last executing test programs:

7.41263935s ago: executing program 2 (id=853):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpid()
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="18020000040000000000000000000000850000004100000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000180000850000008200000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

7.027682582s ago: executing program 3 (id=856):
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x1000, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8005}, 0xab45f0169df58bce)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r1, 0x40000000af01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x1, 0x0, 0x0, &(0x7f0000000280)=""/167, &(0x7f0000000100)=""/47})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000002240))
r2 = dup(r0)
ioctl$VHOST_NET_SET_BACKEND(r1, 0x4008af30, &(0x7f0000000000)={0x1, r2})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYRES32, @ANYRES32], 0x40}}, 0x0)

6.286049692s ago: executing program 3 (id=858):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
unshare(0x8000600)
r5 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
r6 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
bind$llc(r6, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
dup3(r5, r6, 0x0)

6.232533946s ago: executing program 2 (id=859):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x403, 0x6030, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
r1 = openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0xf)
r3 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r3, 0x3b81, 0x0)
execveat(r1, 0x0, 0x0, 0x0, 0x1000)
readlink(0x0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x2, {[@main=@item_012={0x1, 0x0, 0x7, "a4"}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f00000004c0)={0x0, 0x14, 0xd, "5e6424818327b2369deca65eb2"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00M'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5.608695897s ago: executing program 0 (id=861):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, 0x0)

5.311697081s ago: executing program 0 (id=862):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r4)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x1c, r5, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x1c}}, 0x2010)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'syzkaller0\x00'})
sendmsg$nl_route(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4810}, 0x4000)
socket$inet6(0xa, 0x802, 0x0)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000004c0))
r6 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
syz_clone(0x1208000, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)

4.431829982s ago: executing program 1 (id=863):
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x1, 0xac, &(0x7f0000000100)="$eJzs0jFqwzAUBuBnY7cdu3foDXwHn6BnMB3tzZNLJ9+nlyh07RFygwxZsygYyUP2QAh8H0hPP/8ikP7PP2+xRryvESmlJu2aSPPyNQ7TvLTjMEVEG3+RVWU+Bw+uLs/ZR/4DWz72uatKfzh9f+4rNx+/eT7d7+IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcEPV63Wuo+vK8WXbLgEAAP//2Bwh+A==")
open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)

4.388435355s ago: executing program 3 (id=864):
socket$inet6(0xa, 0x3, 0x3c)
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0xe, &(0x7f0000000700)={[{@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x7fffffff}}, {@debug}, {@lazytime}, {@nombcache}, {@noload}]}, 0x3, 0x440, &(0x7f0000000cc0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x108c}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
openat(r0, 0x0, 0x1a77c1, 0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0xc73f, 0x81, 0x9})

4.189732881s ago: executing program 0 (id=865):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000080)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}]}, 0x2, 0x53a, &(0x7f0000000c80)="$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")
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x4)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1dc)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000140)={0x1fffffff800, 0x2, 0x5})

3.929882112s ago: executing program 0 (id=866):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000300)={0xd2f0, 0x6, 0x8, 0x22dea, 0x1fffffd})

3.892104076s ago: executing program 1 (id=867):
r0 = memfd_create(&(0x7f0000000b40)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x84\xcdN\xf7\xf6\b~\xed_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xadNaC\xa6\xf9\xa7>c\x84\xd8\xfa\xf1\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8g8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZH\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\xea\x82\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\x0f\x8eS\xaeX\x93\x7f\xd3\xb9a\xe4\xe0\xbd\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x84\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1#\xe7N\x89\xf8\xe8+\xa1\x82\x13\xb2\xa9\xef\xa5\xf8\x8b \x00\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)2\xe2\xd6\x81\x00b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|&k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc2Ru2Ht\re\xa1\xf6\xbd\xaa\xb0\x83}i\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf\xa4O\xb4\xed\xc8\xccH\xd1=\x81\x00\x00\x00\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xd6\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\x86C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17U\xf0\x16K\xf9&@\xb1[\xe2j$F1n@\xde\n%t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5#\x7f\xa8\x1f\x14\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebk\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x850\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96\x87\xc0e\xab\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!\xec\xf7$\xc2\xbaU \x98\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\"k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xec\x01\'\t\x89(\xf9\x98B\xaf\xde*\x91\xd5k\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\xdfC\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84\x0e\xa7U\xc7}\xea.U`\x1b*\xcep\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xc9\xcfw\xf3\x02\x1b\xde\xc3\x86\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x13\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcdQ\xdf\x83\xbdjp,\xe8\xbb\xe6\xc6Db\xb8\xd6\xcd\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd4k7L\x8a\xa3Z\xf9%{\xfax\x9a\x04\'/\x90\xe6\xe2\xe9\xf1@o\x0ez\xb8\xce\xbeF\x0fkE\xf4ry\x92n\xff\xcb\xf8e\xf3j\xc5[wK\x91\xdb\xf7-r\xd3\x1bx\x9b$\x91\x03q~@\xd8R\x11\x05|\x8f\xb4\xc9\x16\x87C\xab\x96\xc4\xef\xea\xb9\r\xf5\xf3\xbe\x8a\t\xc7\x88\xc0sL;.\xcf\x1d\xc4^\xb0l\xbb\x97\xc5\xf6n\xca\x18M\xb8\x81\xff\xa9~\xf7\xa3\xa6\xd3\x15I\xecXG\x89\xa8\b\x8b\xcc\xe8\x88\xa07Z\x03\xff14\x87I\xc7\\vK<m2\x16\x03\xcd\xc1\xa8.\x7f\x16qlk\xf1\xf1y\x8c\xde\xd6|\xa1(\xf4\x12O\xca3\xf8%1\x8d\xd7\a\xfeJ\xe6\x8bc\xb3\x1bKC.\xafB\x8d\xdd\xf9\x1e\x9d\xa7\x13\x00\x14\xc7\xa1\xf3\x1e\xcb\x19\x13z`\xac\xf3\xd1x\x1b#}\xfaYR\xc5#Zoag@\x18\xfa*\xb4\xc4\x04\x03V\x87\xc5\xe7\xb5\x9bJ\x85-\x7f\xfe\xc0\xb7g\xe8\'`\x96q\x88[\xf8\xe8L\x12\x85\xf5t\x99\x0e}\xd3H\xed\xda\xf3>\xd8\x12\x8cXc5%\x03\x8d`\xdayC\x9b\x9a\xd9c\xe9\xb4\v\x99\x87\xe4\x00\x8a\x8eS\x8e\f\x05ZH\xa2\x0e\xbc\x9c\x95\b2Cf6\x9a\xe7\xb9\x86\xbe\xd0\xda\x91\xc1sl\x11PA\x93\xa5\x93\xc8\xf1w\x7fp6z\xbf\xe8[\'u\xb8\xd2$K\x12\rt\x87\x00\x00\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00r\xe2`\xdf\xd2\xb3\xaf\xe9\xc4!Z\xb4&\xa2\x12\xe2i\x91kC$A\xafR\xb3\xff\x1d=Z\x0e\xde\x99\xec\x10\xb4+\x13\'\x92>\x14\x00\a\xb6R\x8b\xdcz\xc3\xd1Y\xd6\xd9;s \xb0\x938\xb7D9\xdcN\xbd\xdbn\xe35\xa7\x02\x9c\xc1\xd9\x13?\xc9\xd7\xab\x9c\xf3\x82\xd1\xee^kk\xce\xdbn\x02\x1f\x80\t\xdbr\xa9\xcc\xf1\xcb\x9f@\x8c\xfc\x02W/p\x97\xb0\xbd\x8f\xdb|n2a\xee\x95u\x83\xca\x8a>}\xd3\xd0\xff6.pa\x17\xe3e\xd2\x7f\xf6\xbc\x9d\x112\x1b\x14<B\x91\xc0{{\x9d@\xb3a\xad\x14\xe9\xcc|\xd7\xa1\xc6\xb9F\x04\xce]\xb9Y\xbd\xbd\f\xa4F;q\xec\x83\x9bM\x93\xa4\x9c\xdd\x93\xa0\x82E\x02d\xd4RAI\xd9O\x17\xa6P#\xa35\a\xf6\xbb\t>p\xa1\xd6u\xefn\xb4\xa3\x05D\x8c\xc5l\xcc\b\xeb\xf42\xe9\xf15\xf3\xf2\xee\xd6\xed\t\xb3\xf7\x1a\x7f\xe6\xb4z\x19\xe1\xb4w\xf7\xa6\xd7\\\xfa\x96\xe2\xf9\xb1\x81\xba\xdfg\xadI\x1c\xde*_\xd5\xdf\xeeA\xcd \x91\xc9\xd4\xd1\xcd*.t\x80]\xd5~\xfb\xfb>\x9d\x91Kq]N\x87\x0f\x04L\xd4(\xf2G \xfdr~:\xc4\xc3\xfe\x14G\xadG~^l\xe0:(Y`\x0e\x90\xfa\x1c\xb6\f6\x92B\x92\xd3\xa9BG\xd2*AB\x1e\x01\xf0m+\x02\x87\x81aj;\xb6y.g\xeb\xc4\x0f\xd3\x85\xa5\x00\xa1\xa6iP\x0f\x02\x14\x90q\x94\xab\xb3\x0f\x01=\x06\x98\xa8\x87\xd9=\xce\xbef<\x1d\v\xba[\xd8]\x9e\xf30\xb8\xf1\b\x06M\x18w\xdc\x0e\x98?\x04G\xf9\x99\xab\xc1\xc0z\xe9Fu\x03\x9aj\xc0]\xb47\xd5\xb8]\x98y@\x8c\x8fM\x8c],\x1b\x03\xaa\'gv\xeb\xbf\xa8d\"\x94e3Q\xfci\xdf\xad\x819\xd1\xf3\xaa\xc8i\xf2\x8a\xc4CU3\x87Ns\x9f\x9f\xcd\x05\x06g\x9aRBg\x98\x10Ch\x1c\x96\xd3\xce', 0x7)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000002, 0x10012, r0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
read(r0, &(0x7f0000000000)=""/269, 0xfffffdef)

