ending clean mount
[  164.858002][ T7461] XFS (loop2): Quotacheck needed: Please wait.
[  164.971482][ T5236] Bluetooth: hci4: link tx timeout
[  164.978302][ T5236] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  165.022900][ T7461] XFS (loop2): Quotacheck: Done.
[  165.202030][ T7531] loop3: detected capacity change from 0 to 1024
[  165.267649][ T7521] loop0: detected capacity change from 0 to 4096
[  165.570993][ T5246] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  165.760648][ T7549] loop1: detected capacity change from 0 to 256
[  165.770488][ T7549] exfat: Deprecated parameter 'utf8'
[  165.855001][ T7531] hfsplus: request for non-existent node 16777216 in B*Tree
[  165.873917][ T7531] hfsplus: request for non-existent node 16777216 in B*Tree
[  165.921569][ T7549] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  166.172311][ T5285] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  166.334553][ T5285] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.346804][ T5285] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.394700][ T5285] usb 5-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  166.416117][ T5285] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.427306][ T5285] usb 5-1: config 0 descriptor??
[  166.849630][ T5285] elo 0003:04E7:0030.001B: item fetching failed at offset 2/5
[  166.860553][ T5285] elo 0003:04E7:0030.001B: parse failed
[  166.867109][ T5285] elo 0003:04E7:0030.001B: probe with driver elo failed with error -22
[  166.922493][   T46] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  166.966039][ T7577] loop1: detected capacity change from 0 to 1024
[  167.010853][ T5236] Bluetooth: hci4: command 0x0405 tx timeout
[  167.083114][ T5285] usb 5-1: USB disconnect, device number 7
[  167.128467][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.147235][ T7580] netlink: 60 bytes leftover after parsing attributes in process `syz.1.819'.
[  167.163871][ T7580] netlink: 60 bytes leftover after parsing attributes in process `syz.1.819'.
[  167.176872][   T46] usb 3-1: New USB device found, idVendor=056a, idProduct=00b3, bcdDevice= 0.00
[  167.210767][   T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.244346][   T46] usb 3-1: config 0 descriptor??
[  167.793234][ T7596] loop3: detected capacity change from 0 to 1024
[  167.838653][ T7596] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  167.869523][ T7588] loop0: detected capacity change from 0 to 32768
[  167.880085][   T46] usbhid 3-1:0.0: can't add hid device: -71
[  167.886603][   T46] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  167.908215][   T46] usb 3-1: USB disconnect, device number 11
[  167.955539][ T7605] program syz.4.828 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.016358][ T7596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.023719][ T7611] loop1: detected capacity change from 0 to 1024
[  168.038614][ T7588] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  168.047824][ T7611] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  168.091350][ T7611] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.830: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  168.159349][ T7588] XFS (loop0): Ending clean mount
[  168.176962][ T7611] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.830: couldn't read orphan inode 11 (err -117)
[  168.265592][ T7611] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.317273][ T7611] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.830: Invalid block bitmap block 0 in block_group 0
[  168.342958][ T7611] Quota error (device loop1): write_blk: dquota write failed
[  168.351576][ T7611] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  168.356155][ T5235] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.363812][ T7611] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.830: Failed to acquire dquot type 0
[  168.388789][ T5231] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  168.597163][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.618632][   T81] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8
[  168.638185][   T81] EXT4-fs error (device loop1): ext4_release_dquot:6902: comm kworker/u8:4: Failed to release dquot type 0
[  168.753895][ T7626] loop4: detected capacity change from 0 to 512
[  168.783983][ T7626] EXT4-fs: Ignoring removed mblk_io_submit option
[  168.804823][ T7626] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  168.849250][ T7626] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  168.867029][ T7626] System zones: 1-12
[  168.901434][ T7626] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.837: corrupted in-inode xattr: e_value size too large
[  169.072443][ T7626] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.837: couldn't read orphan inode 15 (err -117)
[  169.089977][ T7626] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.157033][ T7644] loop2: detected capacity change from 0 to 64
[  169.169959][ T7642] program syz.1.841 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  169.385449][ T5238] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.405039][ T7652] tipc: Started in network mode
[  169.416485][ T7652] tipc: Node identity , cluster identity 4711
[  169.429795][ T7652] tipc: Failed to set node id, please configure manually
[  169.437326][ T7652] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  169.630940][ T7662] loop4: detected capacity change from 0 to 512
[  169.697872][ T7662] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  169.728786][ T7662] EXT4-fs (loop4): orphan cleanup on readonly fs
[  169.831820][ T7662] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  169.859571][ T7667] netlink: 8 bytes leftover after parsing attributes in process `syz.3.853'.
[  169.868948][ T7667] netlink: 24 bytes leftover after parsing attributes in process `syz.3.853'.
[  169.892795][ T7662] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  169.951108][ T7662] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  170.032229][ T7662] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #16: comm syz.4.845: casefold flag without casefold feature
[  170.087001][ T7662] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.845: couldn't read orphan inode 16 (err -117)
[  170.120871][ T7662] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  170.300184][ T5238] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.596875][ T7678] Illegal XDP return value 4294967274 on prog  (id 46) dev N/A, expect packet loss!
[  170.772267][ T7655] loop0: detected capacity change from 0 to 40427
[  170.783020][ T7655] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  170.808442][ T7657] loop2: detected capacity change from 0 to 32768
[  170.815991][ T7655] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  170.829777][ T7657] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.846 (7657)
[  170.866420][ T7657] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  170.879193][ T7655] F2FS-fs (loop0): Found nat_bits in checkpoint
[  170.896168][ T7657] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm
[  170.912339][ T5285] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  170.932451][ T7657] BTRFS info (device loop2): disk space caching is enabled
[  170.960265][ T7657] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  171.083215][ T5285] usb 5-1: too many configurations: 57, using maximum allowed: 8
[  171.084184][ T7655] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  171.111624][ T5285] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  171.121312][ T5285] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.135218][ T5285] usb 5-1: Product: syz
[  171.141420][ T5285] usb 5-1: Manufacturer: syz
[  171.150761][ T5285] usb 5-1: SerialNumber: syz
[  171.152437][ T7657] BTRFS info (device loop2): rebuilding free space tree
[  171.162588][ T7655] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  171.187927][ T5285] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  171.243801][ T7657] BTRFS info (device loop2): disabling free space tree
[  171.250779][ T7657] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  171.283183][ T7655] fscrypt (loop0, inode 3): Error -61 getting encryption context
[  171.319992][ T7657] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  171.352694][ T5244] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  171.521740][ T7657] BTRFS info (device loop2): balance: start -susage=4294963383..4,drange=0..6,vrange=0..0,limit=2..31841
[  171.541725][ T7657] BTRFS info (device loop2): balance: ended with status: 0
[  171.632997][ T5246] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  171.921696][   T46] usb 5-1: USB disconnect, device number 8
[  172.078975][ T7713] loop1: detected capacity change from 0 to 1024
[  172.183270][ T7713] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.412748][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.444760][ T5244] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  172.459080][ T5244] ath9k_htc: Failed to initialize the device
[  172.522179][   T46] usb 5-1: ath9k_htc: USB layer deinitialized
[  173.032756][ T7750] loop2: detected capacity change from 0 to 1024
[  173.119530][ T7753] loop4: detected capacity change from 0 to 256
[  173.160411][ T7750] hfsplus: request for non-existent node 134217728 in B*Tree
[  173.168857][ T7750] hfsplus: request for non-existent node 134217728 in B*Tree
[  173.201192][ T7757] loop0: detected capacity change from 0 to 256
[  173.207911][ T7758] netlink: 8 bytes leftover after parsing attributes in process `syz.3.884'.
[  173.438900][ T7763] netlink: 'syz.0.888': attribute type 29 has an invalid length.
[  173.480870][ T7765] loop1: detected capacity change from 0 to 512
[  173.507416][ T7767] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  173.509044][ T7763] netlink: 'syz.0.888': attribute type 29 has an invalid length.
[  173.545256][ T7765] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  173.554783][ T7765] System zones: 1-12
[  173.560216][ T7765] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.891: invalid indirect mapped block 1819239214 (level 1)
[  173.660306][ T7765] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.891: bg 0: block 361: padding at end of block bitmap is not set
[  173.710615][ T7765] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  173.760066][ T7765] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.891: attempt to clear invalid blocks 33619980 len 1
[  173.768993][ T7777] loop0: detected capacity change from 0 to 256
[  173.810098][ T7777] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  173.827360][ T7776] loop2: detected capacity change from 0 to 1024
[  173.845660][ T7765] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.891: invalid indirect mapped block 1819239214 (level 0)
[  173.884872][ T7765] EXT4-fs (loop1): 1 truncate cleaned up
[  173.892935][ T7765] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.944818][ T7776] hfsplus: keylen 65060 too large
[  173.965117][ T7776] hfsplus: xattr searching failed
[  173.974583][ T7779] loop4: detected capacity change from 0 to 64
[  173.976641][ T7765] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.891: Directory hole found for htree index block 0
[  174.014253][ T7776] hfsplus: keylen 65060 too large
[  174.038677][ T7776] hfsplus: xattr searching failed
[  174.161597][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.901844][ T7774] loop3: detected capacity change from 0 to 32768
[  175.212297][ T7816] netlink: 12 bytes leftover after parsing attributes in process `syz.1.914'.
[  175.221927][ T7816] netlink: 'syz.1.914': attribute type 2 has an invalid length.
[  175.262343][ T7816] netlink: 'syz.1.914': attribute type 1 has an invalid length.
