last executing test programs:

1m2.051158164s ago: executing program 2 (id=709):
socket$kcm(0x11, 0x2, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'virt_wifi0\x00', 0x11})
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb98}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600)

1m1.848581407s ago: executing program 2 (id=711):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x70bd2f, 0xfffffffc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x20, 0x11d, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x4a}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x2b}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008890}, 0x4000008)

1m1.443078554s ago: executing program 2 (id=716):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xc}}, [@qdisc_kind_options=@q_netem={{0xa}, {0xa, 0x2, {{0x6, 0x8003, 0x1, 0x0, 0xffffffff, 0x91b1}}}}, @TCA_STAB={0x4}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000404}, 0x4)

1m1.259934847s ago: executing program 2 (id=717):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x204)

1m1.099989679s ago: executing program 2 (id=720):
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000340)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

1m0.515856198s ago: executing program 2 (id=724):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0, 0x0, 0x0, 0x0, 0x41000, 0xf}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0xc1205531, &(0x7f0000002680)=""/4104)

1m0.133057764s ago: executing program 32 (id=724):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002040)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0, 0x0, 0x0, 0x0, 0x41000, 0xf}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r1, 0xc1205531, &(0x7f0000002680)=""/4104)

33.305520566s ago: executing program 0 (id=951):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000000, 0x8031, 0xffffffffffffffff, 0x0)
r1 = dup(r0)
write$UHID_DESTROY(r1, &(0x7f0000000080), 0x4)

33.06313384s ago: executing program 0 (id=956):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000012c0)=ANY=[@ANYBLOB="54000000010a01040000000000000000020000000c00034000000000000000030900020073797a32000000000900010073797a30"], 0x54}, 0x1, 0x0, 0x0, 0x4040}, 0x0)

32.871299213s ago: executing program 0 (id=959):
openat$rfkill(0xffffff9c, &(0x7f0000000180), 0xc81, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

32.463206669s ago: executing program 0 (id=963):
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000f80)='./file1\x00', 0x0, 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x8442, 0x5c)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, 0x0)

32.123579875s ago: executing program 0 (id=968):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0x1, 0x4446, &(0x7f00000088c0)="$eJzs3c9vE9kdAPA3k1ASSiChVKJSpVoqUqu2ihJObYPUEAIhgZSKFlT1YpzEQFonRolT9cAhvSH1VKmHqgdEJW45IQ690j+hlx7Z0x6Qdg97WWklpKxsjxPPxN6YyE427OdzyHjeb/s78/yMNLw4UXm0vJ5bXs8VVnPlxQfrl3J/Lpc2VoohPiQt+z9xeP3TmV5cJ0d97X2T3b56/bf3LoXw36X/v93e3t4OVf2hpfGm159/9mSx+dgQZ+pU223dWrf8IYRwfs+4qvpCCL//TwhRCOFKkjaVHAdDCEOhnnfvyd/u57o0mpdvipfz7+afvpq4OLf17FX79x6F8K/S9372cOWTH/ZNfPSTLnUPAAAAAAAAAAAAAAAAAMAxN3Pn9t3fjI2H11Ho34r2Pq87kxzbPR+73TU/6P2bBQAAAAAAAAAAAAAAAAAAgK+p3ef/c9G5Fs//TyfHyTb1t3/V+zHSO7O/vj19bWw82f892pP/8yTp0yt9YaTFvu/Z/d+vZOq33v99bz8H1Rhfo9/hEMWjzefV/NEQ/p1s/H4hOhWXyuuVnz4ob6wudW0Yx1Y6/vXd+1PRSTb07zT+U5n2e7///3f2XE3V8/vdu8Q+aOn497Ut9+KvUUfxv5qpdxjxP7CBbo7jeErHv7+WNthcYLI+AVTj//f+/eM/nWm/V/E/E0LIRdWx5lIzQHUNU01vt14hLR3/E7W01NSZfJDt7v8vMvG/lmn/qOb/zewXES2l4/+tWlp6Wty9/0fi/e//65n2jyL+1fFv+v7vSDr+J+uJ/akitU/yxdnO5v+ZTPu9iv/dOBnnmSh1BWxF9fR2/18daen4710Q7f7+izta/93I1D+s33+Nfhu//xrT/4+jOB4d7Vp3H5x0/Afblut0/Tebqdfr+X+ytv7joNLxP1VLS6+dh2t/O43/XKb9bPw//nZ3xl1blQw04r87nwydrKc/t/7rSDr+SXDi5hKbtb+19V+0//r/Zqb9o1j/Vce/Gfe21w9FOv6ns9nfnUheVOP/vw6+/29lGvjq+Lf/96b3MWatf2Dp+A+1LVe7/wf2j/98pl6v7/8f9bJxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgGNgKjkOhygeTZ3H8ehoCFeT8wvhVLRQWMovlMqLf1oPYTpJz4Vz0cNSeaFQyi+vlpeK+UKpVF4M4VqSfz4MROulciW/Unh8faetwehRsbBWWSgWKiGEmST9+2Go0dbCcmWl8DiEcGMn72xcXnv8qLCaX1pe++XY2NhYmN0Zw0hU/EuluFqp917PDWFup+5w1DS4WvbNnbGcjv5Y3lhbLZRq6bea6pTKi4VSU535JO8fYSSqrG2sLhYqxXyp/LDR31GaTI7Ts3d+d+fW+J78+1H9OHW4wwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgPb2e+MU/Qwj99bM4hDDZeBG1Kv/yTfFy/t3801cTF+e2nj1/264cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCX7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWGXjlEiBqIwAL8ZC2PnMaxC0tlGFNHCiOAJ9BgeRo/iJbyDhYWthQg6A5KdwDa71fc1D/IT3oP5AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYzuXdfH87jBEpuu/DiNfHt/f/+XWZz2ft/w/2cCO7c3Uzn18MY3n3tJGflk8fU/5Nvz6fHqIxq5dFT5Z9+lP3HK3e1epb1yhbva/uPY6U+4iYSn6Scu771TUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQeOBQAAAACE+Vtn0bUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwKwAA///XDB6/")
r0 = open(&(0x7f0000000080)='./file2\x00', 0x20042, 0x1)
fsync(r0)
getdents64(0xffffffffffffffff, 0x0, 0x0)

31.978832387s ago: executing program 3 (id=970):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
close_range(r0, 0xffffffffffffffff, 0x2)
socket(0x2b, 0x1, 0x1)
bind$can_j1939(r0, &(0x7f0000000080)={0x1d, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x18)

31.849750579s ago: executing program 3 (id=972):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000500)='./file2\x00', 0x80408a, &(0x7f0000000540)=ANY=[], 0x11, 0x6c1, &(0x7f000000abc0)="$eJzs3c9vHGcZB/DvrNc/NpVct03TgCrVNFJBRCRxrBTCJQEhFKQKVUGCs9U4jRUnDY6L0h6IC0hInDjwB7SHcIETCCEhIUUqZ7hVcLI4VULqpae0Qgza2dn12t21N3FiO/D5WLPzvPPOvvPMs/NjdyVrA/zfunA8zbtp5cLxV2612+t35pfX78xf68SN5SSTSRpJszNLcT0p3k/OpzPlc+2F9XDFsO38aunsxQ8+Xv+w02pmY7z2Q2t4gs1R9mKtnjKbZKye78Km8V57sPEmN8KiV5l2wY51Cwf7bTxJuckPj2z0DFKO9TWGnu/A46Po3Df7dM7/meRQkqnuDW2t09nY+wx3NMK16Be9aO3R5gIAAAAHwpP3bie3Mr3feQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDjpP79/6KeGt14NkX39/8n+n5jf2Kf0x1u+8ymusHdxl4kAwAAAAAAAACP1gv38puLZTndbZdFGt8fqxuHq8cn8mZuZjErOZFbWchqVrOSuSQzfQNN3FpYXV2Zy4udZ35aluWQZ54e+MzTIybc2v0+AwAAAAAAAMD/kHP1/Ce5kOl9zgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYpkrHOrJoOd+OZNJpJppJMtNdbS/7WjR9nd/c7AQAAAHhY/vHvsjKg68l7uZdbme62y6L6zH+k+tw/lTdzPatZymqWs5hL1XcBnU/9jfU788vrd+avtafPjvteayP+/fSOGVYjpvPdw+AtH63WaOVylqolJ/Ja3shyLqVRPbPtaDefwXm981F77HMdZZnJUWp3qZ639/yX9fxgmKkqMt6ryKl2bkWnjk9tX4lvfLSrLc2l0fvm5/B91Pzctlsp/tM9Qg91lyRPfGfnmo/f187sytZKnO47+o5sX4nki3/47Q+uLF+/eqVYO35wDqNBXhi8ePKfG9eQmfqMTfVl4GLm+yrx3MiVuHzzgFdiqOamViPP9uIL+Xa+l+OZzatZyVJ+lIWsZjGz+VYVLdTHc/txZvtKnd/UenWnnCbq12VsS05feLIz3y6nF6vnTmcp380buZTFvFz9nc5cvpozOZOzfa/wsyOc9Y0BZ/0fhyd/7Et10L5z/LyeHwztuj7VV9f+a+5M1de/pJGyvrM8/dCujT3Nz9dB+5X4ad85uP96lZhK7y7Rze6ZbgXGB1biveqycnP5+tWVKws3toxbrA3e3kvZvPsH50LSPl6e7l0jNh8d7b5nBvbNVX2He32NrX2/bvX6djpTJ+r3cJ8d6XTV99zAvvmq72hfX/v91lSSxXxalmXn/VbXM3tcVQBGdujLhyZa/2r9tfVu62etK61Xpr45+bXJ5ycy/pfxrzdPjb3UeL74Xd7Nj7PzJ3QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGBHN996++rC8vLiypagLMvbQ7oeSZBmsmnJn//Ut071W2NJRh+wvfb5RlItaaYO7i+x2w+2O+88aBH+Xr8me1LwhxJMDT1+tgaflGV5MHIeJShre771RvZ937vBvl6WgD1wcvXajZM333r7K0vXFl5ffH3x+tkzZ86eOnvm5fmTl5eWp/Y7PeARqu711fuc/c4EAAAAAAAAAAAAGNVo/5xT9JY0k9z3//YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7MKF42neTZG5UydOtdvrd+aX21M33ljzkySNJMVsUryfnE9nykzfcMWw7awlFz/4eP3DTqtZT9X6jd3vxVo9ZTbJWD0fYGrQwvL2sPGKapwbw8cbUdGrTLtgx7qFg/323wAAAP//yAscyg==")
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000200), &(0x7f0000000080)=ANY=[], 0x700, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000180), &(0x7f0000000200)=ANY=[], 0x841, 0x0)
lgetxattr(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280)=@known='trusted.overlay.upper\x00', &(0x7f00000002c0)=""/203, 0xcb)

31.492497905s ago: executing program 3 (id=976):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e20, 0x0, @local}, {0xa, 0x4e21, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1}, r1}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000080)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x0, @local, 0x1}, {0xa, 0x3, 0x3, @empty, 0x3}, r1, 0xffffffff}}, 0x48)

31.266174158s ago: executing program 3 (id=978):
syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x1, 0x576, &(0x7f0000000140)="$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")
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000f80)='./file1\x00', 0x0, 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x8442, 0x5c)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, 0x0)

30.879660304s ago: executing program 3 (id=980):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0x40)
setreuid(0xee01, r1)
setuid(r1)

30.53599403s ago: executing program 0 (id=983):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "b76508", 0x14, 0x2c, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, @local, {[], {{0x3b00, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8, 0x0, 0x0, 0x8000}}}}}}}, 0x0)

30.193775295s ago: executing program 33 (id=983):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "b76508", 0x14, 0x2c, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, @local, {[], {{0x3b00, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8, 0x0, 0x0, 0x8000}}}}}}}, 0x0)

29.389577338s ago: executing program 3 (id=989):
r0 = socket$inet6(0xa, 0x3, 0x2)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000180)=0x10001, 0x4)

29.075011823s ago: executing program 34 (id=989):
r0 = socket$inet6(0xa, 0x3, 0x2)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x4e24, 0x0, @empty, 0x3}, 0x1c)
sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000180)=0x10001, 0x4)

4.786506244s ago: executing program 1 (id=1150):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RLERRORu(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1c00000007ffff"], 0x52)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}})

4.525752509s ago: executing program 1 (id=1153):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000200)='kmem_cache_free\x00', r1}, 0x18)
syz_emit_ethernet(0x12, &(0x7f00000003c0)={@link_local, @link_local, @void, {@llc={0x4, {@llc={0x42, 0x0, "97", '\x00'}}}}}, 0x0)

4.327540412s ago: executing program 1 (id=1156):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4})
close_range(r1, 0xffffffffffffffff, 0x0)

3.953595178s ago: executing program 1 (id=1162):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x331, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x6, 0x0, 0x0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x2, [{0x16, &(0x7f0000000240)=@string={0x16, 0x3, "713ff3239b1074418a1ca4a040a4bddaa4a75de3"}}, {0x1b, &(0x7f0000000300)=@string={0x1b, 0x3, "27062ea7878b572876e746150d4d74914ca67cca09c98e4d63"}}]})
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

2.022688158s ago: executing program 6 (id=1184):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000060000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)

2.019419638s ago: executing program 1 (id=1185):
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000100)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f0000000600)=<r1=>0x0, &(0x7f00000005c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x18, 0x0, @fd_index=0x9, 0xd, 0x0, 0x1, 0x4})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

1.778355582s ago: executing program 6 (id=1188):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f0000005400)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000080)=';', 0x1}], 0x1}}], 0x1, 0x0)

1.588717625s ago: executing program 6 (id=1191):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000200)=0x1, 0x4)
bind$can_raw(r0, &(0x7f0000000000), 0x10)
close(r0)

1.431921127s ago: executing program 6 (id=1194):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0xc4, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0xb0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000, 0x0, 0x4}, 0x3, r2}}]}, {0x4, 0xa}, {0xc}, {0xffac, 0x8, {0x0, 0x2}}}}, @m_mpls={0x5c, 0x2, 0x0, 0x0, {{0x9}, {0x30}, {0x4}, {0xc}, {0xc}}}]}]}, 0xc4}}, 0x0)

