last executing test programs:

3.398385498s ago: executing program 0 (id=7538):
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000000)='.\x02\x00', 0x8c48, &(0x7f0000000600)=ANY=[@ANYBLOB='nojoliet,mode=0x00000000000000e4,dmode=0x0000000000000005,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,cruft,mode=0xfffffffffffffffb,utf8,session=0x0000000000000043,hide,dmode=0x000000000000001f,uid=', @ANYRESOCT, @ANYBLOB="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"/347], 0x1, 0x5a7, &(0x7f0000000f80)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000500)='./file0/file0\x00', 0x1310000, 0x0, 0x0, 0x0, &(0x7f0000000000))

2.838464907s ago: executing program 0 (id=7546):
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x4, &(0x7f00000001c0)={0x1, &(0x7f00000004c0)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
open_by_handle_at(0xffffffffffffffff, 0x0, 0x50d440)

2.838271627s ago: executing program 3 (id=7547):
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
close(0x3)

2.691250049s ago: executing program 0 (id=7549):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

2.574351121s ago: executing program 3 (id=7551):
syz_usb_connect(0x5, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000014da2108ab1204000000000000010902240001b30000040904410c17ff5d810009050f1f05e13f000009058303"], 0x0)
syz_open_dev$evdev(&(0x7f0000000140), 0xe, 0x480)

1.95837004s ago: executing program 1 (id=7559):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000000)=0x74000000)

1.899734201s ago: executing program 1 (id=7561):
r0 = syz_open_dev$vim2m(&(0x7f0000000180), 0x8008, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x10, 0x1, 0x3, "7e0efeac3d4fd6e0c46a2ca55aab2500b482b200f475a8f64100", 0x47425247})

1.828566722s ago: executing program 0 (id=7562):
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x1014800, &(0x7f0000000200)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRESDEC, @ANYRES16, @ANYBLOB="0cbd5b5353912a879413ea41a5629122f6276e175b189b44b947b5ed8f34c9675196c7f420a9b4778c892a009b17763f4dbda6a421bf154a20ef7653d70337286d09a41d27fbb619ff647f585a8577dd9c318e307ee0e9c3328c5093134a7c98153b0d68aba22a65e8773fad07b59a0c5437e47d4255e1e8658b9b5a0cf45c27f88d87d58476713ea75cc39cdeb6036614e0b73cfbcd4f9243e2124d8ff5112db88857c7b69007b6ff5355f42dac04033a790725615a827b96542e64ad60984b7626cc74628d2d76b1f32df646d70aa036bc7d42fd", @ANYRESHEX=0x0, @ANYRESHEX, @ANYRES32=0x0, @ANYBLOB="36f8c35371956e4f97a54fd2c44dba6172b1db9c34c1"], 0x1, 0xda6, &(0x7f0000003c80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)

1.738319413s ago: executing program 2 (id=7563):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1.728994553s ago: executing program 1 (id=7564):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f0000000040)={0x23, 0x3, 0x0, 0x83}, 0x10)

1.648783325s ago: executing program 2 (id=7565):
ioperm(0x4, 0x7cd, 0x1)
futex(&(0x7f000000cffc)=0x1, 0x1, 0x2, 0x0, 0x0, 0xfffffffc)

1.562286806s ago: executing program 1 (id=7566):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x10001, 0x0)

1.422757148s ago: executing program 2 (id=7567):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$TCGETS2(r0, 0x5435, 0x0)

1.397059309s ago: executing program 1 (id=7568):
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)

1.181423462s ago: executing program 0 (id=7569):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0xd18c9b60, &(0x7f0000000080)=[{&(0x7f0000000100)="e03f03002a000b05d25a806c8c6f94f90524fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)

1.118451263s ago: executing program 2 (id=7570):
r0 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r0, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba3704002cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

1.118059743s ago: executing program 1 (id=7571):
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000000)='./file1\x00', 0x810, &(0x7f0000000040)={[{@nossd_spread}, {@compress_algo={'compress', 0x3d, 'no'}}, {@enospc_debug}, {@nossd}, {@nodatasum}, {@autodefrag}, {@nossd}, {@max_inline={'max_inline', 0x3d, [0x6d, 0x33, 0x36, 0x39, 0x65, 0x70]}}]}, 0x1, 0x50f3, &(0x7f0000005140)="$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")
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x3376039, 0x0)

1.026074164s ago: executing program 2 (id=7572):
r0 = io_uring_setup(0x1ec1, &(0x7f0000000040)={0x0, 0xcba1, 0x8, 0x3, 0x2c0})
io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x15, &(0x7f0000003300)=[{0xf00, 0x0, 0x0, 0x0, 0x0}], 0x1)

936.846366ms ago: executing program 0 (id=7573):
syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1000000, &(0x7f0000004680)=ANY=[@ANYBLOB="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"], 0x5, 0x4430, &(0x7f0000004840)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f00000001c0)='system.posix_acl_default\x00', 0x0, 0x0, 0x1)

842.290297ms ago: executing program 2 (id=7574):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_read_part_table(0x4086, &(0x7f000000c440)="$eJzszzFK9GAQBuB3k/3/BBFBWwuxs5LY2dhYeYG9wHZ2FvauepvFA3giQfAENp9kExFx7RRRnqeZN/lmBib8uMd1P6+T/E8ePpm5n99tZ9qn265L2iTTi63VUxlc7SXpjvJvo62ymeTy45bZ8ivvAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfoWnt9gOpZRSkvpdV51MkkWS+W5pkhxXSV9zUz+fj037h0nOdsavRT/xqt+4Mlt+4y0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwB9U5eR0jJMcpBliu7a3eWF3Dm0AhKEggN4XEBQjkBD2YDm2YcqmrrJJ7XvmxIm7bNXzyfdeVUdyn2O/z03+S4cBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgMYOHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBABgAAAECYv3Ue7QcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCgAAAA//9DVh8q")

740.082989ms ago: executing program 3 (id=7575):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x10000000, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

443.037603ms ago: executing program 3 (id=7576):
syz_mount_image$hfs(&(0x7f0000000140), &(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2810880, &(0x7f0000000000)=ANY=[], 0x1, 0x2c6, &(0x7f0000000c80)="$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")
unlink(&(0x7f0000000280)='./file1\x00')

154.429898ms ago: executing program 3 (id=7577):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x12, 0xa, 0x8, 0x2, 0x4, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r0, &(0x7f0000000300), 0x0}, 0x20)

0s ago: executing program 3 (id=7578):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="7c00000000010505000000000000000002000001240002801400018008000100ffffffff08000200000000000c0002800500010088000000240001800c00028005000100880000001400018008000100ac1e0001080002000a010101080007400000000018000d8014000380060002004e"], 0x7c}}, 0x0)

kernel console output (not intermixed with test programs):