[  175.746941][ T7820] loop3: detected capacity change from 0 to 4096
[  175.776043][ T7820] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  176.094214][ T7810] loop4: detected capacity change from 0 to 32768
[  176.133338][ T7826] loop1: detected capacity change from 0 to 2048
[  176.158836][ T7810] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.910 (7810)
[  176.185237][ T7826] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  176.256559][ T7810] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  176.257574][ T7814] loop2: detected capacity change from 0 to 32768
[  176.275368][ T7829] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  176.300819][ T7810] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  176.308659][ T7806] loop0: detected capacity change from 0 to 32768
[  176.316142][ T7810] BTRFS info (device loop4): using free-space-tree
[  176.467644][ T7837] loop3: detected capacity change from 0 to 1024
[  176.483095][ T7806] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  176.491658][ T7806] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  176.518193][ T7814] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  176.631607][ T7810] BTRFS info (device loop4): rebuilding free space tree
[  176.702879][ T7837] hfsplus: bad catalog entry type
[  176.729639][ T7806] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  176.760629][ T5244] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  176.784833][ T5246] ocfs2: Unmounting device (7,2) on (node local)
[  176.796912][ T5244] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  176.914004][   T35] hfsplus: b-tree write err: -5, ino 4
[  177.024090][ T5238] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  177.032114][ T5244] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 235ms
[  177.088159][ T5244] gfs2: fsid=syz:syz.0: jid=0: Done
[  177.128232][ T7806] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  177.468570][ T7870] netlink: 12 bytes leftover after parsing attributes in process `syz.2.923'.
[  177.734560][ T5314] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  177.820391][ T7874] loop1: detected capacity change from 0 to 4096
[  177.877887][ T7877] loop3: detected capacity change from 0 to 2048
[  177.912256][ T5314] usb 5-1: Using ep0 maxpacket: 8
[  177.928379][ T5314] usb 5-1: config 135 has an invalid interface number: 230 but max is 0
[  177.945066][ T7877] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  177.975784][ T5314] usb 5-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  177.986547][ T5314] usb 5-1: config 135 has no interface number 0
[  177.993066][ T5314] usb 5-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  178.062366][ T5314] usb 5-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  178.083457][ T5314] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.100688][ T5314] usb 5-1: Product: syz
[  178.106399][ T5314] usb 5-1: Manufacturer: syz
[  178.115909][ T7877] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  178.137873][ T5314] usb 5-1: SerialNumber: syz
[  178.162264][ T7881] loop0: detected capacity change from 0 to 128
[  178.387345][ T5314] usb 5-1: Found UVC 0.00 device syz (18ec:3288)
[  178.394504][ T5314] usb 5-1: No valid video chain found.
[  178.452324][ T5314] usb 5-1: USB disconnect, device number 9
[  178.492422][ T7879] loop2: detected capacity change from 0 to 32768
[  178.588748][ T7879] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  178.639360][ T7889] loop0: detected capacity change from 0 to 64
[  178.869301][ T5246] ocfs2: Unmounting device (7,2) on (node local)
[  179.011106][ T7899] loop2: detected capacity change from 0 to 8
[  179.236964][ T7899] SQUASHFS error: xz decompression failed, data probably corrupt
[  179.304878][ T7899] SQUASHFS error: Failed to read block 0xa8: -5
[  179.371956][ T7899] SQUASHFS error: xz decompression failed, data probably corrupt
[  179.422236][ T7899] SQUASHFS error: Failed to read block 0xa8: -5
[  179.446191][   T29] audit: type=1800 audit(1728568650.713:30): pid=7899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.939" name="file0" dev="loop2" ino=3 res=0 errno=0
[  180.316805][ T7933] loop0: detected capacity change from 0 to 4096
[  180.332772][ T7933] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  180.391598][ T7942] loop4: detected capacity change from 0 to 256
[  180.544383][ T7939] loop3: detected capacity change from 0 to 4096
[  180.585540][ T7939] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  180.755901][ T7939] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  180.792816][ T7939] ntfs3(loop3): Failed to load $Extend (-22).
[  180.815441][ T7939] ntfs3(loop3): Failed to initialize $Extend.
[  180.879610][ T7955] use of bytesused == 0 is deprecated and will be removed in the future,
[  180.879686][ T7955] use the actual size instead.
[  181.167586][ T7962] loop1: detected capacity change from 0 to 512
[  181.311810][ T7962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.422291][ T7962] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  181.647972][ T7986] netlink: 184 bytes leftover after parsing attributes in process `syz.2.979'.
[  181.679695][ T7986] netlink: 88 bytes leftover after parsing attributes in process `syz.2.979'.
[  181.701628][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.876849][ T7997] loop4: detected capacity change from 0 to 512
[  181.952269][ T7997] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  181.961046][ T7997] EXT4-fs (loop4): orphan cleanup on readonly fs
[  182.020159][ T7997] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  182.082365][ T7997] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  182.095979][ T7997] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #13: comm syz.4.986: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  182.163786][ T7997] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.986: couldn't read orphan inode 13 (err -117)
[  182.199850][ T7997] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  182.233317][ T8007] netlink: 8 bytes leftover after parsing attributes in process `syz.1.990'.
[  182.252465][ T8007] (unnamed net_device) (uninitialized): peer notification delay (2) is not a multiple of miimon (129), value rounded to 0 ms
[  182.289319][ T7997] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  182.312739][ T7997] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  182.313301][ T8007] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (511)
[  182.369710][ T7997] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  182.414828][ T8007] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255
[  182.445011][ T7997] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  182.493216][ T7997] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  182.712017][ T8002] loop2: detected capacity change from 0 to 40427
[  182.726251][ T7997] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  182.756723][ T8002] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  182.764047][ T8002] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  182.823730][   T29] audit: type=1326 audit(1728568654.103:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8017 comm="syz.1.995" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe18457dff9 code=0x0
[  182.858703][ T8002] F2FS-fs (loop2): invalid crc value
[  182.894752][ T8002] F2FS-fs (loop2): Found nat_bits in checkpoint
[  182.929515][ T5238] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.096532][ T8004] loop3: detected capacity change from 0 to 32768
[  183.104474][ T8002] F2FS-fs (loop2): Start checkpoint disabled!
[  183.144140][ T8002] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  183.157393][ T8002] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  183.852397][ T8041] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  183.890873][ T8041] xt_nfacct: accounting object `syz1' does not exists
[  184.181420][ T8049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1007'.
[  184.432372][ T5314] usb 3-1: new low-speed USB device number 12 using dummy_hcd
[  184.603447][ T8038] loop0: detected capacity change from 0 to 32768
[  184.612676][ T8038] XFS: attr2 mount option is deprecated.
[  184.618771][ T8038] XFS: ikeep mount option is deprecated.
[  184.626849][ T8038] XFS: noikeep mount option is deprecated.
[  184.635581][ T5314] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  184.647924][ T8038] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  184.659741][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  184.690677][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  184.707969][ T8038] XFS (loop0): Ending clean mount
[  184.722183][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  184.743035][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  184.774320][ T8038] XFS (loop0): Quotacheck needed: Please wait.
[  184.775588][ T5314] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  184.805548][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  184.845064][ T8038] XFS (loop0): Quotacheck: Done.
[  184.845847][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  184.910223][ T5231] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  184.929687][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  184.952345][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  184.984563][ T5314] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  185.002306][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt
[  185.042172][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  185.081192][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  185.154848][ T8071] loop1: detected capacity change from 0 to 64
[  185.162233][ T5314] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  185.182566][ T8070] loop3: detected capacity change from 0 to 2048
[  185.207782][ T5314] usb 3-1: string descriptor 0 read error: -22
[  185.230081][ T5314] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  185.267728][ T5314] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.320022][ T8072] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  185.347847][ T5314] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  185.675331][ T5314] usb 3-1: USB disconnect, device number 12
[  185.788317][ T8034] loop4: detected capacity change from 0 to 65536
[  185.863511][ T8034] XFS (loop4): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  185.892283][ T5285] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  185.969237][ T8034] XFS (loop4): Ending clean mount
[  186.082410][ T5285] usb 1-1: Using ep0 maxpacket: 16
[  186.108634][ T5238] XFS (loop4): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[  186.119483][ T5285] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  186.140991][ T5285] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.150989][ T5285] usb 1-1: New USB device found, idVendor=0b05, idProduct=1866, bcdDevice= 0.00
[  186.160133][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.173088][ T5285] usb 1-1: config 0 descriptor??
[  186.493190][ T8096] loop2: detected capacity change from 0 to 2048
[  186.584596][ T8097] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  186.898337][ T8076] loop3: detected capacity change from 0 to 40427
[  186.916935][ T8076] F2FS-fs (loop3): Small segment_count (9 < 1 * 24)
[  186.923858][ T8076] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  186.948960][ T5285] asus 0003:0B05:1866.001C: hidraw0: USB HID v0.00 Device [HID 0b05:1866] on usb-dummy_hcd.0-1/input0
[  186.972329][ T5285] asus 0003:0B05:1866.001C: Asus input not registered
[  187.004415][ T8076] F2FS-fs (loop3): Found nat_bits in checkpoint
[  187.023377][ T8094] loop1: detected capacity change from 0 to 32768
[  187.043308][ T5285] asus 0003:0B05:1866.001C: probe with driver asus failed with error -12
[  187.062853][ T5285] usb 1-1: USB disconnect, device number 12
[  187.129661][ T8094] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  187.135328][ T8076] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  187.142998][ T5314] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  187.146482][ T8076] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  187.246131][   T29] audit: type=1800 audit(1728568658.513:32): pid=8094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1020" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  187.298073][ T5235] syz-executor: attempt to access beyond end of device
[  187.298073][ T5235] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  187.312628][ T5235] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  187.360470][ T5240] ocfs2: Unmounting device (7,1) on (node local)
[  187.378885][ T5314] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  187.390697][ T5314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  187.412270][ T5314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  187.469696][ T5314] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  187.492734][ T5314] usb 5-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00
[  187.533735][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.566203][ T5314] usb 5-1: config 0 descriptor??