1.309800519s ago: executing program 5 (id=1195):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$netlink(r0, 0x10e, 0x3, 0x0, &(0x7f0000000540))

1.179710121s ago: executing program 5 (id=1196):
r0 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x1}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x567, 0x1000a387, 0x0, 0x0, 0x0)

1.112071892s ago: executing program 4 (id=1197):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000180)='cpuacct.stat\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000005fc0)={0x2020}, 0x2020)

1.101456843s ago: executing program 6 (id=1198):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file3\x00', 0xcc0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c00535d4e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0"], 0x1, 0x442a, &(0x7f0000004480)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
fallocate(r0, 0x0, 0x7351, 0x8001)
ioctl$FITRIM(r0, 0x40406f06, &(0x7f00000000c0)={0x86, 0x7e4000, 0x20})

1.018599124s ago: executing program 5 (id=1199):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001805000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000b90600008500000004000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

892.921836ms ago: executing program 5 (id=1200):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000003740)={0x5, 0x10001}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=@framed, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)

892.411526ms ago: executing program 4 (id=1201):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000012c0), r1)
sendmsg$NLBL_MGMT_C_REMOVE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, r2, 0x1, 0x70bd2a, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x40000)

736.022258ms ago: executing program 5 (id=1202):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x100, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltuid}]}})

735.739248ms ago: executing program 4 (id=1203):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r2=>0x0})
connect$can_bcm(r0, &(0x7f0000000000)={0x1d, r2}, 0x10)

557.357922ms ago: executing program 4 (id=1204):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="120000000700000008000000222000000000", @ANYRES32], 0x50)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb000800103afffe80"], 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b04, &(0x7f0000000000)={'wlan0\x00'})

499.182332ms ago: executing program 5 (id=1205):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000010c0)={0x44, &(0x7f0000000080)=ANY=[@ANYBLOB="00000100000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000640)={0x44, &(0x7f00000000c0)=ANY=[@ANYBLOB="4015490000005ebfca646a017afd44a1694b859e7e010372e9cc92e9fc911bd821b8c4a76169c6f83bd52d2dccc7ddc6b59a0902000000310500000000000000f37cb0f7e2daae21a8bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

328.274255ms ago: executing program 4 (id=1206):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x24, r1, 0x93da7d9f096fa291, 0x70bd29, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x2a, 0x6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x24}, 0x1, 0x0, 0x0, 0x24000040}, 0x4000810)

321.235575ms ago: executing program 1 (id=1207):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}}, 0x0)

65.752909ms ago: executing program 6 (id=1208):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000680)='./file2\x00', 0x800000, &(0x7f00000007c0)=ANY=[@ANYBLOB="6e6f757365725f78617474722c666c7573685f6d657267652c6673796e635f6d6f64653d706f7369782c64697361626c655f6578745f6964656e746966792c6261636b67726f756e645f67633d73796e632c6673796e635f6d6f64653d7374726963742c6e6f626172726965722c6e6f696e6c696e655f646174612c6e6f626172726965722c71756f74612c6261636b67726f756e645f67633d6f66662c6e6f61636c2c6e6f657874656e745f63616368652c6e6f646973636172642c6163746976655f6c6f67733d342c00e62bc03000c35169ed09803fa1bee488c680f339e530b5e8ad120a2b4f078093a8e0ba2b3d1b5fe99356b80a454c1ec2f8e12392bbffe9fae2fa05e18a6b61f5eded2e484f574d2757a5fe762c770477aa3460313ee54451c6a6159eca600d6c85a8c09cef9996dc851a5f5edf1a4a22576c6dfe6b9e8dade2d3a8e6a8c7710733c1f69aabd8880291"], 0x1, 0x5504, &(0x7f000000c0c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x103042, 0x5d9f61795f7ff7ff)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xf519, 0x0)
unlink(&(0x7f0000000100)='./file2\x00')

0s ago: executing program 4 (id=1209):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000001980)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
semtimedop(0x0, &(0x7f0000000140)=[{0x1, 0x3, 0x1800}], 0x1, &(0x7f0000000180))

kernel console output (not intermixed with test programs):

