last executing test programs:

2m39.168987876s ago: executing program 0 (id=6682):
r0 = socket(0x40000000015, 0x805, 0x0)
getsockopt(r0, 0x114, 0x271f, 0x0, &(0x7f0000000200))

2m38.907258258s ago: executing program 0 (id=6688):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@ipv6_delrule={0x44, 0x21, 0x1, 0x70bd2b, 0x25dfdbfc, {0xa, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1c}, [@FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'macvlan0\x00'}, @FRA_DST={0x14, 0x1, @mcast2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x8894)

2m38.553248895s ago: executing program 0 (id=6695):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000080)="240000004e0025000307f4f9002304000a04f55f08000100020100020800038005000000", 0x24)

2m38.264167857s ago: executing program 0 (id=6703):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000680)=ANY=[@ANYBLOB="0a00000016000000b400000003"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f00000002c0)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @generic={0x79, 0x0, 0x0, 0x85}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xee, &(0x7f0000000340)=""/238, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2m38.017508827s ago: executing program 0 (id=6709):
syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0x1, 0x200, &(0x7f0000006140)="$eJzsUr9rFEEU/mZ37tzThBxyIIogSvBHkdxmo/FHoWBjUEEQhRgQPO4u8XDjj+yB3nHgWqWwERQhQSwESQoL8R9wQW3ERiHYhUhaU6SwkYSVN/tmb88/INV8xX4z8958731v53bwINgBYGujUwWKIEiU8P2XgARwQKgj1OyEHebLzHmOX7ASjpj/Mm+dbE9MAqJxaGXMivbUDooi+kp/vq6iioGbOP360rsfV3Mvlnevv/1I+Revtz5AHKkNvHn1/tn5+X4lL25MZnXsaP+CQ0IAnm9OrKzKvXZJazXCZSqdg8bLKQh3wQEw/Hlo/qzb/9RizaDVvlPx/fpscO6JhXVV6udGp0qLWwBiAvsbB5DNIftLnENn+yRwDYCNOM2R6KLcnLlfDlrtocZMZbo+Xb/reaNj7nHXPeGVpxp+3aUvwNXUdZ4giI8BoN9UoBaEiu+i2Cbn7EQvSIf6CtO496XA7RfQqeb1r/udXikgU0/b0iwQsS1H9QFllSwfBo32YSgyp4NKRUIZG4eAzZsRmekvqeWowPCne35tDuSNry1Cphoja8ilGy+7GT2lHWKOeRB2zygWmdeY9YvWL1UqBYsvHQ2BPB5Vms04jh9jqQ9XviUROpv18ukqnZcaGFku2r3mzvy37y4MDAwMDAwMDAwMDAy2H/8CAAD//xZelnI=")
open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0)

2m36.849220466s ago: executing program 0 (id=6724):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000000)={0xa, 0x4e20, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7f}, 0x1c, 0x0, 0x0, &(0x7f00000000c0)=[@rthdr_2292={{0x28, 0x29, 0x39, {0x3b, 0x2, 0x2, 0x1, 0x0, [@local]}}}], 0x28}, 0x0)

2m20.426229317s ago: executing program 32 (id=6724):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000000)={0xa, 0x4e20, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7f}, 0x1c, 0x0, 0x0, &(0x7f00000000c0)=[@rthdr_2292={{0x28, 0x29, 0x39, {0x3b, 0x2, 0x2, 0x1, 0x0, [@local]}}}], 0x28}, 0x0)

3.196739156s ago: executing program 6 (id=8884):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=0x1, r0, 0x5, 0x0, 0x0, @void, @value}, 0x10)

3.124843905s ago: executing program 5 (id=8885):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="170000001400030400000000000000542d"], 0x44}}, 0x0)

2.852018203s ago: executing program 5 (id=8889):
r0 = fsopen(&(0x7f0000000000)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000080)='source', &(0x7f00000019c0)='//\xf2/\x06\b/?\\o\xdc\xea\x95\x9a/\x00bb\x8a\x80\x91\xdf\\/\\\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6h\xd1\x1d\xac\xaa\xfb\xc7Y\xcd\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\x9c\x00\x00\x00\x00\x00\x00\x00&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc50\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\x05\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1oO\xe4\x99\xd6\xed\x83\xb0\x18q\xb9\xda\xf1kk\xb0N\xe69D\x12\x1f\x96\x85y\xe1\xf6\x83\x81\xc1\xcb\x169\xa5A%\xcb\n\xaby\x9f\x97\xde\xcf\x14\x0f\xffl\xb0e\xa2m\xb3\x8fsI\xc8v<\x8a\\7\xbaA\xef\x92\x98K\xfd\xaa\xdb', 0x0)

2.816290917s ago: executing program 6 (id=8891):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000900)={@cgroup, 0xb, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

2.662362117s ago: executing program 5 (id=8893):
fchdir(0xffffffffffffffff)
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100000cb768405e0483020b990102030109022400010000000009040000025c291d0009050900000000060009050ae5", @ANYRES8], 0x0)

2.512315661s ago: executing program 6 (id=8896):
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f00000000c0)='./file2\x00', 0x1c802, &(0x7f0000000ec0)=ANY=[], 0x1, 0x5ea7, &(0x7f00000085c0)="$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")
symlink(&(0x7f000000a900)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.183978473s ago: executing program 2 (id=8902):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018100000", @ANYRES32=r0, @ANYBLOB="0000000000000000070000000000000018000000000000000000000000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000066020000f8ffffffb703000008000040b7040000000000008500000082000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7020000100000008500000006080000050000000000000095"], &(0x7f0000000740)='syzkaller\x00', 0x4, 0xe2, &(0x7f00000001c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.03023482s ago: executing program 4 (id=8905):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005480)={0x38, 0x3e, 0x1, 0x80000, 0x0, {0x1}, [@typed={0x4}, @nested={0x14, 0x1, 0x0, 0x1, [@nested={0x10, 0x10, 0x0, 0x1, [@nested={0x4, 0x7}, @typed={0x8, 0xca, 0x0, 0x0, @u32=0xffffff01}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x38}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

1.907288167s ago: executing program 2 (id=8906):
mbind(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x4001, &(0x7f0000000000)=0x3, 0x2, 0x0)
mbind(&(0x7f0000ff2000/0x1000)=nil, 0x1000, 0x4001, &(0x7f0000000040)=0x1, 0xbab, 0x0)

1.734309152s ago: executing program 1 (id=8909):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000380), 0x20000)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000003c0)={0x40, @tick=0x5, 0x6, {0x92, 0x6}, 0x2, 0x1, 0x3})

1.646818104s ago: executing program 4 (id=8911):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000680)=@can_newroute={0x34, 0x18, 0x1, 0x70bd2b, 0x25dfdbfc, {0x1d, 0x1, 0x1}, [@CGW_MOD_XOR={0x15, 0x3, {{{0x4, 0x1, 0x0, 0x1}, 0x3, 0x1, 0x0, 0x0, "9a504a25ac9884dd"}, 0x4}}, @CGW_CS_XOR={0x6, 0x5, {0xfffffffffffffff7, 0xfffffffffffffff8, 0x4, 0x1}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000054}, 0x24)

1.569288978s ago: executing program 2 (id=8912):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_SETMODE(r0, 0x5602, &(0x7f00000008c0)={0x6a, 0x0, 0xffff, 0x9, 0x3})

1.539627516s ago: executing program 3 (id=8913):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000100)={r0, 0x0, 0x0, 0x4}, 0x20)

1.522814438s ago: executing program 1 (id=8914):
ioperm(0x3, 0x2, 0x6)
syz_io_uring_setup(0x38fe, &(0x7f0000000300)={0x0, 0x2355, 0x10100, 0x0, 0x3ca}, &(0x7f0000000040), &(0x7f00000001c0))

1.364525016s ago: executing program 4 (id=8915):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@delneigh={0x30, 0x1d, 0x1, 0x70bd2b, 0x25dfdbfc, {0xa, 0x0, 0x0, 0x0, 0x4, 0xb2, 0x5}, [@NDA_DST_IPV6={0x14, 0x1, @empty}]}, 0x30}, 0x1, 0x0, 0x0, 0x2000c011}, 0x4044004)

1.342607619s ago: executing program 2 (id=8916):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r0, &(0x7f0000002080)={0xfc, {"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", 0x1000}}, 0x104b)

1.305486812s ago: executing program 3 (id=8917):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x2c, 0xa, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004}, 0x24002840)

1.209134308s ago: executing program 1 (id=8918):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=ANY=[@ANYBLOB="54020000170001"], 0x254}}, 0x0)

1.101799457s ago: executing program 4 (id=8919):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x4, &(0x7f0000000140)=0x80000001, 0x4)

1.054761985s ago: executing program 3 (id=8920):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@bridge_setlink={0x20, 0x13, 0xa29}, 0x20}}, 0x0)

997.025596ms ago: executing program 1 (id=8921):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x401, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0xb1b3}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_FLAGS={0x6, 0x2, 0xfffd}]}}}]}, 0x3c}}, 0x20000000)

913.34465ms ago: executing program 4 (id=8922):
r0 = syz_open_dev$MSR(&(0x7f0000000180), 0xfffffffffffff998, 0x0)
lseek(r0, 0x7, 0x0)

850.418159ms ago: executing program 5 (id=8923):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000880)=@allocspi={0x10c, 0x16, 0x401, 0x0, 0x0, {{{@in=@local, @in6=@mcast1, 0x4e21, 0xfd1, 0x4, 0x2, 0x2, 0x0, 0x0, 0xc}, {@in6=@private2, 0x0, 0x33}, @in6=@loopback, {0x0, 0x0, 0x0, 0x0, 0x8000000000000000, 0x80000001}, {0x104, 0x0, 0x0, 0x800}, {0x0, 0x6, 0x400}, 0x0, 0x0, 0xa, 0x0, 0x0, 0x94}, 0x0, 0x4ad}, [@XFRMA_IF_ID={0x8}, @offload={0xc}]}, 0x10c}, 0x1, 0x0, 0x0, 0x20040080}, 0x0)

808.055175ms ago: executing program 3 (id=8924):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x2, 0x3, 0x0, 0x2, 0xb, 0x0, 0x0, 0x0, [@sadb_key={0x1, 0x8}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e20, @dev}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x6}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e20, @empty}}]}, 0x58}, 0x1, 0x7}, 0x0)

745.410418ms ago: executing program 1 (id=8925):
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3, &(0x7f00000001c0)=0x91, 0x2, 0x0)
set_mempolicy_home_node(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x0, 0x0)

701.269402ms ago: executing program 2 (id=8926):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000000)={0x403d, &(0x7f0000000080)=[{}, {}, {}]})

701.091777ms ago: executing program 4 (id=8927):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000000c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2dfca8cbec85bf8e749e04e00752a45f46bdef8fff650f431a969618e20380636700427f659efdf3fc6a725007722e30100d8b986835044876d050aa9b9960b123d49c12f7c4134493e0afa"], 0x11, 0x4444, &(0x7f000000cd00)="$eJzs3c1rXOUeAOD3nKS3SW8/kt4ueuHCHbiFe7lKSLpSUzBN06ZJGyvVFnEznSTTNjrJlGQiLgrGXcGV4EJcFAV3WZUs3NY/wY3Lui7owo0gFCMzc5LOOZkhY5lJbH2eRc6c93vmdz7eszh540Tl9sJKbmElV1jKledurpzOfVAurS4WQ7xHmvZ/YO/6pz3dOE72+9j7K7ty7sJb10+H8O389483Nzc3Q1VvaGqk4fMvP9+da9xuiTN1qu02b61T3g0hnNgxrqqeEMI734QQhRDOJmnjybY/hHAk1POu3/3kRq5Do3nwqHgm/2Tm3sboqen1+xutv3sUwhelf758a/HH//SM/vD/DnUPAAAAAAAAAAAAAAAAAMBzbvLqlWtvDo+Eh1HoXY92vq87mWxbvR+72TH/7v6XBQAAAAAAAAAAAAAAAAAAgD+pp+//56LjTd7/n0i2Yy3qb77eIuNgZ8dJd0y9cWXi/PBIsv57tCP/lSTpp7M9YbDJuu/Z9d/PZuo3X/99Zz/Pamt8W/0OhCge2vxoO38gxPHQUAhfJQu/n4wOxaXySuWlm+XVpfmODeO5lY5/ffX+VHSSBf3bjf94pv3ur///jx1HU3X/RucOsRdaOv49Lct9/XHUVvzPZertRfxbcxPaTTr+vbW0/sYCY/ULQDX+n/buHv+JTPvdiv/REEIuqo41l7oCVOcw1fRW8xXS0vE/UEtLXTqTH7LV+f9rJv7nM+23iv+xjn2D5tf/teyNiKbS8f9bLa0vVeLp+T8Y737+X8i0vx/3/+r419z/25KOf3K/7E0Vqf2S7V7/JzPtdyv+1+JknEej1BGwHtXTW/2/OtLS8e/bkf/0+S9ua/53MVN/r57/tvqtPf81PIf8L6o//9FcOv79Lcu1e/5PZep1+/o/Vpv/8azS8T9US0vPnQdqf9uN/3Sm/W7FvzYr6auO9UDq+v/bwXr6l+Z/bUnH/+/1xLixxFrtb23+F+0+/7+UaX8/5n/V8a/F3e31RZGO/+GW5arx/66N+//lTL3uxz+EYXP9Z5aO/5GW5Wrnf9/u8Z/J1Ot2/P/bzcYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAngPjyXYgRPFQaj+Oh4ZCOJfsnwyHotnCfH62VJ57fyWEiSQ9F45Ht0rl2UIpv7BUni/mC6VSeS6E80n+idAXrZTKlfxi4c6F7bb6o9vFwnJltliohBAmk/R/hSNbbc0uVBYLd0IIF7fzjsXl5Tu3C0v5+YXl14aHh4fD1PYYBqPih5XiUqXeez03hOntugNRw+Bq2Ze2x3I4eq+8urxUKNXSLzfUKZXnCqWGOjNJ3mdhMKosry7NFSrFfKl8a6u//TSWbCemrr599fLIjvwbUX07vrfDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAPejj66uchhN76XhxCGNv6EDUr/+BR8Uz+ycy9jdFT0+v3Nx63KgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv7MDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFXbpHqRiIogB8ZyzUzmVYhaSzTVBECyOCK9BluJi4FDfhHiwsbC2CoDOo7wdSPF71fc2EHG7ugQwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDM5d14f9t2ESmO5sOIl8fXt5rNEXFdnqfh58wr8wd77MruXd2M5xdtV/57WsvPyqv3Pn+nnx9PD7HhrJ6H//N/79Ovuud4a69pWNa/9qt7TyLlJiL6kp+mnJtm2bcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAvduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrADxwIAAAAAwvyto+jbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgVwAAAP//G6EhTw==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)

678.245561ms ago: executing program 6 (id=8928):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/fib_trie\x00')
pread64(r0, &(0x7f0000032080)=""/102359, 0x18fd7, 0x1c)

535.030112ms ago: executing program 5 (id=8929):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="1c0000004800010026bd7000fbdbdf250a00d0"], 0x1c}, 0x1, 0x0, 0x0, 0x810}, 0x8080)

494.74626ms ago: executing program 1 (id=8930):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f0000000180)=ANY=[@ANYBLOB="6a6f75726e616c5f6173796e635f636f6d6d69742c6865617274626561743d6e6f6e652c67727071756f74612c696e6f646536342c61636c2c6c6f63616c666c6f636b732c005ea7501d3984f30800000034dd9b5f52523eb71133652077aca5d26b513822020aa04ceba373f5ce95c0d1d4d8d88b077307143bab05b944c8717fae9043000a828674b0cdb1a82528e59e857c2049a73f8389f4eb91af6e2f93e4894cc0e776da52222dc59219"], 0x0, 0x4703, &(0x7f0000004800)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)=@FILEID_INO32_GEN={0x8, 0x1, {0x7f, 0x11457213}}, 0x0, 0x1200)

484.561491ms ago: executing program 3 (id=8931):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
ioctl$VIDIOC_G_SELECTION(r0, 0xc0405668, &(0x7f0000000040)={0x9, 0x102, 0x5, {0xf1c, 0x3ff, 0xc, 0x200}})