3.790289464s ago: executing program 0 (id=868):
ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0e05403, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_HWPT_ALLOC$NONE(r2, 0x3b89, &(0x7f0000000380)={0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.667330464s ago: executing program 1 (id=869):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$VIDIOC_QUERYMENU(0xffffffffffffffff, 0xc040564a, &(0x7f0000000140)={0x0, 0x1, @name="845b0eae4693d82b53dd92d1874ae5aafbb26435c0a2bd570470d1a1e34e6a89"})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@x86={0x30, 0xe, 0x5, 0x0, 0x3, 0xa, 0xa, 0x8, 0x80, 0x9, 0x2, 0xe, 0x0, 0xe, 0xff, 0x2, 0x5, 0x1, 0x5, '\x00', 0x6, 0x1})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

3.252162367s ago: executing program 1 (id=870):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000000c0)=0x1)

3.006640857s ago: executing program 3 (id=871):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VHOST_VDPA_GET_STATUS(r4, 0x8001af71, &(0x7f00000002c0))
syz_open_procfs(0x0, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r0)
sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="1400", @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20040880)
wait4(0x0, 0x0, 0x2, 0x0)
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file0\x00', 0x48, &(0x7f0000001980)=ANY=[@ANYBLOB="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"], 0x4, 0xc24, &(0x7f0000000d00)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0xfffffffb)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x8a6015, 0x0, 0x4, 0x0, &(0x7f0000000000))
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000001100)={[], [], 0x2c})
chdir(&(0x7f0000000000)='./file0\x00')
capset(&(0x7f0000000500)={0x20071026}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

2.809378563s ago: executing program 1 (id=872):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0x7f)

2.612714979s ago: executing program 2 (id=873):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x24, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}}, 0x24}, 0x1, 0xfffc}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000003080)=@delchain={0x24, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.802490044s ago: executing program 1 (id=874):
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x11}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'sit0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@ipv6_newnexthop={0x28, 0x68, 0x1, 0x0, 0xfffffffd, {0x2, 0x0, 0x4, 0x0, 0x4}, [@NHA_OIF={0x8, 0x5, r5}, @NHA_ID={0x8, 0x6, 0x1}]}, 0x28}}, 0x0)

1.635579838s ago: executing program 3 (id=875):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wlan0\x00'})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001311ff00000000000000000000000000000000ff0200000003000000000000e9ffff004f194e20"], 0x4b)

1.634780908s ago: executing program 2 (id=876):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1a1)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000300)={0xd2f0, 0x6, 0x8, 0x22dea, 0x1fffffd})

1.572074833s ago: executing program 2 (id=877):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000480)=ANY=[@ANYBLOB="6e6f757365725f78617474722c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c6572726f72733d636f6e74696e75652c646174613d77726974656261636b2c6572726f72733d72656d6f756e742d726f2c6e6f61636c2c0033b67a38edf7ca65cff4aecf1bccac7b7847e83ec6928ad9eff2281ff7a2314d9a8541a9772b98d067c1463bb01ed3ebf5764745d29402107611df2e22d6cfb25eb0a8b970f339cf6413aaef25cee228060d70ce0ade90d917a9c5"], 0x1, 0x442f, &(0x7f0000004480)="$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")
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={0x2146, 0x5, 0xf, 0xff, 0x3, 0xfffc, 0x2401})

1.051646445s ago: executing program 3 (id=878):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f00000000c0)='%(:2', 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

982.796181ms ago: executing program 2 (id=879):
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x5)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x1, 0x442c, &(0x7f00000088c0)="$eJzs3T9sW9UeAOBzb/Jek762L+nr0Cc96Vl6lR4CFCWdgFQiTdOmSRuKCq0Qi+skbhtw4ipxEEOHsFViQmJADBVIbJmqDKxlZGRhLBNDJRhYkJAqgmxfp7nXtmJKnNDyfVJzfc9/++d7fO5we+JE5ebCSm5hJVdYypXnrq+czL1XLq0uFkO8R/a7fzrTjTiJ/f65dObcG1dPhvDV/LcPNzc3N0NVb2hpZNvrn3+6Pbf92BBn6lTbbd3abnk7hHCsaVxVPSGEt74MIQohnE7SxpNjfwjhSKjnXb394bXcLo3m3oPiqfyjmTsboyem1+9utH/vUQiflv794o3FH/7XM/rd87vUPQAAAAAAAAAAAAAAAAAAT7nJy5euvD48Eu5HoXc9an5edzI5tns+dnPX/Lf7bxYAAAAAAAAAAAAAAAAAAAD+pB4//5+LjrZ4/n8iOY61qb/5avfHSPdMvXZp4uzwSLL/e9SU/1KS9OPpnjDYYt/37P7vpzP1W+//3tzPk2qMr9HvQIjiodR5HA8NhfB5svH78ehgXCqvVF64Xl5dmt+1YTy10vGv796fik6yof9O8f/+63q58Uz73d///19N36bq+bXd+4o909Lx72lb7osPoo6u/zOZensRf55cOv69tbT+7QXG6hNANf4f9e4c/4lM+92K/5EQQi6qjjWXmgGqa5hqerv1Cmnp+P+tlpaaOpMPst31/0sm/mcz7e/X/L+W/SGipXT8/15L60uVeHz9D8Y7X//nMu3vR/yr41/z+9+RdPwP1BN7U0Vqn2Sn8/9kpv1uxf9KnIzzSJT6BqxH9fR2/18daen49zXlP77/izta/53P1N+r+79Gv437v8b0/1xUv/+jtXT8+9uW6/T6n8rU6/b8P1Zb//Gk0vE/WEtLr50Han87jf90pv0/Fv/m+aghTrLHMuv/Xw/U0z+z/utIOv7/qCfG20us1f7W1n/Rzuv/C5n292P9Vx3/WtzdXp8V6fgfaluuGv9vOvj9v5ip1/347+Zq4q8nHf/DbcvVrv++neM/k6nX7fj/v5uNAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwFxpPjQIjiodR5HA8NhXAmOT8eDkazhfn8bKk89+5KCBNJei4cjW6UyrOFUn5hqTxfzBdKpfJcCGeT/GOhL1oplSv5xcKtc1tt9Uc3i4XlymyxUAkhTCbp/wmHG23NLlQWC7dCCOe38v4Zl5dv3Sws5ecXll8ZHh4eDlNbYxiMiu9XikuVeu/13BCmt+oORNsGV8u+sDWWQ9E75dXlpUKpln5xW51Sea5Q2lZnJsn7OAxGleXVpblCpZgvlW80+ttPY8lxYurym5cvjjTlX4vqx/G9HRYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv9P90Zc/CSH01s/iEEIuSl5Eyb+Uew+Kp/KPZu5sjJ6YXr+78bBVGQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPiNHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzSP0oDQRQH4DdjoaXHsFp2O9sVRbRwRfAEegwPo0fxEt7BIkXaFCGQzELYP7BNUn1f82B+zLwH8wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDlHt+699e6iUhxtb2M+P38+z/On0v9vpu+f3GGGTmdp5fu/qFuyr+nUX5bjlZt3qeb9ddHTNTez2BPhvt0MO4zNLdvc/P1fa8j5Soi2pLfpJyratlbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOzYgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwg4cCwAAAAAI87eOom8DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+BUAAP//3Ngg2A==")
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

0s ago: executing program 0 (id=880):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000400)={0x44, &(0x7f0000000200)=ANY=[@ANYBLOB="401504"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000300)={0x0, 0x16, 0x4, "94c161ee"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000002c0)={0x1c, &(0x7f0000000a00)={0x0, 0xf, 0x4, "f1345115"}, 0x0, 0x0})