[  187.871743][ T8113] loop1: detected capacity change from 0 to 2048
[  187.957882][ T8116] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  188.018977][ T8118] loop2: detected capacity change from 0 to 512
[  188.060155][ T8118] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  188.076220][ T8118] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  188.114284][ T8118] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.1028: Failed to acquire dquot type 1
[  188.182356][ T8118] EXT4-fs (loop2): 1 truncate cleaned up
[  188.200909][ T5314] nintendo 0003:057E:2009.001D: hidraw0: USB HID v80.00 Device [HID 057e:2009] on usb-dummy_hcd.4-1/input0
[  188.216887][ T8118] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.287464][ T8118] ext4 filesystem being mounted at /176/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.345731][ T5314] nintendo 0003:057E:2009.001D: Failed to get joycon info; ret=-38
[  188.371498][ T5314] nintendo 0003:057E:2009.001D: Failed to retrieve controller info; ret=-38
[  188.405005][ T5314] nintendo 0003:057E:2009.001D: Failed to initialize controller; ret=-38
[  188.431801][ T5246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.468293][ T5314] nintendo 0003:057E:2009.001D: probe - fail = -38
[  188.506784][ T5314] nintendo 0003:057E:2009.001D: probe with driver nintendo failed with error -38
[  188.522262][   T46] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  188.571901][ T5314] usb 5-1: USB disconnect, device number 10
[  188.656449][ T8115] loop3: detected capacity change from 0 to 32768
[  188.689354][ T8115] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1025 (8115)
[  188.714118][ T8115] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  188.726474][ T8115] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  188.736611][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.759358][   T46] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.766148][ T8115] BTRFS info (device loop3): using free-space-tree
[  188.776840][   T46] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  188.788127][   T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.799482][   T46] usb 2-1: config 0 descriptor??
[  188.857257][ T8111] loop0: detected capacity change from 0 to 32768
[  188.927998][ T8111] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  189.018411][ T5231] ocfs2: Unmounting device (7,0) on (node local)
[  189.180514][ T5235] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  189.250698][ T8149] tipc: Started in network mode
[  189.256713][   T46] kone 0003:1E7D:2CED.001E: item fetching failed at offset 2/5
[  189.273918][ T8149] tipc: Node identity , cluster identity 4711
[  189.280082][ T8149] tipc: Failed to set node id, please configure manually
[  189.295482][   T46] kone 0003:1E7D:2CED.001E: parse failed
[  189.301244][   T46] kone 0003:1E7D:2CED.001E: probe with driver kone failed with error -22
[  189.311363][ T8149] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  189.480282][   T46] usb 2-1: USB disconnect, device number 7
[  189.966298][ T5314] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  190.060720][ T8165] loop2: detected capacity change from 0 to 1024
[  190.108011][ T8165] EXT4-fs: Ignoring removed nomblk_io_submit option
[  190.134507][ T8165] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.157571][ T5314] usb 5-1: Using ep0 maxpacket: 16
[  190.187208][ T5314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.202585][ T5244] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  190.223872][ T5246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.237034][ T5314] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.246998][ T5314] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  190.260329][ T5314] usb 5-1: New USB device found, idVendor=0757, idProduct=0a00, bcdDevice= 0.00
[  190.269543][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.279451][ T8171] loop0: detected capacity change from 0 to 512
[  190.281142][ T5314] usb 5-1: config 0 descriptor??
[  190.294832][ T8171] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  190.344669][ T8171] EXT4-fs (loop0): 1 truncate cleaned up
[  190.351422][ T8171] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.424198][ T5244] usb 4-1: config 0 has no interfaces?
[  190.429782][ T5244] usb 4-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4
[  190.440963][ T5244] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.450550][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.454342][ T5244] usb 4-1: config 0 descriptor??
[  190.695339][ T8180] loop1: detected capacity change from 0 to 2048
[  190.718573][ T5244] usb 4-1: USB disconnect, device number 7
[  190.754428][ T5314] nti 0003:0757:0A00.001F: item fetching failed at offset 2/5
[  190.769537][ T5314] nti 0003:0757:0A00.001F: probe with driver nti failed with error -22
[  190.789244][ T8182] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  190.959082][ T5244] usb 5-1: USB disconnect, device number 11
[  191.070818][   T29] audit: type=1326 audit(1728568662.343:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8186 comm="syz.2.1050" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa69757dff9 code=0x0
[  191.485026][ T8193] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  191.494472][ T8193] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  191.503338][ T8193] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  191.512440][ T8193] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  191.708721][ T8178] loop0: detected capacity change from 0 to 32768
[  191.863525][ T8178] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  192.226475][ T8178] XFS (loop0): Ending clean mount
[  192.271371][ T8208] loop4: detected capacity change from 0 to 1024
[  192.462268][ T8208] hfsplus: bad catalog entry type
[  192.641009][ T8213] loop3: detected capacity change from 0 to 256
[  192.680958][ T5231] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  192.712637][   T81] hfsplus: b-tree write err: -5, ino 4
[  192.867314][ T8217] loop1: detected capacity change from 0 to 64
[  194.113004][ T8229] loop2: detected capacity change from 0 to 4096
[  194.152385][ T5283] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  194.331693][ T8236] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  194.344373][ T5283] usb 4-1: Using ep0 maxpacket: 8
[  194.399070][ T5283] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.454336][ T5283] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.490957][ T5283] usb 4-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00
[  194.538259][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  194.544832][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  194.561163][ T5283] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.603530][ T5283] usb 4-1: config 0 descriptor??
[  195.123837][ T5283] hid-picolcd 0003:04D8:F002.0020: No report with id 0xf3 found
[  195.139311][ T5283] hid-picolcd 0003:04D8:F002.0020: No report with id 0xf4 found
[  195.250241][ T8238] Falling back ldisc for ptm0.
[  195.297349][ T5283] usb 4-1: USB disconnect, device number 8
[  195.487462][ T8235] netlink: 'syz.0.1060': attribute type 20 has an invalid length.
[  195.589964][   T24] sched: DL replenish lagged too much
[  195.984852][ T5283] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  196.172869][ T5283] usb 1-1: Using ep0 maxpacket: 8
[  196.190558][ T5283] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[  196.211302][ T5283] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  196.266861][ T5283] usb 1-1: config 0 has no interface number 0
[  196.304387][ T5283] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  196.384424][ T5283] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  196.431322][ T5283] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  196.478566][ T5283] usb 1-1: config 0 interface 52 has no altsetting 0
[  196.517587][ T5283] usb 1-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  196.559960][ T5283] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.603150][ T5239] Bluetooth: hci3: command 0x0406 tx timeout
[  196.612151][ T5234] Bluetooth: hci0: command 0x0406 tx timeout
[  196.674525][ T5283] usb 1-1: config 0 descriptor??
[  196.986343][ T5283] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.52/input/input17
[  197.128066][ T4674] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  197.185316][ T8246] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  197.339136][ T4674] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  197.367402][ T8261] random: crng reseeded on system resumption
[  197.443480][ T5283] usb 1-1: USB disconnect, device number 13
[  197.501116][ T4674] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -19
[  197.614494][ T6793] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -19
[  197.700051][ T4674] synaptics_usb 1-1:0.52: synusb_open - usb_submit_urb failed, error: -19
[  197.824891][ T8266] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1081'.
[  197.849666][ T8244] loop4: detected capacity change from 0 to 32768
[  197.968895][ T8244] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  198.015148][ T8269] loop1: detected capacity change from 0 to 1024
[  198.283977][ T8244] XFS (loop4): Ending clean mount
[  198.348692][ T8244] XFS (loop4): Quotacheck needed: Please wait.
[  198.501299][ T8244] XFS (loop4): Quotacheck: Done.
[  198.649364][ T5238] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  199.246292][ T1055] hfsplus: b-tree write err: -5, ino 4
[  199.332189][ T5285] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  199.567371][ T5285] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  199.661892][ T5285] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  199.705263][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.795928][ T5285] usb 1-1: config 0 descriptor??
[  199.848916][ T5285] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  200.061149][ T8293] netlink: 536 bytes leftover after parsing attributes in process `syz.1.1090'.
[  200.096967][ T5285] usb 1-1: USB disconnect, device number 14
[  200.732281][ T5285] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  200.978226][ T5285] usb 3-1: device descriptor read/all, error -71
[  201.057300][ T8311] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1099'.
[  202.958168][ T8327] loop2: detected capacity change from 0 to 512
[  203.040168][ T8327] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  203.067166][ T8298] loop3: detected capacity change from 0 to 40427
[  203.142896][ T8327] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  203.265393][ T8327] ext4 filesystem being mounted at /203/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  203.773717][ T5246] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.088785][ T8315] loop0: detected capacity change from 0 to 32768
[  204.348637][ T8315] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  204.418018][ T8315] workqueue: Failed to create a rescuer kthread for wq "xfs-cil/loop0": -EINTR
[  204.424031][ T8340] tipc: Started in network mode
[  204.442584][ T8315] XFS (loop0): log mount failed
[  204.564413][ T8340] tipc: Node identity 2d5f14aa, cluster identity 4711
[  204.636372][ T8340] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  204.719536][ T8344] loop2: detected capacity change from 0 to 256
[  204.897972][ T8344] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  205.047080][ T8344] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512
[  205.160305][ T8344] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  205.237633][ T8344] UDF-fs: Scanning with blocksize 512 failed
[  205.318013][ T8325] loop4: detected capacity change from 0 to 32768
[  205.342677][ T8344] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  205.452199][ T8344] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  205.959528][ T8353] loop1: detected capacity change from 0 to 512
[  206.120184][ T8353] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 ro without journal. Quota mode: writeback.