439.191879ms ago: executing program 2 (id=8932):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x2010000, &(0x7f0000000200)={[{@uni_xlateno}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp869'}}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '949'}}, {@fat=@flush}, {@fat=@allow_utime={'allow_utime', 0x3d, 0xffff}}, {@utf8no}, {@utf8}, {@shortname_winnt}, {@numtail}, {@utf8no}]}, 0xfe, 0x34c, &(0x7f0000001740)="$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")
mount$nfs(&(0x7f00000000c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x00\x00\x01\x00\x00\x00\x00\x00h#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4I\xc5\xcb\x15A\xb5\xbbG\x9e\xea\xc4\x03\xf2\xf5\xf4\xa1\x9c\xe0Q<=\xb1\x9b,vjn\x8b[0\xd9\xcb\xf8\x1a\xdf\x9e\x89\x91H\xf4\x11p\xd2\x96\x82\xd9)6\xcdm\x88\x91\x1dv\xff\xb3\xad\x8b\x82\xcdR\x98\x80k1\xce}\x90\xe8e\xdb\xb1HL\x1d%\xc4\x1atCt\xb4\x00\xb29E\x87-\xd1\xcd\xf3w\"\v\xf3`\x06x\xb4TQ\x8dB\a\xe4\xe2\xf8\xd6%C\xf9\xd6~\xf80\xfcE\xa0\x80\x0e\"\xb0\a\x88\xbc\x7fbn\x02\xeb\x9b\x04\x1d\t', &(0x7f0000000000)='./file0\x00', 0x0, 0x123b058, 0x0)

289.311468ms ago: executing program 6 (id=8933):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, 0x0, &(0x7f0000000340))

219.844627ms ago: executing program 5 (id=8934):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000005c0)=@newlink={0x48, 0x10, 0xffffff1f, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10a, 0x50800}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @loopback}]}}}, @IFLA_ADDRESS={0xa, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x14}}]}, 0x48}}, 0x8080)

149.718178ms ago: executing program 3 (id=8935):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000100)={{0xa, 0x4e20, 0x9, @private0, 0x4}, {0xa, 0x4e20, 0x9, @rand_addr=' \x01\x00', 0x9}, 0x0, {[0x8000, 0x401, 0x4, 0x0, 0x40, 0xd30, 0x7, 0x3]}}, 0x5c)