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.141' (ED25519) to the list of known hosts.
[   65.560755][ T5774] cgroup: Unknown subsys name 'net'
[   65.693608][ T5774] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   67.055932][ T5774] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   68.672707][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   68.674033][ T5794] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.680860][ T5793] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.695216][ T5795] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.696276][ T5793] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   68.704799][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   68.710598][ T5793] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.718166][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   68.732174][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   68.738874][ T5793] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   68.740785][ T5795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.755318][ T5795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.763613][ T5795] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.771858][ T5795] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.773299][ T5798] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.781280][ T5795] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   68.794623][ T5798] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   68.794724][ T5788] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   68.802664][ T5798] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   68.810018][ T5788] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   68.823717][ T5788] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   68.832369][ T5798] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.846171][ T5788] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.858610][ T5788] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   69.288194][ T5786] chnl_net:caif_netlink_parms(): no params data found
[   69.354237][ T5785] chnl_net:caif_netlink_parms(): no params data found
[   69.503590][ T5784] chnl_net:caif_netlink_parms(): no params data found
[   69.536192][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.543503][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.552671][ T5786] bridge_slave_0: entered allmulticast mode
[   69.559783][ T5786] bridge_slave_0: entered promiscuous mode
[   69.571651][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.578942][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.586152][ T5786] bridge_slave_1: entered allmulticast mode
[   69.593364][ T5786] bridge_slave_1: entered promiscuous mode
[   69.641611][ T5787] chnl_net:caif_netlink_parms(): no params data found
[   69.655765][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.700317][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.754853][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.762360][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.769903][ T5785] bridge_slave_0: entered allmulticast mode
[   69.776510][ T5785] bridge_slave_0: entered promiscuous mode
[   69.809482][ T5786] team0: Port device team_slave_0 added
[   69.816273][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.824029][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.831869][ T5785] bridge_slave_1: entered allmulticast mode
[   69.839485][ T5785] bridge_slave_1: entered promiscuous mode
[   69.875172][ T5786] team0: Port device team_slave_1 added
[   69.903509][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   69.912848][ T5784] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.920137][ T5784] bridge0: port 1(bridge_slave_0) entered disabled state
[   69.927250][ T5784] bridge_slave_0: entered allmulticast mode
[   69.935153][ T5784] bridge_slave_0: entered promiscuous mode
[   69.971619][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   69.981197][ T5784] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.988711][ T5784] bridge0: port 2(bridge_slave_1) entered disabled state
[   69.995943][ T5784] bridge_slave_1: entered allmulticast mode
[   70.003433][ T5784] bridge_slave_1: entered promiscuous mode
[   70.028898][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.036339][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.063266][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.096935][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.104134][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state
[   70.111609][ T5787] bridge_slave_0: entered allmulticast mode
[   70.118623][ T5787] bridge_slave_0: entered promiscuous mode
[   70.125965][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.133046][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.159835][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.193399][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.200660][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state
[   70.208072][ T5787] bridge_slave_1: entered allmulticast mode
[   70.214731][ T5787] bridge_slave_1: entered promiscuous mode
[   70.228795][ T5785] team0: Port device team_slave_0 added
[   70.241152][ T5784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.278119][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   70.288754][ T5785] team0: Port device team_slave_1 added
[   70.296615][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.310134][ T5784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   70.385138][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.393600][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.419769][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.438276][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.445352][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.471492][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.505493][ T5784] team0: Port device team_slave_0 added
[   70.518835][ T5784] team0: Port device team_slave_1 added
[   70.539760][ T5787] team0: Port device team_slave_0 added
[   70.552080][ T5786] hsr_slave_0: entered promiscuous mode
[   70.559548][ T5786] hsr_slave_1: entered promiscuous mode
[   70.587320][ T5787] team0: Port device team_slave_1 added
[   70.604512][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.611862][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.637998][ T5784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.674665][ T5785] hsr_slave_0: entered promiscuous mode
[   70.682132][ T5785] hsr_slave_1: entered promiscuous mode
[   70.689919][ T5785] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   70.697605][ T5785] Cannot create hsr debugfs directory
[   70.715776][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.723015][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.749507][ T5784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.780919][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.788374][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.814400][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.828872][ T5788] Bluetooth: hci1: command tx timeout
[   70.870188][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.877192][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   70.904192][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.915185][   T50] Bluetooth: hci2: command tx timeout
[   70.915205][ T5798] Bluetooth: hci3: command tx timeout
[   70.927065][ T5788] Bluetooth: hci0: command tx timeout
[   71.013592][ T5787] hsr_slave_0: entered promiscuous mode
[   71.020688][ T5787] hsr_slave_1: entered promiscuous mode
[   71.026916][ T5787] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   71.034622][ T5787] Cannot create hsr debugfs directory
[   71.067180][ T5784] hsr_slave_0: entered promiscuous mode
[   71.073885][ T5784] hsr_slave_1: entered promiscuous mode
[   71.080422][ T5784] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   71.088971][ T5784] Cannot create hsr debugfs directory
[   71.337838][ T5785] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   71.386289][ T5785] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   71.396581][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[   71.400497][ T5785] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   71.408054][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[   71.420063][ T5785] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   71.526829][ T5786] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   71.545397][ T5786] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   71.556222][ T5786] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   71.576087][ T5786] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   71.643865][ T5787] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   71.657193][ T5787] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   71.670369][ T5787] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   71.684198][ T5787] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   71.797901][ T5784] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   71.809647][ T5784] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   71.819916][ T5784] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   71.840665][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0
[   71.853078][ T5784] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   71.917465][ T5785] 8021q: adding VLAN 0 to HW filter on device team0
[   71.949486][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.956922][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   71.975823][ T2975] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.983153][ T2975] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.021510][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.076429][ T5786] 8021q: adding VLAN 0 to HW filter on device team0
[   72.115154][ T2984] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.122337][ T2984] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.145860][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.166141][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.173343][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.219006][ T5787] 8021q: adding VLAN 0 to HW filter on device team0
[   72.244115][ T2111] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.251400][ T2111] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.272426][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.279658][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.303598][ T5784] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.366221][ T5784] 8021q: adding VLAN 0 to HW filter on device team0
[   72.434580][ T5787] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   72.460371][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.467575][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.486382][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.493858][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.850786][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.909963][ T5788] Bluetooth: hci1: command tx timeout
[   72.915781][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0
[   72.989243][ T5788] Bluetooth: hci0: command tx timeout
[   72.994741][ T5788] Bluetooth: hci2: command tx timeout
[   73.001057][   T50] Bluetooth: hci3: command tx timeout
[   73.012046][ T5785] veth0_vlan: entered promiscuous mode
[   73.075459][ T5786] veth0_vlan: entered promiscuous mode
[   73.092341][ T5785] veth1_vlan: entered promiscuous mode
[   73.110210][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.121118][ T5786] veth1_vlan: entered promiscuous mode
[   73.192657][ T5786] veth0_macvtap: entered promiscuous mode
[   73.214835][ T5784] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.223903][ T5786] veth1_macvtap: entered promiscuous mode
[   73.275470][ T5785] veth0_macvtap: entered promiscuous mode
[   73.297320][ T5787] veth0_vlan: entered promiscuous mode
[   73.304323][ T5785] veth1_macvtap: entered promiscuous mode
[   73.336460][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.350044][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.361939][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.373998][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.394652][ T5787] veth1_vlan: entered promiscuous mode