=ordered instead of data journaling mode
[  604.993562][ T6075] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.063900][T19472] EXT4-fs (loop3): failed to initialize system zone (-117)
[  605.085477][T19472] EXT4-fs (loop3): mount failed
[  605.358652][T19488] xt_bpf: check failed: parse error
[  605.459276][T19491] loop3: detected capacity change from 0 to 256
[  606.059249][T19512] x_tables: duplicate underflow at hook 2
[  606.061559][T19510] netlink: 416 bytes leftover after parsing attributes in process `syz.2.5876'.
[  606.144347][T19510] vxcan3: entered promiscuous mode
[  606.172211][T19510] vxcan3: entered allmulticast mode
[  606.176284][T19516] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5879'.
[  606.198094][T19516] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5879'.
[  606.206992][T19483] loop1: detected capacity change from 0 to 32768
[  606.247255][T19483] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  606.426965][T19483] XFS (loop1): Ending clean mount
[  606.511083][T19534] loop2: detected capacity change from 0 to 128
[  606.548955][T19534] EXT4-fs (loop2): Test dummy encryption mode enabled
[  606.570899][ T6072] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  606.598970][T19534] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  606.666289][T19534] ext4 filesystem being mounted at /1404/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  606.875290][T19545] loop3: detected capacity change from 0 to 1024
[  606.938752][T19534] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  607.109024][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  607.109038][   T27] audit: type=1326 audit(1750346825.490:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19549 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  607.122810][ T6075] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  607.216327][   T27] audit: type=1326 audit(1750346825.527:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19549 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  607.291816][ T1325] hfsplus: b-tree write err: -5, ino 4
[  607.303282][   T27] audit: type=1326 audit(1750346825.536:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19549 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  607.387443][   T27] audit: type=1326 audit(1750346825.536:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19549 comm="syz.0.5888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  607.443542][T19560] wireguard0: entered promiscuous mode
[  607.449079][T19560] wireguard0: entered allmulticast mode
[  607.526016][T19557] loop0: detected capacity change from 0 to 4096
[  608.270896][T19585] loop0: detected capacity change from 0 to 4096
[  608.328609][T19585] ntfs3: loop0: ino=3, Correct links count -> 2.
[  608.945244][T19605] loop3: detected capacity change from 0 to 2048
[  608.988471][T19579] loop1: detected capacity change from 0 to 32768
[  609.011198][T19579] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  609.036457][T19605] NILFS (loop3): invalid segment: Magic number mismatch
[  609.074726][T19605] NILFS (loop3): trying rollback from an earlier position
[  609.155102][T19605] NILFS (loop3): recovery complete
[  609.185804][T19579] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  609.224222][T19620] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  609.228687][T19619] loop2: detected capacity change from 0 to 256
[  609.342540][T19619] FAT-fs (loop2): Directory bread(block 64) failed
[  609.376247][T19619] FAT-fs (loop2): Directory bread(block 65) failed
[  609.406325][T19619] FAT-fs (loop2): Directory bread(block 66) failed
[  609.424138][T19619] FAT-fs (loop2): Directory bread(block 67) failed
[  609.433240][T19619] FAT-fs (loop2): Directory bread(block 68) failed
[  609.439865][T19619] FAT-fs (loop2): Directory bread(block 69) failed
[  609.445962][ T6072] ocfs2: Unmounting device (7,1) on (node local)
[  609.450325][T19619] FAT-fs (loop2): Directory bread(block 70) failed
[  609.459527][T19619] FAT-fs (loop2): Directory bread(block 71) failed
[  609.466694][T19619] FAT-fs (loop2): Directory bread(block 72) failed
[  609.495307][T19619] FAT-fs (loop2): Directory bread(block 73) failed
[  610.432289][T19632] loop3: detected capacity change from 0 to 32768
[  610.853811][T19666] program syz.1.5942 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  611.004633][T19669] loop2: detected capacity change from 0 to 512
[  611.020601][T19671] loop1: detected capacity change from 0 to 64
[  611.051590][T19669] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  611.087891][T19669] EXT4-fs (loop2): orphan cleanup on readonly fs
[  611.120858][T19669] Quota error (device loop2): find_block_dqentry: Quota for id 0 referenced but not present
[  611.175955][T19669] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  611.185868][T19677] netlink: 188 bytes leftover after parsing attributes in process `syz.3.5948'.
[  611.200426][T19669] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.5944: Failed to acquire dquot type 1
[  611.249597][T19669] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.5944: bg 0: block 40: padding at end of block bitmap is not set
[  611.280476][T19669] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  611.289954][T19669] EXT4-fs (loop2): 1 truncate cleaned up
[  611.290968][T19681] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5949'.
[  611.305744][T19669] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  611.411629][T19683] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5950'.
[  611.424296][ T6075] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  611.685742][   T27] audit: type=1326 audit(1750346829.763:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19694 comm="syz.2.5956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  611.769512][   T27] audit: type=1326 audit(1750346829.763:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19694 comm="syz.2.5956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  611.808558][   T27] audit: type=1326 audit(1750346829.801:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19694 comm="syz.2.5956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  611.849296][   T27] audit: type=1326 audit(1750346829.801:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19694 comm="syz.2.5956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  611.919997][T19703] loop1: detected capacity change from 0 to 64
[  611.931578][T19704] xt_CT: You must specify a L4 protocol and not use inversions on it
[  612.546025][T19718] loop0: detected capacity change from 0 to 1024
[  612.588870][T19719] loop1: detected capacity change from 0 to 4096
[  612.627866][T19720] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  612.659300][T19707] loop2: detected capacity change from 0 to 32768
[  612.770441][T19707] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  612.787028][ T1334] hfsplus: b-tree write err: -5, ino 4
[  612.894126][T19732] loop3: detected capacity change from 0 to 16
[  612.940628][T19732] erofs: (device loop3): mounted with root inode @ nid 36.
[  612.948596][T19737] loop1: detected capacity change from 0 to 2048
[  612.957481][T19707] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  612.974202][T19737] NILFS (loop1): invalid segment: Magic number mismatch
[  612.994359][T19737] NILFS (loop1): trying rollback from an earlier position
[  613.080788][T19707] XFS (loop2): Starting recovery (logdev: internal)
[  613.099302][T19737] NILFS (loop1): recovery complete
[  613.120260][T19740] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  613.155308][T19707] XFS (loop2): Ending recovery (logdev: internal)
[  613.234891][ T6069] erofs: (device loop3): erofs_fill_dentries: bogus dirent @ nid 46
[  613.316166][ T6069] erofs: (device loop3): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  613.346941][ T6069] erofs: (device loop3): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  613.501676][T19746] bridge2: the hash_elasticity option has been deprecated and is always 16
[  613.542821][ T6075] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  613.563627][T19749] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5978'.
[  613.829941][T19761] loop3: detected capacity change from 0 to 1024
[  613.844278][T19759] loop0: detected capacity change from 0 to 2048
[  613.904394][T19759] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  614.221410][T19767] loop2: detected capacity change from 0 to 1024
[  614.360389][  T989] hfsplus: b-tree write err: -5, ino 4
[  614.549204][T19781] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5994'.
[  614.668770][T19787] netlink: 'syz.0.5996': attribute type 21 has an invalid length.
[  614.673210][T19786] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5997'.
[  614.677353][T19787] netlink: 'syz.0.5996': attribute type 1 has an invalid length.
[  614.713171][T19786] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5997'.
[  614.790133][   T23] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[  614.829145][T19790] loop3: detected capacity change from 0 to 256
[  615.004854][   T23] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  615.017975][   T23] usb 2-1: config 0 interface 0 has no altsetting 0
[  615.035767][   T23] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  615.056207][   T23] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  615.064518][   T23] usb 2-1: Product: syz
[  615.117915][   T23] usb 2-1: Manufacturer: syz
[  615.128694][   T23] usb 2-1: SerialNumber: syz
[  615.140204][   T23] usb 2-1: config 0 descriptor??
[  615.169514][   T23] usb 2-1: selecting invalid altsetting 0
[  615.421708][ T1201] usb 2-1: USB disconnect, device number 70
[  615.513526][T19815] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6011'.
[  615.613485][T19819] netlink: 'syz.3.6012': attribute type 21 has an invalid length.
[  615.653888][T19819] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6012'.
[  615.734737][T19823] bridge0: port 1(netdevsim0) entered blocking state
[  615.759637][T19823] bridge0: port 1(netdevsim0) entered disabled state
[  615.780416][T19823] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  615.799558][T19823] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  616.188091][T19842] loop0: detected capacity change from 0 to 128
[  616.220423][T19842] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  616.626005][T19862] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6034'.
[  616.851997][ T1201] usb 3-1: new high-speed USB device number 75 using dummy_hcd
[  617.087037][ T1201] usb 3-1: Using ep0 maxpacket: 8
[  617.093929][ T1201] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  617.119146][ T1201] usb 3-1: config 0 has no interface number 0
[  617.149511][ T1201] usb 3-1: New USB device found, idVendor=1c04, idProduct=0015, bcdDevice=f7.bd
[  617.179414][ T1201] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  617.189804][ T1201] usb 3-1: Product: syz
[  617.194345][ T1201] usb 3-1: Manufacturer: syz
[  617.198966][ T1201] usb 3-1: SerialNumber: syz
[  617.206560][ T1201] usb 3-1: config 0 descriptor??
[  617.452059][T19896] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6051'.
[  617.462138][T19896] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6051'.
[  617.481484][ T1201] usb 3-1: USB disconnect, device number 75
[  617.752560][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  617.752574][   T27] audit: type=1326 audit(1750346835.439:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19906 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  617.831867][   T27] audit: type=1326 audit(1750346835.439:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19906 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  617.878365][   T27] audit: type=1326 audit(1750346835.449:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19906 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  617.929240][   T27] audit: type=1326 audit(1750346835.449:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19906 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  617.979294][   T27] audit: type=1326 audit(1750346835.449:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19906 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  618.037442][T19917] loop3: detected capacity change from 0 to 512
[  618.048888][T19919] netlink: 52 bytes leftover after parsing attributes in process `syz.0.6062'.
[  618.103036][ T5774] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[  618.117501][T19917] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  618.151602][T19917] ext4 filesystem being mounted at /1456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  618.282719][T19930] netlink: 'syz.0.6064': attribute type 11 has an invalid length.
[  618.310622][ T6069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  618.338194][ T5774] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  618.390910][ T5774] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  618.423051][ T5774] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  618.431597][ T5774] usb 2-1: Product: syz
[  618.444654][ T5774] usb 2-1: Manufacturer: syz
[  618.452283][ T5774] usb 2-1: SerialNumber: syz
[  618.605755][   T28] usb 3-1: new full-speed USB device number 76 using dummy_hcd
[  618.706920][ T5774] cdc_ncm 2-1:1.0: bind() failure
[  618.737777][ T5774] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  618.741399][T19944] loop3: detected capacity change from 0 to 2048
[  618.754304][ T5774] cdc_ncm 2-1:1.1: bind() failure
[  618.786019][ T5774] usb 2-1: USB disconnect, device number 71
[  618.789697][T19944] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  618.850596][   T28] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  618.907681][   T28] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  618.937111][   T28] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 30768, setting to 64
[  618.969226][   T28] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  618.981085][ T6069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  619.015233][   T28] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 1.40
[  619.028878][   T28] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  619.058535][   T28] usb 3-1: SerialNumber: syz
[  619.090317][T19932] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  619.108309][T19932] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  619.131127][   T28] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  619.341197][T19962] loop3: detected capacity change from 0 to 1024
[  619.375268][   T28] cdc_acm 3-1:1.0: ttyACM0: USB ACM device
[  619.411686][   T28] usb 3-1: USB disconnect, device number 76
[  619.449295][T19962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  619.470193][T19962] ext4 filesystem being mounted at /1462/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  619.497391][T19962] EXT4-fs error (device loop3): ext4_free_blocks:6681: comm syz.3.6081: Freeing blocks not in datazone - block = 0, count = 16
[  619.529733][T19962] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  619.711308][ T6069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  619.878010][    C0] bridge0: port 3(team0) entered forwarding state
[  619.884681][    C0] bridge0: topology change detected, propagating
[  620.100951][T19986] loop2: detected capacity change from 0 to 1764
[  620.676329][T20004] loop2: detected capacity change from 0 to 2048
[  620.699130][T20008] __nla_validate_parse: 1 callbacks suppressed
[  620.699147][T20008] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6102'.
[  620.717124][T20004] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  620.743940][T20011] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  620.755334][T20004] syz.2.6101: attempt to access beyond end of device
[  620.755334][T20004] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  620.791057][T20004] syz.2.6101: attempt to access beyond end of device
[  620.791057][T20004] loop2: rw=0, sector=33554430, nr_sectors = 2 limit=2048
[  620.815796][T20004] NILFS (loop2): I/O error reading meta-data file (ino=6, block-offset=3)
[  620.837911][T20004] NILFS (loop2): error -5 reading inode: ino=15
[  621.219695][T20026] netlink: 763 bytes leftover after parsing attributes in process `syz.3.6110'.
[  621.352422][T20029] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  621.375195][ T6005] Bluetooth: hci2: unexpected event for opcode 0x2006
[  621.494867][T20033] loop2: detected capacity change from 0 to 1024
[  621.650789][ T2986] hfsplus: b-tree write err: -5, ino 4
[  621.717380][T20042] netlink: 264 bytes leftover after parsing attributes in process `syz.1.6119'.
[  621.752219][T20042] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6119'.
[  621.939027][T20050] loop1: detected capacity change from 0 to 256
[  622.014012][T20050] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  622.843364][T20090] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6143'.
[  623.131977][T20070] loop3: detected capacity change from 0 to 32768
[  623.248018][  T110] blkno = 5002c, nblocks = 1
[  623.254281][  T110] ERROR: (device loop3): dbUpdatePMap: blocks are outside the map
[  623.254281][  T110] 
[  623.298204][  T110] ERROR: (device loop3): remounting filesystem as read-only
[  623.431266][T20086] loop0: detected capacity change from 0 to 32768