0s ago: executing program 6 (id=8936):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 757.941442][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  757.982281][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  758.076214][T21952] loop3: detected capacity change from 0 to 4096
[  758.103046][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  758.134913][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  758.297939][T21923] loop4: detected capacity change from 0 to 32768
[  758.489593][T21957] loop1: detected capacity change from 0 to 4096
[  758.521687][T21957] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  758.665704][T21957] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  758.870176][T21957] ntfs3(loop1): ino=1f, "file2" failed to open parent directory r=5 to update
[  758.892139][T21967] loop6: detected capacity change from 0 to 4096
[  759.023555][T21967] ntfs3(loop6): ino=1a, mi_enum_attr
[  759.055512][T21967] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  759.090811][   T63] ntfs3(loop1): ino=1f, failed to open parent directory r=5 to update
[  759.094180][T21969] loop3: detected capacity change from 0 to 4096
[  759.204336][T21969] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  759.666413][T21989] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7136'.
[  759.735904][T21989] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7136'.
[  759.760824][T21992] loop1: detected capacity change from 0 to 128
[  759.907420][T21992] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  760.010269][T21992] ext4 filesystem being mounted at /1210/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  760.084966][T21992] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:376: inode #2: comm syz.1.7138: No space for directory leaf checksum. Please run e2fsck -D.
[  760.162909][ T5985] usb 6-1: new high-speed USB device number 100 using dummy_hcd
[  760.215461][T21992] EXT4-fs error (device loop1): __ext4_find_entry:1628: inode #2: comm syz.1.7138: checksumming directory block 0
[  760.331558][ T5875] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  760.382800][ T5985] usb 6-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  760.415618][ T5985] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  760.415790][T22015] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7147'.
[  760.480894][ T5985] usb 6-1: Product: syz
[  760.485197][ T5985] usb 6-1: Manufacturer: syz
[  760.512671][ T5985] usb 6-1: SerialNumber: syz
[  760.568973][ T5985] usb 6-1: config 0 descriptor??
[  760.590466][T22021] loop1: detected capacity change from 0 to 256
[  760.602502][ T5985] gspca_main: sunplus-2.14.0 probing 055f:c230
[  760.706590][T22021] FAT-fs (loop1): Directory bread(block 64) failed
[  760.735460][T22021] FAT-fs (loop1): Directory bread(block 65) failed
[  760.760934][T22021] FAT-fs (loop1): Directory bread(block 66) failed
[  760.795083][T22021] FAT-fs (loop1): Directory bread(block 67) failed
[  760.849402][T22021] FAT-fs (loop1): Directory bread(block 68) failed
[  760.867194][T22021] FAT-fs (loop1): Directory bread(block 69) failed
[  760.910733][T22021] FAT-fs (loop1): Directory bread(block 70) failed
[  760.947356][T22021] FAT-fs (loop1): Directory bread(block 71) failed
[  760.962116][T22021] FAT-fs (loop1): Directory bread(block 72) failed
[  760.971415][T22021] FAT-fs (loop1): Directory bread(block 73) failed
[  761.077407][ T5985] gspca_sunplus: reg_r err -71
[  761.100812][ T5985] sunplus 6-1:0.0: probe with driver sunplus failed with error -71
[  761.147504][ T5985] usb 6-1: USB disconnect, device number 100
[  761.395431][T22041] loop2: detected capacity change from 0 to 256
[  761.604700][T22043] loop6: detected capacity change from 0 to 4096
[  761.697159][T22043] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  761.740164][T22043] UDF-fs: Scanning with blocksize 512 failed
[  761.823863][T22043] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  761.914343][T22043] loop6: Can't mount, would change RO state
[  762.382451][T22033] loop4: detected capacity change from 0 to 32768
[  762.406368][T22033] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7156 (22033)
[  762.502265][T22033] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  762.544857][T22033] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm
[  762.600635][T22033] BTRFS info (device loop4): disk space caching is enabled
[  762.657027][T22033] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  762.734658][T22084] xt_l2tp: v2 tid > 0xffff: 134217728
[  762.931659][T22033] BTRFS info (device loop4): rebuilding free space tree
[  763.031009][T22033] BTRFS info (device loop4): disabling free space tree
[  763.039520][   T30] kauditd_printk_skb: 14 callbacks suppressed
[  763.039539][   T30] audit: type=1326 audit(1748795703.698:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22103 comm="syz.2.7184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  763.111824][T22033] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  763.169264][T22033] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  763.194350][   T30] audit: type=1326 audit(1748795703.735:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22103 comm="syz.2.7184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  763.327112][   T30] audit: type=1326 audit(1748795703.735:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22103 comm="syz.2.7184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  763.358298][T22033] BTRFS info (device loop4 state M): max_inline set to 8
[  763.366478][T22116] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7189'.
[  763.407404][T22120] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7192'.
[  763.450601][T22120] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7192'.
[  763.501262][T22120] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  763.655878][ T5870] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  763.906085][T22134] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[  763.951893][T22134] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  764.521824][T22154] netlink: 'syz.2.7208': attribute type 3 has an invalid length.
[  764.549699][T22154] netlink: 'syz.2.7208': attribute type 1 has an invalid length.
[  764.627819][ T5985] usb 6-1: new high-speed USB device number 101 using dummy_hcd
[  764.824048][ T5985] usb 6-1: Using ep0 maxpacket: 32
[  764.853756][ T5985] usb 6-1: config 0 has an invalid interface number: 134 but max is 0
[  764.887434][ T5985] usb 6-1: config 0 has no interface number 0
[  764.953952][ T5985] usb 6-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=ea.6f
[  764.989312][ T5985] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.027565][ T5985] usb 6-1: Product: syz
[  765.038809][ T5985] usb 6-1: Manufacturer: syz
[  765.052492][ T5985] usb 6-1: SerialNumber: syz
[  765.082221][ T5985] usb 6-1: config 0 descriptor??
[  765.121022][ T5985] input: bcm5974 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.134/input/input63
[  765.233228][T22131] loop1: detected capacity change from 0 to 32768
[  765.307736][T22170] netlink: 3 bytes leftover after parsing attributes in process `syz.6.7216'.
[  765.321391][T22131] JBD2: Ignoring recovery information on journal
[  765.335543][ T5180] bcm5974 6-1:0.134: could not read from device
[  765.359744][T22170] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  765.423622][ T5985] usb 6-1: USB disconnect, device number 101
[  765.441524][ T5180] bcm5974 6-1:0.134: could not read from device
[  765.535755][T22131] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  765.711789][T22131] OCFS2: ERROR (device loop1): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[  765.717264][T22181] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7220'.
[  765.802648][T22131] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  765.851645][T22131] OCFS2: File system is now read-only.
[  765.860600][T22183] kernel profiling enabled (shift: 17)
[  765.872214][T22131] (syz.1.7197,22131,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  765.929220][T22131] (syz.1.7197,22131,0):ocfs2_claim_metadata:2088 ERROR: status = -30
[  765.989122][T22131] (syz.1.7197,22131,0):ocfs2_claim_metadata:2101 ERROR: status = -30
[  766.032629][T22131] (syz.1.7197,22131,0):ocfs2_dx_dir_attach_index:2328 ERROR: status = -30
[  766.087094][T22131] (syz.1.7197,22131,1):ocfs2_expand_inline_dir:3021 ERROR: status = -30
[  766.118121][T22131] (syz.1.7197,22131,1):ocfs2_extend_dir:3203 ERROR: status = -30
[  766.156897][T22131] (syz.1.7197,22131,1):ocfs2_prepare_dir_for_insert:4308 ERROR: status = -30
[  766.192122][T22131] (syz.1.7197,22131,1):ocfs2_mknod:298 ERROR: status = -30
[  766.226569][T22131] (syz.1.7197,22131,1):ocfs2_mknod:502 ERROR: status = -30
[  766.267303][T22131] (syz.1.7197,22131,0):ocfs2_mkdir:658 ERROR: status = -30
[  766.280990][T22162] loop2: detected capacity change from 0 to 32768
[  766.386268][T22162] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  766.450926][T22199] netlink: 'syz.5.7226': attribute type 29 has an invalid length.
[  766.459027][T22199] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7226'.
[  766.541944][ T5875] ocfs2: Unmounting device (7,1) on (node local)
[  766.715750][T22162] XFS (loop2): Starting recovery (logdev: internal)
[  766.845660][T22162] XFS (loop2): Ending recovery (logdev: internal)
[  767.075906][T22209] netlink: 268 bytes leftover after parsing attributes in process `syz.5.7231'.
[  767.095974][ T5880] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  767.221517][T22185] loop4: detected capacity change from 0 to 32768
[  767.334297][T22185] ERROR: (device loop4): diNewExt: no free extents
[  767.334297][T22185] 
[  767.382752][T22185] ialloc: diAlloc returned -5!
[  767.843461][T22223] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[  768.907239][T22217] loop6: detected capacity change from 0 to 32768
[  769.004246][T22217] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  769.006040][T22257] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7253'.
[  769.075541][T22262] loop5: detected capacity change from 0 to 16
[  769.092394][T22262] erofs (device loop5): mounted with root inode @ nid 36.
[  769.155958][T22234] loop2: detected capacity change from 0 to 32768
[  769.228175][T22217] XFS (loop6): Ending clean mount
[  769.250204][T22234] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  769.364889][T22217] XFS (loop6): Quotacheck needed: Please wait.
[  769.453466][T22234] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  769.550825][T22217] XFS (loop6): Quotacheck: Done.
[  769.630689][T22234] (syz.2.7242,22234,0):ocfs2_read_blocks:239 ERROR: status = -12
[  769.692646][T22234] (syz.2.7242,22234,0):ocfs2_xattr_block_find:2831 ERROR: status = -12
[  769.782903][T21600] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  770.006955][ T5880] ocfs2: Unmounting device (7,2) on (node local)
[  770.114852][T22291] netlink: 'syz.3.7267': attribute type 1 has an invalid length.
[  770.667704][T22305] loop3: detected capacity change from 0 to 512
[  770.678102][T22301] loop2: detected capacity change from 0 to 4096
[  770.695648][T22305] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  770.773279][T22305] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128
[  770.945743][T22301] ntfs3(loop2): ino=5, "/" indx_read
[  770.952405][T22301] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  771.080568][T22287] loop5: detected capacity change from 0 to 32768
[  771.246250][T22287] JBD2: Ignoring recovery information on journal
[  771.375533][T22287] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  771.401198][T22323] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  771.464515][T22323] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  771.511420][T22323] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  771.546772][T22323] overlayfs: missing 'lowerdir'
[  771.621287][T22287] OCFS2: ERROR (device loop5): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #1792 has bad signature 
[  771.645314][T22287] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  771.656517][T22287] OCFS2: File system is now read-only.
[  771.689543][T22287] (syz.5.7263,22287,1):ocfs2_search_chain:1852 ERROR: status = -30
[  771.748438][T22287] (syz.5.7263,22287,0):ocfs2_search_chain:1940 ERROR: status = -30
[  771.800755][T22287] (syz.5.7263,22287,0):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[  771.830418][T22287] (syz.5.7263,22287,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  771.883174][T22287] (syz.5.7263,22287,0):ocfs2_claim_new_inode:2298 ERROR: status = -30
[  771.929942][T22287] (syz.5.7263,22287,0):ocfs2_claim_new_inode:2313 ERROR: status = -30
[  771.976553][T22332] loop4: detected capacity change from 0 to 4096
[  771.985768][T22287] (syz.5.7263,22287,0):ocfs2_mknod_locked:638 ERROR: status = -30
[  772.027051][T22287] (syz.5.7263,22287,0):ocfs2_symlink:1953 ERROR: status = -30
[  772.075561][T22287] (syz.5.7263,22287,1):ocfs2_symlink:2077 ERROR: status = -30
[  772.087614][T22332] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  772.154109][ T5874] ocfs2: Unmounting device (7,5) on (node local)
[  772.291001][ T5870] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.088939][ T5985] usb 6-1: new full-speed USB device number 102 using dummy_hcd
[  773.174326][T22338] loop6: detected capacity change from 0 to 32768
[  773.301184][ T5985] usb 6-1: not running at top speed; connect to a high speed hub
[  773.323385][ T5985] usb 6-1: config 95 has an invalid interface number: 1 but max is 0
[  773.339992][ T5985] usb 6-1: config 95 has no interface number 0
[  773.346437][ T5985] usb 6-1: config 95 interface 1 has no altsetting 0
[  773.355669][ T5985] usb 6-1: New USB device found, idVendor=0763, idProduct=2031, bcdDevice=ad.3f
[  773.367492][ T5985] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  773.376736][ T5985] usb 6-1: Product: syz
[  773.380939][ T5985] usb 6-1: Manufacturer: syz
[  773.385545][ T5985] usb 6-1: SerialNumber: syz
[  773.523916][T22338] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  773.650961][T22338] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  773.650961][T22338]   allowing incompatible features above 0.0: (unknown version)
[  773.716490][T22390] loop2: detected capacity change from 0 to 64
[  773.771778][T22338] bcachefs (loop6): initializing new filesystem
[  773.801166][T22338] bcachefs (loop6): going read-write
[  773.914625][T22338] bcachefs (loop6): marking superblocks
[  773.983898][T22338] bcachefs (loop6): initializing freespace
[  773.996995][T22338] bcachefs (loop6): done initializing freespace
[  774.018267][T22338] bcachefs (loop6): reading snapshots table
[  774.025917][T22338] bcachefs (loop6): reading snapshots done
[  774.027901][ T5985] usb 6-1: USB disconnect, device number 102
[  774.041906][T22401] loop1: detected capacity change from 0 to 8
[  774.050490][T22338] bcachefs (loop6): done starting filesystem
[  774.065421][T22402] netlink: 'syz.4.7314': attribute type 10 has an invalid length.
[  774.130009][T22402] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7314'.
[  774.167175][T22401] SQUASHFS error: Unable to read directory block [629:0]
[  774.230498][T22402] batman_adv: batadv0: Adding interface: virt_wifi0
[  774.237144][T22402] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  774.307790][ T5980] udevd[5980]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:95.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  774.323903][T22402] batman_adv: batadv0: Interface activated: virt_wifi0
[  774.646508][T22338] syz.6.7287 (22338) used greatest stack depth: 16008 bytes left
[  774.705933][T22420] loop2: detected capacity change from 0 to 256
[  774.726856][T21600] bcachefs (loop6): shutting down
[  774.732389][T21600] bcachefs (loop6): going read-only
[  774.739003][T21600] bcachefs (loop6): finished waiting for writes to stop
[  774.762830][T22420] MINIX-fs: mounting file system with errors, running fsck is recommended
[  774.776332][T21600] bcachefs (loop6): flushing journal and stopping allocators, journal seq 2
[  774.964365][T21600] bcachefs (loop6): flushing journal and stopping allocators complete, journal seq 3
[  775.053262][T21600] bcachefs (loop6): clean shutdown complete, journal seq 4
[  775.128901][T22429] netlink: 'syz.4.7330': attribute type 1 has an invalid length.
[  775.191792][T21600] bcachefs (loop6): marking filesystem clean
[  775.296980][ T5985] usb 4-1: new high-speed USB device number 103 using dummy_hcd
[  775.356456][T22437] ptrace attach of "./syz-executor exec"[5870] was attempted by ""[22437]
[  775.413644][T21600] bcachefs (loop6): shutdown complete
[  775.508802][ T5985] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  775.527327][ T5985] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  775.579668][ T5985] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  775.623593][ T5985] usb 4-1: config 220 has no interface number 2
[  775.653807][ T5985] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  775.690284][ T5985] usb 4-1: config 220 interface 0 has no altsetting 0
[  775.714338][ T5985] usb 4-1: config 220 interface 76 has no altsetting 0
[  775.750412][ T5985] usb 4-1: config 220 interface 1 has no altsetting 0
[  775.802516][ T5985] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  775.821267][ T5985] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  775.851445][ T5985] usb 4-1: Product: syz
[  775.859783][ T5985] usb 4-1: Manufacturer: syz
[  775.883901][ T5985] usb 4-1: SerialNumber: syz
[  775.944252][T22455] loop5: detected capacity change from 0 to 512
[  776.000869][T22455] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  776.043272][T22455] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002]
[  776.076241][T22455] EXT4-fs (loop5): orphan cleanup on readonly fs
[  776.102687][T22455] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7341: bg 0: block 361: padding at end of block bitmap is not set
[  776.130951][T22455] EXT4-fs (loop5): Remounting filesystem read-only
[  776.150538][ T5985] usb 4-1: selecting invalid altsetting 0
[  776.176661][ T5985] usb 4-1: selecting invalid altsetting 0
[  776.188492][ T5985] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  776.204676][ T5985] usb 4-1: No valid video chain found.
[  776.212837][T22455] EXT4-fs (loop5): 1 truncate cleaned up
[  776.248165][T22455] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  776.262205][ T5985] usb 4-1: selecting invalid altsetting 0
[  776.280763][ T5985] usbtest 4-1:220.1: probe with driver usbtest failed with error -22
[  776.320567][ T5985] usb 4-1: USB disconnect, device number 103
[  776.321703][T22455] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  776.890391][T22479] overlay: Unknown parameter '\'
[  776.984478][T22453] loop4: detected capacity change from 0 to 32768
[  777.015888][T22453] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7340 (22453)
[  777.132555][T22453] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  777.159047][T22453] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  777.167560][T22453] BTRFS info (device loop4): using free-space-tree
[  777.701864][ T5870] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  778.061717][T22530] xt_cgroup: xt_cgroup: no path or classid specified
[  778.278397][T19296] usb 3-1: new high-speed USB device number 100 using dummy_hcd
[  778.317263][T22535] netlink: 2 bytes leftover after parsing attributes in process `syz.5.7371'.
[  778.351024][T22535] batadv_slave_1: entered promiscuous mode
[  778.373972][T22535] batman_adv: batadv0: Interface activated: batadv_slave_1
[  778.478727][T19296] usb 3-1: config 0 has an invalid interface number: 127 but max is 1
[  778.487562][T19296] usb 3-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 255
[  778.546598][T19296] usb 3-1: config 0 has no interface number 1
[  778.582789][T19296] usb 3-1: config 0 interface 127 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  778.681101][T19296] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 29
[  778.794840][T19296] usb 3-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  778.829702][T19296] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  778.864039][T19296] usb 3-1: Product: syz
[  778.869983][T19296] usb 3-1: Manufacturer: syz
[  778.881310][T19296] usb 3-1: SerialNumber: syz
[  778.911114][T19296] usb 3-1: config 0 descriptor??
[  778.941069][T19296] usb-storage 3-1:0.127: USB Mass Storage device detected
[  778.952130][T22548] netlink: 'syz.4.7378': attribute type 1 has an invalid length.
[  779.016910][T22548] netlink: 244 bytes leftover after parsing attributes in process `syz.4.7378'.
[  779.028600][T19296] usb-storage 3-1:0.127: Quirks match for vid 1908 pid 1315: 20000
[  779.039777][T22548] NCSI netlink: No device for ifindex 0
[  779.130335][T19296] usb-storage 3-1:0.0: USB Mass Storage device detected
[  779.192261][T19296] usb-storage 3-1:0.0: Quirks match for vid 1908 pid 1315: 20000
[  779.358443][T22532] loop1: detected capacity change from 0 to 32768
[  779.378433][T19296] usb 3-1: USB disconnect, device number 100
[  779.487723][T22532] 
[  779.487723][T22532]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  779.487723][T22532] 
[  779.616567][T22532] read_mapping_page failed!
[  779.621639][T22532] ERROR: (device loop1): txCommit: 
[  779.621639][T22532] 
[  779.784574][T22572] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7386'.
[  779.855822][T22572] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7386'.
[  779.911420][   T13] ERROR: (device loop1): diWrite: ixpxd invalid
[  779.911420][   T13] 