[   73.412998][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.421966][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.433301][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.445747][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.466424][ T5785] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.475664][ T5785] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.487124][ T5785] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.495974][ T5785] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.507361][ T5786] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.516307][ T5786] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.525156][ T5786] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.533952][ T5786] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.564614][ T5784] veth0_vlan: entered promiscuous mode
[   73.599952][ T5784] veth1_vlan: entered promiscuous mode
[   73.694930][ T5787] veth0_macvtap: entered promiscuous mode
[   73.740406][ T5787] veth1_macvtap: entered promiscuous mode
[   73.749537][ T3469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.757598][ T3469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.767181][ T5784] veth0_macvtap: entered promiscuous mode
[   73.821167][ T5784] veth1_macvtap: entered promiscuous mode
[   73.849144][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.864170][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.887896][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.890550][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.897175][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.918706][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.930649][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.941351][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.952777][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.980302][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.991352][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.001587][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.012731][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.025471][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.035441][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.046091][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.057151][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.068105][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.077938][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.088886][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.105326][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.124962][ T3427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.144266][ T5787] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.157780][ T3427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.162348][ T5787] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.174025][ T5787] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.183076][ T5787] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.193619][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.206588][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.216743][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.228243][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.238825][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.249609][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.260878][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.273043][ T5784] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.282191][ T5784] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.291298][ T5784] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.300321][ T5784] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.525275][ T5871] syz.0.1[5871]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   74.589586][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.618056][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.641445][ T2975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.673672][ T2975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.792472][ T3427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.825402][ T3427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.873481][ T2984] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.901739][ T2984] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.989709][ T5788] Bluetooth: hci1: command tx timeout
[   75.068241][ T5788] Bluetooth: hci2: command tx timeout
[   75.078312][   T50] Bluetooth: hci3: command tx timeout
[   75.083787][   T50] Bluetooth: hci0: command tx timeout
[   76.553001][ T5871] loop0: detected capacity change from 0 to 40427
[   76.667898][ T5871] F2FS-fs (loop0): heap/no_heap options were deprecated
[   76.680713][ T5871] F2FS-fs (loop0): build fault injection attr: rate: 19, type: 0x7ffff
[   76.921289][ T5876] loop3: detected capacity change from 0 to 40427
[   76.938689][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   76.977086][ T5876] F2FS-fs (loop3): heap/no_heap options were deprecated
[   77.011347][ T5876] F2FS-fs (loop3): build fault injection attr: rate: 19, type: 0x7ffff
[   77.073390][ T5788] Bluetooth: hci1: command tx timeout
[   77.148981][ T5788] Bluetooth: hci3: command tx timeout
[   77.155137][   T50] Bluetooth: hci2: command tx timeout
[   77.155198][ T5798] Bluetooth: hci0: command tx timeout
[   77.298748][ T5874] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   77.508390][ T5874] usb 3-1: Using ep0 maxpacket: 8
[   77.567121][ T5874] usb 3-1: unable to get BOS descriptor or descriptor too short
[   77.595155][ T5874] usb 3-1: config 7 has an invalid interface number: 148 but max is 0
[   77.625694][ T5874] usb 3-1: config 7 has no interface number 0
[   77.649658][ T5874] usb 3-1: config 7 interface 148 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[   77.695664][ T5874] usb 3-1: string descriptor 0 read error: -22
[   77.730735][ T5874] usb 3-1: New USB device found, idVendor=0f11, idProduct=1000, bcdDevice=1c.76
[   77.758196][ T5874] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.950939][ T5885] loop1: detected capacity change from 0 to 32768
[   77.969486][ T5885] =======================================================
[   77.969486][ T5885] WARNING: The mand mount option has been deprecated and
[   77.969486][ T5885]          and is ignored by this kernel. Remove the mand
[   77.969486][ T5885]          option from the mount to silence this warning.
[   77.969486][ T5885] =======================================================
[   78.060689][ T5899] input: syz0 as /devices/virtual/input/input5
[   78.357315][ T5885] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   78.449497][ T5895] loop0: detected capacity change from 0 to 65536
[   78.477185][ T5874] ldusb 3-1:7.148: Interrupt in endpoint not found
[   78.556436][ T5895] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[   78.804466][ T5895] XFS (loop0): Ending clean mount
[   79.869093][   T28] audit: type=1800 audit(1755691947.186:2): pid=5915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.9" name="file1" dev="loop0" ino=38 res=0 errno=0
[   79.956377][ T5785] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[   80.049387][ T5874] usb 3-1: USB disconnect, device number 2
[   80.086750][ T5784] ocfs2: Unmounting device (7,1) on (node local)
[   80.188498][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.212700][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   80.451416][ T5921] loop2: detected capacity change from 0 to 512
[   80.522467][ T5921] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.557031][ T5921] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   81.638299][  T787] cfg80211: failed to load regulatory.db
[   81.882233][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.251085][ T5937] loop2: detected capacity change from 0 to 512
[   82.514120][ T5937] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.527314][ T5937] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   82.746684][ T5941] loop1: detected capacity change from 0 to 64
[   83.294160][ T5941] MINIX-fs: bad superblock
[   83.337982][    C0] sched: RT throttling activated
[   83.813496][ T5779] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   83.914324][ T5945] Error parsing options; rc = [-22]
[   83.984917][ T5946] loop3: detected capacity change from 0 to 64
[   84.836036][ T5944] Zero length message leads to an empty skb
[   85.588795][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.876113][ T5967] loop2: detected capacity change from 0 to 64
[   86.940340][ T5965] loop3: detected capacity change from 0 to 2048
[   86.974515][ T5965] UDF-fs: bad mount option "ÿÿÿÿÿÿÿÿ" or missing value
[   87.517733][ T5971] loop0: detected capacity change from 0 to 256
[   88.929399][ T5971] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   89.423160][  T787] IPVS: starting estimator thread 0...
[   89.553761][ T5979] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   89.565953][ T5977] IPVS: using max 16 ests per chain, 38400 per kthread
[   90.034928][ T5981] fuse: Bad value for 'rootmode'
[   90.523249][ T5983] loop1: detected capacity change from 0 to 256
[   90.660363][ T5983] FAT-fs (loop1): Directory bread(block 64) failed
[   90.667272][ T5983] FAT-fs (loop1): Directory bread(block 65) failed
[   90.738228][ T5983] FAT-fs (loop1): Directory bread(block 66) failed
[   90.744840][ T5983] FAT-fs (loop1): Directory bread(block 67) failed
[   90.768233][ T5983] FAT-fs (loop1): Directory bread(block 68) failed
[   90.774893][ T5983] FAT-fs (loop1): Directory bread(block 69) failed
[   90.798225][ T5983] FAT-fs (loop1): Directory bread(block 70) failed
[   90.804884][ T5983] FAT-fs (loop1): Directory bread(block 71) failed
[   90.838259][ T5983] FAT-fs (loop1): Directory bread(block 72) failed
[   90.844860][ T5983] FAT-fs (loop1): Directory bread(block 73) failed
[   91.237795][ T5988] input: syz0 as /devices/virtual/input/input6
[   92.175000][ T6000] loop0: detected capacity change from 0 to 512
[   92.188933][ T6000] EXT4-fs: Ignoring removed nobh option
[   92.211274][ T6000] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   92.272230][ T6000] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #3: comm syz.0.36: corrupted inode contents
[   92.286370][ T6000] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #3: comm syz.0.36: mark_inode_dirty error
[   92.303218][ T6000] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #3: comm syz.0.36: corrupted inode contents
[   92.326379][ T6000] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz.0.36: mark_inode_dirty error
[   92.416184][ T6000] Quota error (device loop0): write_blk: dquota write failed
[   92.463907][ T6000] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   92.620931][ T6000] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.36: Failed to acquire dquot type 0
[   92.733451][ T6000] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.36: corrupted inode contents
[   92.958605][ T6000] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #16: comm syz.0.36: mark_inode_dirty error
[   92.997490][ T6000] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.36: corrupted inode contents
[   93.049896][ T6000] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm syz.0.36: mark_inode_dirty error
[   93.083845][ T6000] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.36: corrupted inode contents
[   93.104160][ T6000] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   93.152409][ T6000] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.36: corrupted inode contents
[   93.262899][ T6000] EXT4-fs error (device loop0): ext4_truncate:4288: inode #16: comm syz.0.36: mark_inode_dirty error
[   93.310399][ T6000] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   93.366808][ T6000] EXT4-fs (loop0): 1 truncate cleaned up
[   93.395210][ T6000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.450750][ T6000] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   93.622581][ T6000] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.640835][ T6025] loop1: detected capacity change from 0 to 64
[   95.090853][ T6027] ip6erspan0: entered promiscuous mode