[  206.417209][ T8353] EXT4-fs: Ignoring sb option on remount
[  206.482361][ T8353] ext4: Unknown parameter 'obj_type'
[  206.662330][ T8361] syz.3.1116(8361): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  206.758515][ T5240] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  207.735895][ T8381] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1124'.
[  207.807937][ T8380] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1125'.
[  208.168961][ T8386] Invalid logical block size (18)
[  208.404738][ T5283] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  208.612216][ T5283] usb 5-1: Using ep0 maxpacket: 16
[  208.650235][ T5283] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  208.720740][ T5283] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  208.810549][ T5283] usb 5-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00
[  208.892378][ T5283] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.993451][ T5283] usb 5-1: config 0 descriptor??
[  209.188061][ T8401] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1134'.
[  209.481943][ T5283] bigben 0003:146B:0902.0021: unexpected rdesc, please submit for review
[  209.573052][ T5283] bigben 0003:146B:0902.0021: unknown main item tag 0x2
[  209.652199][ T5283] bigben 0003:146B:0902.0021: unbalanced collection at end of report description
[  209.727070][ T5283] bigben 0003:146B:0902.0021: parse failed
[  209.784938][ T5283] bigben 0003:146B:0902.0021: probe with driver bigben failed with error -22
[  209.908432][ T5283] usb 5-1: USB disconnect, device number 12
[  210.795706][ T8424] netlink: 'syz.4.1144': attribute type 32 has an invalid length.
[  210.826148][ T8425] loop1: detected capacity change from 0 to 16
[  210.858878][ T8424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1144'.
[  210.903297][ T8425] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  210.949572][ T8424] (unnamed net_device) (uninitialized): option coupled_control: invalid value (115)
[  211.827118][ T8432] loop2: detected capacity change from 0 to 4096
[  211.975443][ T8436] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  213.228987][ T8444] loop2: detected capacity change from 0 to 64
[  213.559959][ T8421] loop0: detected capacity change from 0 to 40427
[  213.702214][ T8421] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  213.710027][ T8421] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  213.815112][ T8421] F2FS-fs (loop0): Unable to read 2th superblock
[  215.290332][ T8438] loop1: detected capacity change from 0 to 40427
[  215.745763][ T8464] loop3: detected capacity change from 0 to 256
[  216.092854][ T8460] loop2: detected capacity change from 0 to 8192
[  216.237614][ T8460] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  216.920768][ T8464] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[  217.232206][ T5283] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  217.340159][ T5244] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  217.442262][ T5283] usb 3-1: Using ep0 maxpacket: 16
[  217.471242][ T5283] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  217.547234][ T5283] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  217.557804][ T5244] usb 2-1: Using ep0 maxpacket: 32
[  217.596317][ T5244] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  217.632397][ T5283] usb 3-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00
[  217.661588][ T5244] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  217.705858][ T5283] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.732807][ T5244] usb 2-1: New USB device found, idVendor=046d, idProduct=c714, bcdDevice= 0.00
[  217.777623][ T5283] usb 3-1: config 0 descriptor??
[  217.824852][ T5244] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.878301][ T8462] loop0: detected capacity change from 0 to 32768
[  217.898298][ T5244] usb 2-1: config 0 descriptor??
[  217.969806][ T8462] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1163 (8462)
[  218.291721][ T5283] hid-alps 0003:044E:120C.0022: item fetching failed at offset 2/5
[  218.376911][ T5283] hid-alps 0003:044E:120C.0022: parse failed
[  218.424277][ T5283] hid-alps 0003:044E:120C.0022: probe with driver hid-alps failed with error -22
[  218.516760][ T8462] BTRFS error (device loop0): open_ctree failed
[  218.552580][ T5283] usb 3-1: USB disconnect, device number 15
[  218.679375][ T5285] usb 2-1: USB disconnect, device number 8
[  220.273115][ T8495] loop0: detected capacity change from 0 to 4096
[  220.364909][ T8495] NILFS (loop0): invalid segment: Checksum error in segment payload
[  220.472180][ T8495] NILFS (loop0): trying rollback from an earlier position
[  220.552574][ T8495] NILFS (loop0): recovery complete
[  220.632108][ T8498] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  222.091478][ T8506] loop3: detected capacity change from 0 to 512
[  222.131136][ T8490] loop2: detected capacity change from 0 to 32768
[  222.145183][ T8508] loop0: detected capacity change from 0 to 1024
[  222.224646][ T8493] loop4: detected capacity change from 0 to 32768
[  222.325356][ T8493] (syz.4.1179,8493,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  222.339548][ T8490] JBD2: Ignoring recovery information on journal
[  222.434130][ T8492] loop1: detected capacity change from 0 to 32768
[  222.459783][ T8493] (syz.4.1179,8493,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  222.506555][ T8492] XFS: noikeep mount option is deprecated.
[  222.518985][ T8506] EXT4-fs (loop3): external journal device major/minor numbers have changed
[  222.551781][ T8508] hfsplus: xattr exists yet
[  222.594640][ T8490] JBD2: journal reset failed
[  222.635951][ T8492] workqueue: Failed to create a rescuer kthread for wq "xfs-reclaim/loop1": -EINTR
[  222.663832][ T8490] (syz.2.1177,8490,0):ocfs2_journal_load:1145 ERROR: Failed to load journal!
[  222.765984][ T8493] JBD2: Ignoring recovery information on journal
[  222.855418][ T8490] (syz.2.1177,8490,0):ocfs2_check_volume:2423 ERROR: ocfs2 journal load failed! -4
[  223.018440][ T8493] JBD2: journal reset failed
[  223.065904][ T8493] (syz.4.1179,8493,0):ocfs2_journal_load:1145 ERROR: Failed to load journal!
[  223.143551][ T8493] (syz.4.1179,8493,0):ocfs2_check_volume:2423 ERROR: ocfs2 journal load failed! -4
[  223.168623][ T8506] block device autoloading is deprecated and will be removed.
[  223.329364][ T8506] EXT4-fs (loop3): external journal has bad superblock
[  223.912224][ T5285] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  224.122109][ T5285] usb 1-1: Using ep0 maxpacket: 16
[  224.167944][ T5285] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.232247][ T5285] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.296955][ T5285] usb 1-1: New USB device found, idVendor=05a4, idProduct=1700, bcdDevice= 0.00
[  224.348952][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.413415][ T5285] usb 1-1: config 0 descriptor??
[  224.924781][ T5285] ortek 0003:05A4:1700.0024: unknown main item tag 0x0
[  224.956748][ T5285] ortek 0003:05A4:1700.0024: unknown main item tag 0x0
[  224.981405][ T5285] ortek 0003:05A4:1700.0024: unknown main item tag 0x0
[  225.007241][ T5285] ortek 0003:05A4:1700.0024: unknown main item tag 0x0
[  225.043376][ T5285] ortek 0003:05A4:1700.0024: hidraw0: USB HID v0.00 Device [HID 05a4:1700] on usb-dummy_hcd.0-1/input0
[  225.152766][ T5285] usb 1-1: USB disconnect, device number 15
[  226.684576][ T5285] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  226.852215][ T5285] usb 1-1: Using ep0 maxpacket: 16
[  226.861254][ T5285] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.881279][ T5285] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  226.900982][ T5285] usb 1-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  226.911726][ T5285] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.933977][ T5285] usb 1-1: config 0 descriptor??
[  227.364765][ T5285] kye 0003:0458:5015.0025: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  227.399542][ T5285] kye 0003:0458:5015.0025: hidraw0: USB HID v0.00 Device [HID 0458:5015] on usb-dummy_hcd.0-1/input0
[  227.425293][ T5285] kye 0003:0458:5015.0025: tablet-enabling feature report not found
[  227.439557][ T5285] kye 0003:0458:5015.0025: tablet enabling failed
[  227.583956][ T5285] usb 1-1: USB disconnect, device number 16
[  228.806966][ T8545] loop0: detected capacity change from 0 to 32768
[  228.822868][ T8545] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1198 (8545)
[  228.913123][ T8545] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  228.949729][ T8545] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  228.982265][ T8545] BTRFS info (device loop0): using free-space-tree
[  229.281409][ T5231] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  230.910981][ T8572] loop0: detected capacity change from 0 to 40427
[  230.932298][ T8572] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  230.952191][ T8572] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  230.999356][ T8572] F2FS-fs (loop0): Found nat_bits in checkpoint
[  231.088820][ T8572] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  231.105518][ T8572] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  231.205446][ T5231] syz-executor: attempt to access beyond end of device
[  231.205446][ T5231] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  231.225897][ T5231] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  233.610154][ T8587] loop0: detected capacity change from 0 to 2048
[  233.723775][ T8587] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.798355][ T8587] ext4 filesystem being mounted at /244/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.007728][ T5231] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.224835][ T5236] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  234.252249][ T5236] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  234.264023][ T5236] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  234.272692][ T5236] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  234.280543][ T5236] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  234.290319][ T5236] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  234.491509][ T8596] netlink: 276 bytes leftover after parsing attributes in process `syz.0.1210'.