[  623.485637][T20086] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  623.534414][T20107] loop1: detected capacity change from 0 to 64
[  623.541101][ T6069] JFS: metapage_get_blocks failed
[  623.573410][T20107] Bad inode number on dev loop1: 6 is out of range
[  623.677418][T20086] syz.0.6141 (20086) used greatest stack depth: 18704 bytes left
[  623.775790][ T6066] ocfs2: Unmounting device (7,0) on (node local)
[  624.413300][T20135] netlink: 192 bytes leftover after parsing attributes in process `syz.0.6163'.
[  624.851491][T20156] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6176'.
[  624.870880][T20156] netlink: 'syz.2.6176': attribute type 2 has an invalid length.
[  625.069358][T20166] loop3: detected capacity change from 0 to 256
[  625.143360][T20170] process 'syz.0.6180' launched '/dev/fd/3' with NULL argv: empty string added
[  625.148967][T20166] FAT-fs (loop3): Directory bread(block 64) failed
[  625.184495][T20166] FAT-fs (loop3): Directory bread(block 65) failed
[  625.191170][T20166] FAT-fs (loop3): Directory bread(block 66) failed
[  625.223127][T20166] FAT-fs (loop3): Directory bread(block 67) failed
[  625.237171][T20166] FAT-fs (loop3): Directory bread(block 68) failed
[  625.254672][T20166] FAT-fs (loop3): Directory bread(block 69) failed
[  625.276500][T20166] FAT-fs (loop3): Directory bread(block 70) failed
[  625.277881][T20175] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6183'.
[  625.292995][T20166] FAT-fs (loop3): Directory bread(block 71) failed
[  625.347239][T20166] FAT-fs (loop3): Directory bread(block 72) failed
[  625.374904][T20166] FAT-fs (loop3): Directory bread(block 73) failed
[  626.250396][T20218] Cannot find del_set index 17 as target
[  626.294680][T20220] netlink: 76 bytes leftover after parsing attributes in process `syz.3.6205'.
[  626.715177][ T6005] Bluetooth: hci3: Invalid handle: 0x6c73 > 0x0eff
[  627.558767][   T28] IPVS: starting estimator thread 0...
[  627.684861][T20283] IPVS: using max 26 ests per chain, 62400 per kthread
[  627.716365][   T27] audit: type=1326 audit(1750346844.753:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20286 comm="syz.3.6236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  627.781714][   T27] audit: type=1326 audit(1750346844.753:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20286 comm="syz.3.6236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  627.844382][   T27] audit: type=1326 audit(1750346844.790:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20286 comm="syz.3.6236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  627.886484][T20295] loop1: detected capacity change from 0 to 16
[  627.915436][T20295] erofs: (device loop1): mounted with root inode @ nid 36.
[  627.939279][   T27] audit: type=1326 audit(1750346844.790:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20286 comm="syz.3.6236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  627.988318][T20295] syz.1.6240: attempt to access beyond end of device
[  627.988318][T20295] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[  628.002568][   T27] audit: type=1326 audit(1750346844.799:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20288 comm="syz.2.6238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  628.040817][T20300] xt_hashlimit: invalid interval
[  628.107608][   T27] audit: type=1326 audit(1750346844.799:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20288 comm="syz.2.6238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  628.197414][   T27] audit: type=1326 audit(1750346844.809:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20288 comm="syz.2.6238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  628.272871][   T27] audit: type=1326 audit(1750346844.809:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20288 comm="syz.2.6238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  628.505539][T20313] loop2: detected capacity change from 0 to 4096
[  628.650966][T20325] loop3: detected capacity change from 0 to 256
[  628.691842][T20313] ntfs: volume version 3.1.
[  628.852901][T20331] xt_CT: You must specify a L4 protocol and not use inversions on it
[  629.229809][    T8] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  629.284010][    T8] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  629.293500][    T8] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0
[  629.338459][    T8] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  629.364727][T20350] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6267'.
[  629.546651][T20353] fido_id[20353]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  630.026535][T20344] loop0: detected capacity change from 0 to 40427
[  630.039699][T20344] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  630.057784][T20344] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  630.114842][T20377] netlink: 220 bytes leftover after parsing attributes in process `syz.1.6280'.
[  630.131760][T20344] F2FS-fs (loop0): Found nat_bits in checkpoint
[  630.324248][T20344] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  630.336994][T20344] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  630.405486][   T27] audit: type=1800 audit(1750346847.278:186): pid=20344 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.6263" name="file2" dev="loop0" ino=10 res=0 errno=0
[  630.447913][ T6066] syz-executor: attempt to access beyond end of device
[  630.447913][ T6066] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  630.514162][ T6066] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  630.903898][T20400] loop2: detected capacity change from 0 to 512
[  630.951579][T20400] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  631.013396][T20400] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #16: comm syz.2.6291: invalid indirect mapped block 4294967295 (level 0)
[  631.047631][T20400] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #16: comm syz.2.6291: invalid indirect mapped block 4294967295 (level 1)
[  631.076867][T20400] EXT4-fs (loop2): 1 orphan inode deleted
[  631.082648][T20400] EXT4-fs (loop2): 1 truncate cleaned up
[  631.112022][T20400] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  631.245036][ T6075] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.320069][T20410] Unsupported ieee802154 address type: 0
[  631.541152][T20421] loop2: detected capacity change from 0 to 512
[  631.555524][T20421] EXT4-fs: Ignoring removed oldalloc option
[  631.563301][T20421] EXT4-fs: Ignoring removed orlov option
[  631.578184][T20421] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  631.606151][T20421] EXT4-fs (loop2): orphan cleanup on readonly fs
[  631.615973][T20421] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.6299: bg 0: block 248: padding at end of block bitmap is not set
[  631.648678][T20421] Quota error (device loop2): write_blk: dquota write failed
[  631.656592][T20421] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.6299: Failed to acquire dquot type 1
[  631.697586][T20421] EXT4-fs (loop2): 1 truncate cleaned up
[  631.706072][T20421] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  631.720486][T20421] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.895521][T20432] loop1: detected capacity change from 0 to 256
[  631.932208][T20432] exFAT-fs (loop1): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  632.673908][T20470] loop3: detected capacity change from 0 to 16
[  632.728133][T20470] erofs: (device loop3): mounted with root inode @ nid 36.
[  632.801054][T20470] syz.3.6323: attempt to access beyond end of device
[  632.801054][T20470] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[  632.977283][T20480] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6335'.
[  633.156232][T20483] loop1: detected capacity change from 0 to 2048
[  633.233539][T20483] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  633.427025][T20488] loop3: detected capacity change from 0 to 4096
[  633.500184][T20488] ntfs: volume version 3.1.
[  633.660971][T20500] netlink: 'syz.1.6338': attribute type 21 has an invalid length.
[  633.677124][T20500] netlink: 'syz.1.6338': attribute type 1 has an invalid length.
[  633.747448][T20506] netlink: 76 bytes leftover after parsing attributes in process `syz.0.6339'.
[  633.801469][T20506] netlink: 76 bytes leftover after parsing attributes in process `syz.0.6339'.
[  633.854069][T20508] loop1: detected capacity change from 0 to 16
[  633.880792][T20508] erofs: (device loop1): mounted with root inode @ nid 36.
[  633.988752][ T6072] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 46
[  634.023296][ T6072] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  634.033440][T20514] loop0: detected capacity change from 0 to 1024
[  634.048322][ T6072] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  634.503331][T20536] loop0: detected capacity change from 0 to 256
[  634.827391][T20544] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6358'.
[  634.887047][T20547] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6368'.
[  634.912311][T20547] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6368'.
[  635.164112][T20557] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  635.341037][T20530] loop3: detected capacity change from 0 to 32768
[  635.429403][T20530] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  635.581558][T20530] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  635.617782][T20577] loop2: detected capacity change from 0 to 16
[  635.654455][T20577] erofs: (device loop2): mounted with root inode @ nid 36.
[  635.709272][T20530] XFS (loop3): Starting recovery (logdev: internal)
[  635.716700][T20577] syz.2.6369: attempt to access beyond end of device
[  635.716700][T20577] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[  635.810392][T20530] XFS (loop3): Ending recovery (logdev: internal)
[  636.105818][ T6069] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  636.504548][T20604] netlink: 52 bytes leftover after parsing attributes in process `syz.2.6382'.
[  636.578387][T20608] loop0: detected capacity change from 0 to 1024
[  636.663271][T20608] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  636.714962][T20608] ext4 filesystem being mounted at /1561/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  636.795508][T20608] EXT4-fs error (device loop0): ext4_free_blocks:6681: comm syz.0.6386: Freeing blocks not in datazone - block = 0, count = 16
[  636.868786][T20608] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  636.884601][T20621] loop3: detected capacity change from 0 to 512
[  636.915940][T20621] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  636.960450][T20621] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  636.998323][T20621] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=884ee02c, mo2=0102]
[  637.031080][T20621] EXT4-fs (loop3): orphan cleanup on readonly fs
[  637.040219][T20621] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.6392: invalid indirect mapped block 2185560079 (level 1)
[  637.067493][T20621] EXT4-fs (loop3): Remounting filesystem read-only
[  637.068815][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.083119][T20621] EXT4-fs (loop3): 1 truncate cleaned up
[  637.090695][T20621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  637.110194][T20621] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.6392: dx entry: limit 0 != root limit 125
[  637.122328][T20621] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.6392: Corrupt directory, running e2fsck is recommended
[  637.160813][T20628] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6394'.
[  637.181910][ T6069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  637.326373][T20633] loop0: detected capacity change from 0 to 512
[  637.328357][T20634] bridge0: port 3(netdevsim0) entered blocking state
[  637.348184][T20634] bridge0: port 3(netdevsim0) entered disabled state
[  637.361060][T20634] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  637.471742][T20633] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  637.480175][T20633] EXT4-fs (loop0): orphan cleanup on readonly fs
[  637.568838][T20633] __quota_error: 6 callbacks suppressed
[  637.568854][T20633] Quota error (device loop0): find_block_dqentry: Quota for id 0 referenced but not present
[  637.615451][T20633] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  637.638148][T20633] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.6395: Failed to acquire dquot type 1
[  637.658374][T20633] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.6395: bg 0: block 40: padding at end of block bitmap is not set
[  637.694887][T20633] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  637.707369][T20633] EXT4-fs (loop0): 1 truncate cleaned up
[  637.714441][T20633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  637.839713][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.960258][T20653] loop1: detected capacity change from 0 to 1024
[  638.047017][T20653] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.090083][T20653] ext4 filesystem being mounted at /1529/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  638.138395][T20653] EXT4-fs error (device loop1): ext4_free_blocks:6681: comm syz.1.6404: Freeing blocks not in datazone - block = 0, count = 16
[  638.193714][T20653] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  638.348378][T20649] loop3: detected capacity change from 0 to 32768
[  638.348392][ T6072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.419154][T20649] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  638.652384][T20678] loop1: detected capacity change from 0 to 512
[  638.661978][ T6069] ocfs2: Unmounting device (7,3) on (node local)
[  638.767219][T20678] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  638.818096][T20678] ext4 filesystem being mounted at /1530/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  639.026998][ T6072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.369626][T20703] loop3: detected capacity change from 0 to 256
[  639.675928][T20703] FAT-fs (loop3): Directory bread(block 64) failed
[  639.682561][T20703] FAT-fs (loop3): Directory bread(block 65) failed
[  639.746170][T20703] FAT-fs (loop3): Directory bread(block 66) failed
[  639.785299][T20703] FAT-fs (loop3): Directory bread(block 67) failed
[  639.793146][T20703] FAT-fs (loop3): Directory bread(block 68) failed
[  639.799712][T20703] FAT-fs (loop3): Directory bread(block 69) failed
[  639.807714][T20703] FAT-fs (loop3): Directory bread(block 70) failed
[  639.822200][T20703] FAT-fs (loop3): Directory bread(block 71) failed
[  639.829291][T20703] FAT-fs (loop3): Directory bread(block 72) failed
[  639.837354][T20703] FAT-fs (loop3): Directory bread(block 73) failed
[  640.246550][T20736] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6441'.
[  640.469968][T20745] loop2: detected capacity change from 0 to 1024
[  640.492643][T20745] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  640.513950][T20745] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  640.564143][T20745] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c800e02c, mo2=0000]
[  640.600723][T20745] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.6446: lblock 2 mapped to illegal pblock 2 (length 1)
[  640.618177][T20745] EXT4-fs (loop2): Remounting filesystem read-only
[  640.643464][T20745] Quota error (device loop2): qtree_write_dquot: dquota write failed
[  640.652220][T20745] Quota error (device loop2): v2_write_file_info: Can't write info structure
[  640.700846][T20745] EXT4-fs (loop2): 1 orphan inode deleted
[  640.707848][T20745] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  640.814280][T20745] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  640.872747][T20762] loop1: detected capacity change from 0 to 256
[  641.096741][   T27] audit: type=1326 audit(2000000000.355:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20765 comm="syz.3.6454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  641.192381][   T27] audit: type=1326 audit(2000000000.355:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20765 comm="syz.3.6454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  641.214730][    C0] vkms_vblank_simulate: vblank timer overrun
[  641.287880][   T27] audit: type=1326 audit(2000000000.383:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20765 comm="syz.3.6454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  641.372187][   T27] audit: type=1326 audit(2000000000.383:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20765 comm="syz.3.6454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  641.412849][T20777] netlink: 188 bytes leftover after parsing attributes in process `syz.2.6460'.
[  641.437456][   T27] audit: type=1326 audit(2000000000.607:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20775 comm="syz.3.6459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  641.490002][   T27] audit: type=1326 audit(2000000000.607:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20775 comm="syz.3.6459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  642.228905][   T28] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[  642.486964][   T28] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  642.514072][   T28] usb 4-1: config 0 interface 0 has no altsetting 0