[   95.887513][ T6015] loop2: detected capacity change from 0 to 32768
[   96.232291][ T6015] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.40 (6015)
[   96.432177][ T6015] BTRFS error (device loop2): open_ctree failed: -4
[   98.019769][ T6046] loop3: detected capacity change from 0 to 512
[   98.108220][ T6046] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   98.327435][ T6046] EXT4-fs (loop3): 1 truncate cleaned up
[   98.360439][ T6046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.723206][ T6046] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.50: invalid indirect mapped block 4294967295 (level 1)
[   99.042929][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.634545][ T6044] loop2: detected capacity change from 0 to 32768
[   99.653817][ T6056] "syz.3.53" (6056) uses obsolete ecb(arc4) skcipher
[   99.662947][ T6044] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.49 (6044)
[   99.703178][ T6044] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   99.729438][ T6044] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[   99.749232][ T6044] BTRFS info (device loop2): force clearing of disk cache
[   99.764797][ T6044] BTRFS info (device loop2): disabling tree log
[   99.779396][ T6044] BTRFS info (device loop2): enabling auto defrag
[   99.793037][ T6044] BTRFS info (device loop2): metadata ratio 8
[   99.815890][ T6044] BTRFS info (device loop2): enabling disk space caching
[   99.833257][ T6044] BTRFS info (device loop2): disk space caching is enabled
[  100.045118][ T6075] loop1: detected capacity change from 0 to 64
[  100.057506][ T6044] BTRFS info (device loop2): enabling ssd optimizations
[  100.105438][ T6044] BTRFS info (device loop2): rebuilding free space tree
[  100.358786][ T6044] BTRFS info (device loop2): disabling free space tree
[  100.368276][ T6044] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  100.398124][ T6044] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  100.587806][ T5787] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  101.928332][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.989491][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  102.033188][ T6095] netlink: 20 bytes leftover after parsing attributes in process `syz.1.61'.
[  102.118358][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.191502][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  103.688934][ T6106] netlink: 'syz.1.62': attribute type 10 has an invalid length.
[  103.781370][ T6106] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.790257][ T6106] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.825134][ T6106] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.832706][ T6106] bridge0: port 2(bridge_slave_1) entered forwarding state
[  103.841796][ T6106] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.849230][ T6106] bridge0: port 1(bridge_slave_0) entered forwarding state
[  103.890508][ T6106] team0: Port device bridge0 added
[  104.819284][ T6093] loop3: detected capacity change from 0 to 32768
[  104.995977][ T6093] workqueue: Failed to create a rescuer kthread for wq "ocfs2_wq": -EINTR
[  104.998375][ T6093] (syz.3.60,6093,1):ocfs2_initialize_super:2287 ERROR: status = -12
[  105.430747][ T6093] (syz.3.60,6093,1):ocfs2_fill_super:1178 ERROR: status = -12
[  105.749027][ T6105] loop2: detected capacity change from 0 to 32768
[  105.777361][ T6105] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.58 (6105)
[  105.785485][ T6119] loop3: detected capacity change from 0 to 64
[  105.847561][ T6105] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  105.898272][ T6105] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  105.960908][ T6105] BTRFS info (device loop2): turning on async discard
[  106.027890][ T6105] BTRFS info (device loop2): using free space tree
[  106.474096][ T6105] BTRFS info (device loop2): enabling ssd optimizations
[  107.745941][ T5787] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  111.074066][ T5800] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 9 /dev/loop2 scanned by udevd (5800)
[  112.841290][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  113.455587][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  113.557938][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  113.722003][ T6190] loop1: detected capacity change from 0 to 64
[  114.599342][ T6202] loop3: detected capacity change from 0 to 4096
[  115.136131][ T6206] loop2: detected capacity change from 0 to 2048
[  115.233989][ T6206] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  115.265664][ T6206] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  117.648333][ T6213] process 'syz.3.84' launched '/dev/fd/9' with NULL argv: empty string added
[  122.045048][ T6233] loop2: detected capacity change from 0 to 40427
[  122.161925][ T6233] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  122.184471][ T6233] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  122.234909][ T6233] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x7ffff
[  122.268104][ T6233] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x1f8
[  122.321378][ T6233] F2FS-fs (loop2): invalid crc value
[  122.460096][ T6233] F2FS-fs (loop2): Found nat_bits in checkpoint
[  122.604303][ T6252] loop3: detected capacity change from 0 to 8
[  124.151481][ T6266] loop1: detected capacity change from 0 to 64
[  125.191299][  T786] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  125.448284][  T786] usb 4-1: Using ep0 maxpacket: 8
[  125.471365][  T786] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  125.493946][  T786] usb 4-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  125.506849][  T786] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.763948][  T786] usb 4-1: config 0 descriptor??
[  126.217228][  T786] gspca_main: vc032x-2.14.0 probing 046d:0892
[  126.363883][ T6284] warning: `syz.2.109' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  126.543531][ T6290] netlink: 20 bytes leftover after parsing attributes in process `syz.0.111'.
[  126.784190][  T786] gspca_vc032x: reg_r err -32
[  126.789855][  T786] vc032x: probe of 4-1:0.0 failed with error -32
[  128.375964][ T6300] loop1: detected capacity change from 0 to 32768
[  128.399800][ T6300] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.114 (6300)
[  128.446692][ T6300] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  128.463873][ T6300] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  128.483705][ T6300] BTRFS info (device loop1): enabling auto defrag
[  128.498054][ T6300] BTRFS info (device loop1): doing ref verification
[  128.513578][ T6300] BTRFS info (device loop1): use no compression
[  128.539848][ T6300] BTRFS info (device loop1): force clearing of disk cache
[  128.562011][ T6300] BTRFS info (device loop1): max_inline at 4096
[  128.585718][  T786] usb 4-1: USB disconnect, device number 2
[  128.597563][ T6300] BTRFS info (device loop1): disabling free space tree
[  128.903567][ T6300] BTRFS info (device loop1): enabling ssd optimizations
[  128.913627][ T6300] BTRFS info (device loop1): auto enabling async discard
[  128.943278][ T6300] BTRFS info (device loop1): rebuilding free space tree
[  129.033624][ T6300] BTRFS info (device loop1): disabling free space tree
[  129.058403][ T6300] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  129.088083][ T6300] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  129.818353][ T6327] netlink: 'syz.1.114': attribute type 3 has an invalid length.
[  130.886906][   T28] audit: type=1800 audit(1755691998.216:3): pid=6327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.114" name="file2" dev="loop1" ino=261 res=0 errno=0
[  131.241396][ T5784] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  131.246598][ T6332] loop3: detected capacity change from 0 to 64
[  131.340913][ T5779] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  131.379957][ T6332] loop3: detected capacity change from 0 to 256
[  131.380180][ T5779] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  131.923127][ T6345] netlink: 20 bytes leftover after parsing attributes in process `syz.0.123'.
[  132.004998][ T6342] loop1: detected capacity change from 0 to 1024
[  132.843707][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  132.866686][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  132.974704][ T6342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  133.419714][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.848163][  T786] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  134.068136][  T786] usb 4-1: Using ep0 maxpacket: 32
[  134.125849][  T786] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[  134.148740][  T786] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  134.173071][  T786] usb 4-1: config 0 has no interface number 0
[  134.193970][  T786] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x8 has invalid maxpacket 512, setting to 64
[  134.215266][  T786] usb 4-1: config 0 interface 85 altsetting 7 has 4 endpoint descriptors, different from the interface descriptor's value: 5
[  134.232003][  T786] usb 4-1: config 0 interface 85 has no altsetting 0
[  134.245550][  T786] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  134.258119][  T786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.266535][  T786] usb 4-1: Product: syz
[  134.272566][  T786] usb 4-1: Manufacturer: syz
[  134.277215][  T786] usb 4-1: SerialNumber: syz
[  134.320340][  T786] usb 4-1: config 0 descriptor??
[  134.350650][  T786] appletouch 4-1:0.85: Could not find int-in endpoint
[  134.367733][  T786] appletouch: probe of 4-1:0.85 failed with error -5
[  134.389084][  T786] usbhid 4-1:0.85: couldn't find an input interrupt endpoint
[  134.575067][  T786] usb 4-1: USB disconnect, device number 3
[  134.610367][ T6373] loop2: detected capacity change from 0 to 8
[  135.280793][ T6378] netlink: 20 bytes leftover after parsing attributes in process `syz.3.134'.
[  137.372741][ T6400] loop3: detected capacity change from 0 to 8
[  137.432347][ T6387] loop2: detected capacity change from 0 to 32768
[  137.500230][ T6387] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  137.537404][ T6387] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  137.564116][ T6387] BTRFS info (device loop2): turning on async discard
[  137.580726][ T6387] BTRFS info (device loop2): using free space tree
[  137.590945][ T6402] loop1: detected capacity change from 0 to 8
[  137.805799][ T6387] BTRFS info (device loop2): enabling ssd optimizations
[  138.197263][ T5787] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  138.298717][ T6423] netlink: 20 bytes leftover after parsing attributes in process `syz.0.145'.
[  141.739393][ T6453] netlink: 20 bytes leftover after parsing attributes in process `syz.1.154'.
[  142.686274][ T6449] loop3: detected capacity change from 0 to 32768
[  142.733105][ T6449] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 scanned by syz.3.152 (6449)
[  142.823594][ T6449] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  142.880345][ T6449] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  142.939144][ T6449] BTRFS info (device loop3): turning on async discard
[  142.977460][ T6449] BTRFS info (device loop3): using free space tree
[  143.250389][  T786] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  143.291846][ T6449] BTRFS info (device loop3): enabling ssd optimizations
[  143.651119][  T786] usb 3-1: Using ep0 maxpacket: 32
[  143.723473][  T786] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  143.822977][  T786] usb 3-1: config 0 has no interface number 0
[  144.239285][ T5786] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  144.241568][  T786] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x8 has invalid maxpacket 512, setting to 64
[  144.298154][  T786] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  144.334607][  T786] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[  144.353112][  T786] usb 3-1: config 0 interface 85 has no altsetting 0
[  144.399564][  T786] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  144.438273][  T786] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.446432][  T786] usb 3-1: Product: syz
[  144.490843][  T786] usb 3-1: Manufacturer: syz