[  235.020135][ T5250] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  235.033589][ T5250] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  235.044424][ T5250] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  235.061613][ T5250] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  235.072222][ T5250] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  235.079638][ T5250] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  235.561764][ T5236] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  235.573784][ T5236] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  235.591461][ T5236] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  235.601321][ T5236] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  235.613728][ T5236] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  235.621498][ T5236] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  236.072809][ T5236] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  236.088873][ T5236] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  236.099156][ T5236] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  236.108402][ T5236] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  236.121361][ T5236] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  236.130162][ T5236] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  236.352506][ T5236] Bluetooth: hci5: command tx timeout
[  237.160024][ T5236] Bluetooth: hci6: command tx timeout
[  237.712323][ T5236] Bluetooth: hci7: command tx timeout
[  238.192372][ T5236] Bluetooth: hci8: command tx timeout
[  238.432364][ T5236] Bluetooth: hci5: command tx timeout
[  239.252626][ T5236] Bluetooth: hci6: command tx timeout
[  239.792304][ T5236] Bluetooth: hci7: command tx timeout
[  240.272400][ T5236] Bluetooth: hci8: command tx timeout
[  240.512739][ T5236] Bluetooth: hci5: command tx timeout
[  241.312275][ T5236] Bluetooth: hci6: command tx timeout
[  241.872201][ T5236] Bluetooth: hci7: command tx timeout
[  242.352251][ T5236] Bluetooth: hci8: command tx timeout
[  242.592491][ T5236] Bluetooth: hci5: command tx timeout
[  243.392324][ T5236] Bluetooth: hci6: command tx timeout
[  243.952207][ T5236] Bluetooth: hci7: command tx timeout
[  244.432352][ T5236] Bluetooth: hci8: command tx timeout
[  246.650730][ T5250] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  246.667508][ T5250] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  246.677247][ T5250] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  246.685343][ T5250] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  246.693700][ T5250] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  246.701203][ T5250] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  248.752325][ T5236] Bluetooth: hci9: command tx timeout
[  250.832339][ T5236] Bluetooth: hci9: command tx timeout
[  252.912251][ T5236] Bluetooth: hci9: command tx timeout
[  254.992317][ T5236] Bluetooth: hci9: command tx timeout
[  255.956782][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  255.963315][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  288.754781][ T5250] Bluetooth: hci4: command 0x0405 tx timeout
[  295.620863][ T5250] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  295.632992][ T5250] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  295.652722][ T5250] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  295.660932][ T5250] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  295.669544][ T5250] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  295.677449][ T5250] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  295.933163][ T5236] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  295.949294][ T5236] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  295.958006][ T5236] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  295.966676][ T5236] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  295.984649][ T5236] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  295.992923][ T5236] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  296.323314][ T5250] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  296.336447][ T5250] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  296.345753][ T5250] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  296.358920][ T5250] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  296.366877][ T5250] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  296.374443][ T5250] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  296.434413][ T5236] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  296.463718][ T5236] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  296.473340][ T5236] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  296.481609][ T5236] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  296.489986][ T5236] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  296.497905][ T5236] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  297.712214][ T5236] Bluetooth: hci10: command tx timeout
[  298.032303][ T5236] Bluetooth: hci11: command tx timeout
[  298.432201][ T5236] Bluetooth: hci12: command tx timeout
[  298.602470][ T5236] Bluetooth: hci13: command tx timeout
[  299.796162][ T5236] Bluetooth: hci10: command tx timeout
[  300.112601][ T5250] Bluetooth: hci11: command tx timeout
[  300.512149][ T5236] Bluetooth: hci12: command tx timeout
[  300.672245][ T5236] Bluetooth: hci13: command tx timeout
[  301.872312][ T5236] Bluetooth: hci10: command tx timeout
[  302.192167][ T5236] Bluetooth: hci11: command tx timeout
[  302.592250][ T5236] Bluetooth: hci12: command tx timeout
[  302.752166][ T5236] Bluetooth: hci13: command tx timeout
[  303.952267][ T5236] Bluetooth: hci10: command tx timeout
[  304.272231][ T5236] Bluetooth: hci11: command tx timeout
[  304.672138][ T5236] Bluetooth: hci12: command tx timeout
[  304.832218][ T5236] Bluetooth: hci13: command tx timeout
[  307.220408][ T5250] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  307.230566][ T5250] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  307.239471][ T5250] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  307.250777][ T5250] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  307.269946][ T5250] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  307.279447][ T5250] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  309.312267][ T5250] Bluetooth: hci14: command tx timeout
[  311.396794][ T5250] Bluetooth: hci14: command tx timeout
[  313.472176][ T5250] Bluetooth: hci14: command tx timeout
[  315.552386][ T5250] Bluetooth: hci14: command tx timeout
[  317.397831][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  317.412088][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  357.482981][ T5236] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  357.502257][ T5236] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  357.511471][ T5236] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  357.522317][ T5236] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  357.530136][ T5236] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  357.538983][ T5236] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  357.881056][ T5236] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  357.902206][ T5236] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  357.914182][ T5236] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  357.922414][ T5236] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  357.935685][ T5236] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  357.943448][ T5236] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  358.055106][ T5234] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  358.066606][ T5234] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  358.075660][ T5234] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  358.084654][ T5234] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  358.102882][ T5234] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  358.113645][ T5234] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  358.124237][ T5234] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  358.134131][ T5234] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  358.162652][ T5234] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  358.178138][ T5234] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  358.193468][ T5234] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  358.206890][ T5234] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  359.632328][ T5234] Bluetooth: hci15: command tx timeout
[  360.032269][ T5234] Bluetooth: hci16: command tx timeout
[  360.192294][ T5234] Bluetooth: hci18: command tx timeout
[  360.272201][ T5234] Bluetooth: hci17: command tx timeout
[  360.443173][ T4627] Bluetooth: hci7: command 0x0406 tx timeout
[  360.449270][ T4627] Bluetooth: hci5: command 0x0406 tx timeout
[  360.455392][ T4627] Bluetooth: hci6: command 0x0406 tx timeout
[  360.463086][ T5234] Bluetooth: hci8: command 0x0406 tx timeout
[  361.712285][ T5236] Bluetooth: hci15: command tx timeout
[  362.112343][ T5236] Bluetooth: hci16: command tx timeout
[  362.272210][ T5236] Bluetooth: hci18: command tx timeout
[  362.352249][ T5236] Bluetooth: hci17: command tx timeout
[  363.797290][ T5236] Bluetooth: hci15: command tx timeout
[  364.192239][ T5236] Bluetooth: hci16: command tx timeout
[  364.352274][ T5236] Bluetooth: hci18: command tx timeout
[  364.432198][ T5236] Bluetooth: hci17: command tx timeout
[  365.872275][ T5236] Bluetooth: hci15: command tx timeout
[  366.272195][ T5236] Bluetooth: hci16: command tx timeout
[  366.432170][ T5236] Bluetooth: hci18: command tx timeout
[  366.512205][ T5236] Bluetooth: hci17: command tx timeout
[  367.739694][ T5250] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  367.750187][ T5250] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  367.762326][ T5250] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  367.778301][ T5250] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  367.786307][ T5250] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[  367.794062][ T5250] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  369.872313][ T5250] Bluetooth: hci19: command tx timeout
[  370.681089][ T5250] Bluetooth: hci9: command 0x0406 tx timeout
[  371.952255][ T5236] Bluetooth: hci19: command tx timeout
[  372.432464][   T30] INFO: task syz.2.1188:8520 blocked for more than 143 seconds.
[  372.440208][   T30]       Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  372.458244][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  372.479869][   T30] task:syz.2.1188      state:D stack:23840 pid:8520  tgid:8520  ppid:5246   flags:0x00004006
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  372.527786][   T30] Call Trace:
[  372.531146][   T30]  <TASK>
[  372.551639][   T30]  __schedule+0x1895/0x4b30
[  372.562104][   T30]  ? __pfx___schedule+0x10/0x10
[  372.567057][   T30]  ? __pfx_lock_release+0x10/0x10
[  372.669053][   T30]  ? schedule+0x90/0x320
[  372.697330][   T30]  schedule+0x14b/0x320
[  372.701589][   T30]  schedule_timeout+0xb0/0x290
[  372.713358][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  372.719013][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  372.735084][   T30]  ? wait_for_completion+0x2fe/0x620
[  372.740465][   T30]  ? wait_for_completion+0x2fe/0x620
[  372.751202][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  372.759179][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  372.769615][   T30]  ? wait_for_completion+0x2fe/0x620
[  372.776583][   T30]  wait_for_completion+0x355/0x620
[  372.781776][   T30]  ? rcu_is_watching+0x15/0xb0
[  372.791789][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  372.801314][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  372.811716][   T30]  __flush_work+0xa37/0xc50
[  372.817906][   T30]  ? __flush_work+0xe7/0xc50
[  372.828436][   T30]  ? __pfx___flush_work+0x10/0x10
[  372.849411][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  372.855292][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  372.861759][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[  372.873453][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  372.878744][   T30]  unregister_netdevice_many_notify+0x87b/0x1da0
[  372.890327][   T30]  ? __mutex_trylock_common+0x183/0x2e0
[  372.898578][   T30]  ? __pfx___might_resched+0x10/0x10
[  372.910313][   T30]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  372.919536][   T30]  ? __pfx___mutex_trylock_common+0x10/0x10
[  372.930591][   T30]  ? rcu_is_watching+0x15/0xb0
[  372.937004][   T30]  ? trace_contention_end+0x3c/0x120
[  372.947550][   T30]  ? __mutex_lock+0x2ef/0xd70
[  372.954393][   T30]  unregister_netdevice_queue+0x303/0x370
[  372.960194][   T30]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  372.974727][   T30]  ppp_release+0xed/0x1f0
[  372.979155][   T30]  ? __pfx_ppp_release+0x10/0x10
[  372.987125][   T30]  __fput+0x23c/0xa50
[  372.991184][   T30]  task_work_run+0x24f/0x310
[  372.999841][   T30]  ? _raw_spin_unlock+0x28/0x50
[  373.012043][   T30]  ? __pfx_task_work_run+0x10/0x10
[  373.018299][   T30]  ? syscall_exit_to_user_mode+0xa3/0x370
[  373.031109][   T30]  syscall_exit_to_user_mode+0x168/0x370
[  373.038526][   T30]  do_syscall_64+0x100/0x230
[  373.048397][   T30]  ? clear_bhb_loop+0x35/0x90
[  373.054670][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.060644][   T30] RIP: 0033:0x7fa69757dff9
[  373.070835][   T30] RSP: 002b:00007fffab547b78 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  373.088131][   T30] RAX: 0000000000000000 RBX: 0000000000036b85 RCX: 00007fa69757dff9
[  373.102098][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  373.110416][   T30] RBP: 00007fa697737a80 R08: 0000000000000001 R09: 00007fffab547e6f
[  373.124430][   T30] R10: 00007fa697400000 R11: 0000000000000246 R12: 0000000000036c2c
[  373.137726][   T30] R13: 00007fffab547c80 R14: 0000000000000032 R15: ffffffffffffffff
[  373.149965][   T30]  </TASK>
[  373.157581][   T30] INFO: task syz.3.1192:8528 blocked for more than 144 seconds.