[  779.970571][   T13] ERROR: (device loop1): txCommit: 
[  779.970571][   T13] 
[  779.998387][   T13] jfs_write_inode: jfs_commit_inode failed!
[  780.040484][ T5875] 
[  780.040484][ T5875]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  780.040484][ T5875] 
[  780.101099][ T5875] 
[  780.101099][ T5875]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  780.101099][ T5875] 
[  780.595679][T22597] netlink: 'syz.2.7399': attribute type 2 has an invalid length.
[  780.603490][T22597] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7399'.
[  780.846109][T22607] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7404'.
[  780.969801][T22612] loop2: detected capacity change from 0 to 512
[  780.977671][T19296] usb 4-1: new high-speed USB device number 104 using dummy_hcd
[  781.014651][T22612] EXT4-fs: Ignoring removed i_version option
[  781.112372][T22612] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  781.133483][T22620] loop1: detected capacity change from 0 to 256
[  781.163903][T22620] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  781.198352][T19296] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  781.212788][T22612] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  781.248605][T19296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  781.256641][T19296] usb 4-1: Product: syz
[  781.283346][T22612] ext4 filesystem being mounted at /1285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  781.324120][T19296] usb 4-1: Manufacturer: syz
[  781.346257][T19296] usb 4-1: SerialNumber: syz
[  781.381185][T22627] loop6: detected capacity change from 0 to 2048
[  781.383374][T19296] usb 4-1: config 0 descriptor??
[  781.413614][T22612] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #2: comm syz.2.7406: corrupted inode contents
[  781.457189][T22630] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  781.475201][T22612] EXT4-fs (loop2): Remounting filesystem read-only
[  781.709269][T19296] hso 4-1:0.0: Failed to find INT IN ep
[  781.715518][T19296] usb-storage 4-1:0.0: USB Mass Storage device detected
[  781.740159][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  781.771478][ T3522] Quota error (device loop2): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  781.933984][T19296] usb 4-1: USB disconnect, device number 104
[  782.101793][T22648] loop2: detected capacity change from 0 to 2048
[  782.989226][T13144] usb 5-1: new high-speed USB device number 110 using dummy_hcd
[  783.085157][T22685] loop1: detected capacity change from 0 to 1764
[  783.261130][T13144] usb 5-1: config index 0 descriptor too short (expected 103, got 72)
[  783.274862][T13144] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  783.301140][T13144] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  783.319304][T13144] usb 5-1: Product: syz
[  783.331928][T13144] usb 5-1: Manufacturer: syz
[  783.340033][T13144] usb 5-1: SerialNumber: syz
[  783.366157][T13144] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  783.399751][ T5922] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  784.225002][T22719] netlink: 'syz.6.7452': attribute type 11 has an invalid length.
[  784.688495][ T5922] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive
[  784.695589][ T5922] ath9k_htc: Failed to initialize the device
[  784.977585][T22727] loop3: detected capacity change from 0 to 512
[  785.477701][T22727] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.7456: bad orphan inode 13
[  785.586948][T22727] ext4_test_bit(bit=12, block=4) = 1
[  785.670198][T22727] is_bad_inode(inode)=0
[  785.699103][T22727] NEXT_ORPHAN(inode)=0
[  785.781034][T22727] max_ino=32
[  785.815874][T22727] i_nlink=1
[  785.868188][T22727] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  786.131422][T13144] usb 5-1: USB disconnect, device number 110
[  786.153480][T13144] usb 5-1: ath9k_htc: USB layer deinitialized
[  786.219500][T22714] loop5: detected capacity change from 0 to 32768
[  786.333777][ T5873] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  786.645632][T22759] netlink: 328 bytes leftover after parsing attributes in process `syz.2.7471'.
[  786.687689][T22762] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7469'.
[  786.917464][T22769] IPVS: set_ctl: invalid protocol: 29 10.1.1.1:0
[  786.975065][T22763] loop1: detected capacity change from 0 to 4096
[  787.023804][T22763] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  787.172150][T22763] ntfs3(loop1): ino=1a, mi_enum_attr
[  787.208095][T22763] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  787.230265][T22778] loop5: detected capacity change from 0 to 64
[  787.249025][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  787.256759][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  787.350692][T22781] netlink: 'syz.3.7482': attribute type 3 has an invalid length.
[  787.983114][   T30] audit: type=1326 audit(1748795726.615:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22799 comm="syz.3.7491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  788.133771][   T30] audit: type=1326 audit(1748795726.670:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22799 comm="syz.3.7491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  788.156498][    C0] vkms_vblank_simulate: vblank timer overrun
[  788.264452][   T30] audit: type=1326 audit(1748795726.670:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22799 comm="syz.3.7491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  788.293234][T22813] loop2: detected capacity change from 0 to 256
[  788.363770][T22813] exfat: Deprecated parameter 'namecase'
[  788.369491][T22813] exfat: Deprecated parameter 'utf8'
[  788.378174][   T30] audit: type=1326 audit(1748795726.670:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22799 comm="syz.3.7491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  788.544423][T22813] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  788.567969][T22822] xt_hashlimit: max too large, truncated to 1048576
[  788.857137][T22832] loop4: detected capacity change from 0 to 256
[  788.857203][T22833] netlink: 830 bytes leftover after parsing attributes in process `syz.1.7508'.
[  788.903449][T15334] Bluetooth: hci3: unexpected event for opcode 0x1407
[  789.020579][T22841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7511'.
[  789.102114][T22832] FAT-fs (loop4): Directory bread(block 64) failed
[  789.110200][T22832] FAT-fs (loop4): Directory bread(block 65) failed
[  789.145226][T22832] FAT-fs (loop4): Directory bread(block 66) failed
[  789.151797][T22832] FAT-fs (loop4): Directory bread(block 67) failed
[  789.199815][T22832] FAT-fs (loop4): Directory bread(block 68) failed
[  789.225043][T22832] FAT-fs (loop4): Directory bread(block 69) failed
[  789.243069][T22832] FAT-fs (loop4): Directory bread(block 70) failed
[  789.268852][T22832] FAT-fs (loop4): Directory bread(block 71) failed
[  789.312476][T22832] FAT-fs (loop4): Directory bread(block 72) failed
[  789.349229][T22832] FAT-fs (loop4): Directory bread(block 73) failed
[  789.545063][T22859] loop2: detected capacity change from 0 to 8
[  789.644283][T22859] SQUASHFS error: lzo decompression failed, data probably corrupt
[  789.724825][T22859] SQUASHFS error: Failed to read block 0x29b: -5
[  789.749038][T22859] SQUASHFS error: Unable to read metadata cache entry [299]
[  789.979253][T22870] netlink: 60 bytes leftover after parsing attributes in process `syz.3.7525'.
[  790.388637][T22883] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7532'.
[  790.976989][T22857] loop5: detected capacity change from 0 to 32768
[  791.507133][T22922] ip6erspan0: entered promiscuous mode
[  791.599560][T22924] No such timeout policy "syz0"
[  791.607404][T22926] netlink: zone id is out of range
[  791.637966][T22926] netlink: set zone limit has 4 unknown bytes
[  792.164826][   T30] audit: type=1326 audit(1748795730.459:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.4.7560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334678e969 code=0x7ffc0000
[  792.277239][   T30] audit: type=1326 audit(1748795730.459:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.4.7560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334678e969 code=0x7ffc0000
[  792.426394][   T30] audit: type=1326 audit(1748795730.496:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.4.7560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f334678e969 code=0x7ffc0000
[  792.460123][T22903] loop2: detected capacity change from 0 to 32768
[  792.506387][T22903] btrfs: Deprecated parameter 'usebackuproot'
[  792.512514][T22903] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  792.546466][   T30] audit: type=1326 audit(1748795730.496:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.4.7560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334678e969 code=0x7ffc0000
[  792.546526][   T30] audit: type=1326 audit(1748795730.496:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22942 comm="syz.4.7560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334678e969 code=0x7ffc0000
[  792.578733][T22903] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7541 (22903)
[  792.634449][    C1] vkms_vblank_simulate: vblank timer overrun
[  792.681812][T22903] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  792.681943][T22903] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  792.681980][T22903] BTRFS info (device loop2): using free-space-tree
[  792.883157][   T63] BTRFS warning (device loop2): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0x26333c6f level 0
[  792.883307][T22903] BTRFS warning (device loop2): couldn't read tree root
[  792.883331][T22903] BTRFS warning (device loop2): try to load backup roots slot 1
[  792.888648][T21699] BTRFS warning (device loop2): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x78ca8373 level 0
[  792.888766][T22903] BTRFS warning (device loop2): couldn't read tree root
[  792.888789][T22903] BTRFS warning (device loop2): try to load backup roots slot 2
[  792.895102][   T63] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  792.895213][T22903] BTRFS warning (device loop2): couldn't read tree root
[  792.895235][T22903] BTRFS warning (device loop2): try to load backup roots slot 3
[  793.014583][T22903] BTRFS info (device loop2): rebuilding free space tree
[  793.077997][T22903] BTRFS info (device loop2): checking UUID tree
[  793.325841][T22985] loop5: detected capacity change from 0 to 1024
[  793.353524][   T30] audit: type=1800 audit(1748795731.526:184): pid=22903 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7541" name="file1" dev="loop2" ino=257 res=0 errno=0
[  793.407648][T22985] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (12806!=20869)
[  793.451672][T22985] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842c018, mo2=0002]
[  793.519737][T22985] System zones: 0-1, 3-36
[  793.524572][T22985] EXT4-fs (loop5): orphan cleanup on readonly fs
[  793.598932][T22985] EXT4-fs (loop5): 1 orphan inode deleted
[  793.619418][T22985] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  793.644401][ T5880] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  793.717054][T22943] loop3: detected capacity change from 0 to 32768
[  793.813087][T22943] JBD2: Ignoring recovery information on journal
[  793.878233][ T5874] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  793.892806][   T30] audit: type=1326 audit(1748795732.050:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22995 comm="syz.1.7577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc598e969 code=0x7ffc0000
[  793.996180][T22943] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  794.072028][   T30] audit: type=1326 audit(1748795732.078:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22995 comm="syz.1.7577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc598e969 code=0x7ffc0000
[  794.173773][   T30] audit: type=1326 audit(1748795732.105:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22995 comm="syz.1.7577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f1fc598e969 code=0x7ffc0000
[  794.243089][   T30] audit: type=1326 audit(1748795732.105:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22995 comm="syz.1.7577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc598e969 code=0x7ffc0000
[  794.270394][   T30] audit: type=1326 audit(1748795732.105:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22995 comm="syz.1.7577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc598e969 code=0x7ffc0000
[  794.410685][T23001] 8021q: adding VLAN 0 to HW filter on device bond1
[  794.476975][ T5873] ocfs2: Unmounting device (7,3) on (node local)
[  794.723323][T23012] tc_dump_action: action bad kind
[  794.800146][T22980] loop6: detected capacity change from 0 to 32768
[  795.033341][T22980] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[  795.063439][T23025] usb usb1: usbfs: process 23025 (syz.2.7589) did not claim interface 0 before use
[  795.146972][T22980] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  795.382225][T23030] loop4: detected capacity change from 0 to 128
[  795.674590][T21600] ocfs2: Unmounting device (7,6) on (node local)
[  796.010799][T23050] x_tables: duplicate entry at hook 3
[  796.332420][T23065] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7608'.
[  796.649971][T23081] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7613'.
[  797.880580][T23128] openvswitch: netlink: Duplicate or invalid key (type 0).
[  797.919302][T23128] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  797.941448][T23129] loop4: detected capacity change from 0 to 2048
[  797.987378][T23129] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  798.074464][T23129] syz.4.7638: attempt to access beyond end of device
[  798.074464][T23129] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  798.093416][T23135] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  798.291673][T23129] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  798.320220][T23144] netlink: 60 bytes leftover after parsing attributes in process `syz.6.7647'.
[  798.333663][T23144] netlink: 56 bytes leftover after parsing attributes in process `syz.6.7647'.
[  798.342765][T23129] Remounting filesystem read-only
[  798.349634][T23129] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  798.373678][T23129] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  798.409466][T23144] gretap1: entered promiscuous mode
[  798.414845][T23144] gretap1: entered allmulticast mode
[  798.426522][   T30] audit: type=1800 audit(1748795736.217:190): pid=23129 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.7638" name="file3" dev="loop4" ino=16 res=0 errno=0
[  798.543725][   T30] audit: type=1400 audit(1748795736.318:191): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A552C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=23149 comm="syz.2.7649"
[  798.845013][T23159] loop1: detected capacity change from 0 to 256
[  799.103494][T15334] Bluetooth: hci1: Malformed HCI Event: 0x22
[  799.118113][T23159] FAT-fs (loop1): Directory bread(block 64) failed
[  799.169578][T23159] FAT-fs (loop1): Directory bread(block 65) failed
[  799.176204][T23159] FAT-fs (loop1): Directory bread(block 66) failed
[  799.221623][T23172] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7658'.
[  799.241781][T23159] FAT-fs (loop1): Directory bread(block 67) failed
[  799.274668][T23159] FAT-fs (loop1): Directory bread(block 68) failed
[  799.306374][T23159] FAT-fs (loop1): Directory bread(block 69) failed
[  799.339637][T23159] FAT-fs (loop1): Directory bread(block 70) failed
[  799.355163][T23159] FAT-fs (loop1): Directory bread(block 71) failed
[  799.405799][T23159] FAT-fs (loop1): Directory bread(block 72) failed
[  799.430574][T23159] FAT-fs (loop1): Directory bread(block 73) failed
[  799.504002][T23182] netlink: 'syz.3.7665': attribute type 21 has an invalid length.
[  799.532559][T23182] netlink: 128 bytes leftover after parsing attributes in process `syz.3.7665'.
[  799.575600][T23188] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7667'.
[  799.596287][T23182] netlink: 'syz.3.7665': attribute type 5 has an invalid length.
[  799.629910][T23188] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7667'.
[  799.647909][T23182] netlink: 'syz.3.7665': attribute type 6 has an invalid length.
[  799.669906][T23182] netlink: 3 bytes leftover after parsing attributes in process `syz.3.7665'.
[  799.848940][T23188] vxcan3: entered promiscuous mode
[  799.854111][T23188] vxcan3: entered allmulticast mode
[  800.848006][T23229] loop4: detected capacity change from 0 to 4096
[  801.071639][T23229] ntfs3(loop4): ino=5, "/" indx_read
[  801.088845][T23229] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  801.499942][T23218] loop2: detected capacity change from 0 to 32768
[  801.557061][T23247] loop3: detected capacity change from 0 to 4096
[  801.674159][T23247] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  801.836958][T23218] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  801.896085][T23261] loop6: detected capacity change from 0 to 4096
[  801.945896][T23218] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  801.945896][T23218]   allowing incompatible features above 0.0: (unknown version)
[  801.952363][T23261] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  802.037642][T23218] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  802.087156][T23218] bcachefs (loop2): Version upgrade required:
[  802.087156][T23218] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  802.087156][T23218] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  802.087156][T23218]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  802.182827][T23218] bcachefs (loop2): dropping and reconstructing all alloc info
[  802.286101][T23261] ntfs3(loop6): ino=19, mi_enum_attr
[  802.346573][T23261] ntfs3(loop6): failed to convert "c46c" to cp850
[  802.387926][T23261] ntfs3(loop6): ino=20, mi_enum_attr
[  802.413113][T23218] bcachefs (loop2): accounting_read... done
[  802.465424][T23218] bcachefs (loop2): alloc_read... done
[  802.506496][T23218] bcachefs (loop2): snapshots_read... done
[  802.513277][T23218] bcachefs (loop2): done starting filesystem
[  802.631868][T23282] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7710'.
[  802.691360][T23282] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7710'.
[  802.771656][ T5880] bcachefs (loop2): shutting down
[  802.871872][T23286] ip6gre1: entered promiscuous mode
[  802.897439][T23286] ip6gre1: entered allmulticast mode
[  803.001887][ T5880] bcachefs (loop2): shutdown complete
[  803.096593][T23290] loop5: detected capacity change from 0 to 2048
[  803.182346][T23294] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  803.213126][T23290] NILFS (loop5): failed to count free inodes: err=-34
[  803.319705][T23293] loop4: detected capacity change from 0 to 4096
[  803.371723][T23293] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  803.457250][T23300] loop6: detected capacity change from 0 to 8
[  803.568760][T23300] SQUASHFS error: Failed to read block 0x4e8: -5
[  803.633683][   T30] audit: type=1800 audit(1748795741.010:192): pid=23300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.7719" name="file1" dev="loop6" ino=5 res=0 errno=0
[  803.752329][T23278] loop3: detected capacity change from 0 to 32768
[  803.805847][T23278] XFS: attr2 mount option is deprecated.
[  803.844937][T23278] XFS: ikeep mount option is deprecated.
[  803.850645][T23278] XFS: noikeep mount option is deprecated.
[  803.982368][T23278] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  804.212856][T23278] XFS (loop3): Ending clean mount
[  804.261485][T23278] XFS (loop3): Quotacheck needed: Please wait.
[  804.397242][T23278] XFS (loop3): Quotacheck: Done.
[  804.664051][ T5873] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  805.375767][T23349] netlink: 1041 bytes leftover after parsing attributes in process `syz.5.7740'.
[  805.737914][T23326] loop4: detected capacity change from 0 to 32768
[  805.746207][T23359] netlink: 'syz.6.7743': attribute type 1 has an invalid length.
[  805.800091][T23326] XFS: ikeep mount option is deprecated.
[  805.806358][T23359] netlink: 224 bytes leftover after parsing attributes in process `syz.6.7743'.
[  805.808094][T23363] syz.3.7746: attempt to access beyond end of device
[  805.808094][T23363] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  805.897477][T23326] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  806.101570][T23326] XFS (loop4): Ending clean mount
[  806.132278][T23379] loop5: detected capacity change from 0 to 2048
[  806.149780][T23326] XFS (loop4): Quotacheck needed: Please wait.
[  806.163509][T23379] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found!
[  806.226618][T23379] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  806.291567][T23326] XFS (loop4): Quotacheck: Done.
[  806.497048][ T5870] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  807.049943][T23400] loop1: detected capacity change from 0 to 2048
[  807.057453][T23400] EXT4-fs: Ignoring removed mblk_io_submit option
[  807.103702][T13144] usb 4-1: new high-speed USB device number 105 using dummy_hcd
[  807.229591][T23400] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  807.299528][T13144] usb 4-1: Using ep0 maxpacket: 16
[  807.307493][T13144] usb 4-1: config 0 has an invalid interface number: 126 but max is 0
[  807.330062][T13144] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  807.371331][T13144] usb 4-1: config 0 has no interface number 0
[  807.376019][T23400] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.7761: bg 0: block 234: padding at end of block bitmap is not set