[  144.495523][  T786] usb 3-1: SerialNumber: syz
[  144.549311][  T786] usb 3-1: config 0 descriptor??
[  144.591214][ T5800] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 9 /dev/loop3 scanned by udevd (5800)
[  145.212071][  T786] appletouch 3-1:0.85: Failed to read mode from device.
[  145.219647][  T786] appletouch: probe of 3-1:0.85 failed with error -5
[  145.300608][ T6498] netlink: 20 bytes leftover after parsing attributes in process `syz.0.164'.
[  146.485966][  T786] usb 3-1: USB disconnect, device number 3
[  147.048191][ T6514] loop3: detected capacity change from 0 to 2048
[  148.043714][ T6514] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  148.730481][ T6519] loop2: detected capacity change from 0 to 7
[  148.762242][ T6519] Dev loop2: unable to read RDB block 7
[  148.963745][ T6519]  loop2: unable to read partition table
[  149.138810][ T6519] loop2: partition table beyond EOD, truncated
[  149.345940][ T6519] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  149.627137][ T6522] loop3: detected capacity change from 0 to 4096
[  149.934369][ T6530] netlink: 20 bytes leftover after parsing attributes in process `syz.0.175'.
[  151.054717][ T5874] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  151.249464][ T5874] usb 3-1: Using ep0 maxpacket: 32
[  151.271642][ T5874] usb 3-1: config 0 has an invalid interface number: 85 but max is 0
[  151.284223][ T5874] usb 3-1: config 0 has no interface number 0
[  151.292038][ T5874] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x8 has invalid maxpacket 512, setting to 64
[  151.306895][ T5874] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  151.339502][ T5874] usb 3-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0
[  151.378071][ T5874] usb 3-1: config 0 interface 85 has no altsetting 0
[  151.397129][ T5874] usb 3-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  151.439758][ T5874] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.468237][ T5874] usb 3-1: Product: syz
[  151.500005][ T5874] usb 3-1: Manufacturer: syz
[  151.504678][ T5874] usb 3-1: SerialNumber: syz
[  151.615705][ T5874] usb 3-1: config 0 descriptor??
[  152.134077][ T5874] appletouch 3-1:0.85: Failed to read mode from device.
[  152.178850][ T5874] appletouch: probe of 3-1:0.85 failed with error -5
[  152.278302][ T5874] usb 3-1: USB disconnect, device number 4
[  153.605073][ T6550] loop2: detected capacity change from 0 to 256
[  155.167065][ T6561] loop2: detected capacity change from 0 to 1024
[  155.287892][ T6567] bridge_slave_0: left allmulticast mode
[  155.314676][ T6561] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.348524][ T6567] bridge_slave_0: left promiscuous mode
[  155.372270][ T6567] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.446201][ T6567] bridge_slave_1: left allmulticast mode
[  155.477389][ T6567] bridge_slave_1: left promiscuous mode
[  155.543694][ T6567] bridge0: port 2(bridge_slave_1) entered disabled state
[  155.576531][ T6567] bond0: (slave bond_slave_0): Releasing backup interface
[  155.607253][ T6567] bond0: (slave bond_slave_1): Releasing backup interface
[  155.682571][ T6567] team0: Port device team_slave_0 removed
[  155.743950][ T6567] team0: Port device team_slave_1 removed
[  155.777228][ T6567] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.805838][ T6567] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.851018][ T6567] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.867840][ T6567] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.882864][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.125512][ T6558] loop1: detected capacity change from 0 to 32768
[  156.396434][ T6558] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  157.442736][ T5779] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  158.580650][ T6588] loop1: detected capacity change from 0 to 2048
[  159.597828][ T6588] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  160.210839][ T6596] loop1: detected capacity change from 0 to 256
[  163.911102][ T6600] loop1: detected capacity change from 0 to 32768
[  164.002969][ T5800] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  164.220551][ T6612] loop2: detected capacity change from 0 to 32768
[  164.258234][ T6612] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9
[  165.327879][ T5800] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 9
[  167.224103][ T6630] loop1: detected capacity change from 0 to 32768
[  167.241359][ T6630] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.203 (6630)
[  167.299162][ T6630] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  167.353985][ T6656] loop3: detected capacity change from 0 to 16
[  167.368634][ T6656] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  168.339676][ T6630] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  168.359230][ T6630] BTRFS info (device loop1): using free space tree
[  168.474211][ T6656] erofs: DAX unsupported by block device. Turning off DAX.
[  168.484818][ T6656] erofs: (device loop3): mounted with root inode @ nid 36.
[  168.561473][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  168.582479][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  168.734578][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  168.788850][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  168.829994][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  168.868837][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  168.898454][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  168.937235][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  168.983645][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  169.033633][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  169.119063][ T6630] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  169.319926][ T6630] BTRFS error (device loop1): open_ctree failed: -12
[  169.337103][ T6677] loop3: detected capacity change from 0 to 256
[  169.641767][ T6681] loop3: detected capacity change from 0 to 512
[  169.659930][ T6681] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  169.696869][ T6681] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  169.738241][ T6681] System zones: 1-12
[  169.748934][ T6681] EXT4-fs (loop3): 1 truncate cleaned up
[  169.766903][ T6681] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.906807][ T6651] loop2: detected capacity change from 0 to 32768
[  169.975380][ T6651] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.210 (6651)
[  170.905721][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.274000][ T6698] loop1: detected capacity change from 0 to 512
[  171.415934][ T6698] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.472862][ T6698] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.185915][ T6719] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  173.869968][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.197197][ T6724] loop1: detected capacity change from 0 to 1024
[  174.475194][ T6707] loop2: detected capacity change from 0 to 32768
[  174.596829][ T2111] hfsplus: b-tree write err: -5, ino 4
[  174.806243][ T6736] capability: warning: `syz.0.229' uses deprecated v2 capabilities in a way that may be insecure
[  175.003425][ T6739] loop1: detected capacity change from 0 to 512
[  175.072008][ T6739] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  175.191850][ T6739] EXT4-fs (loop1): 1 orphan inode deleted
[  175.254610][ T6739] EXT4-fs (loop1): 1 truncate cleaned up
[  175.335390][ T6739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.420248][ T6739] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.231: bg 0: block 360: padding at end of block bitmap is not set
[  175.456419][ T6739] EXT4-fs (loop1): Remounting filesystem read-only
[  175.469394][ T6739] EXT4-fs warning (device loop1): ext4_xattr_inode_lookup_create:1614: inode #17: comm syz.1.231: cleanup dec ref error -28
[  175.660768][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.348307][ T6757] loop1: detected capacity change from 0 to 32768
[  177.403368][    T9] IPVS: starting estimator thread 0...
[  177.519002][ T6760] IPVS: using max 17 ests per chain, 40800 per kthread
[  178.369607][ T6774] loop2: detected capacity change from 0 to 2048
[  178.385352][ T6774] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  178.393590][ T6774] UDF-fs: Scanning with blocksize 512 failed
[  178.483655][ T6774] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  178.509576][ T6774] overlayfs: missing 'lowerdir'
[  182.591863][ T6807] loop2: detected capacity change from 0 to 2048
[  182.602029][ T6807] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  182.609922][ T6807] UDF-fs: Scanning with blocksize 512 failed
[  182.620445][ T6807] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  182.638296][ T6807] overlayfs: missing 'lowerdir'
[  182.777077][ T6810] loop1: detected capacity change from 0 to 1024
[  182.863116][ T6810] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.963894][ T6816] loop3: detected capacity change from 0 to 16
[  182.971451][ T6816] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  183.157575][ T6816] erofs: DAX unsupported by block device. Turning off DAX.
[  183.165373][ T6816] erofs: (device loop3): mounted with root inode @ nid 36.
[  183.688557][   T27] IPVS: starting estimator thread 0...
[  183.728532][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.788150][ T6817] IPVS: using max 19 ests per chain, 45600 per kthread
[  183.945209][ T6823] loop1: detected capacity change from 0 to 512
[  184.013197][ T6823] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  185.582696][ T6823] EXT4-fs (loop1): 1 truncate cleaned up
[  185.611679][ T6823] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.818698][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.068422][ T6842] loop2: detected capacity change from 0 to 1024
[  186.133161][ T6842] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.173398][ T6844] loop3: detected capacity change from 0 to 2048
[  186.182567][ T6844] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  186.190390][ T6844] UDF-fs: Scanning with blocksize 512 failed
[  186.200356][ T6844] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  186.232112][ T6844] overlayfs: missing 'lowerdir'
[  186.714697][ T6853] loop1: detected capacity change from 0 to 16
[  186.722122][ T6853] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  187.315623][ T6853] erofs: DAX unsupported by block device. Turning off DAX.
[  187.323411][ T6853] erofs: (device loop1): mounted with root inode @ nid 36.
[  187.540808][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.550542][ T6855] netlink: 4 bytes leftover after parsing attributes in process `syz.3.270'.
[  189.577239][ T6860] loop3: detected capacity change from 0 to 32768
[  189.943994][ T6860] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  190.452801][ T6860] XFS (loop3): Ending clean mount
[  190.957772][ T6887] loop1: detected capacity change from 0 to 2048
[  190.976923][ T6887] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  190.985014][ T6887] UDF-fs: Scanning with blocksize 512 failed
[  191.024744][ T6887] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  191.049170][ T6887] overlayfs: missing 'lowerdir'
[  191.218049][ T5786] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  191.230110][ T5795] Bluetooth: hci2: command 0x0406 tx timeout
[  191.230917][ T5794] Bluetooth: hci3: command 0x0406 tx timeout
[  191.236172][ T5795] Bluetooth: hci1: command 0x0406 tx timeout
[  191.684897][ T6889] loop3: detected capacity change from 0 to 1024
[  191.752381][ T6889] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  193.092436][ T6897] loop2: detected capacity change from 0 to 16
[  193.099811][ T6897] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  193.283598][ T6897] erofs: DAX unsupported by block device. Turning off DAX.
[  193.291367][ T6897] erofs: (device loop2): mounted with root inode @ nid 36.
[  193.524251][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.428607][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  194.537329][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  196.905227][ T6940] loop3: detected capacity change from 0 to 1024