[  373.168208][   T30]       Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  373.179738][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  373.191214][   T30] task:syz.3.1192      state:D stack:25984 pid:8528  tgid:8525  ppid:5235   flags:0x00000004
[  373.206893][   T30] Call Trace:
[  373.210253][   T30]  <TASK>
[  373.217828][   T30]  __schedule+0x1895/0x4b30
[  373.226298][   T30]  ? __pfx___schedule+0x10/0x10
[  373.231237][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.242173][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  373.247751][   T30]  ? schedule+0x90/0x320
[  373.258453][   T30]  schedule+0x14b/0x320
[  373.263048][   T30]  schedule_preempt_disabled+0x13/0x30
[  373.268579][   T30]  __mutex_lock+0x6a7/0xd70
[  373.280144][   T30]  ? netdev_get_by_name+0x7c/0xb0
[  373.286078][   T30]  ? __mutex_lock+0x52a/0xd70
[  373.290825][   T30]  ? ethnl_default_set_doit+0x394/0x910
[  373.302012][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  373.309000][   T30]  ethnl_default_set_doit+0x394/0x910
[  373.322995][   T30]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  373.329022][   T30]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  373.343603][   T30]  genl_rcv_msg+0xb14/0xec0
[  373.348201][   T30]  ? mark_lock+0x9a/0x360
[  373.357780][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  373.364456][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  373.369548][   T30]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  373.380934][   T30]  ? __pfx___might_resched+0x10/0x10
[  373.388030][   T30]  netlink_rcv_skb+0x1e3/0x430
[  373.399983][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[  373.406694][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  373.417926][   T30]  ? __netlink_deliver_tap+0x77e/0x7c0
[  373.425067][   T30]  genl_rcv+0x28/0x40
[  373.429114][   T30]  netlink_unicast+0x7f6/0x990
[  373.440023][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  373.447156][   T30]  ? __virt_addr_valid+0x183/0x530
[  373.458914][   T30]  ? __check_object_size+0x48e/0x900
[  373.465931][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  373.470819][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  373.481161][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  373.488587][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  373.498959][   T30]  __sock_sendmsg+0x221/0x270
[  373.505824][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  373.510683][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  373.526595][   T30]  ? __fget_files+0x28/0x430
[  373.531298][   T30]  ? __fget_files+0x28/0x430
[  373.538357][   T30]  __sys_sendmsg+0x292/0x380
[  373.548127][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  373.554970][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  373.561054][   T30]  ? call_rcu+0x731/0xa70
[  373.572142][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  373.578563][   T30]  ? do_syscall_64+0x100/0x230
[  373.589289][   T30]  ? do_syscall_64+0xb6/0x230
[  373.599772][   T30]  do_syscall_64+0xf3/0x230
[  373.610640][   T30]  ? clear_bhb_loop+0x35/0x90
[  373.617288][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.629717][   T30] RIP: 0033:0x7f9299d7dff9
[  373.641144][   T30] RSP: 002b:00007f929ac2e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  373.652034][   T30] RAX: ffffffffffffffda RBX: 00007f9299f35f80 RCX: 00007f9299d7dff9
[  373.660078][   T30] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  373.674303][   T30] RBP: 00007f9299df0296 R08: 0000000000000000 R09: 0000000000000000
[  373.688181][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  373.700560][   T30] R13: 0000000000000000 R14: 00007f9299f35f80 R15: 00007ffe2f873138
[  373.714801][   T30]  </TASK>
[  373.732184][   T30] INFO: task syz.4.1191:8527 blocked for more than 144 seconds.
[  373.746146][   T30]       Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  373.756289][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  373.769982][   T30] task:syz.4.1191      state:D stack:27168 pid:8527  tgid:8526  ppid:5238   flags:0x00000004
[  373.781899][   T30] Call Trace:
[  373.790300][   T30]  <TASK>
[  373.795872][   T30]  __schedule+0x1895/0x4b30
[  373.800469][   T30]  ? __pfx___schedule+0x10/0x10
[  373.810603][   T30]  ? __pfx_lock_release+0x10/0x10
[  373.819199][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  373.829697][   T30]  ? schedule+0x90/0x320
[  373.835988][   T30]  schedule+0x14b/0x320
[  373.847617][   T30]  schedule_preempt_disabled+0x13/0x30
[  373.892083][   T30]  __mutex_lock+0x6a7/0xd70
[  373.896693][   T30]  ? __mutex_lock+0x52a/0xd70
[  373.901432][   T30]  ? rtnl_dumpit+0x99/0x200
[  373.914434][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  373.919578][   T30]  ? __alloc_skb+0x28f/0x440
[  373.931831][   T30]  ? __pfx___alloc_skb+0x10/0x10
[  373.938503][   T30]  ? __pfx_rtnl_dump_ifinfo+0x10/0x10
[  373.950469][   T30]  rtnl_dumpit+0x99/0x200
[  373.956149][   T30]  netlink_dump+0x647/0xd80
[  373.960743][   T30]  ? __pfx_netlink_dump+0x10/0x10
[  373.972520][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  373.977642][   T30]  __netlink_dump_start+0x5a2/0x790
[  373.989502][   T30]  ? __pfx_rtnl_dump_ifinfo+0x10/0x10
[  373.995385][   T30]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  374.000400][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  374.012074][   T30]  ? __pfx_rtnl_dumpit+0x10/0x10
[  374.017092][   T30]  ? __pfx_rtnl_dump_ifinfo+0x10/0x10
[  374.029886][   T30]  ? ref_tracker_free+0x643/0x7e0
[  374.037494][ T5236] Bluetooth: hci19: command tx timeout
[  374.049647][   T30]  netlink_rcv_skb+0x1e3/0x430
[  374.056237][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  374.061771][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  374.072338][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  374.077629][   T30]  netlink_unicast+0x7f6/0x990
[  374.087887][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  374.093719][   T30]  ? __virt_addr_valid+0x183/0x530
[  374.098901][   T30]  ? __check_object_size+0x48e/0x900
[  374.110610][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  374.120063][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  374.132080][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  374.137113][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  374.149243][   T30]  __sock_sendmsg+0x221/0x270
[  374.154497][   T30]  __sys_sendto+0x39b/0x4f0
[  374.159083][   T30]  ? __pfx___sys_sendto+0x10/0x10
[  374.170961][   T30]  ? do_futex+0x33b/0x560
[  374.175836][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  374.181895][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  374.194436][   T30]  __x64_sys_sendto+0xde/0x100
[  374.199289][   T30]  do_syscall_64+0xf3/0x230
[  374.212482][   T30]  ? clear_bhb_loop+0x35/0x90
[  374.217257][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.230097][   T30] RIP: 0033:0x7fa74497dff9
[  374.237157][   T30] RSP: 002b:00007fa74577d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  374.254998][   T30] RAX: ffffffffffffffda RBX: 00007fa744b35f80 RCX: 00007fa74497dff9
[  374.265857][   T30] RDX: 0000000000000012 RSI: 0000000020000d40 RDI: 0000000000000003
[  374.282093][   T30] RBP: 00007fa7449f0296 R08: 0000000000000000 R09: 0000000000000000
[  374.290153][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  374.305142][   T30] R13: 0000000000000000 R14: 00007fa744b35f80 R15: 00007ffebc7cc178
[  374.318384][   T30]  </TASK>
[  374.321539][   T30] INFO: task syz.1.1194:8533 blocked for more than 145 seconds.