[  642.554062][   T28] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  642.571215][   T28] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  642.579441][   T28] usb 4-1: Product: syz
[  642.620631][   T28] usb 4-1: Manufacturer: syz
[  642.625777][   T28] usb 4-1: SerialNumber: syz
[  642.648040][   T28] usb 4-1: config 0 descriptor??
[  642.656717][T20823] sit0: left allmulticast mode
[  642.681641][   T28] usb 4-1: selecting invalid altsetting 0
[  643.018044][    T8] usb 4-1: USB disconnect, device number 62
[  643.209990][T20839] loop1: detected capacity change from 0 to 1024
[  643.703128][T20853] loop1: detected capacity change from 0 to 1024
[  644.718636][T20880] loop2: detected capacity change from 0 to 256
[  644.878517][T20873] loop3: detected capacity change from 0 to 32768
[  644.986442][T20873] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  645.261245][T20873] XFS (loop3): Ending clean mount
[  645.395172][ T6069] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  645.504421][T20877] loop1: detected capacity change from 0 to 32768
[  645.715509][T20850] Bluetooth: hci3: command 0x0406 tx timeout
[  645.716897][T20877] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  645.736678][T20906] afs: Unknown parameter 'd'
[  645.802125][T20908] loop3: detected capacity change from 0 to 1024
[  645.822567][T20908] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  645.845392][T20908] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  645.869069][T20908] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c800e02c, mo2=0000]
[  645.917294][T20908] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.6517: lblock 2 mapped to illegal pblock 2 (length 1)
[  646.004612][T20908] EXT4-fs (loop3): Remounting filesystem read-only
[  646.011396][T20908] __quota_error: 3 callbacks suppressed
[  646.011408][T20908] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  646.032715][T20877] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  646.035965][T20908] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  646.054772][T20908] EXT4-fs (loop3): 1 orphan inode deleted
[  646.090475][T20908] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  646.124302][T20877] XFS (loop1): Starting recovery (logdev: internal)
[  646.147186][T20908] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  646.162796][T20877] XFS (loop1): Ending recovery (logdev: internal)
[  646.462848][ T6072] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  646.596746][T20923] usb usb1: usbfs: process 20923 (syz.3.6522) did not claim interface 0 before use
[  646.781180][T20927] loop3: detected capacity change from 0 to 2048
[  646.802993][T20927] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  646.852297][T20927] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  646.876300][T20927] UDF-fs: Scanning with blocksize 512 failed
[  646.978736][T20927] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.411939][T20945] loop2: detected capacity change from 0 to 2048
[  647.456030][T20945] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.512808][T20953] loop0: detected capacity change from 0 to 128
[  648.099644][ T5774] IPVS: starting estimator thread 0...
[  648.217914][T20979] IPVS: using max 24 ests per chain, 57600 per kthread
[  648.254144][   T27] audit: type=1107 audit(2000000007.031:201): pid=20985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  648.344000][T20989] loop0: detected capacity change from 0 to 256
[  648.365167][T20991] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6555'.
[  648.391410][T20989] FAT-fs (loop0): Directory bread(block 64) failed
[  648.403387][T20991] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6555'.
[  648.414387][T20989] FAT-fs (loop0): Directory bread(block 65) failed
[  648.433755][T20989] FAT-fs (loop0): Directory bread(block 66) failed
[  648.440346][T20989] FAT-fs (loop0): Directory bread(block 67) failed
[  648.450228][T20991] ip6gretap1: entered allmulticast mode
[  648.476609][T20989] FAT-fs (loop0): Directory bread(block 68) failed
[  648.483194][T20989] FAT-fs (loop0): Directory bread(block 69) failed
[  648.532116][T20989] FAT-fs (loop0): Directory bread(block 70) failed
[  648.559789][T20989] FAT-fs (loop0): Directory bread(block 71) failed
[  648.566473][T20989] FAT-fs (loop0): Directory bread(block 72) failed
[  648.613131][T20989] FAT-fs (loop0): Directory bread(block 73) failed
[  648.631196][   T27] audit: type=1107 audit(2000000007.396:202): pid=20996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  648.900452][T21009] loop1: detected capacity change from 0 to 8
[  649.251470][T21019] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6568'.
[  649.378732][T21025] loop0: detected capacity change from 0 to 512
[  649.428126][T21025] EXT4-fs error (device loop0): ext4_get_journal_inode:5805: comm syz.0.6571: inode #1792: comm syz.0.6571: iget: illegal inode #
[  649.463066][T21025] EXT4-fs (loop0): Remounting filesystem read-only
[  649.490447][T21025] EXT4-fs (loop0): no journal found
[  649.509077][T21025] EXT4-fs (loop0): can't get journal size
[  649.523221][T21025] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  649.560932][T21025] EXT4-fs (loop0): Errors on filesystem, clearing orphan list.
[  649.615328][T21025] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  649.853946][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  650.104426][T21053] netlink: 11 bytes leftover after parsing attributes in process `syz.0.6583'.
[  650.142186][  T785] usb 2-1: new high-speed USB device number 72 using dummy_hcd
[  650.193076][T21055] loop0: detected capacity change from 0 to 1024
[  650.284279][ T2986] hfsplus: b-tree write err: -5, ino 4
[  650.333671][T21041] loop2: detected capacity change from 0 to 32768
[  650.347091][  T785] usb 2-1: Using ep0 maxpacket: 32
[  650.358582][  T785] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[  650.377817][  T785] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  650.387658][  T785] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  650.404578][  T785] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  650.429219][  T785] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  650.456273][  T785] usb 2-1: Product: syz
[  650.466684][  T785] usb 2-1: Manufacturer: syz
[  650.476145][  T785] usb 2-1: SerialNumber: syz
[  650.719474][  T785] cdc_ncm 2-1:1.0: bind() failure
[  650.744259][  T785] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  650.758243][  T785] cdc_ncm 2-1:1.1: bind() failure
[  650.781104][  T785] usb 2-1: USB disconnect, device number 72
[  651.141893][T21061] loop0: detected capacity change from 0 to 32768
[  651.206535][T21061] JBD2: Ignoring recovery information on journal
[  651.298977][T21061] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  651.445443][T21079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6594'.
[  651.599579][ T6066] ocfs2: Unmounting device (7,0) on (node local)
[  651.601908][T21081] loop3: detected capacity change from 0 to 128
[  651.852810][T21087] mmap: syz.3.6598 (21087) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  651.871438][T21067] loop2: detected capacity change from 0 to 40427
[  651.908410][T21089] lo speed is unknown, defaulting to 1000
[  651.914217][T21067] F2FS-fs (loop2): Small segment_count (9 < 1 * 24)
[  651.936007][T21089] lo speed is unknown, defaulting to 1000
[  651.949653][T21067] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  651.952441][T21089] lo speed is unknown, defaulting to 1000
[  652.005269][T21067] F2FS-fs (loop2): Found nat_bits in checkpoint
[  652.053105][T21089] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  652.076896][T21089] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  652.100071][T21067] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  652.120787][T21067] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  652.188311][T21089] lo speed is unknown, defaulting to 1000
[  652.249820][   T27] audit: type=1800 audit(2000000010.762:203): pid=21067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.6589" name="file2" dev="loop2" ino=10 res=0 errno=0
[  652.301584][T21089] lo speed is unknown, defaulting to 1000
[  652.311716][T21089] lo speed is unknown, defaulting to 1000
[  652.318341][ T6075] syz-executor: attempt to access beyond end of device
[  652.318341][ T6075] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  652.331613][T21089] lo speed is unknown, defaulting to 1000
[  652.347901][ T6075] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  652.499671][T21102] loop0: detected capacity change from 0 to 256
[  652.521803][T21099] xt_CT: No such helper "snmp"
[  652.548165][T21102] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  652.678163][T21102] exFAT-fs (loop0): error, invalid access to FAT free cluster (entry 0x00000008)
[  652.711814][T21102] exFAT-fs (loop0): Filesystem has been set read-only
[  653.087423][T21114] loop2: detected capacity change from 0 to 2048
[  653.199868][T21121] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  653.319511][T21114] NILFS (loop2): error -2 truncating bmap (ino=16)
[  653.403673][T21121] NILFS (loop2): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[  653.404001][T21104] loop1: detected capacity change from 0 to 32768
[  653.434377][T21121] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=16)
[  653.471304][T21121] Remounting filesystem read-only
[  653.471453][T21104] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  653.485142][   T12] NILFS (loop2): discard dirty page: offset=0, ino=3
[  653.521344][   T12] NILFS (loop2): discard dirty block: blocknr=42, size=1024
[  653.541542][   T12] NILFS (loop2): discard dirty block: blocknr=43, size=1024
[  653.559685][   T12] NILFS (loop2): discard dirty block: blocknr=44, size=1024
[  653.580946][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.607253][   T12] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  653.614373][   T12] NILFS (loop2): discard dirty block: blocknr=39, size=1024
[  653.622182][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.631745][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.641012][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.657058][   T12] NILFS (loop2): discard dirty page: offset=0, ino=5
[  653.664212][   T12] NILFS (loop2): discard dirty block: blocknr=41, size=1024
[  653.674802][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.689503][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.698820][T21140] binder: 21139:21140 ioctl 40046205 0 returned -22
[  653.705806][   T12] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.723055][ T6075] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer
[  653.727655][T21104] XFS (loop1): Ending clean mount
[  653.737295][ T6075] NILFS (loop2): discard dirty page: offset=0, ino=16
[  653.748760][T21104] XFS (loop1): Quotacheck needed: Please wait.
[  653.771096][ T6075] NILFS (loop2): discard dirty block: blocknr=23, size=1024
[  653.831840][ T6075] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.840750][ T6075] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  653.860758][T21104] XFS (loop1): Quotacheck: Done.
[  653.874901][ T6075] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[  654.073537][ T6072] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  654.095129][T21149] loop3: detected capacity change from 0 to 1024
[  654.181751][T21155] binfmt_misc: register: failed to install interpreter file ./file0
[  654.374218][ T2986] hfsplus: b-tree write err: -5, ino 4
[  654.562795][T21161] loop3: detected capacity change from 0 to 1024
[  654.660113][ T6068] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  654.860281][   T27] audit: type=1326 audit(2000000013.222:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21172 comm="syz.0.6633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  654.907951][   T27] audit: type=1326 audit(2000000013.250:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21172 comm="syz.0.6633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  654.972897][   T27] audit: type=1326 audit(2000000013.250:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21172 comm="syz.0.6633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  655.038862][   T27] audit: type=1326 audit(2000000013.250:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21172 comm="syz.0.6633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  655.064496][   T27] audit: type=1326 audit(2000000013.250:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21172 comm="syz.0.6633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  655.077728][T21181] loop0: detected capacity change from 0 to 1024
[  655.236518][T21181] hfsplus: xattr searching failed
[  655.420087][T21193] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6642'.
[  655.567631][T21199] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6645'.
[  655.616477][T21200] loop0: detected capacity change from 0 to 1764
[  655.751342][T21208] qrtr: Invalid version 195
[  656.175122][T21226] xt_CT: You must specify a L4 protocol and not use inversions on it
[  656.203936][T21228] netlink: 372 bytes leftover after parsing attributes in process `syz.1.6660'.
[  656.706973][T21242] loop1: detected capacity change from 0 to 4096
[  656.731062][T21242] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  656.878885][T21230] loop3: detected capacity change from 0 to 40427
[  656.887533][T21218] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  656.913562][T21230] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  656.933100][T21230] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  656.969392][T21230] F2FS-fs (loop3): invalid crc value
[  657.017928][T21230] F2FS-fs (loop3): Found nat_bits in checkpoint
[  657.210154][T21230] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  657.239596][T21230] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  657.510750][T21241] loop2: detected capacity change from 0 to 32768
[  657.602822][T21241] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  657.650446][T21268] usb usb8: usbfs: process 21268 (syz.1.6676) did not claim interface 0 before use
[  657.767145][T21241] XFS (loop2): Ending clean mount
[  657.904509][ T6075] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  657.972868][T21277] loop1: detected capacity change from 0 to 4096
[  658.032685][T21280] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  658.663790][T21300] loop2: detected capacity change from 0 to 64
[  659.193406][T21321] loop2: detected capacity change from 0 to 1764
[  659.214044][T21325] siw: device registration error -23
[  659.270139][T21322] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  659.519079][T21334] loop1: detected capacity change from 0 to 256
[  659.763921][T21345] siw: device registration error -23
[  659.977699][T21355] loop1: detected capacity change from 0 to 164
[  660.072122][T21353] loop2: detected capacity change from 0 to 4096
[  660.119831][T21353] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  660.543687][T21349] lo speed is unknown, defaulting to 1000
[  660.900828][T21372] siw: device registration error -23
[  661.091845][T21384] netlink: 'syz.2.6727': attribute type 10 has an invalid length.
[  661.132078][T21384] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  661.453953][T21396] loop3: detected capacity change from 0 to 4096
[  661.487401][T21396] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  661.594982][T21402] netlink: 'syz.0.6739': attribute type 21 has an invalid length.
[  661.627977][T21402] netlink: 164 bytes leftover after parsing attributes in process `syz.0.6739'.
[  662.071045][T21409] loop2: detected capacity change from 0 to 4096
[  662.164070][T21419] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  662.333989][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  662.340423][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  662.399450][T21425] netlink: 'syz.1.6749': attribute type 21 has an invalid length.
[  662.705825][T20850] Bluetooth: hci3: unexpected event for opcode 0x0c2d
[  663.466311][T21432] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  663.729352][T21447] loop3: detected capacity change from 0 to 40427
[  663.800432][T21447] F2FS-fs (loop3): invalid crc value
[  663.824669][T21447] F2FS-fs (loop3): Found nat_bits in checkpoint
[  664.053935][T21447] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  664.093515][T21484] loop1: detected capacity change from 0 to 2048
[  664.139174][T21484] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  664.429542][   T27] audit: type=1326 audit(2000000022.171:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21492 comm="syz.0.6781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  664.499153][   T27] audit: type=1326 audit(2000000022.180:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21492 comm="syz.0.6781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  664.569581][   T27] audit: type=1326 audit(2000000022.180:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21492 comm="syz.0.6781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  664.639051][   T27] audit: type=1326 audit(2000000022.180:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21492 comm="syz.0.6781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  664.662674][   T27] audit: type=1326 audit(2000000022.180:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21492 comm="syz.0.6781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  664.921823][   T27] audit: type=1326 audit(2000000022.629:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21502 comm="syz.3.6786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  665.003137][   T27] audit: type=1326 audit(2000000022.629:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21502 comm="syz.3.6786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  665.093117][T21508] netlink: 224 bytes leftover after parsing attributes in process `syz.0.6789'.