[  196.977526][ T6940] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.501199][ T6949] UBIFS error (pid: 6949): cannot open "(null)", error -22
[  197.780666][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.772379][ T6979] loop2: detected capacity change from 0 to 1024
[  201.841512][ T6979] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.581162][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.288988][ T7015] 9pnet_fd: Insufficient options for proto=fd
[  205.547385][ T7019] loop3: detected capacity change from 0 to 1024
[  205.987857][ T7019] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.570139][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.615300][ T7037] loop2: detected capacity change from 0 to 7
[  207.626013][ T7037] Dev loop2: unable to read RDB block 7
[  207.675455][ T7037]  loop2: unable to read partition table
[  207.686628][ T7037] loop2: partition table beyond EOD, truncated
[  207.715945][ T7037] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  207.821911][ T5161] Dev loop2: unable to read RDB block 7
[  207.843023][ T5161]  loop2: unable to read partition table
[  207.850354][ T5161] loop2: partition table beyond EOD, truncated
[  208.819818][ T7046] 9pnet_fd: Insufficient options for proto=fd
[  210.511198][ T7056] loop1: detected capacity change from 0 to 4096
[  211.498784][ T7068] loop2: detected capacity change from 0 to 7
[  211.678534][ T7068] Dev loop2: unable to read RDB block 7
[  211.840880][ T7068]  loop2: unable to read partition table
[  211.846869][ T7068] loop2: partition table beyond EOD, truncated
[  211.897549][ T7068] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  212.396507][ T7064] loop3: detected capacity change from 0 to 32768
[  212.457141][ T7064] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.332 (7064)
[  212.526195][ T7064] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  212.564379][ T7064] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  212.602950][ T7064] BTRFS info (device loop3): turning off barriers
[  212.628102][ T7064] BTRFS info (device loop3): setting nodatasum
[  212.634348][ T7064] BTRFS info (device loop3): use zlib compression, level 3
[  212.669291][ T7064] BTRFS info (device loop3): using free space tree
[  213.740232][ T5786] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  214.736407][ T7108] netlink: 20 bytes leftover after parsing attributes in process `syz.1.343'.
[  216.514983][ T7125] loop1: detected capacity change from 0 to 128
[  216.626358][ T7125] syz.1.347: attempt to access beyond end of device
[  216.626358][ T7125] loop1: rw=2049, sector=138, nr_sectors = 112 limit=128
[  216.657187][ T7125] syz.1.347: attempt to access beyond end of device
[  216.657187][ T7125] loop1: rw=2049, sector=144, nr_sectors = 2 limit=128
[  216.681578][ T7125] Buffer I/O error on dev loop1, logical block 72, lost async page write
[  217.792582][ T7138] loop2: detected capacity change from 0 to 7
[  217.822951][ T7138] Dev loop2: unable to read RDB block 7
[  217.921806][ T7138]  loop2: unable to read partition table
[  217.967580][ T7138] loop2: partition table beyond EOD, truncated
[  218.034884][ T7138] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  218.666514][ T7130] loop1: detected capacity change from 0 to 32768
[  218.699318][ T7130] XFS: ikeep mount option is deprecated.
[  218.719639][ T7142] loop3: detected capacity change from 0 to 8
[  218.794778][ T7130] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  219.027256][ T7130] XFS (loop1): Ending clean mount
[  219.208413][ T5784] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  220.639972][ T7164] loop3: detected capacity change from 0 to 32768
[  220.682076][ T7164] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.357 (7164)
[  220.724953][ T7164] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  220.735415][ T7164] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  220.744272][ T7164] BTRFS info (device loop3): force clearing of disk cache
[  220.751545][ T7164] BTRFS info (device loop3): disabling tree log
[  220.757853][ T7164] BTRFS info (device loop3): enabling auto defrag
[  220.764443][ T7164] BTRFS info (device loop3): metadata ratio 8
[  220.771932][ T7164] BTRFS info (device loop3): enabling disk space caching
[  220.779181][ T7164] BTRFS info (device loop3): disk space caching is enabled
[  221.248338][ T7164] BTRFS info (device loop3): enabling ssd optimizations
[  221.259465][ T7164] BTRFS info (device loop3): rebuilding free space tree
[  221.350358][ T7164] BTRFS info (device loop3): disabling free space tree
[  221.357393][ T7164] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  221.367212][ T7164] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  222.661498][   T11] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared)
[  222.683071][ T5786] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  223.099482][ T7205] loop1: detected capacity change from 0 to 16
[  223.106748][ T7205] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  223.282080][ T7205] erofs: DAX unsupported by block device. Turning off DAX.
[  223.290267][ T7205] erofs: (device loop1): mounted with root inode @ nid 36.
[  225.837723][ T7217] loop3: detected capacity change from 0 to 64
[  227.895152][ T7236] loop2: detected capacity change from 0 to 8192
[  229.239190][ T7245] loop3: detected capacity change from 0 to 4096
[  229.645043][ T7245] ntfs3: loop3: Failed to initialize $Extend/$ObjId.
[  230.552149][ T7255] netlink: 20 bytes leftover after parsing attributes in process `syz.3.381'.
[  235.262647][ T7301] loop1: detected capacity change from 0 to 8
[  235.617845][ T7305] atomic_op ffff888059ba8998 conn xmit_atomic 0000000000000000
[  236.781457][ T7298] loop2: detected capacity change from 0 to 32768
[  236.857472][ T7298] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.391 (7298)
[  236.961191][ T7298] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  236.988285][ T7298] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  236.997056][ T7298] BTRFS info (device loop2): enabling auto defrag
[  237.041354][ T7298] BTRFS info (device loop2): doing ref verification
[  237.175102][ T7298] BTRFS info (device loop2): max_inline at 0
[  237.303483][ T7298] BTRFS info (device loop2): force clearing of disk cache
[  237.452633][ T7298] BTRFS info (device loop2): turning on sync discard
[  237.718362][ T7298] BTRFS warning (device loop2): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  237.777341][ T7298] BTRFS info (device loop2): trying to use backup root at mount time
[  237.827860][ T7298] BTRFS info (device loop2): metadata ratio 4
[  237.888530][ T7298] BTRFS info (device loop2): using free space tree
[  238.012735][ T7298] BTRFS info (device loop2): enabling ssd optimizations
[  238.062610][ T7298] BTRFS info (device loop2): rebuilding free space tree
[  238.269390][ T5787] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  238.761583][ T5800] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 10 /dev/loop2 scanned by udevd (5800)
[  239.077990][ T7344] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  240.934940][ T7351] loop1: detected capacity change from 0 to 32768
[  243.878797][ T7371] loop1: detected capacity change from 0 to 16
[  243.886310][ T7371] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  244.065914][ T7371] erofs: DAX unsupported by block device. Turning off DAX.
[  244.075937][ T7371] erofs: (device loop1): mounted with root inode @ nid 36.
[  246.814858][ T7391] loop2: detected capacity change from 0 to 32768
[  246.862395][  T787] IPVS: starting estimator thread 0...
[  246.998063][ T7397] IPVS: using max 17 ests per chain, 40800 per kthread
[  247.651064][ T7385] loop3: detected capacity change from 0 to 32768
[  247.680355][ T7417] netlink: 20 bytes leftover after parsing attributes in process `syz.0.422'.
[  247.728653][ T7419] loop2: detected capacity change from 0 to 7
[  247.760290][ T7385] JBD2: Ignoring recovery information on journal
[  247.840630][ T7419] Dev loop2: unable to read RDB block 7
[  247.955614][ T7419]  loop2: AHDI p1 p2 p3
[  248.045366][ T7419] loop2: partition table partially beyond EOD, truncated
[  248.197755][ T7419] loop2: p1 start 1601398130 is beyond EOD, truncated
[  248.282102][ T7419] loop2: p2 start 1702059890 is beyond EOD, truncated
[  248.658711][ T7385] JBD2: journal reset failed
[  248.663375][ T7385] (syz.3.413,7385,0):ocfs2_journal_load:1167 ERROR: Failed to load journal!
[  248.747552][ T7385] (syz.3.413,7385,1):ocfs2_check_volume:2434 ERROR: ocfs2 journal load failed! -4
[  250.858093][ T5779] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  252.760025][ T7452] netlink: 20 bytes leftover after parsing attributes in process `syz.0.432'.
[  254.600134][ T7462] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  255.710126][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  255.716663][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  257.696397][ T7486] netlink: 20 bytes leftover after parsing attributes in process `syz.3.442'.
[  257.757401][ T7483] loop2: detected capacity change from 0 to 32768
[  259.528506][ T7499] loop2: detected capacity change from 0 to 64
[  261.610952][ T7515] loop3: detected capacity change from 0 to 16
[  261.637555][ T7515] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  261.919201][ T7519] netlink: 20 bytes leftover after parsing attributes in process `syz.1.453'.
[  263.135131][ T7515] erofs: DAX unsupported by block device. Turning off DAX.
[  263.189616][ T7515] erofs: (device loop3): mounted with root inode @ nid 36.
[  266.552846][ T7551] loop2: detected capacity change from 0 to 16
[  266.560531][ T7551] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  267.005499][ T7555] loop3: detected capacity change from 0 to 32768
[  267.213490][ T7551] erofs: DAX unsupported by block device. Turning off DAX.
[  267.236353][ T7551] erofs: (device loop2): mounted with root inode @ nid 36.
[  267.434569][ T7545] loop1: detected capacity change from 0 to 32768
[  267.456301][ T7545] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.462 (7545)
[  267.505563][ T7545] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  267.518949][ T7545] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  267.531650][ T7545] BTRFS info (device loop1): turning on async discard
[  267.559806][ T7545] BTRFS info (device loop1): using free space tree
[  267.695348][ T7545] BTRFS info (device loop1): enabling ssd optimizations
[  268.035449][ T7584] netlink: 20 bytes leftover after parsing attributes in process `syz.3.470'.
[  268.292309][    T9] kernel write not supported for file /video8 (pid: 9 comm: kworker/0:1)
[  268.583456][ T5784] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  271.602830][ T7609] loop2: detected capacity change from 0 to 7
[  271.654559][ T7609] Dev loop2: unable to read RDB block 7
[  271.690689][ T7609]  loop2: AHDI p1 p2 p3
[  271.715384][ T7609] loop2: partition table partially beyond EOD, truncated
[  271.768375][ T7609] loop2: p1 start 1601398130 is beyond EOD, truncated
[  271.785756][ T7609] loop2: p2 start 1702059890 is beyond EOD, truncated
[  271.867108][ T5161] Dev loop2: unable to read RDB block 7
[  271.887977][ T5161]  loop2: AHDI p1 p2 p3
[  271.892266][ T5161] loop2: partition table partially beyond EOD, truncated
[  271.921890][ T5161] loop2: p1 start 1601398130 is beyond EOD, truncated
[  271.935898][ T5161] loop2: p2 start 1702059890 is beyond EOD, truncated
[  272.488799][ T7615] loop2: detected capacity change from 0 to 32768
[  272.574788][ T7619] loop3: detected capacity change from 0 to 512
[  272.776204][ T7619] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  272.826849][ T7619] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  272.836652][ T7619] System zones: 1-12
[  272.848463][ T7619] EXT4-fs (loop3): 1 truncate cleaned up
[  272.857594][ T7619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  274.477029][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.706855][ T7639] loop2: detected capacity change from 0 to 1024
[  275.779659][ T7639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.760301][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.852856][ T7652] netlink: 20 bytes leftover after parsing attributes in process `syz.3.488'.