"/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aaaf8e929 code=0x7ffc0000
[  111.250475][ T6842] loop1: detected capacity change from 0 to 1024
[  111.257167][   T27] audit: type=1326 audit(1751312049.051:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aaaf8e929 code=0x7ffc0000
[  111.349287][ T6842] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.468497][ T6832] loop3: detected capacity change from 0 to 40427
[  111.485627][ T6832] F2FS-fs (loop3): build fault injection attr: rate: 4, type: 0x7ffff
[  111.495412][ T6832] F2FS-fs (loop3): Image doesn't support compression
[  111.510303][ T6832] F2FS-fs (loop3): Image doesn't support compression
[  111.524867][ T6832] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x4
[  111.547733][ T6832] F2FS-fs (loop3): invalid crc value
[  111.570094][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x156/0x580
[  111.602880][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  111.641390][ T5764] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.673574][ T6832] F2FS-fs (loop3): Found nat_bits in checkpoint
[  111.762392][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  111.811018][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  111.822553][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x156/0x580
[  111.860808][ T6832] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  111.905196][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of __get_node_page+0x17b/0xf40
[  111.940257][ T6832] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x13a/0x910
[  112.000662][ T5762] syz-executor: attempt to access beyond end of device
[  112.000662][ T5762] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  112.019898][ T5762] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  112.027736][ T5762] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  112.046214][  T787] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  112.106027][   T23] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  112.226077][  T787] usb 1-1: Using ep0 maxpacket: 8
[  112.242301][  T787] usb 1-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  112.258326][  T787] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.268250][ T6853] loop2: detected capacity change from 0 to 40427
[  112.276237][  T787] usb 1-1: Product: syz
[  112.281194][  T787] usb 1-1: Manufacturer: syz
[  112.286727][  T787] usb 1-1: SerialNumber: syz
[  112.291700][ T6853] F2FS-fs (loop2): heap/no_heap options were deprecated
[  112.303546][  T787] usb 1-1: config 0 descriptor??
[  112.308700][   T23] usb 2-1: Using ep0 maxpacket: 16
[  112.317598][ T6853] F2FS-fs (loop2): invalid crc value
[  112.328106][   T23] usb 2-1: config 0 interface 0 has no altsetting 0
[  112.336469][   T23] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  112.348361][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.358986][  T787] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  112.368145][  T787] usb 1-1: setting power ON
[  112.373797][ T6853] F2FS-fs (loop2): Found nat_bits in checkpoint
[  112.383983][   T23] usb 2-1: config 0 descriptor??
[  112.396627][  T787] dvb-usb: bulk message failed: -22 (2/0)
[  112.420946][  T787] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  112.447293][  T787] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  112.466532][  T787] usb 1-1: media controller created
[  112.504250][ T6853] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  112.516644][  T787] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  112.556620][  T787] usb 1-1: selecting invalid altsetting 6
[  112.588129][  T787] usb 1-1: digital interface selection failed (-22)
[  112.595392][ T6855] dvb-usb: bulk message failed: -22 (3/0)
[  112.603292][  T787] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  112.611986][ T6855] dvb-usb: bulk message failed: -22 (5/0)
[  112.627082][ T6855] dvb-usb: bulk message failed: -22 (4/0)
[  112.632873][ T6855] cxusb: i2c read failed
[  112.639078][  T787] usb 1-1: setting power OFF
[  112.644169][  T787] dvb-usb: bulk message failed: -22 (2/0)
[  112.655552][  T787] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  112.680024][  T787] (NULL device *): no alternate interface
[  112.751319][  T787] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  112.777874][  T787] usb 1-1: USB disconnect, device number 5
[  112.783591][ T6867] Bluetooth: MGMT ver 1.22
[  112.859546][   T23] hid (null): invalid report_size 41201
[  112.885649][   T23] hid (null): unknown global tag 0xe
[  112.894463][   T23] hid (null): unknown global tag 0xe
[  112.900972][   T23] hid (null): bogus close delimiter
[  113.034076][ T5768] usb 2-1: USB disconnect, device number 6
[  113.275984][ T6879] serio: Serial port ptm0
[  113.699579][ T6881] loop0: detected capacity change from 0 to 32768
[  113.716522][ T6881] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.382 (6881)
[  113.742021][ T6881] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  113.755565][ T6881] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  113.765144][ T6881] BTRFS info (device loop0): using free space tree
[  113.884932][ T6900] loop2: detected capacity change from 0 to 4096
[  113.907372][ T6881] BTRFS info (device loop0): enabling ssd optimizations
[  113.927023][ T6900] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  113.938406][ T6881] BTRFS info (device loop0): auto enabling async discard
[  114.065193][   T27] audit: type=1800 audit(1751312052.331:12): pid=6900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.387" name="file1" dev="loop2" ino=30 res=0 errno=0
[  114.289018][ T5761] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  114.698922][   T23] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  114.896106][   T23] usb 3-1: Using ep0 maxpacket: 8
[  114.916920][   T23] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.935550][   T23] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  114.945325][   T50] Bluetooth: hci2: command tx timeout
[  114.968058][   T23] usb 3-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  114.980305][ T6935] netlink: 72 bytes leftover after parsing attributes in process `syz.3.396'.
[  114.986041][   T23] usb 3-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  114.999761][   T23] usb 3-1: Product: syz
[  115.003989][   T23] usb 3-1: Manufacturer: syz
[  115.009269][   T23] usb 3-1: SerialNumber: syz
[  115.016571][   T23] usb 3-1: config 0 descriptor??
[  115.242915][  T787] usb 3-1: USB disconnect, device number 3
[  115.364152][ T6929] loop0: detected capacity change from 0 to 32768
[  115.391965][ T6929] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.395 (6929)
[  115.435919][ T6929] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  115.456582][ T6929] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  115.467467][ T6929] BTRFS info (device loop0): using free space tree
[  115.605633][ T6929] BTRFS info (device loop0): enabling ssd optimizations
[  115.614342][ T6929] BTRFS info (device loop0): auto enabling async discard
[  115.757245][ T5761] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  115.854740][ T6939] loop1: detected capacity change from 0 to 32768
[  115.898786][ T6939] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz.1.399 (6939)
[  115.900993][ T6966] loop3: detected capacity change from 0 to 128
[  115.925207][ T6966] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  116.024040][ T6969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.406'.
[  116.073140][ T6969] netlink: 3 bytes leftover after parsing attributes in process `syz.2.406'.
[  116.126903][ T6969] batadv1: entered promiscuous mode
[  116.138151][ T5779] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by udevd (5779)
[  116.155326][ T6969] batadv1: entered allmulticast mode
[  116.715087][ T6991] loop0: detected capacity change from 0 to 8
[  117.354338][ T7011] loop3: detected capacity change from 0 to 512
[  117.427854][ T7011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.486074][ T7011] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.630167][ T7011] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.424: bg 0: block 248: padding at end of block bitmap is not set
[  117.681017][ T7011] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  117.785204][ T5762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.850068][ T7005] loop1: detected capacity change from 0 to 32768
[  117.905397][ T7005] XFS: ikeep mount option is deprecated.
[  117.984248][ T7005] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  118.130831][ T7042] netlink: 28 bytes leftover after parsing attributes in process `syz.3.433'.
[  118.150771][ T7042] ip6tnl1: entered promiscuous mode
[  118.213322][ T7046] netlink: 104 bytes leftover after parsing attributes in process `syz.3.434'.
[  118.330757][ T7005] XFS (loop1): Ending clean mount
[  118.353020][ T7005] XFS (loop1): Quotacheck needed: Please wait.
[  118.463171][ T7005] XFS (loop1): Quotacheck: Done.
[  118.602450][ T5764] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  118.806093][  T786] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  118.813084][   T23] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  118.956597][ T7056] loop3: detected capacity change from 0 to 32768
[  118.963771][ T7056] XFS: noikeep mount option is deprecated.
[  118.995997][  T786] usb 3-1: Using ep0 maxpacket: 8
[  119.008663][   T23] usb 1-1: config 0 has an invalid interface number: 255 but max is 0
[  119.017164][   T23] usb 1-1: config 0 has no interface number 0
[  119.022865][  T786] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  119.023479][   T23] usb 1-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  119.051389][   T23] usb 1-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  119.066269][   T23] usb 1-1: config 0 interface 255 has no altsetting 0
[  119.070051][  T786] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.073091][   T23] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  119.092952][ T7056] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  119.102028][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.113368][   T23] usb 1-1: config 0 descriptor??
[  119.125714][  T786] pvrusb2: Hardware description: Terratec Grabster AV400
[  119.135207][  T786] pvrusb2: **********
[  119.136169][   T23] ums-realtek 1-1:0.255: USB Mass Storage device detected
[  119.141730][  T786] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  119.159325][  T786] pvrusb2: Important functionality might not be entirely working.
[  119.172673][  T786] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  119.188339][  T786] pvrusb2: **********
[  119.275143][ T7056] XFS (loop3): Ending clean mount
[  119.284472][ T7056] XFS (loop3): Quotacheck needed: Please wait.
[  119.343636][ T2315] pvrusb2: Invalid write control endpoint
[  119.367135][  T786] usb 1-1: USB disconnect, device number 6
[  119.445115][ T7056] XFS (loop3): Quotacheck: Done.
[  119.525667][ T2315] pvrusb2: Invalid write control endpoint
[  119.558038][ T2315] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  119.580545][ T2315] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  119.592830][ T5762] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  119.603116][ T2315] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  119.613999][ T2315] pvrusb2: Device being rendered inoperable
[  119.625654][   T23] usb 3-1: USB disconnect, device number 4
[  119.637522][ T2315] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  119.648321][ T2315] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  119.723565][ T2315] pvrusb2: Attached sub-driver cx25840
[  119.739379][ T2315] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  119.760212][ T2315] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  120.288976][ T7098] netlink: 8 bytes leftover after parsing attributes in process `syz.3.450'.
[  120.316231][ T7098] netlink: 8 bytes leftover after parsing attributes in process `syz.3.450'.
[  120.556790][ T7113] loop1: detected capacity change from 0 to 8
[  121.949246][ T7164] loop2: detected capacity change from 0 to 128
[  121.982593][ T7166] loop0: detected capacity change from 0 to 512
[  121.986127][   T27] audit: type=1800 audit(1751312060.261:13): pid=7164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.487" name="file2" dev="loop2" ino=1048596 res=0 errno=0
[  122.031003][ T7164] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  122.046230][ T7164] FAT-fs (loop2): Filesystem has been set read-only
[  122.052986][ T7164] syz.2.487: attempt to access beyond end of device
[  122.052986][ T7164] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  122.076812][ T7164] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  122.136212][ T7164] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  122.140364][ T7147] loop1: detected capacity change from 0 to 32768
[  122.150798][ T7164] syz.2.487: attempt to access beyond end of device
[  122.150798][ T7164] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.188158][ T7147] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.481 (7147)
[  122.195711][ T7164] syz.2.487: attempt to access beyond end of device
[  122.195711][ T7164] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128
[  122.218222][ T7166] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.231827][ T7166] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.243650][ T7164] syz.2.487: attempt to access beyond end of device
[  122.243650][ T7164] loop2: rw=0, sector=2072, nr_sectors = 1 limit=128
[  122.288111][ T7166] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.477: bg 0: block 248: padding at end of block bitmap is not set
[  122.307432][ T7166] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  122.331771][ T7147] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  122.356220][ T7147] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  122.364943][ T7147] BTRFS info (device loop1): turning on sync discard
[  122.396263][ T7147] BTRFS info (device loop1): doing ref verification
[  122.402931][ T7147] BTRFS info (device loop1): disabling tree log
[  122.424830][ T7147] BTRFS info (device loop1): enabling ssd optimizations
[  122.434954][ T7147] BTRFS info (device loop1): using spread ssd allocation scheme
[  122.452961][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.466631][ T7147] BTRFS info (device loop1): not using ssd optimizations
[  122.473702][ T7147] BTRFS info (device loop1): not using spread ssd allocation scheme
[  122.520138][ T7147] BTRFS info (device loop1): using free space tree
[  122.564891][ T7174] netlink: 104 bytes leftover after parsing attributes in process `syz.2.480'.
[  122.689377][ T7186] netlink: 28 bytes leftover after parsing attributes in process `syz.0.478'.
[  122.734317][ T7186] ip6tnl1: entered promiscuous mode
[  123.161440][ T5764] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  123.620625][ T7210] loop1: detected capacity change from 0 to 4096
[  123.641171][ T7210] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  123.752395][ T7202] loop3: detected capacity change from 0 to 32768
[  123.771870][ T7206] loop2: detected capacity change from 0 to 32768
[  123.791960][ T7202] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.486 (7202)
[  123.804590][ T7210] ntfs3: loop1: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" failed to parse mft record
[  123.888581][ T7202] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  123.901586][   T11] ntfs3: loop1: ino=1e, failed to parse mft record
[  123.923517][ T7206] read_mapping_page failed!
[  123.929625][ T7206] ERROR: (device loop2): txCommit: 
[  123.929625][ T7206] 
[  123.946866][ T7202] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  123.956294][ T7206] find_entry called with index = 0
[  123.961881][ T7206] read_mapping_page failed!
[  123.971606][ T7202] BTRFS info (device loop3): using free space tree
[  123.981724][ T7206] ERROR: (device loop2): txCommit: 
[  123.981724][ T7206] 
[  124.177499][ T7202] BTRFS info (device loop3): enabling ssd optimizations
[  124.184490][ T7202] BTRFS info (device loop3): auto enabling async discard
[  124.426256][   T23] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  124.616257][   T23] usb 1-1: Using ep0 maxpacket: 8
[  124.637304][   T23] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  124.658529][ T5762] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  124.677347][   T23] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  124.705927][   T23] usb 1-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  124.728878][ T7237] loop1: detected capacity change from 0 to 128
[  124.740665][   T23] usb 1-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  124.749984][ T7237] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  124.772004][   T23] usb 1-1: Product: syz
[  124.786316][   T23] usb 1-1: Manufacturer: syz
[  124.791024][   T23] usb 1-1: SerialNumber: syz
[  124.851409][   T23] usb 1-1: config 0 descriptor??
[  125.016267][ T7241] netlink: 8 bytes leftover after parsing attributes in process `syz.3.497'.
[  125.046650][ T7241] netlink: 3 bytes leftover after parsing attributes in process `syz.3.497'.
[  125.121128][ T7241] batadv1: entered promiscuous mode
[  125.147263][ T7241] batadv1: entered allmulticast mode
[  125.178508][   T23] usb 1-1: USB disconnect, device number 7
[  125.322341][ T7247] loop3: detected capacity change from 0 to 512
[  125.337476][ T7247] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  125.367613][ T7247] EXT4-fs (loop3): 1 truncate cleaned up
[  125.377746][ T7247] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  125.512540][ T5762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.673549][ T7244] loop2: detected capacity change from 0 to 32768
[  125.693016][ T7250] loop3: detected capacity change from 0 to 4096
[  125.706136][ T7244] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.501 (7244)
[  125.726271][ T7250] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  125.754563][ T7244] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  125.778995][ T7244] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  125.819471][ T7244] BTRFS info (device loop2): turning on sync discard
[  125.859253][ T7244] BTRFS info (device loop2): doing ref verification
[  125.888940][ T7254] usb usb8: usbfs: process 7254 (syz.0.504) did not claim interface 0 before use
[  125.891206][ T7244] BTRFS info (device loop2): disabling tree log
[  125.933682][ T7244] BTRFS info (device loop2): enabling ssd optimizations
[  125.960182][ T7244] BTRFS info (device loop2): using spread ssd allocation scheme
[  125.985103][ T7244] BTRFS info (device loop2): not using ssd optimizations
[  126.031968][ T7244] BTRFS info (device loop2): not using spread ssd allocation scheme
[  126.066093][ T7244] BTRFS info (device loop2): using free space tree
[  126.129767][ T7250] ntfs3: loop3: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" failed to parse mft record
[  126.312320][   T48] ntfs3: loop3: ino=1e, failed to parse mft record
[  126.532645][ T7276] loop3: detected capacity change from 0 to 256