[  374.337767][   T30]       Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  374.345313][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  374.363546][   T30] task:syz.1.1194      state:D stack:26752 pid:8533  tgid:8532  ppid:5240   flags:0x00000004
[  374.378932][   T30] Call Trace:
[  374.382670][   T30]  <TASK>
[  374.387331][   T30]  __schedule+0x1895/0x4b30
[  374.391928][   T30]  ? __pfx___schedule+0x10/0x10
[  374.406000][   T30]  ? __pfx_lock_release+0x10/0x10
[  374.411094][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  374.422118][   T30]  ? schedule+0x90/0x320
[  374.426442][   T30]  schedule+0x14b/0x320
[  374.430654][   T30]  schedule_preempt_disabled+0x13/0x30
[  374.445506][   T30]  __mutex_lock+0x6a7/0xd70
[  374.450119][   T30]  ? __mutex_lock+0x52a/0xd70
[  374.459746][   T30]  ? rtnl_dumpit+0x99/0x200
[  374.467182][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  374.477937][   T30]  ? __alloc_skb+0x28f/0x440
[  374.485364][   T30]  ? __pfx___alloc_skb+0x10/0x10
[  374.490367][   T30]  ? __pfx_rtnl_stats_dump+0x10/0x10
[  374.500052][   T30]  rtnl_dumpit+0x99/0x200
[  374.507340][   T30]  netlink_dump+0x647/0xd80
[  374.511929][   T30]  ? __pfx_netlink_dump+0x10/0x10
[  374.521274][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  374.529163][   T30]  __netlink_dump_start+0x5a2/0x790
[  374.540636][   T30]  ? __pfx_rtnl_stats_dump+0x10/0x10
[  374.548797][   T30]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  374.557668][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  374.566829][   T30]  ? __pfx_rtnl_dumpit+0x10/0x10
[  374.571849][   T30]  ? __pfx_rtnl_stats_dump+0x10/0x10
[  374.581242][   T30]  ? ref_tracker_free+0x643/0x7e0
[  374.589144][   T30]  netlink_rcv_skb+0x1e3/0x430
[  374.601767][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  374.610251][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  374.619519][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  374.627651][   T30]  netlink_unicast+0x7f6/0x990
[  374.636339][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  374.645449][   T30]  ? __virt_addr_valid+0x183/0x530
[  374.650645][   T30]  ? __check_object_size+0x48e/0x900
[  374.661428][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  374.670115][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  374.679507][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  374.687388][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  374.696572][   T30]  __sock_sendmsg+0x221/0x270
[  374.701424][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  374.709237][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  374.719242][   T30]  ? __fget_files+0x28/0x430
[  374.728180][   T30]  ? __fget_files+0x28/0x430
[  374.733294][   T30]  __sys_sendmsg+0x292/0x380
[  374.737976][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  374.750537][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  374.758367][   T30]  ? do_syscall_64+0x100/0x230
[  374.770274][   T30]  ? do_syscall_64+0xb6/0x230
[  374.775463][   T30]  do_syscall_64+0xf3/0x230
[  374.780032][   T30]  ? clear_bhb_loop+0x35/0x90
[  374.792209][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.798182][   T30] RIP: 0033:0x7fe18457dff9
[  374.808977][   T30] RSP: 002b:00007fe185445038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  374.817932][   T30] RAX: ffffffffffffffda RBX: 00007fe184735f80 RCX: 00007fe18457dff9
[  374.833764][   T30] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  374.841813][   T30] RBP: 00007fe1845f0296 R08: 0000000000000000 R09: 0000000000000000
[  374.860950][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  374.870288][   T30] R13: 0000000000000000 R14: 00007fe184735f80 R15: 00007fff26596a98
[  374.884947][   T30]  </TASK>
[  374.888125][   T30] 
[  374.888125][   T30] Showing all locks held in the system:
[  374.900636][   T30] 3 locks held by kworker/0:0/8:
[  374.909678][   T30]  #0: ffff88801ac80948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  374.936179][   T30]  #1: ffffc900000d7d00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  374.949964][   T30]  #2: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  374.968612][   T30] 1 lock held by khungtaskd/30:
[  374.974567][   T30]  #0: ffffffff8e939e20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  374.989575][   T30] 3 locks held by kworker/u8:2/35:
[  374.997316][   T30]  #0: ffff88802dc04948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  375.014259][   T30]  #1: ffffc90000ab7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  375.035243][   T30]  #2: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  375.048016][   T30] 2 locks held by getty/4992:
[  375.057883][   T30]  #0: ffff88803243a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  375.069335][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00
[  375.087301][   T30] 4 locks held by kworker/1:4/5314:
[  375.095190][   T30] 2 locks held by syz.2.1188/8520:
[  375.100342][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: ppp_release+0x87/0x1f0
[  375.112076][   T30]  #1: ffffffff8e7d3dd0 (cpu_hotplug_lock){++++}-{0:0}, at: unregister_netdevice_many_notify+0x5ea/0x1da0
[  375.129073][   T30] 2 locks held by syz.3.1192/8528:
[  375.134665][   T30]  #0: ffffffff8fd3f830 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  375.150764][   T30]  #1: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: ethnl_default_set_doit+0x394/0x910
[  375.172265][   T30] 2 locks held by syz.4.1191/8527:
[  375.178281][   T30]  #0: ffff88805d4336c8 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x790
[  375.192048][   T30]  #1: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x99/0x200
[  375.200967][   T30] 2 locks held by syz.1.1194/8533:
[  375.214124][   T30]  #0: ffff88805f5296c8 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: __netlink_dump_start+0x119/0x790
[  375.231006][   T30]  #1: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x99/0x200
[  375.240461][   T30] 1 lock held by syz-executor/8592:
[  375.252791][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.269303][   T30] 1 lock held by syz-executor/8600:
[  375.276186][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.291939][   T30] 1 lock held by syz-executor/8603:
[  375.297291][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.315893][   T30] 3 locks held by syz.0.1214/8606:
[  375.321085][   T30]  #0: ffffffff8fd3f830 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  375.336901][   T30]  #1: ffffffff8fd3f6e8 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x121/0xec0
[  375.346536][   T30]  #2: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: tipc_nl_bearer_enable+0x17/0x40
[  375.362110][   T30] 1 lock held by syz-executor/8607:
[  375.367405][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.384875][   T30] 1 lock held by syz-executor/8610:
[  375.390138][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.404151][   T30] 1 lock held by syz-executor/8619:
[  375.409425][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.425787][   T30] 1 lock held by syz-executor/8623:
[  375.431073][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.444897][   T30] 1 lock held by syz-executor/8625:
[  375.450160][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.464675][   T30] 1 lock held by syz-executor/8627:
[  375.469928][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.486864][   T30] 1 lock held by syz-executor/8631:
[  375.493778][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.509528][   T30] 1 lock held by syz-executor/8642:
[  375.516452][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.530998][   T30] 1 lock held by syz-executor/8646:
[  375.537931][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.552131][   T30] 1 lock held by syz-executor/8649:
[  375.557399][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.574698][   T30] 1 lock held by syz-executor/8650:
[  375.579976][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.594376][   T30] 1 lock held by syz-executor/8656:
[  375.599635][   T30]  #0: ffffffff8fcd9ac8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  375.616358][   T30] 
[  375.618745][   T30] =============================================
[  375.618745][   T30] 
[  375.629393][   T30] NMI backtrace for cpu 0
[  375.633976][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  375.643995][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  375.654095][   T30] Call Trace:
[  375.657423][   T30]  <TASK>
[  375.660392][   T30]  dump_stack_lvl+0x241/0x360
[  375.665135][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  375.670395][   T30]  ? __pfx__printk+0x10/0x10
[  375.675049][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  375.680046][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  375.685566][   T30]  ? _printk+0xd5/0x120
[  375.689768][   T30]  ? __pfx__printk+0x10/0x10
[  375.694409][   T30]  ? __wake_up_klogd+0xcc/0x110
[  375.699311][   T30]  ? __pfx__printk+0x10/0x10
[  375.703955][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  375.709039][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  375.715078][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  375.721127][   T30]  watchdog+0xff4/0x1040
[  375.725434][   T30]  ? watchdog+0x1ea/0x1040
[  375.729919][   T30]  ? __pfx_watchdog+0x10/0x10
[  375.734655][   T30]  kthread+0x2f0/0x390
[  375.738766][   T30]  ? __pfx_watchdog+0x10/0x10
[  375.743489][   T30]  ? __pfx_kthread+0x10/0x10
[  375.748131][   T30]  ret_from_fork+0x4b/0x80
[  375.752604][   T30]  ? __pfx_kthread+0x10/0x10
[  375.757234][   T30]  ret_from_fork_asm+0x1a/0x30
[  375.762060][   T30]  </TASK>
[  375.765764][   T30] Sending NMI from CPU 0 to CPUs 1:
[  375.771046][    C1] NMI backtrace for cpu 1
[  375.771060][    C1] CPU: 1 UID: 0 PID: 5314 Comm: kworker/1:4 Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  375.771082][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  375.771094][    C1] Workqueue: wg-kex-wg2 wg_packet_handshake_receive_worker