[  665.102713][   T27] audit: type=1326 audit(2000000022.629:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21502 comm="syz.3.6786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  665.178459][   T27] audit: type=1326 audit(2000000022.629:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21502 comm="syz.3.6786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  665.241265][   T27] audit: type=1326 audit(2000000022.629:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21502 comm="syz.3.6786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  665.390572][T21501] loop1: detected capacity change from 0 to 32768
[  665.421271][T21519] gre1: entered promiscuous mode
[  665.490546][T21501] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  665.508078][T21528] netlink: 'syz.0.6797': attribute type 1 has an invalid length.
[  665.518293][T21528] netlink: 'syz.0.6797': attribute type 2 has an invalid length.
[  665.720787][T21501] XFS (loop1): Ending clean mount
[  665.952399][ T6072] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  666.210398][T21553] loop3: detected capacity change from 0 to 256
[  666.270132][T21553] exfat: Deprecated parameter 'utf8'
[  666.275648][T21553] exfat: Deprecated parameter 'utf8'
[  666.321746][T21553] exfat: Deprecated parameter 'utf8'
[  666.404345][T21553] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  667.292367][T21594] loop1: detected capacity change from 0 to 256
[  667.564485][T21599] loop1: detected capacity change from 0 to 4096
[  667.590387][T21599] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  667.602612][T21570] loop3: detected capacity change from 0 to 32768
[  667.642849][T21570] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  667.771267][T21570] XFS (loop3): Ending clean mount
[  668.006481][ T6069] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  668.192006][T21619] netlink: 'syz.1.6835': attribute type 29 has an invalid length.
[  668.257995][T21619] netlink: 'syz.1.6835': attribute type 29 has an invalid length.
[  668.449251][T21626] bridge4: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  668.494647][T21627] loop0: detected capacity change from 0 to 2048
[  668.517026][T21627] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  668.542888][T21627] UDF-fs: unknown compression code (0)
[  668.818495][T21635] loop1: detected capacity change from 0 to 16
[  668.858068][T21635] erofs: (device loop1): mounted with root inode @ nid 36.
[  669.509804][T21666] loop3: detected capacity change from 0 to 512
[  669.528896][T21663] loop1: detected capacity change from 0 to 2048
[  669.552958][T21663] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  669.657765][T21666] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  669.684313][T21666] ext4 filesystem being mounted at /1629/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  669.734593][T21675] xt_CT: You must specify a L4 protocol and not use inversions on it
[  669.873390][ T6069] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.195406][T21681] loop1: detected capacity change from 0 to 8192
[  670.717937][T21711] loop1: detected capacity change from 0 to 128
[  670.740604][T21711] EXT4-fs (loop1): Test dummy encryption mode enabled
[  670.766805][T21711] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  670.781947][T21711] ext4 filesystem being mounted at /1645/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  670.837472][ T6072] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  671.019712][T21725] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6883'.
[  671.236740][   T27] kauditd_printk_skb: 15 callbacks suppressed
[  671.236755][   T27] audit: type=1326 audit(2000000028.539:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21732 comm="syz.1.6886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  671.265627][    C0] vkms_vblank_simulate: vblank timer overrun
[  671.339276][   T27] audit: type=1326 audit(2000000028.576:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21732 comm="syz.1.6886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  671.407590][T21740] loop0: detected capacity change from 0 to 736
[  671.428847][   T27] audit: type=1326 audit(2000000028.585:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21732 comm="syz.1.6886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  671.474488][   T27] audit: type=1326 audit(2000000028.585:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21732 comm="syz.1.6886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  671.498802][   T27] audit: type=1326 audit(2000000028.585:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21732 comm="syz.1.6886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  671.772174][T21753] Mount JFS Failure: -22
[  671.797885][T21753] jfs_mount failed w/return code = -22
[  672.227740][    C1] sd 0:0:1:0: [sda] tag#7073 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  672.238269][    C1] sd 0:0:1:0: [sda] tag#7073 CDB: Read(6) 08 00 9f d1 fe de
[  672.540091][T21789] netlink: 176 bytes leftover after parsing attributes in process `syz.3.6910'.
[  672.568925][T21792] loop1: detected capacity change from 0 to 512
[  672.622257][T21792] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  672.747757][T21792] EXT4-fs (loop1): 1 truncate cleaned up
[  672.763788][T21792] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  672.821527][T21802] loop3: detected capacity change from 0 to 1024
[  672.858594][ T6072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  673.019784][T21809] loop0: detected capacity change from 0 to 256
[  673.157226][ T1334] hfsplus: b-tree write err: -5, ino 4
[  673.561399][   T27] audit: type=1326 audit(2000000030.708:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21829 comm="syz.2.6929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  673.584330][ T6107] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[  673.626617][   T27] audit: type=1326 audit(2000000030.708:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21829 comm="syz.2.6929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  673.701332][   T27] audit: type=1326 audit(2000000030.708:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21829 comm="syz.2.6929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  673.769430][   T27] audit: type=1326 audit(2000000030.708:242): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=21829 comm="syz.2.6929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  673.826224][   T27] audit: type=1326 audit(2000000030.708:243): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=unconfined pid=21829 comm="syz.2.6929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184018e929 code=0x7ffc0000
[  673.851202][ T6107] usb 4-1: Using ep0 maxpacket: 32
[  673.881850][ T6107] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  673.912368][ T6107] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  673.956341][ T6107] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  674.000012][ T6107] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  674.032823][ T6107] usb 4-1: config 0 interface 0 has no altsetting 0
[  674.047565][ T6107] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  674.057512][ T6107] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  674.075458][ T6107] usb 4-1: Product: syz
[  674.080688][ T6107] usb 4-1: Manufacturer: syz
[  674.085325][ T6107] usb 4-1: SerialNumber: syz
[  674.102435][ T6107] usb 4-1: config 0 descriptor??
[  674.110505][ T6107] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  674.135078][ T6107] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  674.232288][T21827] loop1: detected capacity change from 0 to 32768
[  674.236247][T21847] loop0: detected capacity change from 0 to 512
[  674.299895][T21847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.314206][T21847] ext4 filesystem being mounted at /1716/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  674.329822][T21827] ialloc: diAlloc returned -17!
[  674.336861][ T6107] usb 4-1: USB disconnect, device number 63
[  674.349973][ T6107] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  674.442440][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.681301][T21858] loop2: detected capacity change from 0 to 512
[  674.737992][T21858] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.802831][T21858] ext4 filesystem being mounted at /1676/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  674.884999][T21858] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  675.285107][T21883] netdevsim netdevsim0: Direct firmware load for ..€ failed with error -2
[  675.305055][T21879] loop3: detected capacity change from 0 to 4096
[  675.305447][T21883] netdevsim netdevsim0: Falling back to sysfs fallback for: ..€
[  675.327974][T21879] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  675.765326][    T8] usb 3-1: new high-speed USB device number 77 using dummy_hcd
[  675.837063][T21889] loop1: detected capacity change from 0 to 32768
[  675.853966][T21889] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz.1.6956 (21889)
[  675.904011][T21889] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  675.922339][T21889] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  675.933510][T21889] BTRFS info (device loop1): turning off barriers
[  675.942609][T21889] BTRFS info (device loop1): max_inline at 0
[  675.949067][T21889] BTRFS info (device loop1): enabling all of the rescue options
[  675.956833][T21889] BTRFS info (device loop1): ignoring data csums
[  675.975131][    T8] usb 3-1: config 0 has an invalid interface number: 69 but max is 0
[  675.990475][    T8] usb 3-1: config 0 has no interface number 0
[  675.997675][T21889] BTRFS info (device loop1): ignoring bad roots
[  676.004999][    T8] usb 3-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  676.015538][T21889] BTRFS info (device loop1): disabling log replay at mount time
[  676.024277][    T8] usb 3-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  676.035584][T21889] BTRFS info (device loop1): force zlib compression, level 3
[  676.046160][T21889] BTRFS info (device loop1): allowing degraded mounts
[  676.055793][T21901] netlink: del zone limit has 4 unknown bytes
[  676.062630][T21889] BTRFS info (device loop1): enabling ssd optimizations
[  676.063350][    T8] usb 3-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  676.080289][T21889] BTRFS info (device loop1): using spread ssd allocation scheme
[  676.096842][T21889] BTRFS info (device loop1): using free space tree
[  676.103577][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  676.112078][T21889] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 512
[  676.123702][    T8] usb 3-1: Product: syz
[  676.127974][    T8] usb 3-1: Manufacturer: syz
[  676.150631][T21889] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 512
[  676.174013][    T8] usb 3-1: SerialNumber: syz
[  676.194469][T21889] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 512
[  676.216545][    T8] usb 3-1: config 0 descriptor??
[  676.225491][T21891] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  676.234522][    T8] cyberjack 3-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  676.246680][T21889] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 512
[  676.269851][T21889] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 512
[  676.291655][    T8] usb 3-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  676.302992][T21889] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 512
[  676.353523][T21889] workqueue: max_active 2097158 requested for btrfs-compressed-write is out of range, clamping between 1 and 512
[  676.407886][ T2986] BTRFS warning (device loop1): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0x3fff8ff18ac4f264f26c9b61444b99be3a51e4b9014c9227426415668fcd4ed9 level 0
[  676.451906][ T1334] BTRFS warning (device loop1: state C): checksum verify failed on logical 5328896 mirror 1 wanted 0xe27e479340067083b74b333c1de55c530774f48d9bb4dbb5f2229db663324412 found 0x95f62be744ba79d2c7edda0b7f35c3ed250500c283e6cfbf6ba5d84a2ae65a3d level 1
[  676.518987][T21889] BTRFS info (device loop1: state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  676.708059][    T8] usb 3-1: USB disconnect, device number 77
[  676.746685][    T8] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  676.781873][    T8] cyberjack 3-1:0.69: device disconnected
[  677.887727][T21968] xt_CT: No such helper "netbios-ns"
[  678.019026][T21981] netlink: 88 bytes leftover after parsing attributes in process `syz.1.6993'.
[  678.657082][T22005] loop2: detected capacity change from 0 to 1024
[  678.754582][T22010] loop1: detected capacity change from 0 to 128
[  678.783289][T22010] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  678.863385][T22010] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  678.908346][T21985] loop3: detected capacity change from 0 to 40427
[  678.954239][T21985] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x7ffff
[  679.008476][ T1325] hfsplus: b-tree write err: -5, ino 4
[  679.015650][T21985] F2FS-fs (loop3): invalid crc value
[  679.049999][ T2986] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  679.060060][T21985] F2FS-fs (loop3): Found nat_bits in checkpoint
[  679.226164][T22022] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7010'.
[  679.251736][T21985] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  679.526669][T22032] loop0: detected capacity change from 0 to 256
[  679.601242][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  679.601255][   T27] audit: type=1800 audit(2000000036.356:249): pid=22032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.7024" name="file1" dev="loop0" ino=1048702 res=0 errno=0
[  679.875510][T22040] loop0: detected capacity change from 0 to 256
[  680.071436][T22029] lo speed is unknown, defaulting to 1000
[  680.244092][T22050] binder: 22049:22050 unknown command 1074553619
[  680.259817][T22050] binder: 22049:22050 ioctl c0306201 200000000540 returned -22
[  680.427301][T22060] loop0: detected capacity change from 0 to 256
[  680.495914][T22060] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  680.651523][   T11] FAT-fs (loop0): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  681.067591][T22064] loop2: detected capacity change from 0 to 32768
[  681.083517][T22064] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.7029 (22064)
[  681.110276][T22064] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  681.128796][T22064] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  681.140341][T22064] BTRFS info (device loop2): enabling auto defrag
[  681.147349][T22064] BTRFS info (device loop2): doing ref verification
[  681.154096][T22064] BTRFS info (device loop2): use no compression
[  681.161159][T22064] BTRFS info (device loop2): force clearing of disk cache
[  681.169037][T22064] BTRFS info (device loop2): setting nodatacow, compression disabled
[  681.187332][T22064] BTRFS info (device loop2): disabling free space tree
[  681.230774][T22080] loop0: detected capacity change from 0 to 4096
[  681.273026][ T1201] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[  681.282951][T22080] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  681.376139][T22064] BTRFS info (device loop2): enabling ssd optimizations
[  681.390378][T22064] BTRFS info (device loop2): auto enabling async discard
[  681.404928][T22064] BTRFS info (device loop2): rebuilding free space tree
[  681.427931][T22064] BTRFS info (device loop2): disabling free space tree
[  681.442394][T22080] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  681.442441][T22064] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  681.471483][T22064] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  681.507951][ T1201] usb 4-1: Using ep0 maxpacket: 32
[  681.523951][ T1201] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  681.551380][ T1201] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  681.574113][ T1201] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  681.590785][ T1201] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  681.656999][ T6652] I/O error, dev loop0, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  681.667993][ T1201] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  681.700600][ T1201] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  681.711559][ T1201] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  681.721475][ T1201] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  681.782759][ T1201] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  681.791439][ T6075] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  681.810644][ T1201] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  681.864467][ T1201] usb 4-1: config 0 descriptor??
[  682.103717][ T1201] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 64 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  682.135664][T22105] loop0: detected capacity change from 0 to 4096