[  807.393474][T13144] usb 4-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  807.424265][T13144] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024
[  807.481472][T23400] EXT4-fs (loop1): Remounting filesystem read-only
[  807.490606][T13144] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[  807.525771][T13144] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0x4 has invalid maxpacket 28001, setting to 1024
[  807.603505][T13144] usb 4-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024
[  807.654707][T13144] usb 4-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[  807.700179][ T5875] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  807.718034][T13144] usb 4-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[  807.761328][T13144] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  807.825217][T13144] usb 4-1: config 0 descriptor??
[  807.830961][T23395] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  807.844589][T23395] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  807.867969][T13144] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  808.014788][T23429] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  808.028573][T23430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7772'.
[  808.089381][T23424] loop5: detected capacity change from 0 to 4096
[  808.150836][T23424] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  808.169949][T13144] usb 4-1: USB disconnect, device number 105
[  808.304887][T23424] ntfs3(loop5): Failed to load $Extend (-22).
[  808.338720][T23424] ntfs3(loop5): Failed to initialize $Extend.
[  808.790307][T23403] loop6: detected capacity change from 0 to 32768
[  808.818006][T23403] XFS: noikeep mount option is deprecated.
[  808.889656][T23403] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  809.010354][T23461] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7782'.
[  809.052865][T23403] XFS (loop6): Ending clean mount
[  809.100280][T23403] XFS (loop6): Quotacheck needed: Please wait.
[  809.278784][T23403] XFS (loop6): Quotacheck: Done.
[  809.289616][T23469] loop2: detected capacity change from 0 to 256
[  809.400026][   T30] audit: type=1107 audit(1748795746.311:193): pid=23473 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='£'
[  809.407470][T23469] FAT-fs (loop2): Directory bread(block 64) failed
[  809.463311][T21600] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  809.494633][T23469] FAT-fs (loop2): Directory bread(block 65) failed
[  809.502810][T23469] FAT-fs (loop2): Directory bread(block 66) failed
[  809.553533][T23469] FAT-fs (loop2): Directory bread(block 67) failed
[  809.613920][T23469] FAT-fs (loop2): Directory bread(block 68) failed
[  809.620505][T23469] FAT-fs (loop2): Directory bread(block 69) failed
[  809.675216][T23469] FAT-fs (loop2): Directory bread(block 70) failed
[  809.714945][T23469] FAT-fs (loop2): Directory bread(block 71) failed
[  809.748452][T23469] FAT-fs (loop2): Directory bread(block 72) failed
[  809.777065][T23469] FAT-fs (loop2): Directory bread(block 73) failed
[  810.481819][T23506] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7804'.
[  810.677296][T23512] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7809'.
[  810.717553][T23515] gtp0: entered promiscuous mode
[  811.037292][T23528] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7816'.
[  811.294860][T23542] usb usb8: usbfs: process 23542 (syz.5.7823) did not claim interface 0 before use
[  811.307660][T23541] netlink: 'syz.4.7822': attribute type 13 has an invalid length.
[  811.333861][T23541] gretap0: refused to change device tx_queue_len
[  811.362243][T23541] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  811.493726][ T5941] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  811.692199][ T5941] usb 7-1: Using ep0 maxpacket: 32
[  811.750764][ T5941] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9
[  811.817283][ T5941] usb 7-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  811.836379][ T5941] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  811.884950][ T5941] usb 7-1: Product: syz
[  811.906836][ T5941] usb 7-1: Manufacturer: syz
[  811.913378][ T5941] usb 7-1: SerialNumber: syz
[  811.954388][ T5941] usb 7-1: config 0 descriptor??
[  811.960851][T23536] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  812.006724][ T5941] input: syz syz as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input64
[  812.199403][T23574] loop2: detected capacity change from 0 to 64
[  812.236718][T23574] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  812.294425][T23574] MINIX-fs warning: remounting unchecked fs, running fsck is recommended
[  812.353519][ T5941] usb 7-1: USB disconnect, device number 2
[  812.359437][    C0] usbtouchscreen 7-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  813.797026][ T5941] usb 4-1: new high-speed USB device number 106 using dummy_hcd
[  814.123312][T23631] xt_CT: You must specify a L4 protocol and not use inversions on it
[  814.127741][ T5941] usb 4-1: too many configurations: 38, using maximum allowed: 8
[  814.178649][ T5941] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  814.210976][ T5941] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  814.219036][ T5941] usb 4-1: Product: syz
[  814.242284][ T5941] usb 4-1: Manufacturer: syz
[  814.269348][ T5941] usb 4-1: SerialNumber: syz
[  814.349459][ T5941] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  814.393708][T19296] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  814.768827][T23657] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7879'.
[  814.959605][ T5941] usb 4-1: USB disconnect, device number 106
[  815.599508][T19296] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  815.614324][T23686] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  815.636430][T19296] ath9k_htc: Failed to initialize the device
[  815.666025][ T5941] usb 4-1: ath9k_htc: USB layer deinitialized
[  815.930034][T23696] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  816.281841][T23709] loop3: detected capacity change from 0 to 24
[  816.304601][T23709] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  816.334280][T23661] loop5: detected capacity change from 0 to 32768
[  816.341939][T23709] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  816.387709][T23661] (syz.5.7881,23661,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x26a7570f, computed 0x51f68f67. Applying ECC.
[  816.436806][T23661] (syz.5.7881,23661,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x26a7570f, computed 0x91fd3046
[  816.523824][T23661] (syz.5.7881,23661,1):ocfs2_validate_dir_block:452 ERROR: Checksum failed for dinode 288
[  816.548861][T23661] (syz.5.7881,23661,1):ocfs2_read_virt_blocks:1029 ERROR: status = -5
[  816.598257][T23661] (syz.5.7881,23661,1):ocfs2_read_dir_block:511 ERROR: status = -5
[  816.657992][T23661] (syz.5.7881,23661,1):ocfs2_find_entry_el:728 ERROR: reading directory 18, offset 0
[  816.694863][T23661] (syz.5.7881,23661,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22
[  816.772852][T23661] (syz.5.7881,23661,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs?
[  816.772900][T23661] (syz.5.7881,23661,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22
[  816.839328][T23661] (syz.5.7881,23661,1):ocfs2_initialize_super:2198 ERROR: status = -22
[  816.847742][T23661] (syz.5.7881,23661,1):ocfs2_fill_super:1177 ERROR: status = -22
[  817.030046][T23727] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  817.205673][T23734] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7914'.
[  817.291096][T23734] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  817.340059][T23741] loop4: detected capacity change from 0 to 8
[  817.413964][T23742] delete_channel: no stack
[  817.451564][T23745] loop5: detected capacity change from 0 to 256
[  817.514302][T23745] exfat: Deprecated parameter 'namecase'
[  817.520029][T23745] exfat: Deprecated parameter 'utf8'
[  817.642945][T23749] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7923'.
[  817.663862][T23745] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  818.148537][T23768] loop3: detected capacity change from 0 to 1024
[  818.170686][T23761] loop2: detected capacity change from 0 to 4096
[  818.219273][T23761] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  818.329111][T23773] loop6: detected capacity change from 0 to 8
[  818.335541][T23771] netlink: 60 bytes leftover after parsing attributes in process `syz.1.7934'.
[  818.412816][T23775] netlink: 'syz.5.7935': attribute type 1 has an invalid length.
[  818.429558][T23775] netlink: 'syz.5.7935': attribute type 1 has an invalid length.
[  818.515409][T23773] SQUASHFS error: xz decompression failed, data probably corrupt
[  818.573658][T23773] SQUASHFS error: Failed to read block 0xa8: -5
[  818.636530][T23773] SQUASHFS error: xz decompression failed, data probably corrupt
[  818.651512][T23773] SQUASHFS error: Failed to read block 0xa8: -5
[  818.658851][   T30] audit: type=1800 audit(1748795754.843:194): pid=23773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.7933" name="file0" dev="loop6" ino=3 res=0 errno=0
[  819.196324][T23799] netlink: 'syz.6.7945': attribute type 5 has an invalid length.
[  819.204130][T23799] netlink: 'syz.6.7945': attribute type 5 has an invalid length.
[  819.531257][T23813] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  819.587489][T23816] openvswitch: netlink: VXLAN extension message has 1 unknown bytes.
[  819.591081][T23813] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  819.777215][T23821] netlink: 20 bytes leftover after parsing attributes in process `syz.5.7958'.
[  819.887173][   T30] audit: type=1326 audit(1748795755.966:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23826 comm="syz.3.7962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  820.016005][   T30] audit: type=1326 audit(1748795755.966:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23826 comm="syz.3.7962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  820.024093][T23830] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7961'.
[  820.110959][   T30] audit: type=1326 audit(1748795755.994:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23826 comm="syz.3.7962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  820.148539][T23835] netlink: 'syz.4.7965': attribute type 2 has an invalid length.
[  820.229578][   T30] audit: type=1326 audit(1748795755.994:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23826 comm="syz.3.7962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  820.363638][   T30] audit: type=1326 audit(1748795755.994:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23826 comm="syz.3.7962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  820.433761][T23847] binfmt_misc: register: failed to install interpreter file ./file2
[  820.458959][T23849] loop4: detected capacity change from 0 to 512
[  820.484988][T23849] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  820.554633][T23849] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  820.633016][T23849] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e128, mo2=0002]
[  820.641646][T23849] System zones: 0-1, 15-15, 18-18, 34-34
[  820.647699][T23849] EXT4-fs (loop4): orphan cleanup on readonly fs
[  820.654694][T23849] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  820.664696][T23849] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  820.679354][T23849] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  820.690616][T23849] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.7972: bg 0: block 40: padding at end of block bitmap is not set
[  820.783976][T23849] EXT4-fs (loop4): Remounting filesystem read-only
[  820.790632][T23849] EXT4-fs (loop4): 1 truncate cleaned up
[  820.864720][T23849] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  821.041297][T23868] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  821.065503][T23868] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  821.089105][ T5870] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  821.091393][T23870] loop5: detected capacity change from 0 to 64
[  821.248893][ T5922] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  821.432980][T23878] loop2: detected capacity change from 0 to 128
[  821.463143][ T5922] usb 7-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  821.480197][ T5922] usb 7-1: config 2 interface 0 has no altsetting 0
[  821.497303][ T5922] usb 7-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  821.507648][ T5922] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  821.523576][ T5922] usb 7-1: Product: syz
[  821.529285][ T5922] usb 7-1: Manufacturer: syz
[  821.563385][ T5922] usb 7-1: SerialNumber: syz
[  821.602369][ T5922] usb 7-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[  821.613952][T23878] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  821.659476][ T5922] usb 7-1: selecting invalid altsetting 0
[  821.666114][T23878] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  821.720861][ T5922] usb 7-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[  821.822642][ T5922] usb 7-1: USB disconnect, device number 3
[  822.197775][T23900] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  822.207975][T23899] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7996'.
[  822.265188][T23895] loop3: detected capacity change from 0 to 4096
[  822.338925][T23895] NILFS (loop3): invalid segment: Checksum error in segment payload
[  822.402727][T23904] netlink: 'syz.2.7998': attribute type 6 has an invalid length.
[  822.425205][T23895] NILFS (loop3): trying rollback from an earlier position
[  822.595349][T23895] NILFS (loop3): recovery complete
[  822.624206][T23913] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  823.376783][T23936] ieee802154 phy0 wpan0: encryption failed: -22
[  823.442958][ T5922] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  823.673847][ T5922] usb 7-1: config 0 has an invalid interface number: 50 but max is 0
[  823.693098][ T5922] usb 7-1: config 0 has no interface number 0
[  823.734695][ T5922] usb 7-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  823.807407][ T5922] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  823.839772][ T5922] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  823.870407][ T5922] usb 7-1: Product: syz
[  823.874615][ T5922] usb 7-1: Manufacturer: syz
[  823.914741][ T5922] usb 7-1: SerialNumber: syz
[  823.944768][ T5922] usb 7-1: config 0 descriptor??
[  823.949157][T23956] macsec0: entered promiscuous mode
[  823.965706][T23957] netlink: 'syz.3.8024': attribute type 11 has an invalid length.
[  823.995994][ T5922] yurex 7-1:0.50: USB YUREX device now attached to Yurex #0
[  823.999259][T23956] macsec0: entered allmulticast mode
[  824.029193][T23957] netlink: 'syz.3.8024': attribute type 11 has an invalid length.
[  824.053506][T23956] veth1_macvtap: entered allmulticast mode
[  824.083809][T23957] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8024'.
[  824.295750][T23965] openvswitch: netlink: Unknown key attributes 2
[  824.438541][ T5941] usb 7-1: USB disconnect, device number 4
[  824.467805][ T5941] yurex 7-1:0.50: USB YUREX #0 now disconnected
[  824.692326][T15334] Bluetooth: hci3: unexpected event for opcode 0x0c1b
[  824.783274][T19296] usb 6-1: new high-speed USB device number 103 using dummy_hcd
[  824.980811][T19296] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  825.039452][T19296] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  825.079947][T19296] usb 6-1: Product: syz
[  825.102526][T19296] usb 6-1: Manufacturer: syz
[  825.126333][T19296] usb 6-1: SerialNumber: syz
[  825.168722][T19296] usb 6-1: config 0 descriptor??
[  825.227623][T23998] loop6: detected capacity change from 0 to 256
[  825.279919][T23998] exfat: Deprecated parameter 'utf8'
[  825.307211][T23998] exfat: Deprecated parameter 'utf8'
[  825.340168][T23998] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001047b, chksum : 0x3ced02ab, utbl_chksum : 0xe619d30d)
[  825.463776][T19296] hso 6-1:0.0: Failed to find BULK IN ep
[  825.484782][T19296] usb-storage 6-1:0.0: USB Mass Storage device detected
[  825.703746][T19296] usb 6-1: USB disconnect, device number 103
[  826.388173][T24034] loop4: detected capacity change from 0 to 512
[  826.447034][T24034] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  826.461702][T24034] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  826.474594][T24034] System zones: 0-1, 15-15, 18-18, 34-34
[  826.504485][T24034] EXT4-fs (loop4): orphan cleanup on readonly fs
[  826.574049][T24034] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  826.586407][T24041] loop5: detected capacity change from 0 to 2048
[  826.629849][T24041] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  826.652303][T24034] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  826.718408][T24034] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  826.742669][T24041] syz.5.8061: attempt to access beyond end of device
[  826.742669][T24041] loop5: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  826.743461][T24044] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  826.793202][T24034] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.8059: bad orphan inode 16
[  826.857988][T24034] ext4_test_bit(bit=15, block=18) = 1
[  826.863608][T24034] is_bad_inode(inode)=0
[  826.867451][T24041] syz.5.8061: attempt to access beyond end of device
[  826.867451][T24041] loop5: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[  826.871597][T24034] NEXT_ORPHAN(inode)=0
[  826.886567][T24034] max_ino=32
[  826.889782][T24034] i_nlink=2
[  826.894861][T24034] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  826.952140][T24041] NILFS (loop5): I/O error reading meta-data file (ino=6, block-offset=0)
[  827.177714][ T5870] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  827.258062][T24056] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8070'.
[  827.307864][T24038] 9pnet_fd: p9_fd_create_tcp (24038): problem connecting socket to 127.0.0.1
[  827.402666][T24059] loop5: detected capacity change from 0 to 2048
[  827.458073][T24059] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[  827.513113][T24065] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  827.622159][T24067] netlink: 'syz.2.8074': attribute type 9 has an invalid length.
[  827.821355][T24077] loop5: detected capacity change from 0 to 256
[  827.889521][T24077] FAT-fs (loop5): Directory bread(block 64) failed
[  827.917601][T24077] FAT-fs (loop5): Directory bread(block 65) failed
[  827.941315][T24077] FAT-fs (loop5): Directory bread(block 66) failed
[  828.004035][T24077] FAT-fs (loop5): Directory bread(block 67) failed
[  828.037078][T24077] FAT-fs (loop5): Directory bread(block 68) failed
[  828.080435][T24077] FAT-fs (loop5): Directory bread(block 69) failed
[  828.087098][T24077] FAT-fs (loop5): Directory bread(block 70) failed
[  828.125097][T24077] FAT-fs (loop5): Directory bread(block 71) failed
[  828.137159][T24073] loop1: detected capacity change from 0 to 4096
[  828.189675][T24077] FAT-fs (loop5): Directory bread(block 72) failed
[  828.196319][T24077] FAT-fs (loop5): Directory bread(block 73) failed
[  828.467421][T24093] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  828.666906][T24099] program syz.2.8088 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  828.724288][T24073] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  828.787503][T24103] xt_cgroup: path and classid specified
[  828.904437][T24073] Remounting filesystem read-only
[  829.002059][T24110] vlan0: entered promiscuous mode
[  829.177730][T24117] netlink: 'syz.3.8095': attribute type 1 has an invalid length.
[  829.353450][T24121] loop5: detected capacity change from 0 to 256
[  829.360929][T24121] exfat: Deprecated parameter 'namecase'
[  829.425183][ T5875] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[  829.498559][T24121] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  830.361100][T24151] tmpfs: Bad value for 'mpol'
[  830.390300][T24157] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8114'.
[  830.414460][T24156] loop2: detected capacity change from 0 to 256
[  830.464046][T24157] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8114'.
[  830.491752][T24157] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  830.731964][T24126] loop4: detected capacity change from 0 to 32768
[  830.770772][T24162] netlink: 'syz.1.8117': attribute type 5 has an invalid length.
[  830.770810][T24157] bond1: entered allmulticast mode
[  830.826087][T24166] loop2: detected capacity change from 0 to 64
[  830.850388][T24157] 8021q: adding VLAN 0 to HW filter on device bond1
[  831.075382][T24126] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  831.280003][T24126] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,str_hash=crc64,norecovery,nojournal_transaction_names,reconstruct_alloc
[  831.280003][T24126]   allowing incompatible features above 0.0: (unknown version)
[  831.398459][T24126] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  831.490782][T24126] bcachefs (loop4): Version upgrade required:
[  831.490782][T24126] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  831.490782][T24126] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags
[  831.490782][T24126]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  831.660552][T24126] bcachefs (loop4): dropping and reconstructing all alloc info
[  831.736020][T24126] bcachefs (loop4): accounting_read... done
[  831.801664][T24126] bcachefs (loop4): alloc_read... done
[  831.828034][T24126] bcachefs (loop4): snapshots_read... done
[  831.835369][T24126] bcachefs (loop4): done starting filesystem