[  126.540269][ T5763] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  126.618794][ T7276] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3ec, utbl_chksum : 0xe619d30d)
[  127.129281][ T7284] loop3: detected capacity change from 0 to 64
[  127.232124][ T7284] hfs: walked past end of dir
[  127.442239][ T7293] usb usb8: usbfs: process 7293 (syz.3.514) did not claim interface 0 before use
[  127.754755][ T7301] loop0: detected capacity change from 0 to 4096
[  127.807532][ T7301] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  127.979304][ T7306] syzkaller1: tun_chr_ioctl cmd 2148553947
[  128.601553][ T7301] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  129.402544][ T7321] netlink: 24 bytes leftover after parsing attributes in process `syz.0.528'.
[  129.773467][ T7300] loop3: detected capacity change from 0 to 262144
[  129.808909][ T7300] F2FS-fs (loop3): Found nat_bits in checkpoint
[  129.868917][ T7300] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  131.091635][ T7356] loop0: detected capacity change from 0 to 2048
[  131.140365][ T7356] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.399864][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.554196][ T7375] loop0: detected capacity change from 0 to 32768
[  133.026397][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  133.032775][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  133.739144][ T7415] loop1: detected capacity change from 0 to 1024
[  133.875730][ T7415] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  134.176933][ T7429] program syz.0.572 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  134.286253][   T23] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  134.501200][   T23] usb 3-1: Using ep0 maxpacket: 32
[  134.512511][ T7422] loop3: detected capacity change from 0 to 32768
[  134.524280][   T23] usb 3-1: unable to get BOS descriptor or descriptor too short
[  134.546666][   T23] usb 3-1: config 128 has an invalid interface number: 127 but max is 3
[  134.561977][   T23] usb 3-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  134.587443][   T23] usb 3-1: config 128 has 1 interface, different from the descriptor's value: 4
[  134.633759][   T23] usb 3-1: config 128 has no interface number 0
[  134.659827][   T23] usb 3-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid maxpacket 59391, setting to 1024
[  134.686462][   T23] usb 3-1: config 128 interface 127 has no altsetting 0
[  134.718782][   T23] usb 3-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  134.733012][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.753442][   T23] usb 3-1: Product: syz
[  134.763487][   T23] usb 3-1: Manufacturer: syz
[  134.781702][   T23] usb 3-1: SerialNumber: syz
[  134.799722][ T7426] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  135.076572][ T7443] netlink: 88 bytes leftover after parsing attributes in process `syz.1.580'.
[  135.167761][   T23] usb 3-1: USB disconnect, device number 5
[  135.205727][ T5756] udevd[5756]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  135.253652][ T7445] loop3: detected capacity change from 0 to 1024
[  135.304953][ T7445] hfsplus: bad catalog entry type
[  135.417229][ T2117] hfsplus: b-tree write err: -5, ino 4
[  135.831357][ T7456] loop0: detected capacity change from 0 to 1024
[  136.208975][   T42] hfsplus: b-tree write err: -5, ino 4
[  136.283718][ T7449] loop3: detected capacity change from 0 to 32768
[  136.377224][ T7449] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  136.549086][ T7449] XFS (loop3): Ending clean mount
[  136.597183][ T7449] XFS (loop3): Quotacheck needed: Please wait.
[  136.612198][ T7478] input: syz1 as /devices/virtual/input/input11
[  136.719776][ T7449] XFS (loop3): Quotacheck: Done.
[  136.975236][ T7488] netlink: 4 bytes leftover after parsing attributes in process `syz.1.605'.
[  137.041677][ T5762] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  137.436139][   T28] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  137.635956][   T28] usb 1-1: Using ep0 maxpacket: 16
[  137.643377][   T28] usb 1-1: config 0 has an invalid interface number: 49 but max is 0
[  137.656233][   T28] usb 1-1: config 0 has no interface number 0
[  137.676037][   T28] usb 1-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[  137.687337][   T28] usb 1-1: config 0 interface 49 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  137.699967][   T28] usb 1-1: config 0 interface 49 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  137.714927][   T28] usb 1-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[  137.731748][   T28] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.740473][   T28] usb 1-1: Product: syz
[  137.744651][   T28] usb 1-1: Manufacturer: syz
[  137.757361][   T28] usb 1-1: SerialNumber: syz
[  137.770930][   T28] usb 1-1: config 0 descriptor??
[  137.779152][ T7492] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  137.917270][ T7501] loop3: detected capacity change from 0 to 40427
[  137.935263][ T7501] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x7ffff
[  137.944356][ T7501] F2FS-fs (loop3): Image doesn't support compression
[  137.952205][ T7501] F2FS-fs (loop3): heap/no_heap options were deprecated
[  137.963552][ T7501] F2FS-fs (loop3): Image doesn't support compression
[  137.973916][ T7501] F2FS-fs (loop3): invalid crc value
[  137.989542][ T7501] F2FS-fs (loop3): Found nat_bits in checkpoint
[  138.051902][   T28] usb 1-1: USB disconnect, device number 8
[  138.103447][ T7501] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  138.242719][ T5762] syz-executor: attempt to access beyond end of device
[  138.242719][ T5762] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  138.267892][ T5762] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  138.706137][ T7516] loop1: detected capacity change from 0 to 1024
[  139.185816][ T7524] loop2: detected capacity change from 0 to 4096
[  139.216528][ T7524] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  139.340000][ T7524] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  139.667578][ T7542] loop2: detected capacity change from 0 to 128
[  139.726311][ T7542] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  140.308109][ T7554] loop2: detected capacity change from 0 to 2048
[  140.416265][ T7554] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  140.624954][ T7545] loop1: detected capacity change from 0 to 32768
[  140.701813][ T7545] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.763426][ T7545] XFS (loop1): Ending clean mount
[  140.793314][ T7545] XFS (loop1): Quotacheck needed: Please wait.
[  140.886556][ T7545] XFS (loop1): Quotacheck: Done.
[  141.010850][ T5764] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  141.456778][ T7589] netlink: 12 bytes leftover after parsing attributes in process `syz.2.636'.
[  141.510696][ T7589] netlink: 24 bytes leftover after parsing attributes in process `syz.2.636'.
[  141.514410][ T7591] loop1: detected capacity change from 0 to 256
[  141.683143][ T7594] loop3: detected capacity change from 0 to 2048
[  141.743540][ T7594] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  141.854168][ T7581] loop0: detected capacity change from 0 to 32768
[  141.916508][ T7581] JBD2: Ignoring recovery information on journal
[  142.026766][ T7581] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  142.029281][ T7602] input: syz1 as /devices/virtual/input/input12
[  142.385719][ T5761] ocfs2: Unmounting device (7,0) on (node local)
[  142.597885][ T7612] loop2: detected capacity change from 0 to 4096
[  142.873939][ T7612] ntfs3: loop2: failed to convert "0080" to koi8-ru
[  142.902742][ T7612] ntfs3: loop2: failed to convert name for inode 1e.
[  142.917398][ T7612] ntfs3: loop2: failed to convert "256c" to koi8-ru
[  143.383737][ T5805] IPVS: starting estimator thread 0...
[  143.486089][ T7628] IPVS: using max 22 ests per chain, 52800 per kthread
[  143.519353][ T7633] veth1_to_batadv: entered promiscuous mode
[  143.527695][ T7634] netlink: 52 bytes leftover after parsing attributes in process `syz.0.654'.
[  143.719415][ T7640] loop1: detected capacity change from 0 to 512
[  143.737362][ T7640] EXT4-fs: Ignoring removed mblk_io_submit option
[  143.766179][ T7640] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2244: inode #15: comm syz.1.658: corrupted in-inode xattr: overlapping e_value 
[  143.817308][ T7640] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.658: couldn't read orphan inode 15 (err -117)
[  143.901541][ T7640] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.960163][ T5764] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.193446][ T7654] loop0: detected capacity change from 0 to 1024
[  144.202724][ T7650] netlink: 20 bytes leftover after parsing attributes in process `syz.1.662'.
[  144.207159][ T7654] EXT4-fs: inline encryption not supported
[  144.220369][ T7654] EXT4-fs: Ignoring removed bh option
[  144.322296][ T7654] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.416142][ T5805] IPVS: starting estimator thread 0...
[  144.516232][ T7662] IPVS: using max 18 ests per chain, 43200 per kthread
[  144.596515][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.932446][ T7674] loop3: detected capacity change from 0 to 4096
[  145.630373][ T7667] loop2: detected capacity change from 0 to 40427
[  145.671003][ T7667] F2FS-fs (loop2): build fault injection attr: rate: 4, type: 0x7ffff
[  145.706040][ T7667] F2FS-fs (loop2): Image doesn't support compression
[  145.719187][ T7667] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x2ac
[  145.768914][ T7667] F2FS-fs (loop2): invalid crc value
[  145.802215][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x156/0x580
[  145.848681][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  145.891728][ T7667] F2FS-fs (loop2): Found nat_bits in checkpoint
[  145.984069][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  146.005543][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[  146.035532][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x156/0x580
[  146.067029][ T7667] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  146.147126][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_get_read_data_page+0xc0/0x5c0
[  146.192126][ T7667] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_new_node_page+0x13a/0x910
[  146.224328][ T7667] F2FS-fs (loop2): inject alloc nid in f2fs_alloc_nid of f2fs_new_inode+0xff/0x1020
[  146.278242][ T5763] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_page of f2fs_grab_meta_page+0x67/0x210
[  146.821458][ T7723] loop1: detected capacity change from 0 to 256
[  147.196205][ T5805] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  147.396187][ T5805] usb 3-1: Using ep0 maxpacket: 16
[  147.405167][ T5805] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.416571][   T23] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  147.425196][ T5805] usb 3-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  147.438172][ T5805] usb 3-1: config 0 interface 0 has no altsetting 0
[  147.444870][ T5805] usb 3-1: New USB device found, idVendor=8380, idProduct=1850, bcdDevice= 0.00
[  147.454637][ T5805] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.464882][ T5805] usb 3-1: config 0 descriptor??
[  147.625968][   T23] usb 2-1: Using ep0 maxpacket: 8
[  147.634090][   T23] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[  147.642523][   T23] usb 2-1: config 179 has no interface number 0
[  147.649018][   T23] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  147.665918][   T23] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  147.682150][   T23] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  147.694210][   T23] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  147.707492][   T23] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  147.720884][   T23] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  147.729998][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.743782][ T7731] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  147.908680][ T5805] betop 0003:8380:1850.0004: unknown main item tag 0x0
[  147.915813][ T5805] betop 0003:8380:1850.0004: unknown main item tag 0x0
[  147.923167][ T5805] betop 0003:8380:1850.0004: item fetching failed at offset 2/5
[  147.932154][ T5805] betop 0003:8380:1850.0004: parse failed
[  147.938099][ T5805] betop: probe of 0003:8380:1850.0004 failed with error -22
[  148.025213][ T5805] input: Generic X-Box pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input13
[  148.129512][  T786] usb 3-1: USB disconnect, device number 6
[  148.256815][    T9] usb 2-1: USB disconnect, device number 7
[  148.256932][    C1] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  148.271428][    T9] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  148.272354][    C1] dummy_hcd dummy_hcd.1: timer fired with no URBs pending?
[  149.291622][ T7734] loop3: detected capacity change from 0 to 32768
[  149.363051][ T7734] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  149.470155][ T7734] XFS (loop3): Ending clean mount
[  149.494753][ T7734] XFS (loop3): Quotacheck needed: Please wait.
[  149.614408][ T7734] XFS (loop3): Quotacheck: Done.
[  149.794385][ T5762] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  150.087845][ T7770] netdevsim netdevsim2 netdevsim2: entered allmulticast mode
[  150.145058][ T7770] pimreg: entered allmulticast mode
[  150.156685][ T7771] input: syz1 as /devices/virtual/input/input14
[  150.536016][   T27] audit: type=1326 audit(1751312094.799:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.575001][ T7781] loop2: detected capacity change from 0 to 4096
[  150.587345][   T27] audit: type=1326 audit(1751312094.799:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.625463][ T7781] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  150.650263][   T27] audit: type=1326 audit(1751312094.829:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.731349][   T27] audit: type=1326 audit(1751312094.839:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.818200][   T27] audit: type=1326 audit(1751312094.839:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.864723][   T27] audit: type=1326 audit(1751312094.849:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.923312][   T27] audit: type=1326 audit(1751312094.849:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  150.964250][   T27] audit: type=1326 audit(1751312094.849:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd35bd858e7 code=0x7ffc0000
[  151.043901][   T27] audit: type=1326 audit(1751312094.859:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd35bd2ab19 code=0x7ffc0000
[  151.120600][   T27] audit: type=1326 audit(1751312094.859:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7782 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  151.693847][ T7806] netlink: 20 bytes leftover after parsing attributes in process `syz.2.716'.
[  151.710094][ T7806] netem: invalid attributes len -18
[  151.728367][ T7806] netem: change failed
[  151.746924][ T7808] serio: Serial port ptm0
[  151.776662][ T7799] loop0: detected capacity change from 0 to 40427
[  151.823764][ T7799] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff
[  151.848210][ T7799] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x2
[  151.867034][ T7799] F2FS-fs (loop0): Image doesn't support compression
[  151.873813][ T7799] F2FS-fs (loop0): Image doesn't support compression
[  151.930137][ T7799] F2FS-fs (loop0): invalid crc value
[  151.950438][ T7799] F2FS-fs (loop0): Found nat_bits in checkpoint
[  152.001888][ T7817] loop3: detected capacity change from 0 to 1024
[  152.180583][ T7799] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  152.308064][ T6643] bridge0: port 3(syz_tun) entered disabled state
[  152.369795][ T5761] syz-executor: attempt to access beyond end of device
[  152.369795][ T5761] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  152.390047][ T6643] syz_tun (unregistering): left allmulticast mode
[  152.406408][ T6643] syz_tun (unregistering): left promiscuous mode
[  152.416394][ T5761] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  152.423968][ T6643] bridge0: port 3(syz_tun) entered disabled state
[  152.691330][   T42] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.927421][   T42] netdevsim netdevsim2 netdevsim2 (unregistering): left allmulticast mode
[  152.968042][   T42] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.134520][   T42] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.334472][   T42] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.806894][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  153.827084][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  153.837396][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  153.850839][ T5776] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  153.870876][ T5776] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  153.881124][ T5776] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  154.164230][ T7862] loop0: detected capacity change from 0 to 512
[  154.182671][ T7862] EXT4-fs: Ignoring removed orlov option
[  154.263478][ T7862] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.316132][ T7862] ext4 filesystem being mounted at /162/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.503968][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.266751][ T7893] netlink: 8 bytes leftover after parsing attributes in process `syz.0.745'.
[  155.336252][    T9] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  155.462896][ T7902] program syz.3.749 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  155.546586][    T9] usb 2-1: Using ep0 maxpacket: 8
[  155.573556][    T9] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  155.604326][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.623809][ T7906] loop0: detected capacity change from 0 to 2048
[  155.634125][    T9] usb 2-1: Product: syz
[  155.648911][    T9] usb 2-1: Manufacturer: syz
[  155.681259][    T9] usb 2-1: SerialNumber: syz
[  155.701882][ T7845] chnl_net:caif_netlink_parms(): no params data found
[  155.708399][    T9] usb 2-1: config 0 descriptor??
[  155.728893][    T9] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  155.746375][    T9] usb 2-1: setting power ON
[  155.761301][    T9] dvb-usb: bulk message failed: -22 (2/0)
[  155.797351][    T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  155.809667][ T7906] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.861450][ T7906] EXT4-fs error (device loop0): ext4_find_extent:936: inode #2: comm syz.0.750: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  155.887910][ T7906] EXT4-fs (loop0): Remounting filesystem read-only
[  155.892758][    T9] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  155.933654][ T7890] dvb-usb: bulk message failed: -22 (3/0)
[  155.941834][ T7890] dvb-usb: bulk message failed: -22 (5/0)
[  155.953931][    T9] usb 2-1: media controller created
[  155.955954][ T7890] dvb-usb: bulk message failed: -22 (4/0)
[  155.972367][ T7890] cxusb: i2c read failed
[  155.976215][ T5776] Bluetooth: hci2: command tx timeout
[  155.987384][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.038037][    T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  156.114341][    T9] usb 2-1: selecting invalid altsetting 6