[  682.181590][T22105] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  682.220119][ T1201] usb 4-1: USB disconnect, device number 64
[  682.278632][ T1201] usblp0: removed
[  683.264091][T22146] loop3: detected capacity change from 0 to 64
[  683.530183][   T27] audit: type=1326 audit(2000000040.022:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22157 comm="syz.3.7065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  683.593675][   T27] audit: type=1326 audit(2000000040.022:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22157 comm="syz.3.7065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  683.661064][   T27] audit: type=1326 audit(2000000040.068:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22157 comm="syz.3.7065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  683.739657][   T27] audit: type=1326 audit(2000000040.068:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22157 comm="syz.3.7065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  683.845206][T22171] loop2: detected capacity change from 0 to 512
[  683.859780][T22171] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[  683.868055][T22171] EXT4-fs (loop2): Remounting filesystem read-only
[  683.870417][T22171] EXT4-fs (loop2): 1 truncate cleaned up
[  683.873224][T22171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  683.877268][T22175] xt_CONNSECMARK: invalid mode: 0
[  684.017817][ T6075] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.415972][T22194] loop1: detected capacity change from 0 to 256
[  684.446706][T22192] loop3: detected capacity change from 0 to 4096
[  684.462512][T22192] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  684.898883][T22187] loop2: detected capacity change from 0 to 32768
[  684.960224][T22187] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.7077 (22187)
[  684.998857][T22187] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  685.029357][T22187] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  685.039231][T22187] BTRFS info (device loop2): using free space tree
[  685.127552][T22187] BTRFS info (device loop2): enabling ssd optimizations
[  685.150729][T22187] BTRFS info (device loop2): auto enabling async discard
[  685.289865][ T6075] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  685.344925][T22230] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7101'.
[  685.362698][T22230] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7101'.
[  685.505154][T22201] lo speed is unknown, defaulting to 1000
[  685.911658][T22243] loop0: detected capacity change from 0 to 128
[  685.922834][T22243] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  685.968713][T22243] FAT-fs (loop0): FAT read failed (blocknr 234)
[  686.091761][T22245] Cannot find del_set index 2 as target
[  686.723174][T22272] loop0: detected capacity change from 0 to 4096
[  686.756948][T22272] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  686.776729][T22272] ntfs3: loop0: It is recommened to use chkdsk.
[  686.908533][ T6107] usb 4-1: new high-speed USB device number 65 using dummy_hcd
[  687.122595][ T6107] usb 4-1: config 0 has an invalid interface number: 69 but max is 0
[  687.144178][ T6107] usb 4-1: config 0 has no interface number 0
[  687.153922][ T6107] usb 4-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  687.181464][ T6107] usb 4-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  687.219461][ T6107] usb 4-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  687.228595][ T6107] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  687.237026][ T6107] usb 4-1: Product: syz
[  687.250047][ T6107] usb 4-1: Manufacturer: syz
[  687.272907][ T6107] usb 4-1: SerialNumber: syz
[  687.280147][ T6107] usb 4-1: config 0 descriptor??
[  687.301126][T22269] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  687.334584][ T6107] cyberjack 4-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  687.364943][ T6107] usb 4-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  687.423066][T22284] lo speed is unknown, defaulting to 1000
[  687.932733][ T5774] usb 4-1: USB disconnect, device number 65
[  687.958296][T22304] loop2: detected capacity change from 0 to 16
[  687.969307][ T5774] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  688.020098][ T5774] cyberjack 4-1:0.69: device disconnected
[  688.027187][T22304] erofs: (device loop2): mounted with root inode @ nid 36.
[  688.603853][T22303] loop0: detected capacity change from 0 to 32768
[  688.989022][T22324] loop3: detected capacity change from 0 to 2048
[  689.007810][T22319] loop1: detected capacity change from 0 to 8192
[  689.042663][T22310] loop2: detected capacity change from 0 to 32768
[  689.042990][T22324] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  689.092289][T22310] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.7131 (22310)
[  689.122791][T22319] syz.1.7136: attempt to access beyond end of device
[  689.122791][T22319] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  689.148322][T22319] Buffer I/O error on dev loop1, logical block 57847, async page read
[  689.173482][T22326] loop0: detected capacity change from 0 to 1024
[  689.181034][T22319] syz.1.7136: attempt to access beyond end of device
[  689.181034][T22319] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  689.201960][T22310] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  689.239738][T22310] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  689.240291][T22319] Buffer I/O error on dev loop1, logical block 57847, async page read
[  689.255078][T22310] BTRFS info (device loop2): use no compression
[  689.265627][T22310] BTRFS info (device loop2): setting nodatasum
[  689.295088][   T27] audit: type=1800 audit(2000000045.427:254): pid=22319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7136" name="file2" dev="loop1" ino=1048705 res=0 errno=0
[  689.309036][T22310] BTRFS info (device loop2): enabling auto defrag
[  689.368115][T22310] BTRFS info (device loop2): max_inline at 0
[  689.408205][T22310] BTRFS info (device loop2): using free space tree
[  689.668222][T22310] BTRFS info (device loop2): auto enabling async discard
[  689.979791][ T6075] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  690.209539][T22365] xt_hashlimit: max too large, truncated to 1048576
[  690.267236][T22365] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  690.589396][T22366] lo speed is unknown, defaulting to 1000
[  690.621726][  T785] usb 3-1: new full-speed USB device number 78 using dummy_hcd
[  690.706757][T22362] loop3: detected capacity change from 0 to 32768
[  690.729316][T22362] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.7149 (22362)
[  690.784938][T22362] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  690.796746][T22362] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  690.806769][T22362] BTRFS info (device loop3): enabling auto defrag
[  690.834003][T22362] BTRFS info (device loop3): doing ref verification
[  690.844524][  T785] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[  690.860811][  T785] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  690.871744][T22362] BTRFS info (device loop3): use no compression
[  690.881740][T22362] BTRFS info (device loop3): force clearing of disk cache
[  690.909403][  T785] usb 3-1: config 0 has no interface number 0
[  690.916010][T22362] BTRFS info (device loop3): setting nodatacow, compression disabled
[  690.935346][  T785] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  690.948175][  T785] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  690.956661][T22362] BTRFS info (device loop3): disabling free space tree
[  690.983149][  T785] usb 3-1: Product: syz
[  690.987363][  T785] usb 3-1: Manufacturer: syz
[  690.996656][  T785] usb 3-1: SerialNumber: syz
[  691.027378][  T785] usb 3-1: config 0 descriptor??
[  691.072818][  T785] hub 3-1:0.31: bad descriptor, ignoring hub
[  691.090880][  T785] hub: probe of 3-1:0.31 failed with error -5
[  691.099032][  T785] usb 3-1: Found UVC 0.04 device syz (046d:08c3)
[  691.139244][  T785] uvcvideo 3-1:0.31: Entity type for entity Output 6 was not initialized!
[  691.169320][T22362] BTRFS info (device loop3): enabling ssd optimizations
[  691.179192][  T785] usb 3-1: Failed to create links for entity 6
[  691.185413][  T785] usb 3-1: Failed to register entities (-22).
[  691.200359][T22362] BTRFS info (device loop3): auto enabling async discard
[  691.264733][T22362] BTRFS info (device loop3): rebuilding free space tree
[  691.326040][  T785] usb 3-1: USB disconnect, device number 78
[  691.361476][T22362] BTRFS info (device loop3): disabling free space tree
[  691.400021][T22362] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  691.418910][T22372] loop0: detected capacity change from 0 to 32768
[  691.422524][T22362] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  691.436617][T22372] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 scanned by syz.0.7153 (22372)
[  691.478819][T22372] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  691.507905][T22372] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  691.524164][T22372] BTRFS info (device loop0): turning off barriers
[  691.546939][T22372] BTRFS info (device loop0): max_inline at 0
[  691.561690][T22372] BTRFS info (device loop0): enabling all of the rescue options
[  691.591931][T22372] BTRFS info (device loop0): ignoring data csums
[  691.634465][T22372] BTRFS info (device loop0): ignoring bad roots
[  691.661059][T22372] BTRFS info (device loop0): disabling log replay at mount time
[  691.671867][T22372] BTRFS info (device loop0): force zlib compression, level 3
[  691.697596][T22372] BTRFS info (device loop0): allowing degraded mounts
[  691.742244][T22372] BTRFS info (device loop0): enabling ssd optimizations
[  691.749250][T22372] BTRFS info (device loop0): using spread ssd allocation scheme
[  691.750491][ T6069] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  691.774195][T22372] BTRFS info (device loop0): using free space tree
[  691.780825][T22372] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 512
[  691.851789][T22372] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 512
[  691.893801][T22372] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 512
[  691.961628][T22372] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 512
[  691.981641][T22372] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 512
[  692.042011][T22415] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7163'.
[  692.046486][T22372] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 512
[  692.065660][T22372] workqueue: max_active 2097158 requested for btrfs-compressed-write is out of range, clamping between 1 and 512
[  692.137135][   T12] BTRFS warning (device loop0): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0x3fff8ff18ac4f264f26c9b61444b99be3a51e4b9014c9227426415668fcd4ed9 level 0
[  692.214594][ T1096] BTRFS warning (device loop0: state C): checksum verify failed on logical 5328896 mirror 1 wanted 0xe27e479340067083b74b333c1de55c530774f48d9bb4dbb5f2229db663324412 found 0x95f62be744ba79d2c7edda0b7f35c3ed250500c283e6cfbf6ba5d84a2ae65a3d level 1
[  692.395824][T22372] BTRFS info (device loop0: state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  692.415915][  T785] usb 3-1: new high-speed USB device number 79 using dummy_hcd
[  692.662075][  T785] usb 3-1: Using ep0 maxpacket: 32
[  692.697285][  T785] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[  692.718293][  T785] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  692.777905][  T785] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  692.834821][  T785] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  692.866003][  T785] usb 3-1: config 0 interface 0 has no altsetting 0
[  692.889436][  T785] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  692.923231][  T785] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  692.940254][  T785] usb 3-1: Product: syz
[  692.944483][  T785] usb 3-1: Manufacturer: syz
[  692.987435][  T785] usb 3-1: SerialNumber: syz
[  693.010072][  T785] usb 3-1: config 0 descriptor??
[  693.027680][  T785] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  693.066738][  T785] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  693.079037][    T8] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[  693.286969][    T8] usb 2-1: config 0 has an invalid interface number: 69 but max is 0
[  693.307156][    T8] usb 2-1: config 0 has no interface number 0
[  693.322165][  T785] usb 3-1: USB disconnect, device number 79
[  693.324139][    T8] usb 2-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  693.343168][  T785] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[  693.353404][    T8] usb 2-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  693.371024][    T8] usb 2-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  693.396781][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  693.426474][    T8] usb 2-1: Product: syz
[  693.430923][    T8] usb 2-1: Manufacturer: syz
[  693.437130][    T8] usb 2-1: SerialNumber: syz
[  693.454916][    T8] usb 2-1: config 0 descriptor??
[  693.464439][T22433] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  693.476364][    T8] cyberjack 2-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  693.518058][    T8] usb 2-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  694.000656][  T785] usb 2-1: USB disconnect, device number 73
[  694.018342][  T785] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  694.050285][  T785] cyberjack 2-1:0.69: device disconnected
[  694.157004][T22474] libceph: resolve '+ælc' (ret=-3): failed
[  694.272657][T22479] netlink: 'syz.0.7190': attribute type 10 has an invalid length.
[  694.285503][T22479] mac80211_hwsim hwsim7 wlan1: left allmulticast mode
[  694.316749][T22479] team0: Port device wlan1 removed
[  694.327755][T22479] wlan1: mtu less than device minimum
[  694.338087][T22479] bond0: (slave wlan1): Error -22 calling dev_set_mtu
[  694.609088][   T27] audit: type=1326 audit(2000000050.392:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22492 comm="syz.0.7196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  694.691818][   T27] audit: type=1326 audit(2000000050.439:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22492 comm="syz.0.7196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  694.733128][   T27] audit: type=1326 audit(2000000050.495:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22492 comm="syz.0.7196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  694.767251][   T27] audit: type=1326 audit(2000000050.495:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22492 comm="syz.0.7196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  694.865109][   T27] audit: type=1326 audit(2000000050.495:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22492 comm="syz.0.7196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  694.883762][T22503] bond0: (slave veth0_to_hsr): Error: Device can not be enslaved while up
[  694.898360][T22502] loop1: detected capacity change from 0 to 764
[  694.949779][T22502] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  696.119837][T22557] netlink: 40 bytes leftover after parsing attributes in process `syz.0.7229'.
[  696.488706][   T27] audit: type=1326 audit(2000000052.150:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22569 comm="syz.1.7233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  696.562285][T22547] loop3: detected capacity change from 0 to 32768
[  696.586477][   T27] audit: type=1326 audit(2000000052.150:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22569 comm="syz.1.7233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  696.660509][   T27] audit: type=1326 audit(2000000052.178:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22569 comm="syz.1.7233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  696.727637][T22575] libceph: resolve '+ælc' (ret=-3): failed
[  696.748143][   T27] audit: type=1326 audit(2000000052.178:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22569 comm="syz.1.7233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  696.790480][   T27] audit: type=1326 audit(2000000052.178:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22569 comm="syz.1.7233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  697.119093][T22566] loop2: detected capacity change from 0 to 32768
[  697.155483][T22566] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.7232 (22566)
[  697.246481][T22566] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  697.272794][T22566] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  697.293710][T22587] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7243'.
[  697.304276][T22566] BTRFS info (device loop2): turning off barriers
[  697.304890][T22585] loop3: detected capacity change from 0 to 4096
[  697.329442][T22566] BTRFS info (device loop2): max_inline at 0
[  697.337028][T22566] BTRFS info (device loop2): enabling all of the rescue options
[  697.344853][T22566] BTRFS info (device loop2): ignoring data csums
[  697.351831][T22566] BTRFS info (device loop2): ignoring bad roots
[  697.366545][T22585] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  697.391418][T22566] BTRFS info (device loop2): disabling log replay at mount time