[  831.897098][T24197] netlink: 'syz.1.8131': attribute type 1 has an invalid length.
[  831.951131][T24204] netlink: 'syz.2.8135': attribute type 2 has an invalid length.
[  831.963402][T24197] netlink: 224 bytes leftover after parsing attributes in process `syz.1.8131'.
[  832.218365][ T5870] bcachefs (loop4): shutting down
[  832.390375][T24215] MPI: mpi too large (107144 bits)
[  832.415941][ T5870] bcachefs (loop4): shutdown complete
[  832.566989][T24221] loop1: detected capacity change from 0 to 1024
[  832.688146][T24227] loop6: detected capacity change from 0 to 2048
[  832.728030][ T5923] usb 6-1: new high-speed USB device number 104 using dummy_hcd
[  832.776840][T24228] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  832.853607][T24227] NILFS (loop6): error -2 truncating bmap (ino=16)
[  832.867338][   T63] hfsplus: b-tree write err: -5, ino 4
[  832.923536][ T5923] usb 6-1: Using ep0 maxpacket: 8
[  832.985429][ T5923] usb 6-1: New USB device found, idVendor=0c45, idProduct=628e, bcdDevice=e0.4e
[  833.009241][ T5923] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  833.021563][T24228] NILFS (loop6): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[  833.054313][ T5923] usb 6-1: Product: syz
[  833.058527][ T5923] usb 6-1: Manufacturer: syz
[  833.063144][ T5923] usb 6-1: SerialNumber: syz
[  833.083433][T24228] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=16)
[  833.111388][ T5923] usb 6-1: config 0 descriptor??
[  833.140692][T24228] Remounting filesystem read-only
[  833.148798][T21600] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[  833.154829][ T5923] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:628e
[  833.183732][T24233] delete_channel: no stack
[  833.566680][ T5923] gspca_sn9c20x: Write register 1001 failed -71
[  833.573021][ T5923] gspca_sn9c20x: Device initialization failed
[  833.618493][ T5923] gspca_sn9c20x 6-1:0.0: probe with driver gspca_sn9c20x failed with error -71
[  833.680874][ T5923] usb 6-1: USB disconnect, device number 104
[  833.748480][T24224] loop2: detected capacity change from 0 to 32768
[  833.790609][T24224] (syz.2.8145,24224,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  833.849927][T24224] (syz.2.8145,24224,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  833.953035][T24224] JBD2: Ignoring recovery information on journal
[  834.110230][T24224] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  834.425635][ T5880] ocfs2: Unmounting device (7,2) on (node local)
[  834.642187][T24269] netlink: 212408 bytes leftover after parsing attributes in process `syz.5.8166'.
[  834.716464][T24269] netlink: zone id is out of range
[  834.722641][T24269] netlink: get zone limit has 8 unknown bytes
[  835.714331][T19296] usb 3-1: new high-speed USB device number 101 using dummy_hcd
[  835.801364][ T5922] usb 6-1: new high-speed USB device number 105 using dummy_hcd
[  835.910406][T19296] usb 3-1: Using ep0 maxpacket: 8
[  835.929533][T19296] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  835.959356][T19296] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  835.979632][T19296] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  835.991725][T24311] loop6: detected capacity change from 0 to 16
[  836.000342][T19296] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  836.011901][T19296] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  836.029213][T24311] erofs (device loop6): mounted with root inode @ nid 36.
[  836.053296][T24311] erofs (device loop6): bogus lookback distance 1388 @ lcn 42 of nid 36
[  836.070500][T19296] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  836.072437][ T5922] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  836.081418][T19296] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.119252][T24311] erofs (device loop6): read error -117 @ 43 of nid 36
[  836.156720][ T5922] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  836.188643][T19296] usb 3-1: config 0 descriptor??
[  836.198847][T24294] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  836.202687][ T5922] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  836.252813][ T5922] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.295601][T24299] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  836.297780][T24315] netlink: 'syz.4.8139': attribute type 10 has an invalid length.
[  836.366679][T24315] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  836.368328][ T5922] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  836.496093][T24319] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  836.771707][T19296] usb 3-1: USB disconnect, device number 101
[  836.773950][T15334] Bluetooth: hci7: Opcode 0x0c03 failed: -19
[  836.848932][ T5941] usb 6-1: USB disconnect, device number 105
[  837.267095][ T5923] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  837.462294][ T5923] usb 7-1: Using ep0 maxpacket: 16
[  837.477016][ T5923] usb 7-1: config 0 has an invalid interface number: 105 but max is 0
[  837.520957][ T5923] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  837.559849][ T5923] usb 7-1: config 0 has no interface number 0
[  837.584281][ T5923] usb 7-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  837.604884][ T5923] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  837.651274][ T5923] usb 7-1: Product: syz
[  837.655488][ T5923] usb 7-1: Manufacturer: syz
[  837.693926][ T5923] usb 7-1: SerialNumber: syz
[  837.719732][ T5923] usb 7-1: config 0 descriptor??
[  837.738391][ T5923] usb 7-1: Found UVC 0.00 device syz (046d:08f3)
[  837.758446][T24325] loop1: detected capacity change from 0 to 32768
[  837.781116][ T5923] usb 7-1: No valid video chain found.
[  837.913043][T24325] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  837.949944][T24359] netlink: 5120 bytes leftover after parsing attributes in process `syz.3.8210'.
[  837.999570][ T5923] usb 7-1: USB disconnect, device number 5
[  838.139627][T24325] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature 
[  838.244043][T24325] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  838.288989][T24325] OCFS2: File system is now read-only.
[  838.317521][T24325] (syz.1.8193,24325,0):ocfs2_search_chain:1852 ERROR: status = -30
[  838.353442][T24325] (syz.1.8193,24325,0):ocfs2_search_chain:1940 ERROR: status = -30
[  838.377362][T24325] (syz.1.8193,24325,0):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[  838.408998][T24325] (syz.1.8193,24325,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  838.461076][T24325] (syz.1.8193,24325,0):__ocfs2_claim_clusters:2438 ERROR: status = -30
[  838.469402][T24325] (syz.1.8193,24325,0):__ocfs2_claim_clusters:2446 ERROR: status = -30
[  838.506759][T24325] (syz.1.8193,24325,1):ocfs2_local_alloc_new_window:1199 ERROR: status = -30
[  838.575873][T24325] (syz.1.8193,24325,1):ocfs2_local_alloc_new_window:1224 ERROR: status = -30
[  838.628713][T24325] (syz.1.8193,24325,1):ocfs2_local_alloc_slide_window:1298 ERROR: status = -30
[  838.646857][T24377] loop5: detected capacity change from 0 to 1024
[  838.659382][T24325] (syz.1.8193,24325,1):ocfs2_local_alloc_slide_window:1317 ERROR: status = -30
[  838.698445][T24325] (syz.1.8193,24325,1):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30
[  838.775196][T24325] (syz.1.8193,24325,1):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[  838.803418][T24377] hfsplus: invalid extended attribute record
[  838.814555][T24382] netlink: 'syz.6.8221': attribute type 10 has an invalid length.
[  838.834077][T24325] (syz.1.8193,24325,1):ocfs2_reserve_clusters_with_limit:1172 ERROR: status = -30
[  838.854513][T24325] (syz.1.8193,24325,1):ocfs2_reserve_clusters_with_limit:1221 ERROR: status = -30
[  838.883197][T24325] (syz.1.8193,24325,1):ocfs2_expand_inline_dir:2856 ERROR: status = -30
[  838.896609][T24382] netdevsim netdevsim6 netdevsim0: entered promiscuous mode
[  838.908999][T24325] (syz.1.8193,24325,1):ocfs2_extend_dir:3203 ERROR: status = -30
[  838.950138][   T63] hfsplus: b-tree write err: -5, ino 4
[  838.997413][T24325] (syz.1.8193,24325,1):ocfs2_prepare_dir_for_insert:4308 ERROR: status = -30
[  839.041159][T24325] (syz.1.8193,24325,1):ocfs2_mknod:298 ERROR: status = -30
[  839.071410][T24390] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8225'.
[  839.091416][T24325] (syz.1.8193,24325,1):ocfs2_mknod:502 ERROR: status = -30
[  839.098650][T24325] (syz.1.8193,24325,1):ocfs2_create:675 ERROR: status = -30
[  839.177637][T24395] netlink: 'syz.6.8227': attribute type 21 has an invalid length.
[  839.206872][T24395] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8227'.
[  839.277145][ T5875] (syz-executor,5875,1):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 72
[  839.358507][ T5875] ocfs2: Unmounting device (7,1) on (node local)
[  839.445241][T24402] netdevsim netdevsim2 netdevsim0: left allmulticast mode
[  839.557570][T19296] usb 5-1: new high-speed USB device number 111 using dummy_hcd
[  839.731256][T19296] usb 5-1: Using ep0 maxpacket: 8
[  839.748695][T19296] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 7
[  839.783230][T19296] usb 5-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  839.810484][T19296] usb 5-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  839.848343][T19296] usb 5-1: Product: syz
[  839.865166][T19296] usb 5-1: Manufacturer: syz
[  839.869804][T19296] usb 5-1: SerialNumber: syz
[  840.133333][   T30] audit: type=1326 audit(1748795774.605:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24422 comm="syz.6.8241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  840.163597][T19296] usb 5-1: Handspring Visor / Palm OS: No valid connect info available
[  840.208980][T19296] usb 5-1: Handspring Visor / Palm OS: port 40, is for unknown use
[  840.239795][   T30] audit: type=1326 audit(1748795774.605:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24422 comm="syz.6.8241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  840.249971][T19296] usb 5-1: Handspring Visor / Palm OS: port 103, is for unknown use
[  840.338714][T19296] usb 5-1: Handspring Visor / Palm OS: Number of ports: 2
[  840.352640][   T30] audit: type=1326 audit(1748795774.605:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24422 comm="syz.6.8241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  840.417274][T19296] usb 5-1: palm_os_3_probe - error -71 getting bytes available request
[  840.437296][T19296] visor 5-1:1.0: Handspring Visor / Palm OS converter detected
[  840.447041][T24432] netlink: 'syz.1.8245': attribute type 13 has an invalid length.
[  840.475350][   T30] audit: type=1326 audit(1748795774.605:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24422 comm="syz.6.8241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  840.488559][T24432] macvtap0: entered promiscuous mode
[  840.513339][T19296] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  840.597555][T24432] macvtap0: refused to change device tx_queue_len
[  840.618925][T19296] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  840.665211][T19296] usb 5-1: USB disconnect, device number 111
[  840.733301][T24403] loop5: detected capacity change from 0 to 32768
[  840.756847][T19296] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  840.795379][T24403] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8232 (24403)
[  840.817846][T19296] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  840.861539][T19296] visor 5-1:1.0: device disconnected
[  840.867020][T24441] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8250'.
[  840.906619][T24403] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  840.948178][T24403] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  841.014577][T24403] BTRFS info (device loop5): using free-space-tree
[  841.168942][T24452] loop6: detected capacity change from 0 to 512
[  841.348483][T24452] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  841.410403][T24452] ext4 filesystem being mounted at /176/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  841.435969][ T5874] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  841.507606][T24452] Quota error (device loop6): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  841.615654][T24452] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  841.647165][T24452] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.8252: Failed to acquire dquot type 0
[  842.004943][T21600] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  842.369299][   T30] audit: type=1326 audit(1748795776.668:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24498 comm="syz.2.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  842.493458][   T30] audit: type=1326 audit(1748795776.695:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24498 comm="syz.2.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  842.593336][T24505] loop6: detected capacity change from 0 to 8
[  842.616417][   T30] audit: type=1326 audit(1748795776.695:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24498 comm="syz.2.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  842.652627][T24505] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  842.727099][   T30] audit: type=1326 audit(1748795776.695:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24498 comm="syz.2.8268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  842.757287][T24505] cramfs: Error -3 while decompressing!
[  842.789075][ T5990] udevd[5990]: incorrect cramfs checksum on /dev/loop6
[  842.797231][T24477] loop4: detected capacity change from 0 to 32768
[  842.812861][T24505] cramfs: ffffffff99947448(26)->ffff888045fea000(4096)
[  842.840436][T24511] loop3: detected capacity change from 0 to 64
[  842.842528][T24505] cramfs: Error -3 while decompressing!
[  842.876359][T24505] cramfs: ffffffff99947462(26)->ffff88804fa4d000(4096)
[  842.902095][T24477] (syz.4.8256,24477,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  842.913076][T24505] cramfs: Error -3 while decompressing!
[  842.929264][ T5980] udevd[5980]: incorrect cramfs checksum on /dev/loop6
[  842.947267][T24505] cramfs: ffffffff9994747c(16)->ffff88804fa4c000(4096)
[  842.965771][T24505] cramfs: Error -3 while decompressing!
[  842.975026][T24477] (syz.4.8256,24477,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  843.001763][T24505] cramfs: ffffffff99947448(26)->ffff888045fea000(4096)
[  843.056243][T24477] JBD2: Ignoring recovery information on journal
[  843.208596][T24520] loop2: detected capacity change from 0 to 1024
[  843.276074][T24477] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  843.570972][ T5870] ocfs2: Unmounting device (7,4) on (node local)
[  843.844184][T24539] ip6t_REJECT: ECHOREPLY is not supported
[  843.962244][T24542] loop4: detected capacity change from 0 to 16
[  844.020449][T24542] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  844.097547][T24542] cramfs: Error -3 while decompressing!
[  844.136857][T24542] cramfs: ffffffff99947308(453)->ffff888027808000(4096)
[  844.285070][T24552] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8293'.
[  844.315483][T24552] unsupported nlmsg_type 40
[  844.723290][T24569] loop4: detected capacity change from 0 to 1024
[  844.818581][T24573] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (15)
[  844.851612][T24569] hfsplus: invalid extended attribute record
[  844.891751][T24578] loop5: detected capacity change from 0 to 64
[  845.019959][   T13] hfsplus: b-tree write err: -5, ino 4
[  845.127254][ T5923] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[  845.320462][ T5923] usb 4-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e
[  845.333064][ T5923] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  845.396703][ T5923] pwc: Logitech/Cisco VT Camera webcam detected.
[  845.417255][T24592] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8313'.
[  845.792871][T24605] loop4: detected capacity change from 0 to 2048
[  845.846055][ T5923] pwc: send_video_command error -71
[  845.851317][ T5923] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  845.871153][T24605] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  845.880214][ T5923] Philips webcam 4-1:127.0: probe with driver Philips webcam failed with error -71
[  845.908863][ T5941] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  845.929638][ T5923] usb 4-1: USB disconnect, device number 107
[  846.083229][T24613] loop5: detected capacity change from 0 to 256
[  846.103613][ T5941] usb 7-1: Using ep0 maxpacket: 32
[  846.137134][ T5941] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  846.160863][ T5941] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  846.173445][ T5941] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xC has an invalid bInterval 0, changing to 7
[  846.203766][T24613] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  846.230793][ T5941] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 4
[  846.263288][T24613] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  846.287619][T24613] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  846.308886][   T30] audit: type=1800 audit(1748795780.297:208): pid=24613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.8324" name="file1" dev="loop5" ino=1048692 res=0 errno=0
[  846.309078][ T5941] usb 7-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  846.428609][ T5941] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=7
[  846.450995][ T5941] usb 7-1: Product: syz
[  846.460917][ T5941] usb 7-1: Manufacturer: syz
[  846.491742][ T5941] usb 7-1: SerialNumber: syz
[  846.539033][ T5941] usb 7-1: config 0 descriptor??
[  846.621515][ T5941] usb 7-1: no audio or video endpoints found
[  846.916497][ T5941] usb 7-1: USB disconnect, device number 6
[  847.068091][T24635] loop5: detected capacity change from 0 to 4096
[  847.108979][T24635] ntfs3(loop5): It is recommened to use chkdsk.
[  847.136026][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  847.143934][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  847.164052][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  847.219510][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  847.254791][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc1c00
[  847.262685][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc2c00
[  847.334466][T24647] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  847.359255][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc4c00
[  847.392165][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffc8c00
[  847.424649][T24635] ntfs3(loop5): try to read out of volume at offset 0x3fffffd0c00
[  847.857209][T24639] loop3: detected capacity change from 0 to 32768
[  847.900026][T24661] netlink: 'syz.5.8346': attribute type 1 has an invalid length.
[  847.991971][T24639] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  848.064971][   T30] audit: type=1800 audit(1748795781.919:209): pid=24639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8336" name="bus" dev="loop3" ino=17058 res=0 errno=0
[  848.145278][ T5873] (syz-executor,5873,1):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 76
[  848.202250][ T5873] ocfs2: Unmounting device (7,3) on (node local)
[  848.646406][T24690] loop4: detected capacity change from 0 to 128
[  848.773763][T24692] binder: 24691:24692 ioctl c0306201 0 returned -14
[  848.894611][T24653] loop2: detected capacity change from 0 to 32768
[  848.954973][T24653] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8344 (24653)
[  849.004975][T24653] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  849.066782][T24653] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  849.115204][T24653] BTRFS info (device loop2): using free-space-tree
[  849.300610][T24711] xt_CT: You must specify a L4 protocol and not use inversions on it
[  849.844695][ T5880] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  849.953869][T24736] loop4: detected capacity change from 0 to 512
[  850.054956][T24736] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  850.256607][T24736] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.8369: iget: bad i_size value: -6917529027641081756
[  850.337163][T24736] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.8369: couldn't read orphan inode 17 (err -117)
[  850.422174][T24736] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  850.690326][ T5870] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  850.697616][T24752] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  850.825459][T24752] bridge4: entered allmulticast mode
[  850.954097][T24700] loop6: detected capacity change from 0 to 32768
[  851.047128][T24765] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8380'.
[  851.091048][T24700] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  851.647444][T24795] loop4: detected capacity change from 0 to 64
[  851.754306][T24700] XFS (loop6): Ending clean mount
[  852.000344][T21600] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  852.366745][T24815] netlink: 'syz.4.8402': attribute type 27 has an invalid length.
[  852.374614][T24815] netlink: 'syz.4.8402': attribute type 3 has an invalid length.
[  852.401125][T24815] netlink: 132 bytes leftover after parsing attributes in process `syz.4.8402'.
[  852.584022][   T30] audit: type=1326 audit(1748795786.074:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24816 comm="syz.3.8403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  852.692736][   T30] audit: type=1326 audit(1748795786.074:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24816 comm="syz.3.8403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  852.800882][   T30] audit: type=1326 audit(1748795786.083:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24816 comm="syz.3.8403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  852.900727][   T30] audit: type=1326 audit(1748795786.083:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24816 comm="syz.3.8403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  852.978054][T24829] loop6: detected capacity change from 0 to 2048