[  156.156429][    T9] usb 2-1: digital interface selection failed (-22)
[  156.193453][    T9] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  156.223413][    T9] usb 2-1: setting power OFF
[  156.244350][    T9] dvb-usb: bulk message failed: -22 (2/0)
[  156.258389][    T9] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  156.289536][    T9] (NULL device *): no alternate interface
[  156.351779][    T9] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  156.418710][    T9] usb 2-1: USB disconnect, device number 8
[  156.450216][ T7934] loop3: detected capacity change from 0 to 1024
[  156.555683][ T5805] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  156.745502][ T7845] bridge0: port 1(bridge_slave_0) entered blocking state
[  156.765313][ T5805] usb 1-1: config 0 has an invalid interface number: 120 but max is 0
[  156.766081][ T7845] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.784958][ T5805] usb 1-1: config 0 has no interface number 0
[  156.793360][ T7845] bridge_slave_0: entered allmulticast mode
[  156.800739][ T5805] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  156.820981][ T7845] bridge_slave_0: entered promiscuous mode
[  156.838989][ T7845] bridge0: port 2(bridge_slave_1) entered blocking state
[  156.846646][ T7845] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.854887][ T5805] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 255, setting to 64
[  156.861844][ T7845] bridge_slave_1: entered allmulticast mode
[  156.874038][ T7845] bridge_slave_1: entered promiscuous mode
[  156.896465][ T5805] usb 1-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  156.914120][ T5805] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.950016][ T5805] usb 1-1: config 0 descriptor??
[  156.974928][ T7928] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  157.000219][ T5805] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.120/input/input15
[  157.088539][ T7845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  157.180154][    C0] usbtouchscreen 1-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -1
[  157.278224][ T7845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  157.363201][ T5768] usb 1-1: USB disconnect, device number 9
[  157.510866][ T7845] team0: Port device team_slave_0 added
[  157.541248][ T7845] team0: Port device team_slave_1 added
[  157.610008][   T42] hsr_slave_0: left promiscuous mode
[  157.629364][   T42] hsr_slave_1: left promiscuous mode
[  157.646996][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.654507][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.709593][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.718411][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.755653][   T42] bridge_slave_1: left allmulticast mode
[  157.768900][   T42] bridge_slave_1: left promiscuous mode
[  157.789011][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.862782][   T42] bridge_slave_0: left allmulticast mode
[  157.887513][   T42] bridge_slave_0: left promiscuous mode
[  157.893308][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.001261][   T42] veth1_to_batadv: left promiscuous mode
[  158.034793][   T42] veth1_macvtap: left promiscuous mode
[  158.063867][ T5776] Bluetooth: hci2: command tx timeout
[  158.069934][   T42] veth0_macvtap: left promiscuous mode
[  158.092280][   T42] veth1_vlan: left promiscuous mode
[  158.115541][   T42] veth0_vlan: left promiscuous mode
[  158.526435][   T42] pimreg (unregistering): left allmulticast mode
[  158.959499][   T42] team0 (unregistering): Port device team_slave_1 removed
[  159.011510][   T42] team0 (unregistering): Port device team_slave_0 removed
[  159.060730][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  159.115284][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  159.594192][   T42] bond0 (unregistering): Released all slaves
[  159.732666][ T7845] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.740647][ T7845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.768342][ T7845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.790833][ T7845] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.822941][ T7845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.871481][ T7845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  160.111561][ T7845] hsr_slave_0: entered promiscuous mode
[  160.145968][ T5776] Bluetooth: hci2: command tx timeout
[  160.163718][ T7845] hsr_slave_1: entered promiscuous mode
[  160.196109][ T7845] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  160.233763][ T7845] Cannot create hsr debugfs directory
[  160.253869][ T8002] tipc: Started in network mode
[  160.276714][ T8002] tipc: Node identity 7365725f69643d3, cluster identity 4711
[  160.303658][ T8002] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  160.833642][   T42] IPVS: stop unused estimator thread 0...
[  160.905359][ T8029] loop0: detected capacity change from 0 to 2048
[  160.998681][ T8029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.054498][ T8029] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.065393][ T7845] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  161.097361][ T7845] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  161.137911][ T8039] netlink: 48 bytes leftover after parsing attributes in process `syz.3.790'.
[  161.162997][ T7845] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  161.216942][ T7845] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  161.262658][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.611610][ T7845] 8021q: adding VLAN 0 to HW filter on device bond0
[  161.667376][ T7845] 8021q: adding VLAN 0 to HW filter on device team0
[  161.698416][ T8054] loop3: detected capacity change from 0 to 4096
[  161.720420][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.727612][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  161.788225][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.795375][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  161.852156][ T8065] loop0: detected capacity change from 0 to 512
[  161.907653][ T8065] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  161.918365][ T8065] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  161.926592][    T8] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  161.932149][ T7845] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  161.947952][ T8065] EXT4-fs (loop0): 1 truncate cleaned up
[  161.954970][ T8065] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.121984][ T8054] overlayfs: upper fs does not support tmpfile.
[  162.124402][    T8] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  162.160150][    T8] usb 2-1: config 0 has no interface number 0
[  162.167859][ T8054] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  162.185810][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.202945][    T8] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  162.222633][ T5776] Bluetooth: hci2: command tx timeout
[  162.248589][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.305994][    T8] usb 2-1: Product: syz
[  162.340241][    T8] usb 2-1: Manufacturer: syz
[  162.355078][ T8077] binder: 8075:8077 ioctl c018620c 200000000000 returned -22
[  162.372280][    T8] usb 2-1: SerialNumber: syz
[  162.385010][    T8] usb 2-1: config 0 descriptor??
[  162.583030][ T7845] 8021q: adding VLAN 0 to HW filter on device batadv0
[  162.621871][    T8] usb 2-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  162.638416][    T8] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  162.651845][    T8] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  162.660672][    T8] usb 2-1: media controller created
[  162.688483][    T8] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  163.155127][ T7845] veth0_vlan: entered promiscuous mode
[  163.197349][ T7845] veth1_vlan: entered promiscuous mode
[  163.308581][ T7845] veth0_macvtap: entered promiscuous mode
[  163.329131][ T7845] veth1_macvtap: entered promiscuous mode
[  163.361233][ T7845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.374303][ T7845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.384440][ T7845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.397658][ T7845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.412861][ T7845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.437806][ T7845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.458157][ T7845] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.483773][ T7845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.501672][ T7845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.511894][ T7845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.523018][ T7845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.543285][ T7845] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  163.561662][ T7845] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.577208][ T7845] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.605400][ T7845] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.621334][ T7845] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.631195][ T7845] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.651245][ T7845] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.797647][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.818750][    T8] i2c i2c-1: ec100: i2c rd failed=-110 reg=33
[  163.822061][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  163.892172][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.911616][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  163.937342][    T8] usb 2-1: USB disconnect, device number 9
[  164.162162][ T8123] netlink: 'syz.4.725': attribute type 13 has an invalid length.
[  164.180143][ T8123] netlink: 24859 bytes leftover after parsing attributes in process `syz.4.725'.
[  164.436022][ T5770] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  164.576491][ T8142] netlink: 'syz.4.808': attribute type 12 has an invalid length.
[  164.600935][ T8142] netlink: 'syz.4.808': attribute type 29 has an invalid length.
[  164.616708][ T8142] netlink: 'syz.4.808': attribute type 2 has an invalid length.
[  164.626933][ T5770] usb 1-1: Using ep0 maxpacket: 8
[  164.639526][ T5770] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  164.648714][ T8142] netlink: 'syz.4.808': attribute type 2 has an invalid length.
[  164.657409][ T5770] usb 1-1: config 179 has no interface number 0
[  164.664196][ T8142] netlink: 'syz.4.808': attribute type 1 has an invalid length.
[  164.682356][ T5770] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  164.697589][ T8142] netlink: 'syz.4.808': attribute type 37 has an invalid length.
[  164.705437][ T5770] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  164.717108][ T8142] netlink: 'syz.4.808': attribute type 2 has an invalid length.
[  164.725010][ T8142] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.735617][ T5770] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  164.776374][ T5770] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  164.799876][ T5770] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  164.833924][ T5770] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  164.866938][ T5770] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.898828][ T8125] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  164.984719][ T8151] sctp: [Deprecated]: syz.4.811 (pid 8151) Use of int in max_burst socket option deprecated.
[  164.984719][ T8151] Use struct sctp_assoc_value instead
[  165.434431][ T5770] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input16
[  165.468156][ T8162] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  165.808217][ T8173] loop1: detected capacity change from 0 to 16
[  165.847472][ T8173] erofs: (device loop1): mounted with root inode @ nid 36.
[  165.906253][ T5805] usb 1-1: USB disconnect, device number 10
[  165.906268][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  165.921079][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  165.980910][ T5805] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  166.345123][ T8188] loop4: detected capacity change from 0 to 4096
[  166.427356][ T8188] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  166.571109][ T8188] ntfs3: loop4: Failed to load $Extend (-22).
[  166.593448][ T8188] ntfs3: loop4: Failed to initialize $Extend.
[  166.911888][ T8205] input: syz1 as /devices/virtual/input/input17
[  166.919261][ T8205] input: failed to attach handler leds to device input17, error: -6
[  167.583143][ T8222] loop0: detected capacity change from 0 to 256
[  167.617960][ T8222] exfat: Deprecated parameter 'namecase'
[  167.623709][ T8222] exfat: Deprecated parameter 'utf8'
[  167.698832][ T8222] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  167.786968][ T8202] loop1: detected capacity change from 0 to 40427
[  167.820549][ T8202] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff
[  167.830996][ T8222] autofs4:pid:8222:autofs_fill_super: could not open pipe file descriptor
[  167.837633][ T8202] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x2
[  167.869165][ T8202] F2FS-fs (loop1): Image doesn't support compression
[  167.890353][ T8202] F2FS-fs (loop1): Image doesn't support compression
[  167.917677][ T8202] F2FS-fs (loop1): invalid crc value
[  167.955961][ T8202] F2FS-fs (loop1): Found nat_bits in checkpoint
[  167.963816][ T8230] netlink: 8 bytes leftover after parsing attributes in process `syz.3.840'.
[  168.241202][ T8202] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  168.442571][ T8237] loop3: detected capacity change from 0 to 2048
[  168.451768][   T27] kauditd_printk_skb: 9 callbacks suppressed
[  168.451782][   T27] audit: type=1800 audit(1751312112.709:33): pid=8202 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.829" name="bus" dev="loop1" ino=10 res=0 errno=0
[  168.613771][ T8241] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  168.696756][ T5764] syz-executor: attempt to access beyond end of device
[  168.696756][ T5764] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  168.793404][ T5764] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  170.239082][ T8232] loop4: detected capacity change from 0 to 262144
[  170.258200][ T8232] F2FS-fs (loop4): invalid crc value
[  170.282158][ T8232] F2FS-fs (loop4): Found nat_bits in checkpoint
[  170.326986][ T8232] F2FS-fs (loop4): Start checkpoint disabled!
[  170.349383][ T8232] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  170.730076][ T8268] mkiss: ax0: crc mode is auto.
[  171.143362][ T8279] tap0: tun_chr_ioctl cmd 1074025677
[  171.150965][ T8279] tap0: linktype set to 0
[  171.303635][ T8284] TCP: TCP_TX_DELAY enabled
[  171.576129][ T5770] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  171.649401][ T8292] loop0: detected capacity change from 0 to 128
[  171.778047][ T5770] usb 2-1: config 0 has an invalid interface number: 227 but max is 0
[  171.801162][ T5770] usb 2-1: config 0 has no interface number 0
[  171.811325][ T5770] usb 2-1: config 0 interface 227 altsetting 7 endpoint 0x6 has invalid maxpacket 512, setting to 64
[  171.835948][ T5770] usb 2-1: config 0 interface 227 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  171.871518][ T5770] usb 2-1: config 0 interface 227 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[  171.891334][ T5770] usb 2-1: config 0 interface 227 has no altsetting 0
[  171.911028][ T5770] usb 2-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=58.dd
[  171.940905][ T5770] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.966257][ T5770] usb 2-1: Product: syz
[  171.971062][ T5770] usb 2-1: Manufacturer: syz
[  171.996097][ T5770] usb 2-1: SerialNumber: syz
[  172.014093][ T8288] loop3: detected capacity change from 0 to 32768
[  172.021384][ T5770] usb 2-1: config 0 descriptor??
[  172.059518][ T8286] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  172.084708][ T5770] usbtouchscreen: probe of 2-1:0.227 failed with error -90
[  172.111862][ T8288] read_mapping_page failed!
[  172.131893][ T8288] ERROR: (device loop3): txCommit: 
[  172.131893][ T8288] 
[  172.174804][ T8297] find_entry called with index = 0
[  172.201926][ T8297] read_mapping_page failed!
[  172.223659][ T8297] ERROR: (device loop3): txCommit: 
[  172.223659][ T8297] 
[  172.320427][   T28] usb 2-1: USB disconnect, device number 10
[  172.848915][ T8308] netlink: 8 bytes leftover after parsing attributes in process `syz.4.872'.
[  173.124422][ T8315] loop4: detected capacity change from 0 to 1024
[  173.220928][ T8314] hfsplus: invalid extended attribute record
[  173.366444][   T42] hfsplus: b-tree write err: -5, ino 4
[  173.704076][ T8337] raw_sendmsg: syz.3.886 forgot to set AF_INET. Fix it!
[  174.680898][ T8346] loop4: detected capacity change from 0 to 32768
[  174.735401][ T8364] netlink: 8 bytes leftover after parsing attributes in process `syz.1.897'.
[  174.745508][ T8346] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  175.040594][ T7845] ocfs2: Unmounting device (7,4) on (node local)
[  175.047927][ T8371] loop0: detected capacity change from 0 to 512
[  175.165453][ T8371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.236436][ T8371] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.423786][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.680815][ T8395] loop3: detected capacity change from 0 to 1024
[  175.694140][ T8395] EXT4-fs: Ignoring removed i_version option
[  175.708285][ T8395] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  175.731830][ T8395] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #3: block 1: comm syz.3.910: lblock 1 mapped to illegal pblock 1 (length 1)
[  175.748454][ T8395] Quota error (device loop3): write_blk: dquota write failed
[  175.758852][ T8395] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  175.770638][ T8395] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.910: Failed to acquire dquot type 0
[  175.783816][ T8395] EXT4-fs error (device loop3): ext4_free_blocks:6681: comm syz.3.910: Freeing blocks not in datazone - block = 0, count = 4096
[  175.804355][ T8395] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.910: Invalid inode bitmap blk 0 in block_group 0
[  175.819833][   T42] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  175.844921][ T8395] EXT4-fs error (device loop3) in ext4_free_inode:363: Corrupt filesystem
[  175.865000][   T42] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  175.874737][ T8395] EXT4-fs (loop3): 1 orphan inode deleted
[  175.882307][ T8395] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.889107][   T42] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:2: Failed to release dquot type 0
[  175.971447][ T8395] EXT4-fs error (device loop3): ext4_nfs_get_inode:1551: inode #12: comm syz.3.910: iget: bad extra_isize 65535 (inode size 256)
[  176.045694][ T5762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.379530][ T8413] netlink: 56 bytes leftover after parsing attributes in process `syz.3.918'.
[  176.575796][ T8424] loop4: detected capacity change from 0 to 512
[  176.615140][ T8424] EXT4-fs (loop4): Test dummy encryption mode enabled