[  375.771129][    C1] RIP: 0010:__lock_acquire+0x1250/0x2050
[  375.771150][    C1] Code: 40 d0 0a 8c e8 b1 70 e5 ff 48 bf 00 00 00 00 00 fc ff df 90 0f 0b 90 90 90 31 db 48 83 c3 40 48 89 d8 48 c1 e8 03 80 3c 38 00 <74> 12 48 89 df e8 56 46 8e 00 48 bf 00 00 00 00 00 fc ff df 48 83
[  375.771165][    C1] RSP: 0018:ffffc90000a17bb0 EFLAGS: 00000046
[  375.771180][    C1] RAX: 1ffffffff278b232 RBX: ffffffff93c59190 RCX: ffffffff817068dc
[  375.771194][    C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: dffffc0000000000
[  375.771205][    C1] RBP: 2886dbf14d0b5487 R08: ffffffff942df807 R09: 1ffffffff285bf00
[  375.771219][    C1] R10: dffffc0000000000 R11: fffffbfff285bf01 R12: 0000000000000000
[  375.771231][    C1] R13: ffff8880257b64d8 R14: 1ffff11004af6cb4 R15: ffff8880257b65a0
[  375.771245][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  375.771266][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  375.771278][    C1] CR2: 0000000020000080 CR3: 000000000e736000 CR4: 00000000003526f0
[  375.771293][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  375.771304][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  375.771315][    C1] Call Trace:
[  375.771322][    C1]  <NMI>
[  375.771329][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  375.771357][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  375.771375][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  375.771407][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  375.771432][    C1]  ? nmi_handle+0x14f/0x5a0
[  375.771451][    C1]  ? nmi_handle+0x2a/0x5a0
[  375.771470][    C1]  ? __lock_acquire+0x1250/0x2050
[  375.771486][    C1]  ? default_do_nmi+0x63/0x160
[  375.771505][    C1]  ? exc_nmi+0x123/0x1f0
[  375.771521][    C1]  ? end_repeat_nmi+0xf/0x53
[  375.771548][    C1]  ? __lock_acquire+0xf3c/0x2050
[  375.771566][    C1]  ? __lock_acquire+0x1250/0x2050
[  375.771583][    C1]  ? __lock_acquire+0x1250/0x2050
[  375.771601][    C1]  ? __lock_acquire+0x1250/0x2050
[  375.771618][    C1]  </NMI>
[  375.771624][    C1]  <IRQ>
[  375.771637][    C1]  lock_acquire+0x1ed/0x550
[  375.771653][    C1]  ? ip_route_me_harder+0x4d6/0x1300
[  375.771672][    C1]  ? __inet_dev_addr_type+0x152/0x4f0
[  375.771693][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  375.771710][    C1]  ? __local_bh_enable_ip+0x1bb/0x200
[  375.771735][    C1]  ? wg_packet_handshake_receive_worker+0x653/0xf50
[  375.771763][    C1]  ? worker_thread+0x870/0xd30
[  375.771793][    C1]  ? l3mdev_fib_table+0x14b/0x160
[  375.771811][    C1]  ? ip_route_me_harder+0x4d6/0x1300
[  375.771828][    C1]  ip_route_me_harder+0x4f3/0x1300
[  375.771845][    C1]  ? ip_route_me_harder+0x4d6/0x1300
[  375.771867][    C1]  ? __pfx_ip_route_me_harder+0x10/0x10
[  375.771886][    C1]  ? __kmalloc_node_track_caller_noprof+0x2a8/0x4c0
[  375.771941][    C1]  synproxy_send_tcp+0x356/0x6c0
[  375.771969][    C1]  synproxy_send_client_synack+0x8b8/0xf30
[  375.771997][    C1]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[  375.772022][    C1]  ? synproxy_pernet+0x45/0x270
[  375.772046][    C1]  nft_synproxy_eval_v4+0x3ca/0x610
[  375.772073][    C1]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[  375.772097][    C1]  ? validate_chain+0x11e/0x5920
[  375.772121][    C1]  ? nf_ip_checksum+0x13a/0x500
[  375.772148][    C1]  nft_synproxy_do_eval+0x362/0xa60
[  375.772177][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  375.772202][    C1]  ? validate_chain+0x11e/0x5920
[  375.772227][    C1]  ? __lock_acquire+0x1384/0x2050
[  375.772255][    C1]  ? __pfx_validate_chain+0x10/0x10
[  375.772286][    C1]  nft_do_chain+0x4ad/0x1da0
[  375.772318][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  375.772339][    C1]  ? __local_bh_enable_ip+0x168/0x200
[  375.772375][    C1]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[  375.772402][    C1]  nft_do_chain_inet+0x418/0x6b0
[  375.772425][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  375.772446][    C1]  ? ipt_do_table+0x312/0x1860
[  375.772474][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  375.772495][    C1]  nf_hook_slow+0xc3/0x220
[  375.772515][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  375.772543][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  375.772570][    C1]  NF_HOOK+0x29e/0x450
[  375.772597][    C1]  ? NF_HOOK+0x9a/0x450
[  375.772622][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  375.772649][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  375.772678][    C1]  ? ip_rcv_finish+0x406/0x560
[  375.772705][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  375.772732][    C1]  NF_HOOK+0x3a4/0x450
[  375.772756][    C1]  ? __lock_acquire+0x1384/0x2050
[  375.772775][    C1]  ? NF_HOOK+0x9a/0x450
[  375.772800][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  375.772825][    C1]  ? ip_rcv_core+0x801/0xd10
[  375.772852][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  375.772881][    C1]  ? __pfx_ip_rcv+0x10/0x10
[  375.772907][    C1]  __netif_receive_skb+0x2bf/0x650
[  375.772937][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  375.772954][    C1]  ? __pfx___netif_receive_skb+0x10/0x10
[  375.772982][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  375.773011][    C1]  ? __pfx_lock_release+0x10/0x10
[  375.773028][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  375.773066][    C1]  process_backlog+0x662/0x15b0
[  375.773087][    C1]  ? process_backlog+0x33b/0x15b0
[  375.773108][    C1]  ? __pfx_process_backlog+0x10/0x10
[  375.773125][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  375.773154][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  375.773183][    C1]  __napi_poll+0xcb/0x490
[  375.773200][    C1]  net_rx_action+0x89b/0x1240
[  375.773227][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  375.773245][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  375.773281][    C1]  handle_softirqs+0x2c5/0x980
[  375.773308][    C1]  ? do_softirq+0x11b/0x1e0
[  375.773333][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  375.773361][    C1]  do_softirq+0x11b/0x1e0
[  375.773384][    C1]  </IRQ>
[  375.773390][    C1]  <TASK>
[  375.773396][    C1]  ? __pfx_do_softirq+0x10/0x10
[  375.773420][    C1]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[  375.773447][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  375.773464][    C1]  ? rcu_is_watching+0x15/0xb0
[  375.773485][    C1]  __local_bh_enable_ip+0x1bb/0x200
[  375.773510][    C1]  ? wg_packet_send_staged_packets+0x313/0x18c0
[  375.773538][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  375.773564][    C1]  ? wg_packet_send_staged_packets+0x125/0x18c0
[  375.773593][    C1]  wg_packet_send_staged_packets+0x313/0x18c0
[  375.773626][    C1]  ? __pfx_wg_packet_send_staged_packets+0x10/0x10
[  375.773657][    C1]  ? skb_queue_tail+0x36/0x120
[  375.773678][    C1]  ? wg_packet_send_keepalive+0x15d/0x2a0
[  375.773706][    C1]  wg_packet_handshake_receive_worker+0x653/0xf50
[  375.773739][    C1]  ? __pfx_wg_packet_handshake_receive_worker+0x10/0x10
[  375.773773][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  375.773790][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  375.773829][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  375.773859][    C1]  ? process_scheduled_works+0x976/0x1850
[  375.773882][    C1]  process_scheduled_works+0xa63/0x1850
[  375.773916][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  375.773943][    C1]  ? assign_work+0x364/0x3d0
[  375.773967][    C1]  worker_thread+0x870/0xd30
[  375.773994][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  375.774016][    C1]  ? __kthread_parkme+0x169/0x1d0
[  375.774042][    C1]  ? __pfx_worker_thread+0x10/0x10
[  375.774066][    C1]  kthread+0x2f0/0x390
[  375.774083][    C1]  ? __pfx_worker_thread+0x10/0x10
[  375.774106][    C1]  ? __pfx_kthread+0x10/0x10
[  375.774123][    C1]  ret_from_fork+0x4b/0x80
[  375.774138][    C1]  ? __pfx_kthread+0x10/0x10
[  375.774154][    C1]  ret_from_fork_asm+0x1a/0x30
[  375.774184][    C1]  </TASK>
[  376.564596][ T5236] Bluetooth: hci19: command tx timeout
[  376.575113][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  376.582035][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc2-next-20241010-syzkaller #0
[  376.592067][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  376.602180][   T30] Call Trace:
[  376.605513][   T30]  <TASK>
[  376.608486][   T30]  dump_stack_lvl+0x241/0x360
[  376.613225][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  376.618471][   T30]  ? __pfx__printk+0x10/0x10
[  376.623101][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  376.629183][   T30]  ? vscnprintf+0x5d/0x90
[  376.633562][   T30]  panic+0x349/0x880
[  376.637496][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  376.643696][   T30]  ? __pfx_panic+0x10/0x10
[  376.648160][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  376.653614][   T30]  ? __irq_work_queue_local+0x137/0x410
[  376.659230][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  376.664649][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  376.670855][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  376.677068][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  376.683279][   T30]  watchdog+0x1033/0x1040
[  376.687662][   T30]  ? watchdog+0x1ea/0x1040
[  376.692127][   T30]  ? __pfx_watchdog+0x10/0x10
[  376.696849][   T30]  kthread+0x2f0/0x390
[  376.700953][   T30]  ? __pfx_watchdog+0x10/0x10
[  376.705674][   T30]  ? __pfx_kthread+0x10/0x10
[  376.710305][   T30]  ret_from_fork+0x4b/0x80
[  376.714755][   T30]  ? __pfx_kthread+0x10/0x10
[  376.719398][   T30]  ret_from_fork_asm+0x1a/0x30
[  376.724249][   T30]  </TASK>
[  376.727679][   T30] Kernel Offset: disabled
[  376.732059][   T30] Rebooting in 86400 seconds..