[  853.018059][   T30] audit: type=1326 audit(1748795786.083:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24816 comm="syz.3.8403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  853.113351][T24829] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  853.315760][T24839] loop3: detected capacity change from 0 to 512
[  853.382825][T24839] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  853.455331][T24839] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  853.489658][T24839] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  853.549964][T24839] System zones: 0-2, 18-18, 34-34
[  853.583000][T24839] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  853.629397][T24839] EXT4-fs (loop3): 1 truncate cleaned up
[  853.671084][T24839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  853.788067][T24839] fscrypt (loop3, inode 15): Error -61 getting encryption context
[  853.829331][T24813] loop2: detected capacity change from 0 to 32768
[  853.923464][T24813] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  853.971267][ T5873] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  853.988795][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  853.995197][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  854.056550][T24813] XFS (loop2): Ending clean mount
[  854.072857][T24813] XFS (loop2): Quotacheck needed: Please wait.
[  854.193215][T24813] XFS (loop2): Quotacheck: Done.
[  854.269962][T24870] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8423'.
[  854.305817][T24870] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8423'.
[  854.324960][T24872] loop5: detected capacity change from 0 to 1024
[  854.381509][T24872] EXT4-fs: Ignoring removed orlov option
[  854.420521][T24872] EXT4-fs: Ignoring removed nomblk_io_submit option
[  854.467164][ T5880] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  854.510448][T24872] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  854.787633][T24887] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8432'.
[  854.811778][ T5874] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  855.255205][T24900] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8438'.
[  855.343273][T24903] loop4: detected capacity change from 0 to 1764
[  855.427373][T24903] iso9660: Corrupted directory entry in block 2 of inode 1920
[  855.750297][T24923] loop4: detected capacity change from 0 to 256
[  856.033410][T24929] gtp0: entered promiscuous mode
[  856.078796][T24929] gtp0: entered allmulticast mode
[  856.137554][T24935] __vm_enough_memory: pid: 24935, comm: syz.5.8455, bytes: 4503599627366400 not enough memory for the allocation
[  856.143019][T24925] loop2: detected capacity change from 0 to 8192
[  856.276414][T24925] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  856.402436][T24939] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8457'.
[  856.718090][T24954] IPVS: length: 4096 != 8
[  857.029165][   T30] audit: type=1326 audit(1748795790.174:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24968 comm="syz.2.8468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  857.165027][   T30] audit: type=1326 audit(1748795790.174:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24968 comm="syz.2.8468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  857.249793][T24974] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8474'.
[  857.276517][   T30] audit: type=1326 audit(1748795790.174:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24968 comm="syz.2.8468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  857.377195][   T30] audit: type=1326 audit(1748795790.174:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24968 comm="syz.2.8468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  857.535748][   T30] audit: type=1326 audit(1748795790.174:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24968 comm="syz.2.8468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd30b98e969 code=0x7ffc0000
[  857.596183][T24989] netlink: 'syz.3.8481': attribute type 11 has an invalid length.
[  857.626500][T24989] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8481'.
[  858.121062][T25012] netlink: 16 bytes leftover after parsing attributes in process `syz.5.8491'.
[  858.168858][T25012] netlink: 224 bytes leftover after parsing attributes in process `syz.5.8491'.
[  858.360753][T25018] loop6: detected capacity change from 0 to 8
[  858.419798][T25018] SQUASHFS error: zlib decompression failed, data probably corrupt
[  858.442562][T25018] SQUASHFS error: Failed to read block 0x9b: -5
[  858.472406][T25018] SQUASHFS error: Unable to read metadata cache entry [99]
[  858.520792][T25018] SQUASHFS error: Unable to read inode 0x127
[  859.130852][T25051] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  859.741957][T25076] loop5: detected capacity change from 0 to 512
[  859.914720][T25076] EXT4-fs (loop5): Test dummy encryption mode enabled
[  859.964632][T25084] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.8529'.
[  859.995333][T25076] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  860.102592][T25076] EXT4-fs (loop5): Errors on filesystem, clearing orphan list.
[  860.118150][T25076] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  860.249509][T25076] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  860.394602][ T5874] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  860.545187][T25102] netlink: 'syz.3.8537': attribute type 33 has an invalid length.
[  860.566313][T25047] loop4: detected capacity change from 0 to 32768
[  860.604275][T25102] netlink: 152 bytes leftover after parsing attributes in process `syz.3.8537'.
[  860.708058][T25047] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  861.011227][T25128] tmpfs: Bad value for 'mpol'
[  861.139348][T25047] XFS (loop4): Ending clean mount
[  861.173524][T25047] XFS (loop4): Quotacheck needed: Please wait.
[  861.296858][T25047] XFS (loop4): Quotacheck: Done.
[  861.371250][T25140] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8552'.
[  861.447448][T25140] netlink: 84 bytes leftover after parsing attributes in process `syz.6.8552'.
[  861.584015][ T5870] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  862.143911][T25162] xt_TCPMSS: Only works on TCP SYN packets
[  862.456200][T25174] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8568'.
[  862.519313][T25174] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8568'.
[  862.643699][T25181] loop6: detected capacity change from 0 to 8
[  862.731216][T25181] SQUASHFS error: Failed to read block 0x6e6: -5
[  862.753034][T25181] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  862.795360][T25181] SQUASHFS error: Unable to read directory block [631:26]
[  862.807424][T25188] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[  863.662495][T25214] loop2: detected capacity change from 0 to 4096
[  863.734284][T25214] ntfs3(loop2): It is recommened to use chkdsk.
[  863.752726][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00
[  863.760594][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00
[  863.805628][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00
[  863.829939][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00
[  863.837902][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc1c00
[  863.900427][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc2c00
[  863.957529][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc4c00
[  863.965413][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffc8c00
[  864.011678][T25214] ntfs3(loop2): try to read out of volume at offset 0x3fffffd0c00
[  864.237792][T25238] netlink: 'syz.4.8601': attribute type 4 has an invalid length.
[  864.276429][T25238] netlink: 244 bytes leftover after parsing attributes in process `syz.4.8601'.
[  864.809844][T25259] netlink: 'syz.6.8612': attribute type 21 has an invalid length.
[  865.270249][T25278] xt_TCPMSS: Only works on TCP SYN packets
[  865.324462][T25283] netlink: 24 bytes leftover after parsing attributes in process `syz.5.8623'.
[  865.642875][T13144] IPVS: starting estimator thread 0...
[  865.709681][T25300] x_tables: ip6_tables: rpfilter.0 match: invalid size 8 (kernel) != (user) 48
[  865.759843][T25299] IPVS: using max 26 ests per chain, 62400 per kthread
[  865.820380][   T30] audit: type=1326 audit(1748795798.264:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25301 comm="syz.3.8632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  865.866764][T25304] loop4: detected capacity change from 0 to 64
[  865.907486][   T30] audit: type=1326 audit(1748795798.264:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25301 comm="syz.3.8632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  865.960954][   T30] audit: type=1326 audit(1748795798.274:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25301 comm="syz.3.8632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  866.110267][   T30] audit: type=1326 audit(1748795798.274:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25301 comm="syz.3.8632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  866.189139][   T30] audit: type=1326 audit(1748795798.274:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25301 comm="syz.3.8632" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74fdb8e969 code=0x7ffc0000
[  866.211556][    C1] vkms_vblank_simulate: vblank timer overrun
[  867.075794][T25347] ip6gretap1: entered promiscuous mode
[  867.108278][T25348] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  867.115597][T25348] IPv6: NLM_F_CREATE should be set when creating new route
[  867.370361][T25356] loop4: detected capacity change from 0 to 64
[  867.433406][T25356] Trying to free block not in datazone
[  867.438904][T25356] Trying to free block not in datazone
[  867.505966][T25356] Trying to free block not in datazone
[  867.530486][T25356] Trying to free block not in datazone
[  867.573960][T25356] Trying to free block not in datazone
[  867.880214][T25323] loop5: detected capacity change from 0 to 32768
[  867.968266][T25323] jfs_rename: dtInsert returned -EIO
[  868.113482][ T5922] usb 3-1: new high-speed USB device number 102 using dummy_hcd
[  868.309059][ T5922] usb 3-1: Using ep0 maxpacket: 16
[  868.324931][T25382] ip6gretap1: entered promiscuous mode
[  868.361747][ T5922] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  868.393757][ T5922] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  868.438314][ T5922] usb 3-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice=f4.95
[  868.473713][ T5922] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  868.499195][ T5922] usb 3-1: Product: syz
[  868.503387][ T5922] usb 3-1: Manufacturer: syz
[  868.524421][ T5922] usb 3-1: SerialNumber: syz
[  868.562499][ T5922] usb 3-1: config 0 descriptor??
[  868.604005][T25370] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  868.611291][T25370] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  868.935209][T25370] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  868.941110][T25364] loop1: detected capacity change from 0 to 32768
[  868.970390][T25370] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  868.997260][T25364] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.8663 (25364)
[  869.053433][T25403] netlink: 'syz.5.8683': attribute type 1 has an invalid length.
[  869.078133][T25364] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  869.090310][T25403] netlink: 'syz.5.8683': attribute type 2 has an invalid length.
[  869.100303][T25405] netlink: 'syz.4.8682': attribute type 10 has an invalid length.
[  869.154190][T25364] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  869.186223][T25364] BTRFS info (device loop1): using free-space-tree
[  869.194941][T25405] netlink: 2 bytes leftover after parsing attributes in process `syz.4.8682'.
[  869.265025][ T5922] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  869.283605][T25405] team0: entered promiscuous mode
[  869.291102][ T5922] asix 3-1:0.0: probe with driver asix failed with error -71
[  869.307461][ T5922] usb 3-1: USB disconnect, device number 102
[  869.321259][T25405] team_slave_0: entered promiscuous mode
[  869.331560][T25405] team_slave_1: entered promiscuous mode
[  869.337476][T25405] geneve0: entered promiscuous mode
[  869.343167][T25405] bond0: entered promiscuous mode
[  869.348317][T25405] bond_slave_0: entered promiscuous mode
[  869.355002][T25405] bond_slave_1: entered promiscuous mode
[  869.364740][T25405] dummy0: entered promiscuous mode
[  869.373395][T25405] 8021q: adding VLAN 0 to HW filter on device team0
[  869.380714][T25405] bridge0: port 3(team0) entered blocking state
[  869.388035][T25405] bridge0: port 3(team0) entered disabled state
[  869.420623][T25405] team0: entered allmulticast mode
[  869.480936][T25405] team_slave_0: entered allmulticast mode
[  869.492770][T25405] team_slave_1: entered allmulticast mode
[  869.526008][T25405] geneve0: entered allmulticast mode
[  869.557553][T25405] bond0: entered allmulticast mode
[  869.570884][T25405] bond_slave_0: entered allmulticast mode
[  869.586722][T25405] bond_slave_1: entered allmulticast mode
[  869.619650][T25405] dummy0: entered allmulticast mode
[  869.721724][ T5875] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  870.095520][T25446] netlink: 'syz.3.8695': attribute type 10 has an invalid length.
[  870.160786][T25446] team0: Device dummy0 is up. Set it down before adding it as a team port
[  870.210599][T25448] binder: 25447:25448 ioctl c0306201 200000000540 returned -22
[  870.364231][T25451] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  870.490244][T25451] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98
[  870.612234][T25463] lo: entered promiscuous mode
[  870.664420][T25463] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  871.476642][T25489] loop5: detected capacity change from 0 to 256
[  872.346199][T25518] loop2: detected capacity change from 0 to 1764
[  872.726971][T25533] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8737'.
[  872.868198][T25542] loop2: detected capacity change from 0 to 1024
[  872.953556][T25544] loop5: detected capacity change from 0 to 1024
[  872.988294][T25542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  873.044120][T25542] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.8738: missing EA_INODE flag
[  873.141215][T25542] EXT4-fs (loop2): Remounting filesystem read-only
[  873.272678][T25558] veth1_to_team: entered promiscuous mode
[  873.302096][T25560] loop4: detected capacity change from 0 to 16
[  873.345687][T25558] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8745'.
[  873.360245][T25560] erofs (device loop4): mounted with root inode @ nid 36.
[  873.415314][T25560] erofs (device loop4): readahead error at folio 2 @ nid 89
[  873.424329][   T36] hfsplus: b-tree write err: -5, ino 4
[  873.444750][T25558] A link change request failed with some changes committed already. Interface veth1_to_team may have been left with an inconsistent configuration, please check.
[  873.467555][T15334] erofs (device loop4): failed to decompress -5 in[4096, 0] out[8192]
[  873.479978][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  873.491584][T25560] erofs (device loop4): failed to decompress -5 in[4096, 0] out[8192]
[  873.507316][T25560] erofs (device loop4): read error -117 @ 0 of nid 89
[  873.515465][   T30] audit: type=1800 audit(1748795805.370:225): pid=25560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.8746" name="file2" dev="loop4" ino=89 res=0 errno=0
[  874.055770][T25582] loop2: detected capacity change from 0 to 512
[  874.157072][T25582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  874.187191][T25588] tmpfs: Bad value for 'usrquota_block_hardlimit'
[  874.225160][T25582] ext4 filesystem being mounted at /1496/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  874.350485][T25582] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  874.520360][T25598] ufs: You didn't specify the type of your ufs filesystem
[  874.520360][T25598] 
[  874.520360][T25598] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  874.520360][T25598] 
[  874.520360][T25598] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  874.554608][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  874.722249][T25598] ufs: ufstype=old is supported read-only
[  874.730213][T25598] syz.4.8763: attempt to access beyond end of device
[  874.730213][T25598] nbd4: rw=0, sector=16, nr_sectors = 2 limit=0
[  874.791988][T25606] libceph: resolve '0.' (ret=-3): failed
[  875.206846][T25617] netlink: 'syz.5.8772': attribute type 1 has an invalid length.
[  875.274133][T25617] netlink: 4 bytes leftover after parsing attributes in process `syz.5.8772'.
[  875.343891][T25581] loop6: detected capacity change from 0 to 32768
[  875.449098][T25581] 
[  875.449098][T25581]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  875.449098][T25581] 
[  875.628870][T25633] macvtap0: entered allmulticast mode
[  875.670979][T21600] 
[  875.670979][T21600]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  875.670979][T21600] 
[  875.676770][T25633] veth0_macvtap: entered allmulticast mode
[  875.742544][T21600] 
[  875.742544][T21600]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  875.742544][T21600] 
[  875.816834][T25640] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8784'.
[  876.297925][T25652] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[  876.355508][T25658] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8793'.
[  876.507039][T25662] loop5: detected capacity change from 0 to 256
[  876.555711][T25665] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8783'.
[  876.569901][T25662] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  876.587951][T25665] netlink: 312 bytes leftover after parsing attributes in process `syz.6.8783'.
[  876.609615][T25662] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  876.609771][T25665] netlink: 'syz.6.8783': attribute type 1 has an invalid length.
[  876.685843][T25670] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8798'.
[  876.703399][T25662] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  876.747831][T25670] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8798'.
[  877.182995][T25688] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8807'.
[  877.303176][T25680] loop2: detected capacity change from 0 to 4096
[  877.323266][T25680] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  877.554397][ T5922] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  877.577331][T25680] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  877.748673][ T5922] usb 7-1: Using ep0 maxpacket: 8
[  877.756243][ T5922] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 7
[  877.815930][ T5922] usb 7-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  877.858798][ T5922] usb 7-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  877.877690][ T5922] usb 7-1: Product: syz
[  877.907996][ T5922] usb 7-1: Manufacturer: syz
[  877.915676][T25708] batadv1: entered allmulticast mode
[  877.933307][ T5922] usb 7-1: SerialNumber: syz
[  878.036776][T25714] netlink: 'syz.3.8820': attribute type 1 has an invalid length.
[  878.203896][ T5922] usb 7-1: Invalid connection information received from device
[  878.432345][ T5922] usb 7-1: USB disconnect, device number 7
[  878.467872][  T917] usb 3-1: new high-speed USB device number 103 using dummy_hcd
[  878.678062][  T917] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  878.723407][T25733] loop4: detected capacity change from 0 to 64
[  878.729183][  T917] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  878.778320][T25734] __nla_validate_parse: 2 callbacks suppressed
[  878.778341][T25734] netlink: 34 bytes leftover after parsing attributes in process `syz.3.8830'.
[  878.800101][  T917] usb 3-1: config 0 descriptor??
[  878.806966][T25736] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8831'.
[  878.832466][  T917] cp210x 3-1:0.0: cp210x converter detected
[  878.963719][ T5922] usb 6-1: new high-speed USB device number 106 using dummy_hcd
[  879.094241][  T917] usb 3-1: cp210x converter now attached to ttyUSB0
[  879.162648][ T5922] usb 6-1: Using ep0 maxpacket: 32
[  879.203524][ T5922] usb 6-1: unable to get BOS descriptor or descriptor too short
[  879.230385][ T5922] usb 6-1: config 54 has an invalid interface number: 225 but max is 0
[  879.251520][ T5922] usb 6-1: config 54 has no interface number 0
[  879.276886][ T5922] usb 6-1: config 54 interface 225 has no altsetting 0
[  879.315468][  T917] usb 3-1: USB disconnect, device number 103
[  879.323011][ T5922] usb 6-1: New USB device found, idVendor=0489, idProduct=e0b4, bcdDevice=b4.b0
[  879.344650][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  879.352768][ T5922] usb 6-1: Product: syz
[  879.353505][  T917] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  879.364651][ T5922] usb 6-1: Manufacturer: syz
[  879.373317][ T5922] usb 6-1: SerialNumber: syz
[  879.402105][  T917] cp210x 3-1:0.0: device disconnected
[  879.656334][ T5922] usb 6-1: USB disconnect, device number 106
[  879.911290][T25749] loop6: detected capacity change from 0 to 32768
[  879.936605][T25749] (syz.6.8835,25749,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  879.980190][T25749] (syz.6.8835,25749,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  880.032846][T25745] loop3: detected capacity change from 0 to 32768