[  176.627500][ T8424] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  176.709046][ T8424] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #17: comm syz.4.923: inline data xattr refers to an external xattr inode
[  176.758712][ T8424] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.923: couldn't read orphan inode 17 (err -117)
[  176.777141][ T8424] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  177.215284][ T8424] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  177.313084][ T7845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.345794][ T8429] loop3: detected capacity change from 0 to 32768
[  177.394333][ T8429] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop3 scanned by syz.3.925 (8429)
[  177.448078][ T8429] BTRFS info (device loop3): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  177.464026][ T8429] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  177.464454][ T8428] loop0: detected capacity change from 0 to 32768
[  177.489893][ T8429] BTRFS info (device loop3): setting nodatacow, compression disabled
[  177.530549][ T8428] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.924 (8428)
[  177.533974][ T8429] BTRFS info (device loop3): turning on flush-on-commit
[  177.562680][ T8429] BTRFS info (device loop3): using free space tree
[  177.592092][ T8428] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  177.651633][ T8428] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  177.680889][ T8428] BTRFS info (device loop0): enabling auto defrag
[  177.711143][ T8428] BTRFS info (device loop0): doing ref verification
[  177.726722][ T8428] BTRFS info (device loop0): use no compression
[  177.733137][ T8428] BTRFS info (device loop0): force clearing of disk cache
[  177.740645][ T8428] BTRFS info (device loop0): setting nodatacow, compression disabled
[  177.749369][ T8428] BTRFS info (device loop0): disabling free space tree
[  177.766916][ T8429] BTRFS info (device loop3): enabling ssd optimizations
[  177.796370][   T28] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  177.805176][ T8429] BTRFS info (device loop3): auto enabling async discard
[  177.907445][ T8428] BTRFS info (device loop0): enabling ssd optimizations
[  177.914462][ T8428] BTRFS info (device loop0): auto enabling async discard
[  177.959058][ T8428] BTRFS info (device loop0): rebuilding free space tree
[  178.041136][   T28] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  178.076277][   T28] usb 2-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  178.085353][   T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.096398][ T8428] BTRFS info (device loop0): disabling free space tree
[  178.101329][ T5762] BTRFS info (device loop3): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  178.103308][ T8428] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  178.159788][   T28] usb 2-1: config 0 descriptor??
[  178.170503][ T8428] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  178.625718][   T28] nintendo 0003:057E:200E.0005: unbalanced delimiter at end of report description
[  178.695034][   T28] nintendo 0003:057E:200E.0005: HID parse failed
[  178.786892][   T28] nintendo 0003:057E:200E.0005: probe - fail = -22
[  178.793533][   T28] nintendo: probe of 0003:057E:200E.0005 failed with error -22
[  178.820080][ T5761] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  178.838695][   T28] usb 2-1: USB disconnect, device number 11
[  179.153552][ T8502] netlink: 'syz.3.940': attribute type 15 has an invalid length.
[  179.471590][ T8514] loop4: detected capacity change from 0 to 16
[  179.514013][ T8514] erofs: (device loop4): mounted with root inode @ nid 36.
[  179.522996][ T8516] netlink: 20 bytes leftover after parsing attributes in process `syz.1.946'.
[  179.597017][ T8517] netlink: 20 bytes leftover after parsing attributes in process `syz.1.946'.
[  180.118326][ T8538] netlink: 'syz.0.956': attribute type 2 has an invalid length.
[  180.147555][ T8538] netlink: 28 bytes leftover after parsing attributes in process `syz.0.956'.
[  180.700819][ T8555] loop0: detected capacity change from 0 to 1024
[  180.712228][ T8557] can0: slcan on ttyS3.
[  180.798480][ T8555] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.816479][ T8555] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.831374][ T8557] can0 (unregistered): slcan off ttyS3.
[  180.921182][ T5761] EXT4-fs error (device loop0): ext4_readdir:263: inode #2: block 16: comm syz-executor: path /222/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0
[  180.969309][ T8562] can0: slcan on ttyS3.
[  180.983687][ T5761] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /222/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  181.009628][ T5761] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  181.044964][ T5761] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /222/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  181.067437][ T5761] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  181.117846][ T8556] can0 (unregistered): slcan off ttyS3.
[  181.149767][ T5761] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /222/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  181.171805][ T5761] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  181.193257][ T5761] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /222/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  181.216149][ T5761] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  181.266826][ T5761] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /222/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  181.367900][ T8574] loop3: detected capacity change from 0 to 1024
[  181.486776][ T8579] netlink: 428 bytes leftover after parsing attributes in process `syz.4.974'.
[  181.534656][ T8579] netlink: 104 bytes leftover after parsing attributes in process `syz.4.974'.
[  181.582457][   T11] hfsplus: b-tree write err: -5, ino 8
[  181.904872][ T8590] loop3: detected capacity change from 0 to 1024
[  181.991758][ T8590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.028283][ T8590] ext4 filesystem being mounted at /265/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.181113][ T5762] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 16: comm syz-executor: path /265/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0
[  182.214650][ T5762] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /265/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  182.243687][ T5762] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  182.289054][ T5762] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /265/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  182.314978][ T5761] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.333938][ T5762] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  182.364237][ T5762] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /265/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  182.410157][ T5762] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  182.446431][ T5762] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /265/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  182.482740][ T2117] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.503472][ T5762] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  182.541596][ T5762] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /265/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  182.735174][ T2117] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.824699][ T2117] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.934952][ T8601] loop1: detected capacity change from 0 to 1024
[  182.962061][ T2117] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.019097][ T8601] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  183.491228][   T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  183.511323][   T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  183.521300][   T50] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  183.540413][   T50] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  183.563329][   T50] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  183.576498][   T50] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  183.619982][ T5762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.005822][ T8612] loop4: detected capacity change from 0 to 2048
[  184.066212][ T8612] hpfs: filesystem error: invalid number of hotfixes: 266, used: 2; already mounted read-only
[  184.091515][ T8612] hpfs: filesystem error: improperly stopped
[  184.106530][ T8612] hpfs: filesystem error: sector(s) 'dir_band' badly placed at 7b318cc2
[  184.128689][ T8615] netlink: 15999 bytes leftover after parsing attributes in process `syz.1.992'.
[  184.592182][ T8607] chnl_net:caif_netlink_parms(): no params data found
[  184.636238][   T23] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  184.644530][ T5778] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  184.655174][ T5778] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  184.666591][ T5778] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  184.687807][ T5778] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  184.707998][ T5778] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  184.715324][ T5778] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  184.878409][   T23] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  184.886992][   T23] usb 5-1: config 0 has no interface number 0
[  184.902953][   T23] usb 5-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  184.912189][   T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.920496][   T23] usb 5-1: Product: syz
[  184.924698][   T23] usb 5-1: Manufacturer: syz
[  184.929412][   T23] usb 5-1: SerialNumber: syz
[  184.936416][   T23] usb 5-1: config 0 descriptor??
[  185.024297][ T8607] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.033216][ T8607] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.040672][ T8607] bridge_slave_0: entered allmulticast mode
[  185.048382][ T8607] bridge_slave_0: entered promiscuous mode
[  185.119158][ T8607] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.136046][ T8607] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.150697][   T23] usb 5-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  185.152568][ T8607] bridge_slave_1: entered allmulticast mode
[  185.167843][   T23] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  185.187061][   T23] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  185.189665][ T8607] bridge_slave_1: entered promiscuous mode
[  185.196608][   T23] usb 5-1: media controller created
[  185.265836][   T23] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  185.382260][ T8637] loop1: detected capacity change from 0 to 4096
[  185.392133][ T8637] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  185.403338][   T23] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  185.426042][ T8607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  185.452122][ T2117] hsr_slave_0: left promiscuous mode
[  185.459343][ T2117] hsr_slave_1: left promiscuous mode
[  185.465477][ T2117] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  185.473426][ T2117] batman_adv: batadv0: Removing interface: batadv_slave_0
[  185.481662][ T2117] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  185.489865][ T2117] batman_adv: batadv0: Removing interface: batadv_slave_1
[  185.498302][ T2117] bridge_slave_1: left allmulticast mode
[  185.504103][ T2117] bridge_slave_1: left promiscuous mode
[  185.510078][ T2117] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.519221][ T8637] ntfs: volume version 3.1.
[  185.519842][ T2117] bridge_slave_0: left allmulticast mode
[  185.530501][ T2117] bridge_slave_0: left promiscuous mode
[  185.538733][ T2117] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.597462][   T23] usb 5-1: USB disconnect, device number 2
[  185.657723][   T50] Bluetooth: hci0: command tx timeout
[  185.710870][ T2117] veth1_macvtap: left promiscuous mode
[  185.725002][ T2117] veth0_macvtap: left promiscuous mode
[  185.730801][ T2117] veth1_vlan: left promiscuous mode
[  185.737510][ T2117] veth0_vlan: left promiscuous mode
[  186.107325][ T8644] loop4: detected capacity change from 0 to 1024
[  186.202866][ T8644] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.244300][ T8644] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.259406][ T8640] loop1: detected capacity change from 0 to 32768
[  186.279437][ T8640] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.1000 (8640)
[  186.296116][   T50] Bluetooth: hci1: command 0x0406 tx timeout
[  186.341879][ T8640] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  186.364439][   T27] audit: type=1800 audit(1751312130.629:34): pid=8644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1002" name="file1" dev="loop4" ino=15 res=0 errno=0
[  186.372027][ T8640] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  186.431811][ T8640] BTRFS info (device loop1): force clearing of disk cache
[  186.462665][ T8640] BTRFS info (device loop1): setting nodatacow, compression disabled
[  186.469173][ T7845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.496868][ T8640] BTRFS info (device loop1): turning off barriers
[  186.503348][ T8640] BTRFS info (device loop1): enabling auto defrag
[  186.526076][ T8640] BTRFS info (device loop1): turning on sync discard
[  186.546794][ T8640] BTRFS warning (device loop1): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  186.568275][ T8640] BTRFS info (device loop1): trying to use backup root at mount time
[  186.583319][ T8640] BTRFS info (device loop1): enabling ssd optimizations
[  186.592994][ T8640] BTRFS info (device loop1): using spread ssd allocation scheme
[  186.600951][ T8640] BTRFS info (device loop1): using free space tree
[  186.751696][   T42] BTRFS warning (device loop1): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0xb6fb6650 level 0
[  186.767506][ T8665] loop4: detected capacity change from 0 to 512
[  186.781536][ T5776] Bluetooth: hci3: command tx timeout
[  186.795576][ T8665] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  186.831221][ T8640] BTRFS warning (device loop1): couldn't read tree root
[  186.859403][ T8640] BTRFS warning (device loop1): try to load backup roots slot 1
[  186.864682][ T8665] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec018, mo2=0002]
[  186.889779][ T8665] System zones: 1-12
[  186.891677][   T42] BTRFS warning (device loop1): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x7a216cc0 level 0
[  186.893970][ T8665] EXT4-fs (loop4): orphan cleanup on readonly fs
[  186.913705][ T8665] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2867: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  186.928063][ T8665] EXT4-fs (loop4): 1 truncate cleaned up
[  186.934889][ T8665] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  186.948560][ T8640] BTRFS warning (device loop1): couldn't read tree root
[  186.955622][ T8640] BTRFS warning (device loop1): try to load backup roots slot 2
[  186.984628][ T1139] BTRFS error (device loop1): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  187.022318][ T8640] BTRFS warning (device loop1): couldn't read tree root
[  187.035308][ T7845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.045188][ T8640] BTRFS warning (device loop1): try to load backup roots slot 3
[  187.120536][ T8640] BTRFS info (device loop1): rebuilding free space tree
[  187.233519][ T8640] BTRFS info (device loop1): checking UUID tree
[  187.464958][ T5764] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  187.488958][ T2117] team0 (unregistering): Port device team_slave_1 removed
[  187.614239][ T2117] team0 (unregistering): Port device team_slave_0 removed
[  187.737630][ T5776] Bluetooth: hci0: command tx timeout
[  187.787629][ T2117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  187.917564][ T2117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  188.236475][ T8675] loop4: detected capacity change from 0 to 32768
[  188.310595][   T27] audit: type=1800 audit(1751312132.569:35): pid=8675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1007" name="file1" dev="loop4" ino=7 res=0 errno=0
[  188.745643][ T8679] loop1: detected capacity change from 0 to 40427
[  188.764795][ T8679] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  188.788057][ T8679] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  188.832368][ T8679] F2FS-fs (loop1): invalid crc value
[  188.856410][ T5776] Bluetooth: hci3: command tx timeout
[  188.889510][ T8679] F2FS-fs (loop1): Found nat_bits in checkpoint
[  188.987678][ T8679] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  189.000974][ T8679] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  189.012765][ T2117] bond0 (unregistering): Released all slaves
[  189.151311][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.162942][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.171037][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.178940][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.186966][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.194625][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.202706][ T8679] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  189.247049][ T8607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  189.417642][ T8607] team0: Port device team_slave_0 added
[  189.466756][ T8607] team0: Port device team_slave_1 added
[  189.548925][ T8690] loop4: detected capacity change from 0 to 256
[  189.606641][   T27] audit: type=1800 audit(1751312133.869:36): pid=8690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1011" name="file1" dev="loop4" ino=1048619 res=0 errno=0
[  189.642785][ T8607] batman_adv: batadv0: Adding interface: batadv_slave_0
[  189.665929][ T8607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.692998][   T27] audit: type=1800 audit(1751312133.909:37): pid=8690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1011" name="file1" dev="loop4" ino=1048619 res=0 errno=0
[  189.720980][ T8691] FAT-fs (loop4): error, corrupted file size (i_pos 196, 2097152)
[  189.729827][ T8607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  189.750845][ T8624] chnl_net:caif_netlink_parms(): no params data found
[  189.790663][ T8691] FAT-fs (loop4): error, corrupted file size (i_pos 196, 2097152)
[  189.814455][ T8607] batman_adv: batadv0: Adding interface: batadv_slave_1
[  189.816264][ T5776] Bluetooth: hci0: command tx timeout
[  189.825936][ T8607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.885941][ T8607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  190.167013][ T8695] loop4: detected capacity change from 0 to 2048
[  190.188246][ T8607] hsr_slave_0: entered promiscuous mode
[  190.202217][ T8607] hsr_slave_1: entered promiscuous mode
[  190.212527][ T8607] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  190.230554][ T8695] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  190.242872][ T8607] Cannot create hsr debugfs directory
[  190.280492][ T8624] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.291061][ T8624] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.301922][ T8624] bridge_slave_0: entered allmulticast mode
[  190.321532][ T8624] bridge_slave_0: entered promiscuous mode