[  697.409603][T22585] ntfs3: loop3: It is recommened to use chkdsk.
[  697.417754][T22566] BTRFS info (device loop2): force zlib compression, level 3
[  697.469937][T22566] BTRFS info (device loop2): allowing degraded mounts
[  697.518985][T22566] BTRFS info (device loop2): enabling ssd optimizations
[  697.532674][T22566] BTRFS info (device loop2): using spread ssd allocation scheme
[  697.551294][T22566] BTRFS info (device loop2): using free space tree
[  697.559745][T22566] workqueue: max_active 2097158 requested for btrfs-worker is out of range, clamping between 1 and 512
[  697.599805][T22566] workqueue: max_active 2097158 requested for btrfs-delalloc is out of range, clamping between 1 and 512
[  697.658931][T22566] workqueue: max_active 2097158 requested for btrfs-endio is out of range, clamping between 1 and 512
[  697.695155][T22566] workqueue: max_active 2097158 requested for btrfs-endio-meta is out of range, clamping between 1 and 512
[  697.715047][T22590] loop0: detected capacity change from 0 to 4096
[  697.741987][T22590] EXT4-fs (loop0): Test dummy encryption mode enabled
[  697.790440][T22566] workqueue: max_active 2097158 requested for btrfs-rmw is out of range, clamping between 1 and 512
[  697.797079][T22578] loop1: detected capacity change from 0 to 32768
[  697.829941][T22578] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.7237 (22578)
[  697.865007][T22590] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  697.881073][T22566] workqueue: max_active 2097158 requested for btrfs-endio-write is out of range, clamping between 1 and 512
[  697.921446][T22578] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  697.942418][T22566] workqueue: max_active 2097158 requested for btrfs-compressed-write is out of range, clamping between 1 and 512
[  697.957804][T22578] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  697.966881][T22578] BTRFS info (device loop1): enabling ssd optimizations
[  697.973861][T22578] BTRFS info (device loop1): using free space tree
[  698.032000][ T1325] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0x3fff8ff18ac4f264f26c9b61444b99be3a51e4b9014c9227426415668fcd4ed9 level 0
[  698.080374][ T1096] BTRFS warning (device loop2: state C): checksum verify failed on logical 5328896 mirror 1 wanted 0xe27e479340067083b74b333c1de55c530774f48d9bb4dbb5f2229db663324412 found 0x95f62be744ba79d2c7edda0b7f35c3ed250500c283e6cfbf6ba5d84a2ae65a3d level 1
[  698.136485][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.218067][T22566] BTRFS info (device loop2: state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  698.228457][T22578] BTRFS info (device loop1): auto enabling async discard
[  698.501055][ T6072] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  698.537627][T22631] 9pnet: Could not find request transport: f
[  698.687739][T22636] libceph: resolve '+ælc' (ret=-3): failed
[  698.790748][ T6068] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by udevd (6068)
[  698.870517][T22642] netlink: 'syz.1.7251': attribute type 10 has an invalid length.
[  698.910497][T22642] mac80211_hwsim hwsim6 wlan1: left allmulticast mode
[  698.919763][   T27] audit: type=1326 audit(2000000054.413:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22643 comm="syz.3.7252" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  698.967528][T22642] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode
[  698.988062][T22642] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  699.789965][T22640] loop0: detected capacity change from 0 to 32768
[  699.842048][T22640] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.7260 (22640)
[  699.909834][T22640] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  699.934090][T22640] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  699.946795][T22640] BTRFS info (device loop0): use no compression
[  699.953100][T22640] BTRFS info (device loop0): setting nodatasum
[  700.007063][T22640] BTRFS info (device loop0): enabling auto defrag
[  700.027580][T22640] BTRFS info (device loop0): max_inline at 0
[  700.038396][T22640] BTRFS info (device loop0): using free space tree
[  700.158516][T22640] BTRFS info (device loop0): auto enabling async discard
[  700.357526][ T6066] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  700.807987][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  700.808002][   T27] audit: type=1326 audit(2000000056.190:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22715 comm="syz.3.7281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  700.846858][T22714] loop0: detected capacity change from 0 to 2048
[  700.877779][T22714] EXT4-fs: Ignoring removed mblk_io_submit option
[  700.936489][   T27] audit: type=1326 audit(2000000056.190:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22715 comm="syz.3.7281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  701.042699][T22722] xt_policy: too many policy elements
[  701.047717][T22714] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  701.056728][   T27] audit: type=1326 audit(2000000056.199:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22715 comm="syz.3.7281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7eff2cf8e929 code=0x7ffc0000
[  701.142512][   T27] audit: type=1326 audit(2000000056.199:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22715 comm="syz.3.7281" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff2cf8e929 code=0x0
[  701.198894][T22720] loop1: detected capacity change from 0 to 4096
[  701.240504][ T6066] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.429344][T22730] loop0: detected capacity change from 0 to 128
[  701.508187][T22730] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  701.602934][T22730] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  702.077754][T22726] loop3: detected capacity change from 0 to 32768
[  702.124917][T22752] netlink: 84 bytes leftover after parsing attributes in process `syz.1.7298'.
[  702.132357][T22726] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.7285 (22726)
[  702.196789][T22726] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  702.229671][T22726] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  702.253881][T22726] BTRFS info (device loop3): use no compression
[  702.300525][T22726] BTRFS info (device loop3): setting nodatasum
[  702.330117][T22726] BTRFS info (device loop3): enabling auto defrag
[  702.336679][T22726] BTRFS info (device loop3): max_inline at 0
[  702.361238][T22726] BTRFS info (device loop3): using free space tree
[  702.495831][T20850] Bluetooth: hci3: unexpected event for opcode 0x0809
[  702.540666][T22726] BTRFS info (device loop3): auto enabling async discard
[  702.879156][ T6069] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  703.717068][T22790] loop2: detected capacity change from 0 to 32768
[  703.772983][T22790] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  703.815692][T22790] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  703.824411][T22790] BTRFS info (device loop2): enabling ssd optimizations
[  703.884633][T22790] BTRFS info (device loop2): using free space tree
[  704.064224][T22790] BTRFS info (device loop2): auto enabling async discard
[  704.180844][ T6075] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  704.613518][T22868] loop3: detected capacity change from 0 to 256
[  704.719902][T22868] FAT-fs (loop3): Directory bread(block 64) failed
[  704.755780][T22868] FAT-fs (loop3): Directory bread(block 65) failed
[  704.765277][T22868] FAT-fs (loop3): Directory bread(block 66) failed
[  704.783301][T22868] FAT-fs (loop3): Directory bread(block 67) failed
[  704.834864][T22868] FAT-fs (loop3): Directory bread(block 68) failed
[  704.841447][T22868] FAT-fs (loop3): Directory bread(block 69) failed
[  704.863813][T22868] FAT-fs (loop3): Directory bread(block 70) failed
[  704.870421][T22868] FAT-fs (loop3): Directory bread(block 71) failed
[  704.910784][T22868] FAT-fs (loop3): Directory bread(block 72) failed
[  704.929764][T22868] FAT-fs (loop3): Directory bread(block 73) failed
[  704.971573][T22878] loop1: detected capacity change from 0 to 256
[  705.049976][T22878] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  705.192917][T22880] loop2: detected capacity change from 0 to 2048
[  705.233126][T22880] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  705.818209][T22876] loop0: detected capacity change from 0 to 32768
[  705.836391][T22876] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.7340 (22876)
[  705.909880][T22876] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  705.943354][T22876] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  705.967224][T22901] lo: left allmulticast mode
[  705.974133][T22876] BTRFS info (device loop0): enabling ssd optimizations
[  705.993758][T22901] tunl0: left allmulticast mode
[  705.995470][T22876] BTRFS info (device loop0): using free space tree
[  706.030515][T22901] gre0: left allmulticast mode
[  706.080025][T22901] gretap0: left allmulticast mode
[  706.109557][T22901] erspan0: left allmulticast mode
[  706.161866][T22901] ip_vti0: left allmulticast mode
[  706.218831][T22876] BTRFS info (device loop0): auto enabling async discard
[  706.220088][T22901] ip6_vti0: left allmulticast mode
[  706.246296][T22901] ip6tnl0: left allmulticast mode
[  706.266309][T22901] ip6gre0: left allmulticast mode
[  706.278137][T22901] syz_tun: left allmulticast mode
[  706.316865][T22901] ip6gretap0: left allmulticast mode
[  706.348336][T22901] bridge0: left allmulticast mode
[  706.368595][T22901] vcan0: left allmulticast mode
[  706.425722][T22901] bond0: left allmulticast mode
[  706.430651][T22901] mac80211_hwsim hwsim6 wlan1: left allmulticast mode
[  706.480553][T22901] 8021q: adding VLAN 0 to HW filter on device bond0
[  706.487569][ T6066] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  706.547271][T22901] 8021q: adding VLAN 0 to HW filter on device team0
[  706.558146][T22901] dummy0: left allmulticast mode
[  706.578752][T22901] nlmon0: left allmulticast mode
[  706.608937][T22901] caif0: left allmulticast mode
[  706.637188][T22901] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  706.708992][   T23] lo speed is unknown, defaulting to 1000
[  706.714003][T22935] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7361'.
[  707.155538][T22949] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  707.476809][T22963] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7374'.
[  707.520315][T22963] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7374'.
[  707.917525][T22981] vlan0: entered promiscuous mode
[  708.077066][T22988] netlink: 'syz.2.7387': attribute type 27 has an invalid length.
[  708.355715][T22995] ieee802154 phy0 wpan0: encryption failed: -22
[  708.476496][T23002] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7395'.
[  708.856059][T23016] netdevsim netdevsim0: Direct firmware load for  failed with error -2
[  708.863722][T23018] netlink: 3 bytes leftover after parsing attributes in process `syz.3.7402'.
[  708.874051][T23016] netdevsim netdevsim0: Falling back to sysfs fallback for: 
[  708.901940][T23018] 0ªX¹¦À: renamed from caif0
[  708.909818][T23018] 0ªX¹¦À: entered allmulticast mode
[  708.917041][T23018] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  709.081664][T23021] netlink: 300 bytes leftover after parsing attributes in process `syz.3.7404'.
[  709.224131][   T27] audit: type=1326 audit(2000000064.054:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23025 comm="syz.1.7406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  709.241993][T23006] loop2: detected capacity change from 0 to 32768
[  709.251790][   T27] audit: type=1326 audit(2000000064.054:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23025 comm="syz.1.7406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  709.317889][   T27] audit: type=1326 audit(2000000064.082:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23025 comm="syz.1.7406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  709.376436][   T27] audit: type=1326 audit(2000000064.138:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23025 comm="syz.1.7406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  709.440815][   T27] audit: type=1326 audit(2000000064.138:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23025 comm="syz.1.7406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3af98e929 code=0x7ffc0000
[  709.703120][T23040] vlan0: entered promiscuous mode
[  709.720546][T23040] vlan0: left allmulticast mode
[  710.007580][   T23] usb 3-1: new high-speed USB device number 80 using dummy_hcd
[  710.225231][   T23] usb 3-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  710.235008][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  710.247870][   T23] usb 3-1: Product: syz
[  710.252442][   T23] usb 3-1: Manufacturer: syz
[  710.275145][   T23] usb 3-1: SerialNumber: syz
[  710.307075][   T23] usb 3-1: config 0 descriptor??
[  710.328879][   T23] i2c-tiny-usb 3-1:0.0: version 6d.cc found at bus 003 address 080
[  710.371385][T23067] vlan0: entered promiscuous mode
[  710.376722][T23067] vlan0: left allmulticast mode
[  710.746780][   T23]  (null): failure reading functionality
[  710.754510][   T23] i2c i2c-1: failure reading functionality
[  710.766880][   T27] audit: type=1326 audit(2000000065.494:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23082 comm="syz.0.7433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  710.799029][ T1201] usb 2-1: new high-speed USB device number 74 using dummy_hcd
[  710.811863][   T23] i2c i2c-1: connected i2c-tiny-usb device
[  710.831227][   T27] audit: type=1326 audit(2000000065.494:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23082 comm="syz.0.7433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  710.842660][   T23] usb 3-1: USB disconnect, device number 80
[  710.885244][   T27] audit: type=1326 audit(2000000065.494:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23082 comm="syz.0.7433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  710.930477][   T27] audit: type=1326 audit(2000000065.494:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23082 comm="syz.0.7433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f690958e929 code=0x7ffc0000
[  711.012871][ T1201] usb 2-1: Using ep0 maxpacket: 8
[  711.023076][ T1201] usb 2-1: config 0 has an invalid interface number: 31 but max is 0
[  711.031801][ T1201] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  711.031825][ T1201] usb 2-1: config 0 has no interface number 0
[  711.038475][ T1201] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  711.066563][ T1201] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  711.074625][ T1201] usb 2-1: Product: syz
[  711.079114][ T1201] usb 2-1: Manufacturer: syz
[  711.083748][ T1201] usb 2-1: SerialNumber: syz
[  711.106942][ T1201] usb 2-1: config 0 descriptor??
[  711.312426][  T785] usb 4-1: new high-speed USB device number 66 using dummy_hcd
[  711.356223][ T1201] usb 2-1: Found UVC 0.04 device syz (046d:08c3)
[  711.362689][ T1201] usb 2-1: No valid video chain found.
[  711.431395][T23103] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7442'.
[  711.536882][  T785] usb 4-1: Using ep0 maxpacket: 16
[  711.548954][  T785] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  711.574209][  T785] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  711.596895][  T785] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  711.611191][  T785] usb 4-1: Product: syz
[  711.617091][  T785] usb 4-1: Manufacturer: syz
[  711.622002][  T785] usb 4-1: SerialNumber: syz
[  711.633275][  T785] usb 4-1: config 0 descriptor??
[  711.663345][ T5774] usb 2-1: USB disconnect, device number 74
[  711.728563][T23111] loop0: detected capacity change from 0 to 128
[  711.860202][  T785] usb 4-1: USB disconnect, device number 66
[  711.870800][T23113] netlink: 2 bytes leftover after parsing attributes in process `syz.0.7448'.
[  711.997285][T23115] sctp: [Deprecated]: syz.0.7449 (pid 23115) Use of int in maxseg socket option.
[  711.997285][T23115] Use struct sctp_assoc_value instead
[  712.058129][T23109] loop2: detected capacity change from 0 to 32768
[  712.091081][T23109] (syz.2.7446,23109,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  712.130081][T23109] (syz.2.7446,23109,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  712.210082][T23109] JBD2: Ignoring recovery information on journal
[  712.342676][T23125] xt_CT: You must specify a L4 protocol and not use inversions on it
[  712.350867][T23109] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  712.898036][ T6075] ocfs2: Unmounting device (7,2) on (node local)
[  713.046395][T23145] loop3: detected capacity change from 0 to 4096
[  713.130727][T23145] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  713.233441][T23145] ntfs3: loop3: ino=1e, "file1" attr_set_size
[  714.023803][T23164] loop3: detected capacity change from 0 to 32768
[  714.432473][T23190] loop2: detected capacity change from 0 to 4096
[  714.721487][T23190] ntfs3: loop2: Failed to initialize $Extend/$ObjId.
[  714.967485][T23204] loop1: detected capacity change from 0 to 2048
[  715.005100][T23204] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  715.070620][   T27] audit: type=1326 audit(2000000069.524:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23211 comm="syz.3.7494" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7eff2cf8e929 code=0x0