[  880.066447][T25749] JBD2: Ignoring recovery information on journal
[  880.085737][T15334] Bluetooth: hci1: ACL packet for unknown connection handle 201
[  880.098593][T25757] x_tables: duplicate underflow at hook 3
[  880.168178][T25745] jfs_strtoUCS: char2uni returned -22.
[  880.194404][T25745] charset = ascii, char = 0xc5
[  880.269679][T25749] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  880.550763][T21600] ocfs2: Unmounting device (7,6) on (node local)
[  880.626392][T25768] netlink: 23 bytes leftover after parsing attributes in process `syz.2.8845'.
[  880.746594][T25768] caif0: entered allmulticast mode
[  880.807101][T25772] loop3: detected capacity change from 0 to 1024
[  880.874577][T25772] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  880.976979][T25772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  881.041794][T25772] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.8848: missing EA_INODE flag
[  881.097689][   T30] audit: type=1326 audit(1748795812.329:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25780 comm="syz.6.8846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  881.132685][T25772] EXT4-fs (loop3): Remounting filesystem read-only
[  881.252416][   T30] audit: type=1326 audit(1748795812.402:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25780 comm="syz.6.8846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  881.337641][   T30] audit: type=1326 audit(1748795812.402:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25780 comm="syz.6.8846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  881.379121][ T5873] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  881.472580][   T30] audit: type=1326 audit(1748795812.402:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25780 comm="syz.6.8846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  881.883694][T25810] netlink: 32 bytes leftover after parsing attributes in process `syz.6.8863'.
[  881.949696][T25810] netlink: 32 bytes leftover after parsing attributes in process `syz.6.8863'.
[  882.079291][T25819] Unsupported ieee802154 address type: 0
[  882.302736][T25827] netlink: 'syz.4.8871': attribute type 27 has an invalid length.
[  882.613914][T25838] netlink: 'syz.4.8878': attribute type 6 has an invalid length.
[  882.644467][T25838] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.8878'.
[  882.662706][T25842] netlink: 'syz.2.8877': attribute type 4 has an invalid length.
[  882.841078][T25847] loop1: detected capacity change from 0 to 512
[  882.900952][T25849] openvswitch: netlink: Missing key (keys=40, expected=80)
[  882.939024][T25847] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  882.956196][T25847] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  883.018356][T25847] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  883.095560][T25847] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  883.118618][T25847] System zones: 0-2, 18-18, 34-35
[  883.278814][T25847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  883.540068][ T5875] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  883.695225][ T5923] usb 6-1: new high-speed USB device number 107 using dummy_hcd
[  883.897882][ T5923] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  883.921123][ T5923] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  883.973286][ T5923] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  883.992235][ T5923] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  884.013201][ T5923] usb 6-1: Product: syz
[  884.017425][ T5923] usb 6-1: Manufacturer: syz
[  884.019512][T25805] Bluetooth: hci6: command 0x0406 tx timeout
[  884.052191][ T5923] usb 6-1: SerialNumber: syz
[  884.080961][T25893] openvswitch: netlink: Tunnel attr 202 out of range max 16
[  884.193214][ T5923] usb 6-1: config 0 descriptor??
[  884.572855][ T5923] usb 6-1: USB disconnect, device number 107
[  884.838369][T25920] netlink: 300 bytes leftover after parsing attributes in process `syz.1.8918'.
[  885.034929][T25877] loop6: detected capacity change from 0 to 32768
[  885.152444][T25877] read_mapping_page failed!
[  885.704755][T25948] loop2: detected capacity change from 0 to 256
[  885.822492][T25948] FAT-fs (loop2): Directory bread(block 64) failed
[  885.852880][T25948] FAT-fs (loop2): Directory bread(block 65) failed
[  885.859889][T25948] FAT-fs (loop2): Directory bread(block 66) failed
[  885.929083][   T31] INFO: task syz-executor:5867 blocked for more than 143 seconds.
[  885.936991][   T31]       Not tainted 6.15.0-syzkaller #0
[  885.961400][T25948] FAT-fs (loop2): Directory bread(block 67) failed
[  885.968542][T25948] FAT-fs (loop2): Directory bread(block 68) failed
[  886.004769][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  886.043308][T25948] FAT-fs (loop2): Directory bread(block 69) failed
[  886.057244][   T31] task:syz-executor    state:D stack:21976 pid:5867  tgid:5867  ppid:1      task_flags:0x400140 flags:0x00004004
[  886.100066][T25948] FAT-fs (loop2): Directory bread(block 70) failed
[  886.105224][   T30] audit: type=1326 audit(1748795816.965:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25955 comm="syz.6.8936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  886.130431][   T31] Call Trace:
[  886.140454][   T31]  <TASK>
[  886.148100][   T31]  __schedule+0x16e2/0x4cd0
[  886.155547][T25948] FAT-fs (loop2): Directory bread(block 71) failed
[  886.166817][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.196255][   T31]  ? schedule+0x165/0x360
[  886.206188][T25948] FAT-fs (loop2): Directory bread(block 72) failed
[  886.207040][   T30] audit: type=1326 audit(1748795816.965:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25955 comm="syz.6.8936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  886.222360][T25948] FAT-fs (loop2): Directory bread(block 73) failed
[  886.240987][   T31]  ? __lock_acquire+0xaac/0xd20
[  886.261069][   T31]  ? __pfx___schedule+0x10/0x10
[  886.280110][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.292887][   T31]  ? schedule+0x91/0x360
[  886.303770][   T31]  schedule+0x165/0x360
[  886.312860][   T31]  io_schedule+0x81/0xe0
[  886.319210][   T30] audit: type=1326 audit(1748795817.002:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25955 comm="syz.6.8936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  886.351879][   T31]  folio_wait_bit_common+0x6b0/0xb90
[  886.357426][   T31]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  886.375750][   T31]  ? __pfx_wake_page_function+0x10/0x10
[  886.386666][   T31]  ? folios_put_refs+0x559/0x640
[  886.396477][   T30] audit: type=1326 audit(1748795817.002:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25955 comm="syz.6.8936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  886.427748][   T31]  ? __pfx_find_lock_entries+0x10/0x10
[  886.433426][   T31]  __filemap_get_folio+0x139/0xaf0
[  886.444368][   T31]  truncate_inode_pages_range+0x3ed/0xda0
[  886.455320][   T31]  ? evict+0x847/0x9c0
[  886.464212][   T31]  ? evict_inodes+0x636/0x6c0
[  886.470458][   T30] audit: type=1326 audit(1748795817.002:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25955 comm="syz.6.8936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3dc318e969 code=0x7ffc0000
[  886.503942][   T31]  ? generic_shutdown_super+0x9a/0x2c0
[  886.510750][   T31]  ? kill_block_super+0x44/0x90
[  886.516261][   T31]  ? deactivate_locked_super+0xbc/0x130
[  886.521949][   T31]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  886.529135][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  886.535361][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.541812][   T31]  ? __lock_acquire+0xaac/0xd20
[  886.546821][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  886.552698][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  886.558582][   T31]  evict+0x517/0x9c0
[  886.562618][   T31]  ? __pfx_evict+0x10/0x10
[  886.567202][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.573852][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.574592][T25937] loop4: detected capacity change from 0 to 32768
[  886.580128][   T31]  ? do_raw_spin_unlock+0x122/0x240
[  886.592348][   T31]  evict_inodes+0x636/0x6c0
[  886.597063][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.603392][   T31]  ? __pfx_evict_inodes+0x10/0x10
[  886.608566][   T31]  generic_shutdown_super+0x9a/0x2c0
[  886.614714][   T31]  kill_block_super+0x44/0x90
[  886.620315][   T31]  deactivate_locked_super+0xbc/0x130
[  886.626517][   T31]  cleanup_mnt+0x425/0x4c0
[  886.631036][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.637861][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  886.643393][   T31]  task_work_run+0x1d4/0x260
[  886.650478][   T31]  ? __pfx_task_work_run+0x10/0x10
[  886.661533][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.672575][T25944] loop1: detected capacity change from 0 to 32768
[  886.690078][   T31]  resume_user_mode_work+0x5e/0x80
[  886.695340][   T31]  syscall_exit_to_user_mode+0x9a/0x120
[  886.702666][   T31]  do_syscall_64+0x103/0x210
[  886.709909][T25937] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  886.722854][T25944] (syz.1.8930,25944,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  886.723774][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  886.744296][   T31]  ? exc_page_fault+0x91/0x110
[  886.749842][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  886.756132][   T31] RIP: 0033:0x7f7ef4b8fc97
[  886.760885][   T31] RSP: 002b:00007ffd7618fc98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  886.769418][   T31] RAX: 0000000000000000 RBX: 00007f7ef4c1089d RCX: 00007f7ef4b8fc97
[  886.777512][   T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd7618fd50
[  886.785519][   T31] RBP: 00007ffd7618fd50 R08: 0000000000000000 R09: 0000000000000000
[  886.793782][   T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd76190de0
[  886.801934][   T31] R13: 00007f7ef4c1089d R14: 00000000000a9357 R15: 00007ffd76190e20
[  886.807541][T25937] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #17056 has bit count of 2048
[  886.809954][   T31]  </TASK>
[  886.810048][   T31] 
[  886.810048][   T31] Showing all locks held in the system:
[  886.839990][T25937] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  886.852765][T25944] (syz.1.8930,25944,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  886.873918][   T31] 1 lock held by khungtaskd/31:
[  886.878800][   T31]  #0: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  886.889649][T25937] OCFS2: File system is now read-only.
[  886.949977][T25944] JBD2: Ignoring recovery information on journal
[  886.956996][   T31] 2 locks held by getty/5585:
[  886.971414][T25937] (syz.4.8927,25937,1):ocfs2_search_chain:1817 ERROR: status = -30
[  886.979466][T25937] (syz.4.8927,25937,1):ocfs2_search_chain:1940 ERROR: status = -30
[  887.002002][   T31]  #0: ffff888030c810a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  887.022408][   T31]  #1: ffffc90002fee2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  887.033301][T25937] (syz.4.8927,25937,1):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[  887.052787][   T31] 1 lock held by syz-executor/5867:
[  887.059502][T25937] (syz.4.8927,25937,1):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  887.073141][   T31]  #0: ffff8880326080e0 (&type->s_umount_key#57){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0
[  887.082119][T25937] (syz.4.8927,25937,1):ocfs2_claim_new_inode:2298 ERROR: status = -30
[  887.093518][T25944] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  887.097156][   T31] 1 lock held by udevd/5980:
[  887.108335][   T31]  #0: ffff8880b8939b58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  887.110245][T25937] (syz.4.8927,25937,1):ocfs2_claim_new_inode:2313 ERROR: status = -30
[  887.119246][   T31] 2 locks held by kworker/u8:5/21696:
[  887.134376][   T31]  #0: ffff88804b305148 ((wq_completion)ocfs2_wq#2){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[  887.147395][T25937] (syz.4.8927,25937,1):ocfs2_mknod_locked:638 ERROR: status = -30
[  887.148543][   T31]  #1: ffffc9001fc4fc60 ((work_completion)(&journal->j_recovery_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[  887.169409][   T31] 8 locks held by syz.4.8927/25937:
[  887.172435][T25937] (syz.4.8927,25937,1):ocfs2_mknod:385 ERROR: status = -30
[  887.175679][   T31] 3 locks held by syz.1.8930/25944:
[  887.189404][   T31]  #0: ffff888033bc60e0 (&type->s_umount_key#69/1){+.+.}-{4:4}, at: alloc_super+0x204/0x970
[  887.191338][T25937] (syz.4.8927,25937,1):ocfs2_mknod:502 ERROR: status = -30
[  887.215156][T25937] (syz.4.8927,25937,1):ocfs2_mkdir:658 ERROR: status = -30
[  887.223520][   T31]  #1: ffff8880b8823b08 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x39e/0x6d0
[  887.235773][   T31]  #2: ffff88802ed2cc68 (&(&sig->stats_lock)->lock){....}-{3:3}, at: release_task+0x8cf/0x17f0
[  887.258972][   T31] 
[  887.261680][   T31] =============================================
[  887.261680][   T31] 
[  887.271359][   T31] NMI backtrace for cpu 0
[  887.271380][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  887.271406][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  887.271422][   T31] Call Trace:
[  887.271431][   T31]  <TASK>
[  887.271442][   T31]  dump_stack_lvl+0x189/0x250
[  887.271484][   T31]  ? __wake_up_klogd+0xd9/0x110
[  887.271515][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.271546][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  887.271582][   T31]  ? __pfx__printk+0x10/0x10
[  887.271621][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  887.271652][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  887.271676][   T31]  ? _printk+0xcf/0x120
[  887.271705][   T31]  ? __pfx__printk+0x10/0x10
[  887.271733][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  887.271767][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  887.271797][   T31]  watchdog+0xfee/0x1030
[  887.271833][   T31]  ? watchdog+0x1de/0x1030
[  887.271873][   T31]  kthread+0x711/0x8a0
[  887.271909][   T31]  ? __pfx_watchdog+0x10/0x10
[  887.271939][   T31]  ? __pfx_kthread+0x10/0x10
[  887.271967][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.271997][   T31]  ? __pfx_kthread+0x10/0x10
[  887.272025][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  887.272052][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.272079][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  887.272110][   T31]  ? __pfx_kthread+0x10/0x10
[  887.272138][   T31]  ret_from_fork+0x4e/0x80
[  887.272164][   T31]  ? __pfx_kthread+0x10/0x10
[  887.272199][   T31]  ret_from_fork_asm+0x1a/0x30
[  887.272241][   T31]  </TASK>
[  887.272273][   T31] Sending NMI from CPU 0 to CPUs 1:
[  887.299841][ T5875] ocfs2: Unmounting device (7,1) on (node local)
[  887.300904][    C1] NMI backtrace for cpu 1
[  887.300921][    C1] CPU: 1 UID: 0 PID: 5875 Comm: syz-executor Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  887.300950][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  887.300964][    C1] RIP: 0010:io_serial_in+0x77/0xc0
[  887.301000][    C1] Code: e8 3e c0 81 fc 44 89 f9 d3 e3 49 83 c6 40 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 ff b9 e3 fc 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f e9 45 0f d2 fb cc 44 89 f9 80 e1 07
[  887.301019][    C1] RSP: 0018:ffffc900047af5f8 EFLAGS: 00000006
[  887.301039][    C1] RAX: 1ffffffff336ab05 RBX: 00000000000003f9 RCX: 0000000000000000
[  887.301055][    C1] RDX: 00000000000003f9 RSI: 0000000000000000 RDI: 0000000000000020
[  887.301071][    C1] RBP: ffffc900047af7d0 R08: 0000000000000003 R09: 0000000000000004
[  887.301086][    C1] R10: dffffc0000000000 R11: ffffffff853e3140 R12: dffffc0000000000
[  887.301104][    C1] R13: dffffc0000000000 R14: ffffffff99b55c40 R15: 0000000000000000
[  887.301124][    C1] FS:  00005555652c8500(0000) GS:ffff8881261c2000(0000) knlGS:0000000000000000
[  887.301145][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  887.301162][    C1] CR2: 00005555652e35c8 CR3: 000000005f0e0000 CR4: 0000000000350ef0
[  887.301181][    C1] Call Trace:
[  887.301191][    C1]  <TASK>
[  887.301203][    C1]  serial8250_console_write+0x584/0x1ba0
[  887.301244][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301274][    C1]  ? __pfx_serial8250_console_write+0x10/0x10
[  887.301304][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301331][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301358][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301386][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301411][    C1]  ? do_raw_spin_unlock+0x122/0x240
[  887.301444][    C1]  ? console_flush_all+0x13a/0xc40
[  887.301468][    C1]  ? console_flush_all+0x13a/0xc40
[  887.301495][    C1]  console_flush_all+0x728/0xc40
[  887.301522][    C1]  ? console_flush_all+0x13a/0xc40
[  887.301551][    C1]  ? __pfx_console_flush_all+0x10/0x10
[  887.301575][    C1]  ? deactivate_locked_super+0xbc/0x130
[  887.301606][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301630][    C1]  ? is_printk_cpu_sync_owner+0x32/0x40
[  887.301662][    C1]  console_unlock+0xc4/0x270
[  887.301687][    C1]  ? __pfx_console_unlock+0x10/0x10
[  887.301712][    C1]  ? vprintk_emit+0x444/0x7a0
[  887.301733][    C1]  ? vprintk_emit+0x444/0x7a0
[  887.301755][    C1]  vprintk_emit+0x5b7/0x7a0
[  887.301776][    C1]  ? vprintk_emit+0x444/0x7a0
[  887.301799][    C1]  ? __pfx_vprintk_emit+0x10/0x10
[  887.301821][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301847][    C1]  ? reacquire_held_locks+0x127/0x1d0
[  887.301869][    C1]  ? mntput_no_expire+0x282/0x860
[  887.301897][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301928][    C1]  _printk+0xcf/0x120
[  887.301949][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.301975][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.302004][    C1]  ? __pfx__printk+0x10/0x10
[  887.302025][    C1]  ? do_raw_spin_unlock+0x122/0x240
[  887.302053][    C1]  ? ocfs2_dismount_volume+0x559/0x8d0
[  887.302083][    C1]  ocfs2_dismount_volume+0x572/0x8d0
[  887.302112][    C1]  ? __pfx_ocfs2_dismount_volume+0x10/0x10
[  887.302138][    C1]  ? __pfx_evict_inodes+0x10/0x10
[  887.302175][    C1]  ? __pfx_ocfs2_put_super+0x10/0x10
[  887.302200][    C1]  generic_shutdown_super+0x135/0x2c0
[  887.302225][    C1]  kill_block_super+0x44/0x90
[  887.302253][    C1]  deactivate_locked_super+0xbc/0x130
[  887.302277][    C1]  cleanup_mnt+0x425/0x4c0
[  887.302297][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.302322][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  887.302354][    C1]  task_work_run+0x1d4/0x260
[  887.302387][    C1]  ? __pfx_task_work_run+0x10/0x10
[  887.302417][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.302456][    C1]  resume_user_mode_work+0x5e/0x80
[  887.302491][    C1]  syscall_exit_to_user_mode+0x9a/0x120
[  887.302521][    C1]  do_syscall_64+0x103/0x210
[  887.302553][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.302577][    C1]  ? exc_page_fault+0x91/0x110
[  887.302605][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.302627][    C1] RIP: 0033:0x7f1fc598fc97
[  887.302645][    C1] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  887.302664][    C1] RSP: 002b:00007ffc72263808 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  887.302687][    C1] RAX: 0000000000000000 RBX: 00007f1fc5a1089d RCX: 00007f1fc598fc97
[  887.302702][    C1] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc722638c0
[  887.302717][    C1] RBP: 00007ffc722638c0 R08: 0000000000000000 R09: 0000000000000000
[  887.302731][    C1] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc72264950
[  887.302746][    C1] R13: 00007f1fc5a1089d R14: 00000000000ccbc6 R15: 00007ffc72264990
[  887.302774][    C1]  </TASK>
[  887.314941][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  887.314969][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller #0 PREEMPT(full) 
[  887.314998][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  887.315015][   T31] Call Trace:
[  887.315026][   T31]  <TASK>
[  887.315038][   T31]  dump_stack_lvl+0x99/0x250
[  887.315087][   T31]  ? __asan_memcpy+0x40/0x70
[  887.315117][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  887.315153][   T31]  ? __pfx__printk+0x10/0x10
[  887.315195][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.315231][   T31]  panic+0x2db/0x790
[  887.315266][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.315301][   T31]  ? __pfx_panic+0x10/0x10
[  887.315333][   T31]  ? tick_nohz_tick_stopped+0x86/0xb0
[  887.315366][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.315395][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  887.315426][   T31]  ? nmi_trigger_cpumask_backtrace+0x2b6/0x300
[  887.315458][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.315492][   T31]  watchdog+0x102d/0x1030
[  887.315530][   T31]  ? watchdog+0x1de/0x1030
[  887.315572][   T31]  kthread+0x711/0x8a0
[  887.315609][   T31]  ? __pfx_watchdog+0x10/0x10
[  887.315641][   T31]  ? __pfx_kthread+0x10/0x10
[  887.315671][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.315702][   T31]  ? __pfx_kthread+0x10/0x10
[  887.315732][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  887.315761][   T31]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.315789][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  888.061805][   T31]  ? __pfx_kthread+0x10/0x10
[  888.066453][   T31]  ret_from_fork+0x4e/0x80
[  888.070873][   T31]  ? __pfx_kthread+0x10/0x10
[  888.075559][   T31]  ret_from_fork_asm+0x1a/0x30
[  888.080368][   T31]  </TASK>
[  888.083617][   T31] Kernel Offset: disabled
[  888.087941][   T31] Rebooting in 86400 seconds..