[  190.336430][ T7845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.395645][ T2117] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.444701][ T8624] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.456166][ T8624] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.486178][ T8624] bridge_slave_1: entered allmulticast mode
[  190.494095][ T8624] bridge_slave_1: entered promiscuous mode
[  190.563943][ T2117] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.613680][ T8624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.640383][ T8624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.686970][ T2117] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.759914][ T8624] team0: Port device team_slave_0 added
[  190.791973][ T2117] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.834444][ T8624] team0: Port device team_slave_1 added
[  190.929394][ T8624] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.936486][ T5776] Bluetooth: hci3: command tx timeout
[  190.958267][ T8624] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.031825][ T8624] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  191.059712][ T8624] batman_adv: batadv0: Adding interface: batadv_slave_1
[  191.082314][ T8624] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  191.084138][ T8714] loop4: detected capacity change from 0 to 4096
[  191.115076][ T8624] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.129762][ T8714] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  191.272717][ T8624] hsr_slave_0: entered promiscuous mode
[  191.283024][ T8624] hsr_slave_1: entered promiscuous mode
[  191.290775][ T8714] ntfs3: loop4: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" failed to parse mft record
[  191.306072][ T5768] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  191.328386][ T8624] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  191.338950][ T8714] ntfs3: loop4: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" failed to parse mft record
[  191.340896][ T8624] Cannot create hsr debugfs directory
[  191.434825][   T42] ntfs3: loop4: ino=1e, failed to parse mft record
[  191.556991][ T5768] usb 2-1: too many configurations: 151, using maximum allowed: 8
[  191.568139][ T8607] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  191.573828][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.606499][ T5768] usb 2-1: config 0 has no interfaces?
[  191.613915][ T2117] tipc: Left network mode
[  191.619966][ T8607] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  191.633175][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.652176][ T5768] usb 2-1: config 0 has no interfaces?
[  191.653670][ T8607] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  191.659034][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.674833][ T5768] usb 2-1: config 0 has no interfaces?
[  191.684104][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.694317][ T5768] usb 2-1: config 0 has no interfaces?
[  191.702073][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.704081][ T8607] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  191.728861][ T5768] usb 2-1: config 0 has no interfaces?
[  191.747969][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.763872][ T5768] usb 2-1: config 0 has no interfaces?
[  191.772289][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.794351][ T5768] usb 2-1: config 0 has no interfaces?
[  191.815552][ T5768] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.843289][ T5768] usb 2-1: config 0 has no interfaces?
[  191.858868][ T5768] usb 2-1: New USB device found, idVendor=04d8, idProduct=0082, bcdDevice=ce.b7
[  191.873189][ T5768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=130
[  191.883150][ T5768] usb 2-1: Product: syz
[  191.892722][ T5768] usb 2-1: Manufacturer: syz
[  191.899122][ T5776] Bluetooth: hci0: command tx timeout
[  191.913734][ T5768] usb 2-1: SerialNumber: syz
[  191.928907][ T5768] usb 2-1: config 0 descriptor??
[  192.223559][ T8624] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  192.269497][ T8624] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  192.290128][ T8624] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  192.312191][ T8624] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  192.398617][   T23] usb 2-1: USB disconnect, device number 12
[  192.437722][ T8735] wireguard0: entered promiscuous mode
[  192.443208][ T8735] wireguard0: entered allmulticast mode
[  192.501956][ T8607] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.607449][ T8607] 8021q: adding VLAN 0 to HW filter on device team0
[  192.686482][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state
[  192.693672][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state
[  192.778037][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state
[  192.786146][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state
[  192.885842][ T8624] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.933014][ T8607] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  193.017366][ T5776] Bluetooth: hci3: command tx timeout
[  193.054462][ T8752] loop4: detected capacity change from 0 to 64
[  193.078298][ T8752] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  193.100677][ T8624] 8021q: adding VLAN 0 to HW filter on device team0
[  193.266083][ T2117] hsr_slave_0: left promiscuous mode
[  193.276571][ T2117] hsr_slave_1: left promiscuous mode
[  193.310771][ T8758] 9p: Unknown uid 00000000004294967295
[  193.330995][ T2117] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.358303][ T2117] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.394868][ T2117] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  193.416306][ T2117] batman_adv: batadv0: Removing interface: batadv_slave_1
[  193.452958][ T2117] bridge_slave_1: left allmulticast mode
[  193.468004][ T2117] bridge_slave_1: left promiscuous mode
[  193.475349][ T2117] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.499885][ T2117] bridge_slave_0: left allmulticast mode
[  193.505577][ T2117] bridge_slave_0: left promiscuous mode
[  193.517527][ T2117] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.575283][ T2117] veth1_to_batadv: left promiscuous mode
[  193.597368][ T2117] veth1_macvtap: left promiscuous mode
[  193.602939][ T2117] veth0_macvtap: left promiscuous mode
[  193.628843][ T2117] veth1_vlan: left promiscuous mode
[  193.634246][ T2117] veth0_vlan: left promiscuous mode
[  193.672579][   T27] audit: type=1326 audit(1751312137.939:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8767 comm="syz.1.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  193.742627][   T27] audit: type=1326 audit(1751312137.939:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8767 comm="syz.1.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  193.817490][   T27] audit: type=1326 audit(1751312137.939:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8767 comm="syz.1.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  193.895729][   T27] audit: type=1326 audit(1751312137.939:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8767 comm="syz.1.1037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  194.461483][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  194.468264][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  194.522235][ T2117] team0 (unregistering): Port device team_slave_1 removed
[  194.574749][ T2117] team0 (unregistering): Port device team_slave_0 removed
[  194.624041][ T2117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  194.675002][ T2117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  195.200613][ T2117] bond0 (unregistering): Released all slaves
[  195.337842][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.344981][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.432124][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.439322][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.632097][ T8607] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.774325][ T8791] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1045'.
[  195.826094][ T5805] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  195.960571][ T2117] IPVS: stop unused estimator thread 0...
[  195.963007][ T8624] 8021q: adding VLAN 0 to HW filter on device batadv0
[  196.037901][ T5805] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  196.053886][ T5805] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  196.074574][ T5805] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  196.086455][ T5805] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.104601][ T8784] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  196.118871][ T5805] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[  196.129750][ T8798] loop4: detected capacity change from 0 to 2048
[  196.263651][ T8798] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.298177][ T8607] veth0_vlan: entered promiscuous mode
[  196.435499][ T7845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.447192][ T8607] veth1_vlan: entered promiscuous mode
[  196.461130][ T8624] veth0_vlan: entered promiscuous mode
[  196.486362][ T5770] usb 2-1: USB disconnect, device number 13
[  196.533633][ T8624] veth1_vlan: entered promiscuous mode
[  196.579980][ T8607] veth0_macvtap: entered promiscuous mode
[  196.615046][ T8607] veth1_macvtap: entered promiscuous mode
[  196.664715][ T8624] veth0_macvtap: entered promiscuous mode
[  196.688625][ T8607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.705977][ T8607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.722803][ T8607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.746569][ T8607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.760918][ T8607] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.772582][ T8607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.784434][ T8607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.794895][ T8607] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  196.812979][ T8607] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.825117][ T8607] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.848883][ T8624] veth1_macvtap: entered promiscuous mode
[  196.870411][ T8607] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.881901][ T8607] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.892138][ T8607] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.900921][ T8607] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.930418][ T8624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  196.965922][ T8624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  196.986277][ T8624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.005912][ T8624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.024103][ T8624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.033562][ T8815] cifs: Unknown parameter 'f,'
[  197.040203][ T8624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.057387][ T8624] batman_adv: batadv0: Interface activated: batadv_slave_0
[  197.103475][ T8624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.117772][ T8624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.132662][ T8817] loop4: detected capacity change from 0 to 2048
[  197.139037][ T8624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.139056][ T8624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.139073][ T8624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  197.139084][ T8624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.140732][ T8624] batman_adv: batadv0: Interface activated: batadv_slave_1
[  197.195560][ T8817] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  197.202633][ T8624] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  197.214822][ T8624] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  197.229333][ T8624] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.236226][ T8817] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  197.241397][ T8624] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.260379][ T8817] UDF-fs: Scanning with blocksize 512 failed
[  197.323256][ T8817] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  197.426567][ T1139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.444850][ T1139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.474818][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.505781][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.544842][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.581237][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.618181][ T1093] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.633019][ T1093] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.784787][ T8823] loop4: detected capacity change from 0 to 4096
[  197.819192][ T8823] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512).
[  198.048920][ T8831] loop1: detected capacity change from 0 to 128
[  198.143238][ T8831] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  198.213728][ T8831] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  198.340040][ T8839] loop5: detected capacity change from 0 to 256
[  198.632170][ T8845] netdevsim netdevsim1: Direct firmware load for ö×0”©ÛPq•ä…õD"€2ðNÿktT·Wj«³%¼Nµ§ failed with error -2
[  198.664571][ T8845] netdevsim netdevsim1: Falling back to sysfs fallback for: ö×0”©ÛPq•ä…õD"€2ðNÿktT·Wj«³%¼Nµ§
[  199.448426][ T8877] loop5: detected capacity change from 0 to 2048
[  199.499849][ T8877] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  199.835963][ T5770] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  200.049302][ T5770] usb 7-1: Using ep0 maxpacket: 32
[  200.062080][ T5770] usb 7-1: config 0 has an invalid interface number: 85 but max is 0
[  200.076003][ T5770] usb 7-1: config 0 has no interface number 0
[  200.084323][ T5770] usb 7-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  200.105692][ T5770] usb 7-1: config 0 interface 85 has no altsetting 0
[  200.128880][ T5770] usb 7-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  200.145966][ T5770] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.154082][ T5770] usb 7-1: Product: syz
[  200.175995][ T5770] usb 7-1: Manufacturer: syz
[  200.180633][ T5770] usb 7-1: SerialNumber: syz
[  200.197625][ T5770] usb 7-1: config 0 descriptor??
[  200.242955][ T8892] loop4: detected capacity change from 0 to 32768
[  200.275992][   T28] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  200.290614][ T8892] JBD2: Ignoring recovery information on journal
[  200.350878][ T8892] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  200.494725][   T28] usb 6-1: Using ep0 maxpacket: 16
[  200.510989][   T28] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  200.535385][   T28] usb 6-1: config 0 has no interface number 0
[  200.558708][   T28] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  200.570546][ T7845] ocfs2: Unmounting device (7,4) on (node local)
[  200.601124][   T28] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  200.612430][   T28] usb 6-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[  200.622071][   T28] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.643817][   T28] usb 6-1: config 0 descriptor??
[  200.843038][ T5770] appletouch 7-1:0.85: Geyser mode initialized.
[  200.886614][ T5770] input: appletouch as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.85/input/input19
[  201.097348][   T28] hid (null): invalid report_count 1405183649
[  201.155727][ T5768] usb 7-1: USB disconnect, device number 2
[  201.196510][ T5768] appletouch 7-1:0.85: input: appletouch disconnected
[  201.312378][   T28] input: HID 28bd:0071 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.1/0003:28BD:0071.0006/input/input20
[  201.342430][   T28] input: HID 28bd:0071 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.1/0003:28BD:0071.0006/input/input21
[  201.393226][   T28] uclogic 0003:28BD:0071.0006: input,hidraw0: USB HID v0.02 Keypad [HID 28bd:0071] on usb-dummy_hcd.5-1/input1
[  201.574697][ T5768] usb 6-1: USB disconnect, device number 2
[  201.821380][ T8917] input: syz1 as /devices/virtual/input/input22
[  201.980065][ T5776] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  201.989054][ T5776] Bluetooth: hci3: Injecting HCI hardware error event
[  201.999409][   T50] Bluetooth: hci3: hardware error 0x00
[  202.119210][   T27] audit: type=1326 audit(1751312146.389:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  202.141641][   T27] audit: type=1326 audit(1751312146.389:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  202.216549][   T27] audit: type=1326 audit(1751312146.389:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  202.280460][   T27] audit: type=1326 audit(1751312146.389:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  202.316038][    T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  202.330701][   T27] audit: type=1326 audit(1751312146.389:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd35bd8e929 code=0x7ffc0000
[  202.517139][    T9] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  202.525448][    T9] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  202.547404][    T9] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  202.575952][    T9] usb 5-1: config 220 has no interface number 2
[  202.582435][    T9] usb 5-1: config 220 interface 1 altsetting 5 bulk endpoint 0x1 has invalid maxpacket 16
[  202.603281][    T9] usb 5-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  202.645967][    T9] usb 5-1: config 220 interface 0 has no altsetting 0
[  202.656263][    T9] usb 5-1: config 220 interface 76 has no altsetting 0
[  202.666420][ T8921] loop6: detected capacity change from 0 to 40427
[  202.672324][    T9] usb 5-1: config 220 interface 1 has no altsetting 0
[  202.690253][ T8921] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504)
[  202.708316][ T8921] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  202.728440][    T9] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  202.743175][ T8921] F2FS-fs (loop6): heap/no_heap options were deprecated
[  202.750494][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.750518][    T9] usb 5-1: Product: syz
[  202.750531][    T9] usb 5-1: Manufacturer: syz
[  202.750545][    T9] usb 5-1: SerialNumber: syz
[  202.809522][ T8921] F2FS-fs (loop6): invalid crc value
[  202.825486][ T8921] F2FS-fs (loop6): Found nat_bits in checkpoint
[  202.910617][ T8921] F2FS-fs (loop6): Start checkpoint disabled!
[  202.928553][ T8921] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  202.940865][ T8921] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  203.023356][    T9] uvcvideo 5-1:220.1: Unknown video format 00000000-0000-0000-0000-000000000000
[  203.044091][    T9] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  203.055634][    T9] usb 5-1: No valid video chain found.
[  203.064053][    T9] usb 5-1: selecting invalid altsetting 0
[  203.100453][    T9] usb 5-1: selecting invalid altsetting 0
[  203.126169][    T9] usbtest: probe of 5-1:220.1 failed with error -22
[  203.148508][    T9] usb 5-1: USB disconnect, device number 3
[  203.321216][ T2117] kworker/u4:7: attempt to access beyond end of device