[  715.100648][ T6072] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  715.248327][T23218] loop2: detected capacity change from 0 to 1764
[  715.435774][T23226] loop2: detected capacity change from 0 to 64
[  716.086116][T23232] loop2: detected capacity change from 0 to 32768
[  716.175220][T23232] ERROR: (device loop2): dbAllocNext: Corrupt dmap page
[  716.175220][T23232] 
[  716.213444][T23232] ERROR: (device loop2): remounting filesystem as read-only
[  716.233442][T23232] ialloc: diAlloc returned -5!
[  716.788280][T23240] loop1: detected capacity change from 0 to 40427
[  716.817367][T23240] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  716.826261][T23240] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  716.874272][T23240] F2FS-fs (loop1): invalid crc value
[  716.899765][T23259] loop3: detected capacity change from 0 to 4096
[  716.944917][T23259] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  716.955825][T23240] F2FS-fs (loop1): Found nat_bits in checkpoint
[  717.061906][T23259] ntfs3: loop3: failed to convert "c46c" to cp437
[  717.159731][T23240] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  717.183355][T23240] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  717.220350][T23273] loop2: detected capacity change from 0 to 1764
[  717.790055][T23268] loop0: detected capacity change from 0 to 32768
[  717.857207][T23268] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop0 scanned by syz.0.7521 (23268)
[  717.863910][T23289] loop3: detected capacity change from 0 to 256
[  717.929833][T23268] BTRFS info (device loop0): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  717.956517][T23268] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  718.031987][T23268] BTRFS info (device loop0): using free space tree
[  718.170331][T23311] loop3: detected capacity change from 0 to 256
[  718.232148][T23311] exfat: Deprecated parameter 'utf8'
[  718.242373][T23268] BTRFS info (device loop0): enabling ssd optimizations
[  718.249372][T23268] BTRFS info (device loop0): auto enabling async discard
[  718.317534][T23311] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d)
[  718.573252][ T6066] BTRFS info (device loop0): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  718.720646][T23329] macvlan0: entered promiscuous mode
[  718.763257][T23329] macvlan0: entered allmulticast mode
[  718.769612][T23329] veth1_vlan: entered allmulticast mode
[  718.967357][T23336] loop1: detected capacity change from 0 to 256
[  719.024279][T23336] exfat: Deprecated parameter 'namecase'
[  719.068318][T23336] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  719.739353][ T5774] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[  719.953362][ T5774] usb 4-1: Using ep0 maxpacket: 8
[  719.986307][ T5774] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  719.994635][ T5774] usb 4-1: config 179 has no interface number 0
[  720.020325][ T5774] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  720.042718][ T5774] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  720.061174][ T5774] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  720.092267][ T5774] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  720.102423][ T5774] usb 4-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  720.156035][ T5774] usb 4-1: config 179 interface 65 has no altsetting 0
[  720.163104][ T5774] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  720.209772][ T5774] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  720.279436][ T5774] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input22
[  720.325574][T23376] loop0: detected capacity change from 0 to 4096
[  720.402874][T23376] NILFS (loop0): invalid segment: Checksum error in segment payload
[  720.428320][T23376] NILFS (loop0): trying rollback from an earlier position
[  720.485925][T23376] NILFS (loop0): recovery complete
[  720.521543][T23383] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  720.564690][  T785] usb 4-1: USB disconnect, device number 67
[  720.564857][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  720.597010][  T785] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  720.888737][T23393] netlink: 'syz.0.7569': attribute type 9 has an invalid length.
[  720.900814][T23393] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.7569'.
[  721.261569][T23403] 0ªX¹¦À: left allmulticast mode
[  721.266559][T23403] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  721.389906][T23391] loop1: detected capacity change from 0 to 32768
[  721.403252][T23391] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.7571 (23391)
[  721.502285][T23391] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  721.531437][T23391] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  721.550468][T23405] loop3: detected capacity change from 0 to 64
[  721.560210][T23391] BTRFS info (device loop1): use no compression
[  721.584249][T23391] BTRFS info (device loop1): setting nodatasum
[  721.642584][T23391] BTRFS info (device loop1): enabling auto defrag
[  721.675059][T23391] BTRFS info (device loop1): max_inline at 0
[  721.681148][T23391] BTRFS info (device loop1): using free space tree
[  721.827898][T23397] loop0: detected capacity change from 0 to 32768
[  721.886447][T23391] BTRFS info (device loop1): auto enabling async discard
[  721.931499][T23397] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  722.005466][T23397] 
[  722.007843][T23397] ======================================================
[  722.014871][T23397] WARNING: possible circular locking dependency detected
[  722.021914][T23397] 6.6.94-syzkaller #0 Not tainted
[  722.026943][T23397] ------------------------------------------------------
[  722.033968][T23397] syz.0.7573/23397 is trying to acquire lock:
[  722.040040][T23397] ffff88805e2d8660 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xb7/0x320
[  722.051651][T23397] 
[  722.051651][T23397] but task is already holding lock:
[  722.059019][T23397] ffff88805e2d86f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa5/0x320
[  722.069669][T23397] 
[  722.069669][T23397] which lock already depends on the new lock.
[  722.069669][T23397] 
[  722.080086][T23397] 
[  722.080086][T23397] the existing dependency chain (in reverse order) is:
[  722.089087][T23397] 
[  722.089087][T23397] -> #6 (&oi->ip_xattr_sem){++++}-{3:3}:
[  722.096909][T23397]        down_read+0x46/0x2e0
[  722.101583][T23397]        ocfs2_init_acl+0x2fa/0x720
[  722.106773][T23397]        ocfs2_mknod+0x12e5/0x20f0
[  722.111874][T23397]        ocfs2_create+0x196/0x410
[  722.116884][T23397]        vfs_create+0x1f4/0x360
[  722.121725][T23397]        do_mknodat+0x3c8/0x4f0
[  722.126569][T23397]        __x64_sys_mknod+0x8e/0xa0
[  722.131677][T23397]        do_syscall_64+0x55/0xb0
[  722.136609][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.143021][T23397] 
[  722.143021][T23397] -> #5 (jbd2_handle){++++}-{0:0}:
[  722.150307][T23397]        start_this_handle+0x1e9d/0x20c0
[  722.155931][T23397]        jbd2__journal_start+0x2bb/0x5b0
[  722.161550][T23397]        jbd2_journal_start+0x2a/0x40
[  722.166911][T23397]        ocfs2_start_trans+0x376/0x6c0
[  722.172357][T23397]        ocfs2_shutdown_local_alloc+0x201/0xa10
[  722.178585][T23397]        ocfs2_dismount_volume+0x1e2/0x890
[  722.184383][T23397]        generic_shutdown_super+0x134/0x2b0
[  722.190265][T23397]        kill_block_super+0x44/0x90
[  722.195454][T23397]        deactivate_locked_super+0x97/0x100
[  722.201339][T23397]        cleanup_mnt+0x429/0x4c0
[  722.206266][T23397]        task_work_run+0x1ce/0x250
[  722.211373][T23397]        exit_to_user_mode_loop+0xe6/0x110
[  722.217173][T23397]        exit_to_user_mode_prepare+0xb1/0x140
[  722.223229][T23397]        syscall_exit_to_user_mode+0x1a/0x50
[  722.229214][T23397]        do_syscall_64+0x61/0xb0
[  722.234144][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.240553][T23397] 
[  722.240553][T23397] -> #4 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  722.249053][T23397]        down_read+0x46/0x2e0
[  722.253723][T23397]        ocfs2_start_trans+0x36a/0x6c0
[  722.259172][T23397]        ocfs2_shutdown_local_alloc+0x201/0xa10
[  722.265403][T23397]        ocfs2_dismount_volume+0x1e2/0x890
[  722.271201][T23397]        generic_shutdown_super+0x134/0x2b0
[  722.277083][T23397]        kill_block_super+0x44/0x90
[  722.282276][T23397]        deactivate_locked_super+0x97/0x100
[  722.288157][T23397]        cleanup_mnt+0x429/0x4c0
[  722.293086][T23397]        task_work_run+0x1ce/0x250
[  722.298188][T23397]        exit_to_user_mode_loop+0xe6/0x110
[  722.303989][T23397]        exit_to_user_mode_prepare+0xb1/0x140
[  722.310050][T23397]        syscall_exit_to_user_mode+0x1a/0x50
[  722.316019][T23397]        do_syscall_64+0x61/0xb0
[  722.320947][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.327356][T23397] 
[  722.327356][T23397] -> #3 (sb_internal#4){.+.+}-{0:0}:
[  722.334822][T23397]        ocfs2_start_trans+0x26b/0x6c0
[  722.340276][T23397]        ocfs2_mknod+0xe47/0x20f0
[  722.345552][T23397]        vfs_mknod+0x32b/0x360
[  722.350307][T23397]        do_mknodat+0x37e/0x4f0
[  722.355146][T23397]        __x64_sys_mknodat+0xa9/0xc0
[  722.360418][T23397]        do_syscall_64+0x55/0xb0
[  722.365347][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.371757][T23397] 
[  722.371757][T23397] -> #2 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{3:3}:
[  722.382266][T23397]        down_write+0x97/0x1f0
[  722.387027][T23397]        ocfs2_reserve_local_alloc_bits+0x126/0x24b0
[  722.393690][T23397]        ocfs2_reserve_clusters_with_limit+0x1bf/0xba0
[  722.400527][T23397]        ocfs2_mknod+0xdee/0x20f0
[  722.405542][T23397]        vfs_mknod+0x32b/0x360
[  722.410295][T23397]        do_mknodat+0x37e/0x4f0
[  722.415139][T23397]        __x64_sys_mknodat+0xa9/0xc0
[  722.420416][T23397]        do_syscall_64+0x55/0xb0
[  722.425348][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.431755][T23397] 
[  722.431755][T23397] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}:
[  722.442275][T23397]        down_write+0x97/0x1f0
[  722.447032][T23397]        ocfs2_reserve_suballoc_bits+0x165/0x4360
[  722.453435][T23397]        ocfs2_reserve_new_metadata_blocks+0x404/0x940
[  722.460278][T23397]        ocfs2_extend_dir+0xc60/0x4760
[  722.465741][T23397]        ocfs2_prepare_dir_for_insert+0x2fc7/0x5480
[  722.472317][T23397]        ocfs2_mknod+0x818/0x20f0
[  722.477333][T23397]        ocfs2_create+0x196/0x410
[  722.482345][T23397]        vfs_create+0x1f4/0x360
[  722.487185][T23397]        do_mknodat+0x3c8/0x4f0
[  722.492027][T23397]        __x64_sys_mknod+0x8e/0xa0
[  722.497125][T23397]        do_syscall_64+0x55/0xb0
[  722.502057][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.508465][T23397] 
[  722.508465][T23397] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}:
[  722.517227][T23397]        __lock_acquire+0x2ddb/0x7c80
[  722.522596][T23397]        lock_acquire+0x197/0x410
[  722.527607][T23397]        down_write+0x97/0x1f0
[  722.532361][T23397]        ocfs2_try_remove_refcount_tree+0xb7/0x320
[  722.538853][T23397]        ocfs2_xattr_set+0x596/0x11f0
[  722.544221][T23397]        ocfs2_set_acl+0x4e1/0x590
[  722.549330][T23397]        ocfs2_iop_set_acl+0x1ab/0x2a0
[  722.554778][T23397]        vfs_set_acl+0x803/0xa60
[  722.559708][T23397]        path_setxattr+0x39f/0x550
[  722.564809][T23397]        __x64_sys_setxattr+0xbb/0xd0
[  722.570178][T23397]        do_syscall_64+0x55/0xb0
[  722.575109][T23397]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  722.581522][T23397] 
[  722.581522][T23397] other info that might help us debug this:
[  722.581522][T23397] 
[  722.591736][T23397] Chain exists of:
[  722.591736][T23397]   &ocfs2_file_ip_alloc_sem_key --> jbd2_handle --> &oi->ip_xattr_sem
[  722.591736][T23397] 
[  722.605719][T23397]  Possible unsafe locking scenario:
[  722.605719][T23397] 
[  722.613151][T23397]        CPU0                    CPU1
[  722.618502][T23397]        ----                    ----
[  722.623853][T23397]   lock(&oi->ip_xattr_sem);
[  722.628432][T23397]                                lock(jbd2_handle);
[  722.635010][T23397]                                lock(&oi->ip_xattr_sem);
[  722.642107][T23397]   lock(&ocfs2_file_ip_alloc_sem_key);
[  722.647644][T23397] 
[  722.647644][T23397]  *** DEADLOCK ***
[  722.647644][T23397] 
[  722.655771][T23397] 3 locks held by syz.0.7573/23397:
[  722.660951][T23397]  #0: ffff888075f00418 (sb_writers#27){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  722.670171][T23397]  #1: ffff88805e2d89d8 (&type->i_mutex_dir_key#30){+.+.}-{3:3}, at: vfs_set_acl+0x37a/0xa60
[  722.680350][T23397]  #2: ffff88805e2d86f8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_try_remove_refcount_tree+0xa5/0x320
[  722.691391][T23397] 
[  722.691391][T23397] stack backtrace:
[  722.697268][T23397] CPU: 1 PID: 23397 Comm: syz.0.7573 Not tainted 6.6.94-syzkaller #0
[  722.705320][T23397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  722.715365][T23397] Call Trace:
[  722.718636][T23397]  <TASK>
[  722.721558][T23397]  dump_stack_lvl+0x16c/0x230
[  722.726234][T23397]  ? load_image+0x3b0/0x3b0
[  722.730732][T23397]  ? show_regs_print_info+0x20/0x20
[  722.735928][T23397]  ? print_circular_bug+0x12b/0x1a0
[  722.741124][T23397]  check_noncircular+0x2bd/0x3c0
[  722.746051][T23397]  ? arch_stack_walk+0x160/0x190
[  722.750975][T23397]  ? look_up_lock_class+0x75/0x140
[  722.756077][T23397]  ? print_deadlock_bug+0x5d0/0x5d0
[  722.761272][T23397]  ? lockdep_lock+0xe0/0x220
[  722.765853][T23397]  ? stack_trace_save+0x9c/0xe0
[  722.770695][T23397]  ? _find_first_zero_bit+0xd3/0x100
[  722.775973][T23397]  __lock_acquire+0x2ddb/0x7c80
[  722.780826][T23397]  ? verify_lock_unused+0x140/0x140
[  722.786022][T23397]  ? verify_lock_unused+0x140/0x140
[  722.791215][T23397]  lock_acquire+0x197/0x410
[  722.795728][T23397]  ? ocfs2_try_remove_refcount_tree+0xb7/0x320
[  722.801882][T23397]  ? __might_sleep+0xe0/0xe0
[  722.806463][T23397]  ? read_lock_is_recursive+0x20/0x20
[  722.811834][T23397]  down_write+0x97/0x1f0
[  722.816073][T23397]  ? ocfs2_try_remove_refcount_tree+0xb7/0x320
[  722.822222][T23397]  ? down_read_killable+0x340/0x340
[  722.827419][T23397]  ? ocfs2_xattr_set+0x56f/0x11f0
[  722.832441][T23397]  ? __lock_acquire+0x7c80/0x7c80
[  722.837458][T23397]  ? ocfs2_xattr_block_find+0x154/0x4c0
[  722.842999][T23397]  ocfs2_try_remove_refcount_tree+0xb7/0x320
[  722.848982][T23397]  ? ocfs2_remove_refcount_tree+0xd50/0xd50
[  722.854868][T23397]  ? up_write+0x1c3/0x410
[  722.859189][T23397]  ocfs2_xattr_set+0x596/0x11f0
[  722.864045][T23397]  ? __ocfs2_xattr_set_handle+0xf10/0xf10
[  722.869758][T23397]  ? mark_lock+0x94/0x320
[  722.874077][T23397]  ? __lock_acquire+0x1334/0x7c80
[  722.879098][T23397]  ? ocfs2_inode_lock_tracker+0x3ec/0x660
[  722.884810][T23397]  ? do_raw_spin_lock+0x121/0x2c0
[  722.889829][T23397]  ? __rwlock_init+0x150/0x150
[  722.894589][T23397]  ? do_raw_spin_unlock+0x121/0x230
[  722.899786][T23397]  ? _raw_spin_unlock+0x28/0x40
[  722.904661][T23397]  ? ocfs2_inode_lock_tracker+0x3ec/0x660
[  722.910384][T23397]  ? __x64_sys_setxattr+0xbb/0xd0
[  722.915415][T23397]  ? ocfs2_inode_lock_atime+0x4e0/0x4e0
[  722.920955][T23397]  ocfs2_set_acl+0x4e1/0x590
[  722.925574][T23397]  ocfs2_iop_set_acl+0x1ab/0x2a0
[  722.930506][T23397]  ? read_lock_is_recursive+0x20/0x20
[  722.935878][T23397]  ? ocfs2_xattr_get+0x220/0x220
[  722.940806][T23397]  ? evm_inode_set_acl+0xbb/0x410
[  722.945822][T23397]  ? down_write+0x162/0x1f0
[  722.950322][T23397]  ? evm_revalidate_status+0x4f/0xb0
[  722.955597][T23397]  ? ima_inode_set_acl+0x81/0x180
[  722.960609][T23397]  ? make_vfsuid+0x51/0xb0
[  722.965021][T23397]  ? inode_owner_or_capable+0xf0/0x1c0
[  722.970479][T23397]  vfs_set_acl+0x803/0xa60
[  722.974886][T23397]  ? path_setxattr+0x314/0x550
[  722.979638][T23397]  path_setxattr+0x39f/0x550
[  722.984217][T23397]  ? simple_xattrs_free+0x150/0x150
[  722.989411][T23397]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  722.995386][T23397]  ? lock_chain_count+0x20/0x20
[  723.000235][T23397]  __x64_sys_setxattr+0xbb/0xd0
[  723.005090][T23397]  do_syscall_64+0x55/0xb0
[  723.009501][T23397]  ? clear_bhb_loop+0x40/0x90
[  723.014167][T23397]  ? clear_bhb_loop+0x40/0x90
[  723.018834][T23397]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  723.024726][T23397] RIP: 0033:0x7f690958e929
[  723.029151][T23397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  723.048849][T23397] RSP: 002b:00007f690a395038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  723.057263][T23397] RAX: ffffffffffffffda RBX: 00007f69097b5fa0 RCX: 00007f690958e929
[  723.065229][T23397] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000200000002a00
[  723.073190][T23397] RBP: 00007f6909610b39 R08: 0000000000000001 R09: 0000000000000000
[  723.081177][T23397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  723.089137][T23397] R13: 0000000000000000 R14: 00007f69097b5fa0 R15: 00007ffe8b127918
[  723.097122][T23397]  </TASK>
[  723.186748][ T6066] ocfs2: Unmounting device (7,0) on (node local)
[  723.195379][ T6072] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  728.018264][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  728.024599][ T1286] ieee802154 phy1 wpan1: encryption failed: -22