[  203.321216][ T2117] loop6: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  203.355156][ T2117] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  203.370786][ T2117] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  203.379133][ T2117] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  203.557397][ T8948] loop5: detected capacity change from 0 to 512
[  203.581749][ T8948] EXT4-fs: Ignoring removed bh option
[  203.616576][ T8948] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  203.654700][ T8948] EXT4-fs (loop5): invalid journal inode
[  203.660870][ T8948] EXT4-fs (loop5): can't get journal size
[  203.752784][ T8948] EXT4-fs (loop5): 1 truncate cleaned up
[  203.795241][ T8948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.850383][ T8956] loop4: detected capacity change from 0 to 4096
[  203.885976][ T8956] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512).
[  203.977309][ T8948] ERROR: device name not specified.
[  204.057306][   T50] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  204.134953][ T8607] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.286289][    T9] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  204.486338][    T9] usb 2-1: Using ep0 maxpacket: 16
[  204.498890][    T9] usb 2-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.521226][    T9] usb 2-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  204.576846][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  204.588719][    T9] usb 2-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00
[  204.621662][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.647333][    T9] usb 2-1: config 0 descriptor??
[  204.875835][ T8964] loop4: detected capacity change from 0 to 32768
[  204.891716][ T8980] loop5: detected capacity change from 0 to 2048
[  204.926790][ T8980] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  204.934530][ T8980] UDF-fs: Scanning with blocksize 512 failed
[  204.982421][ T8964] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  205.093284][    T9] lenovo 0003:17EF:6009.0007: unknown main item tag 0x0
[  205.107348][ T8980] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  205.137427][    T9] lenovo 0003:17EF:6009.0007: unknown main item tag 0x0
[  205.144886][    T9] lenovo 0003:17EF:6009.0007: unknown main item tag 0x0
[  205.173691][    T9] lenovo 0003:17EF:6009.0007: unknown main item tag 0x0
[  205.210193][    T9] lenovo 0003:17EF:6009.0007: hidraw0: USB HID v0.00 Device [HID 17ef:6009] on usb-dummy_hcd.1-1/input0
[  205.304973][ T7845] (syz-executor,7845,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  205.353627][ T7845] ocfs2: Unmounting device (7,4) on (node local)
[  205.370960][    T9] usb 2-1: USB disconnect, device number 14
[  205.756664][   T23] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  205.833547][ T9002] loop5: detected capacity change from 0 to 4096
[  205.849384][ T9002] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[  205.862799][ T9006] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1133'.
[  205.952674][ T9002] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  205.974988][ T9002] ntfs3: loop5: Failed to initialize $Extend/$ObjId.
[  205.984066][   T23] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.026926][   T23] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.053400][ T9008] loop4: detected capacity change from 0 to 512
[  206.056311][   T23] usb 7-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice= 0.00
[  206.087541][ T9008] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  206.100506][   T23] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.138777][ T9008] EXT4-fs (loop4): 1 truncate cleaned up
[  206.148115][   T23] usb 7-1: config 0 descriptor??
[  206.167095][ T9008] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  206.283932][ T7845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.572294][   T23] apple 0003:05AC:0262.0008: unbalanced delimiter at end of report description
[  206.586189][ T5770] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  206.601960][   T23] apple 0003:05AC:0262.0008: parse failed
[  206.626234][   T23] apple: probe of 0003:05AC:0262.0008 failed with error -22
[  206.788045][ T5770] usb 6-1: Using ep0 maxpacket: 8
[  206.829316][ T5770] usb 6-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  206.847629][ T5770] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.859764][ T5770] usb 6-1: Product: syz
[  206.873472][ T5770] usb 6-1: Manufacturer: syz
[  206.878656][    T9] usb 7-1: USB disconnect, device number 3
[  206.885198][ T5770] usb 6-1: SerialNumber: syz
[  206.899616][ T5770] usb 6-1: config 0 descriptor??
[  207.156196][ T5770] gspca_main: sunplus-2.14.0 probing 04a5:3003
[  207.177614][ T5770] gspca_sunplus: reg_w_riv err -71
[  207.184882][ T5770] sunplus: probe of 6-1:0.0 failed with error -71
[  207.201241][ T5770] usb 6-1: USB disconnect, device number 3
[  207.545099][ T9028] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1141'.
[  207.567039][ T9028] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1141'.
[  207.748997][ T9033] kvm: kvm [9032]: vcpu2, guest rIP: 0xfff0 Unhandled RDMSR(0x40000061)
[  207.855992][   T27] audit: type=1326 audit(1751312152.109:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  207.943144][   T27] audit: type=1326 audit(1751312152.109:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  208.021584][   T27] audit: type=1326 audit(1751312152.119:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  208.073013][   T27] audit: type=1326 audit(1751312152.119:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  208.105253][   T27] audit: type=1326 audit(1751312152.119:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  208.136854][   T27] audit: type=1326 audit(1751312152.149:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  208.165172][ T9041] bridge0: entered promiscuous mode
[  208.175808][ T9045] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1148'.
[  208.186865][   T27] audit: type=1326 audit(1751312152.169:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f320fb8e929 code=0x7ffc0000
[  208.230338][   T27] audit: type=1326 audit(1751312152.169:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f320fb858e7 code=0x7ffc0000
[  208.291621][   T27] audit: type=1326 audit(1751312152.169:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f320fb2ab19 code=0x7ffc0000
[  208.335212][   T27] audit: type=1326 audit(1751312152.169:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9038 comm="syz.5.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f320fb858e7 code=0x7ffc0000
[  208.400065][ T9055] loop6: detected capacity change from 0 to 1024
[  208.420939][ T9053] 9pnet: p9_errstr2errno: server reported unknown error 
[  208.446138][ T9055] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  208.503491][ T9055] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.659744][ T9055] EXT4-fs error (device loop6): ext4_xattr_block_find:1886: inode #15: comm syz.6.1151: corrupted xattr block 161: invalid header
[  208.673882][ T9055] EXT4-fs (loop6): Remounting filesystem read-only
[  208.756909][ T8624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.354144][ T9089] loop6: detected capacity change from 0 to 1764
[  209.416660][    T9] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  209.519877][ T5139] udevd[5139]: worker [9022] terminated by signal 33 (Unknown signal 33)
[  209.529106][ T5139] udevd[5139]: worker [9022] failed while handling '/devices/virtual/block/loop6'
[  209.558601][ T9097] loop6: detected capacity change from 0 to 512
[  209.589428][ T9097] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.611071][ T9097] ext4 filesystem being mounted at /32/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  209.636297][    T9] usb 2-1: Using ep0 maxpacket: 16
[  209.643398][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  209.658156][    T9] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  209.668435][ T9097] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #2: comm syz.6.1169: corrupted inode contents
[  209.671576][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.691384][ T9097] EXT4-fs error (device loop6): ext4_dirty_inode:6106: inode #2: comm syz.6.1169: mark_inode_dirty error
[  209.698063][    T9] usb 2-1: config 0 descriptor??
[  209.741100][ T9097] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #2: comm syz.6.1169: corrupted inode contents
[  209.765042][ T9103] EXT4-fs error (device loop6): ext4_do_update_inode:5230: inode #2: comm syz.6.1169: corrupted inode contents
[  209.841668][ T8624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.141081][    T9] hid (null): global environment stack overflow
[  210.161837][    T9] hid (null): invalid report_size 18151
[  210.175939][    T9] hid (null): global environment stack overflow
[  210.432866][   T23] usb 2-1: USB disconnect, device number 15
[  210.554628][ T9120] loop6: detected capacity change from 0 to 512
[  210.652893][ T9120] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  210.689023][ T9120] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.814997][ T9127] loop5: detected capacity change from 0 to 1024
[  210.941478][   T58] hfsplus: b-tree write err: -5, ino 4
[  211.047549][ T8624] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  211.714376][ T9157] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1194'.
[  211.734520][ T9157] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1194'.
[  211.754791][ T9157] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1194'.
[  211.796041][ T9157] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1194'.
[  211.833179][ T9157] netlink: 'syz.6.1194': attribute type 6 has an invalid length.
[  212.772848][ T9166] loop6: detected capacity change from 0 to 32768
[  212.813879][ T9183] gretap0: entered promiscuous mode
[  212.848911][ T9166] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  212.856333][ T9183] vlan2: entered promiscuous mode
[  212.936112][   T28] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  213.081845][ T8624] 
[  213.084210][ T8624] ======================================================
[  213.091227][ T8624] WARNING: possible circular locking dependency detected
[  213.098258][ T8624] 6.6.95-syzkaller #0 Not tainted
[  213.103282][ T8624] ------------------------------------------------------
[  213.110296][ T8624] syz-executor/8624 is trying to acquire lock:
[  213.116443][ T8624] ffff88805d4309d8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: __ocfs2_flush_truncate_log+0x351/0x10b0
[  213.127465][   T28] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  213.129579][ T8624] 
[  213.129579][ T8624] but task is already holding lock:
[  213.129587][ T8624] ffff88805700b498
[  213.141509][   T28] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.145931][ T8624]  (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}, at: ocfs2_flush_truncate_log+0x47/0x60
[  213.145979][ T8624] 
[  213.145979][ T8624] which lock already depends on the new lock.
[  213.145979][ T8624] 
[  213.145984][ T8624] 
[  213.145984][ T8624] the existing dependency chain (in reverse order) is:
[  213.145990][ T8624] 
[  213.145990][ T8624] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}:
[  213.198942][ T8624]        down_write+0x97/0x1f0
[  213.203717][ T8624]        __ocfs2_move_extents_range+0x1a65/0x3360
[  213.206746][   T28] usb 6-1: config 0 descriptor??
[  213.210130][ T8624]        ocfs2_move_extents+0x379/0x940
[  213.220598][ T8624]        ocfs2_ioctl_move_extents+0x4e1/0x6c0
[  213.222204][   T28] cp210x 6-1:0.0: cp210x converter detected
[  213.226661][ T8624]        ocfs2_ioctl+0x195/0x750
[  213.226681][ T8624]        __se_sys_ioctl+0xfd/0x170
[  213.226698][ T8624]        do_syscall_64+0x55/0xb0
[  213.226715][ T8624]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  213.253909][ T8624] 
[  213.253909][ T8624] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}:
[  213.264433][ T8624]        __lock_acquire+0x2ddb/0x7c80
[  213.269809][ T8624]        lock_acquire+0x197/0x410
[  213.274835][ T8624]        down_write+0x97/0x1f0
[  213.279602][ T8624]        __ocfs2_flush_truncate_log+0x351/0x10b0
[  213.285924][ T8624]        ocfs2_flush_truncate_log+0x4f/0x60
[  213.291805][ T8624]        ocfs2_sync_fs+0x117/0x310
[  213.296903][ T8624]        sync_filesystem+0x1c2/0x220
[  213.302174][ T8624]        generic_shutdown_super+0x6f/0x2b0
[  213.307960][ T8624]        kill_block_super+0x44/0x90
[  213.313142][ T8624]        deactivate_locked_super+0x97/0x100
[  213.319022][ T8624]        cleanup_mnt+0x429/0x4c0
[  213.323945][ T8624]        task_work_run+0x1ce/0x250
[  213.329045][ T8624]        exit_to_user_mode_loop+0xe6/0x110
[  213.334841][ T8624]        exit_to_user_mode_prepare+0xb1/0x140
[  213.340897][ T8624]        syscall_exit_to_user_mode+0x1a/0x50
[  213.346861][ T8624]        do_syscall_64+0x61/0xb0
[  213.351791][ T8624]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  213.358201][ T8624] 
[  213.358201][ T8624] other info that might help us debug this:
[  213.358201][ T8624] 
[  213.368410][ T8624]  Possible unsafe locking scenario:
[  213.368410][ T8624] 
[  213.375844][ T8624]        CPU0                    CPU1
[  213.381195][ T8624]        ----                    ----
[  213.386544][ T8624]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6);
[  213.393823][ T8624]                                lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5);
[  213.403615][ T8624]                                lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6);
[  213.413407][ T8624]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5);
[  213.420681][ T8624] 
[  213.420681][ T8624]  *** DEADLOCK ***
[  213.420681][ T8624] 
[  213.428806][ T8624] 2 locks held by syz-executor/8624:
[  213.434069][ T8624]  #0: ffff8880652880e0 (&type->s_umount_key#74){++++}-{3:3}, at: deactivate_super+0xa4/0xe0
[  213.444244][ T8624]  #1: ffff88805700b498 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}, at: ocfs2_flush_truncate_log+0x47/0x60
[  213.457372][ T8624] 
[  213.457372][ T8624] stack backtrace:
[  213.463257][ T8624] CPU: 0 PID: 8624 Comm: syz-executor Not tainted 6.6.95-syzkaller #0
[  213.471394][ T8624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  213.481441][ T8624] Call Trace:
[  213.484711][ T8624]  <TASK>
[  213.487636][ T8624]  dump_stack_lvl+0x16c/0x230
[  213.492310][ T8624]  ? load_image+0x3b0/0x3b0
[  213.496800][ T8624]  ? show_regs_print_info+0x20/0x20
[  213.501992][ T8624]  ? print_circular_bug+0x12b/0x1a0
[  213.507175][ T8624]  check_noncircular+0x2bd/0x3c0
[  213.512098][ T8624]  ? print_deadlock_bug+0x5d0/0x5d0
[  213.517281][ T8624]  ? lockdep_lock+0xe0/0x220
[  213.521868][ T8624]  ? _find_first_zero_bit+0xd3/0x100
[  213.527140][ T8624]  __lock_acquire+0x2ddb/0x7c80
[  213.532004][ T8624]  ? ocfs2_get_system_file_inode+0x1e3/0x7b0
[  213.537971][ T8624]  ? __lock_acquire+0x7c80/0x7c80
[  213.542978][ T8624]  ? verify_lock_unused+0x140/0x140
[  213.548165][ T8624]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  213.553790][ T8624]  ? do_raw_spin_lock+0x121/0x2c0
[  213.558802][ T8624]  ? mutex_unlock+0x10/0x10
[  213.563298][ T8624]  lock_acquire+0x197/0x410
[  213.567787][ T8624]  ? __ocfs2_flush_truncate_log+0x351/0x10b0
[  213.573767][ T8624]  ? ocfs2_get_system_file_inode+0x1f1/0x7b0
[  213.579751][ T8624]  ? __might_sleep+0xe0/0xe0
[  213.584327][ T8624]  ? read_lock_is_recursive+0x20/0x20
[  213.589688][ T8624]  ? ocfs2_fast_symlink_read_folio+0x530/0x530
[  213.595831][ T8624]  ? __wake_up+0x11f/0x190
[  213.600243][ T8624]  down_write+0x97/0x1f0
[  213.604474][ T8624]  ? __ocfs2_flush_truncate_log+0x351/0x10b0
[  213.610445][ T8624]  ? down_read_killable+0x340/0x340
[  213.615640][ T8624]  ? _raw_write_unlock+0x28/0x40
[  213.620576][ T8624]  ? jbd2_journal_unlock_updates+0x84/0xe0
[  213.626376][ T8624]  __ocfs2_flush_truncate_log+0x351/0x10b0
[  213.632175][ T8624]  ? ocfs2_truncate_log_needs_flush+0x2e0/0x2e0
[  213.638402][ T8624]  ? read_lock_is_recursive+0x20/0x20
[  213.643762][ T8624]  ? down_write+0x162/0x1f0
[  213.648253][ T8624]  ? down_read_killable+0x340/0x340
[  213.653435][ T8624]  ? __rwlock_init+0x150/0x150
[  213.658192][ T8624]  ocfs2_flush_truncate_log+0x4f/0x60
[  213.663555][ T8624]  ocfs2_sync_fs+0x117/0x310
[  213.668131][ T8624]  ? ocfs2_put_super+0x1c0/0x1c0
[  213.673059][ T8624]  ? writeback_inodes_sb_nr+0x30/0x30
[  213.678509][ T8624]  ? get_nr_dirty_inodes+0x1d4/0x220
[  213.683874][ T8624]  sync_filesystem+0x1c2/0x220
[  213.688630][ T8624]  generic_shutdown_super+0x6f/0x2b0
[  213.693900][ T8624]  kill_block_super+0x44/0x90
[  213.698567][ T8624]  deactivate_locked_super+0x97/0x100
[  213.703929][ T8624]  cleanup_mnt+0x429/0x4c0
[  213.708336][ T8624]  task_work_run+0x1ce/0x250
[  213.712915][ T8624]  ? task_work_cancel+0x240/0x240
[  213.717927][ T8624]  ? exit_to_user_mode_loop+0x3b/0x110
[  213.723462][ T8624]  exit_to_user_mode_loop+0xe6/0x110
[  213.728741][ T8624]  exit_to_user_mode_prepare+0xb1/0x140
[  213.734273][ T8624]  syscall_exit_to_user_mode+0x1a/0x50
[  213.739718][ T8624]  do_syscall_64+0x61/0xb0
[  213.744124][ T8624]  ? clear_bhb_loop+0x40/0x90
[  213.748788][ T8624]  ? clear_bhb_loop+0x40/0x90
[  213.753449][ T8624]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  213.759331][ T8624] RIP: 0033:0x7fdb5298fc57
[  213.763743][ T8624] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  213.783337][ T8624] RSP: 002b:00007ffc77e976c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  213.791743][ T8624] RAX: 0000000000000000 RBX: 00007fdb52a10925 RCX: 00007fdb5298fc57
[  213.799701][ T8624] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc77e97780
[  213.807660][ T8624] RBP: 00007ffc77e97780 R08: 0000000000000000 R09: 0000000000000000
[  213.815622][ T8624] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc77e98810
[  213.823577][ T8624] R13: 00007fdb52a10925 R14: 0000000000033fcc R15: 00007ffc77e98850
[  213.831547][ T8624]  </TASK>
[  213.863097][ T8624] ocfs2: Unmounting device (7,6) on (node local)
[  214.038802][   T28] cp210x 6-1:0.0: failed to get vendor val 0x000e size 3: -32
[  214.050222][   T28] usb 6-1: cp210x converter now attached to ttyUSB0
[  214.180041][ T9196] loop6: detected capacity change from 0 to 40427
[  214.188564][ T9196] F2FS-fs (loop6): Small segment_count (9 < 1 * 24)
[  214.195216][ T9196] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  214.208691][ T9196] F2FS-fs (loop6): Found nat_bits in checkpoint
[  214.248585][ T9196] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  214.255674][ T9196] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  214.281222][   T28] usb 6-1: USB disconnect, device number 4
[  214.297569][   T28] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  214.307550][ T8624] syz-executor: attempt to access beyond end of device
[  214.307550][ T8624] loop6: rw=2049, sector=40960, nr_sectors = 32 limit=40427
[  214.329936][   T28] cp210x 6-1:0.0: device disconnected
[  214.341971][ T8624] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  214.357407][ T8624] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  214.373118][ T8624] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  214.380278][ T8624] F2FS-fs (loop6): Stopped filesystem due to reason: 3