[  277.715487][ T7662] loop2: detected capacity change from 0 to 256
[  279.934715][ T7682] loop2: detected capacity change from 0 to 1024
[  280.044961][ T7682] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  280.775585][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.479895][ T7690] loop1: detected capacity change from 0 to 32768
[  281.505686][ T7690] XFS: ikeep mount option is deprecated.
[  281.742734][ T7690] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  282.134488][ T7704] loop2: detected capacity change from 0 to 32768
[  282.207725][ T7690] XFS (loop1): Ending clean mount
[  282.342683][ T5784] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  284.475672][ T7727] loop2: detected capacity change from 0 to 7
[  284.510505][ T7727] Dev loop2: unable to read RDB block 7
[  284.538889][ T7727]  loop2: AHDI p1 p2 p3
[  284.546677][ T7727] loop2: partition table partially beyond EOD, truncated
[  284.563762][ T7727] loop2: p1 start 1601398130 is beyond EOD, truncated
[  284.576689][ T7727] loop2: p2 start 1702059890 is beyond EOD, truncated
[  285.606517][ T7730] loop3: detected capacity change from 0 to 32768
[  285.628243][ T7730] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 scanned by syz.3.509 (7730)
[  285.679023][ T7730] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  285.707753][ T7730] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  285.762448][ T7730] BTRFS info (device loop3): turning on async discard
[  285.792161][ T7735] loop1: detected capacity change from 0 to 32768
[  285.795017][ T7730] BTRFS info (device loop3): using free space tree
[  285.883788][ T7735] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz.1.511 (7735)
[  286.043298][ T7730] BTRFS info (device loop3): enabling ssd optimizations
[  286.070552][ T5779] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by udevd (5779)
[  286.876568][ T5786] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  289.264075][ T7785] loop2: detected capacity change from 0 to 7
[  289.292007][ T7785] Dev loop2: unable to read RDB block 7
[  289.297824][ T7785]  loop2: AHDI p1 p2 p3
[  289.343165][ T7785] loop2: partition table partially beyond EOD, truncated
[  289.381929][ T7785] loop2: p1 start 1601398130 is beyond EOD, truncated
[  289.408166][ T7785] loop2: p2 start 1702059890 is beyond EOD, truncated
[  290.173002][ T7782] loop1: detected capacity change from 0 to 32768
[  290.228428][ T7782] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.521 (7782)
[  290.426354][ T7782] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  290.447007][ T7782] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  290.558521][ T7782] BTRFS info (device loop1): turning on async discard
[  290.646246][ T7782] BTRFS info (device loop1): using free space tree
[  291.067853][ T7782] BTRFS info (device loop1): enabling ssd optimizations
[  291.715664][ T5784] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  292.890973][ T7819] loop3: detected capacity change from 0 to 32768
[  293.109911][ T7819] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  293.530105][ T7819] XFS (loop3): Ending clean mount
[  293.587454][ T7819] XFS (loop3): Quotacheck needed: Please wait.
[  294.358899][ T7819] XFS (loop3): Quotacheck: Done.
[  294.375978][ T7733] Set syz1 is full, maxelem 65536 reached
[  294.529538][ T5786] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  296.885664][ T7856] loop2: detected capacity change from 0 to 32768
[  296.918068][ T7856] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop2 scanned by syz.2.537 (7856)
[  296.974497][ T7856] BTRFS info (device loop2): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  297.038404][ T7856] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  297.103820][ T7856] BTRFS info (device loop2): turning on async discard
[  297.158288][ T7856] BTRFS info (device loop2): using free space tree
[  297.506960][ T7856] BTRFS info (device loop2): enabling ssd optimizations
[  297.893548][ T5787] BTRFS info (device loop2): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  300.912115][ T7931] loop3: detected capacity change from 0 to 1024
[  300.993372][ T7931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  301.480443][ T7925] loop2: detected capacity change from 0 to 32768
[  301.533169][ T7925] XFS: ikeep mount option is deprecated.
[  301.624827][ T7925] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  301.699163][ T7925] XFS (loop2): Ending clean mount
[  301.720780][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.883195][ T5787] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  303.602102][ T7945] loop3: detected capacity change from 0 to 32768
[  303.624305][ T7945] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 scanned by syz.3.554 (7945)
[  303.650562][ T7945] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  303.688122][ T7945] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  303.697716][ T7945] BTRFS info (device loop3): turning on async discard
[  303.746530][ T7945] BTRFS info (device loop3): using free space tree
[  303.780809][ T7957] loop2: detected capacity change from 0 to 16
[  303.806075][ T7957] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  304.024402][ T7945] BTRFS info (device loop3): enabling ssd optimizations
[  305.145396][ T5786] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  305.153700][ T7957] erofs: DAX unsupported by block device. Turning off DAX.
[  305.195486][ T7957] erofs: (device loop2): mounted with root inode @ nid 36.
[  306.863799][ T7993] loop3: detected capacity change from 0 to 512
[  306.886858][ T7993] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  306.959663][ T7993] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  306.976835][ T7993] System zones: 1-12
[  306.988332][ T7993] EXT4-fs (loop3): 1 truncate cleaned up
[  307.005943][ T7993] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  307.212250][ T7997] loop2: detected capacity change from 0 to 1024
[  307.280626][ T7997] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  308.056901][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.097690][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.732741][ T7901] Set syz1 is full, maxelem 65536 reached
[  309.115919][ T8005] loop3: detected capacity change from 0 to 32768
[  309.166253][ T8005] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.566 (8005)
[  309.294604][ T8011] loop1: detected capacity change from 0 to 32768
[  309.348072][ T8005] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  309.377755][ T8005] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  309.424724][ T8005] BTRFS info (device loop3): metadata ratio 2
[  309.450448][ T8005] BTRFS info (device loop3): allowing degraded mounts
[  309.486259][ T8005] BTRFS info (device loop3): force zlib compression, level 3
[  309.514111][ T8005] BTRFS info (device loop3): force clearing of disk cache
[  309.549835][ T8005] BTRFS info (device loop3): max_inline at 0
[  309.570166][ T8005] BTRFS info (device loop3): using free space tree
[  309.798016][ T8005] BTRFS info (device loop3): enabling ssd optimizations
[  309.814085][ T8005] BTRFS info (device loop3): rebuilding free space tree
[  310.146286][ T5786] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  311.024155][ T8044] loop2: detected capacity change from 0 to 2048
[  311.274790][ T8044] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  311.304251][ T8044] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  312.008119][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.299149][ T8056] loop2: detected capacity change from 0 to 7
[  312.308858][ T5800] Dev loop2: unable to read RDB block 7
[  312.314589][ T5800]  loop2: unable to read partition table
[  312.338034][ T5800] loop2: partition table beyond EOD, truncated
[  312.778090][ T8056] Dev loop2: unable to read RDB block 7
[  312.794186][ T8056]  loop2: unable to read partition table
[  312.802587][ T8056] loop2: partition table beyond EOD, truncated
[  312.815152][ T8056] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  312.858764][ T8061] loop2: detected capacity change from 0 to 1024
[  312.892299][ T8061] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.079489][ T8067] loop3: detected capacity change from 0 to 256
[  313.322790][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.675583][ T8065] loop1: detected capacity change from 0 to 32768
[  313.789713][ T8065] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.580 (8065)
[  313.835273][ T8065] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  313.956154][ T8065] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  314.012541][ T8065] BTRFS info (device loop1): turning on async discard
[  314.053052][ T8065] BTRFS info (device loop1): using free space tree
[  314.774975][ T8065] BTRFS info (device loop1): enabling ssd optimizations
[  315.260094][ T8105] loop2: detected capacity change from 0 to 2048
[  315.357798][ T8105] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  315.524128][ T8105] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  315.673331][ T5784] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  315.829420][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.590368][ T8121] loop2: detected capacity change from 0 to 1024
[  316.640127][ T8121] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.970417][ T8127] loop3: detected capacity change from 0 to 4096
[  317.105226][ T8127] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.370347][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  317.387809][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  317.783219][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.529967][   T50] Bluetooth: hci2: ACL packet for unknown connection handle 200
[  319.209590][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.581117][ T8145] loop3: detected capacity change from 0 to 32768
[  320.600815][ T8145] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 scanned by syz.3.597 (8145)
[  320.624150][ T8145] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  320.643734][ T8145] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  320.660145][ T8145] BTRFS info (device loop3): turning on async discard
[  320.667366][ T8145] BTRFS info (device loop3): using free space tree
[  320.793043][ T8145] BTRFS info (device loop3): enabling ssd optimizations
[  321.104835][ T8154] loop1: detected capacity change from 0 to 32768
[  321.208709][ T8154] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  321.507599][ T5786] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  321.585575][ T8154] XFS (loop1): Ending clean mount
[  321.663914][ T8154] XFS (loop1): Quotacheck needed: Please wait.
[  321.855000][ T8154] XFS (loop1): Quotacheck: Done.
[  322.281367][ T5784] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  323.219236][ T8211] loop3: detected capacity change from 0 to 32768
[  323.557517][ T8216] loop2: detected capacity change from 0 to 1024
[  323.753010][ T8216] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.880579][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.118387][    T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  325.288008][    T9] usb 2-1: device descriptor read/64, error -71
[  325.708200][    T9] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  325.854337][ T8232] loop3: detected capacity change from 0 to 32768
[  325.883468][ T8232] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 scanned by syz.3.614 (8232)
[  325.896547][    T9] usb 2-1: device descriptor read/64, error -71
[  325.972907][ T8232] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  326.038265][    T9] usb usb2-port1: attempt power cycle
[  326.051494][ T8232] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  326.102060][ T8232] BTRFS info (device loop3): turning on async discard
[  326.135861][ T8232] BTRFS info (device loop3): using free space tree
[  326.269303][ T8232] BTRFS info (device loop3): enabling ssd optimizations
[  326.498263][    T9] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  326.549644][    T9] usb 2-1: device descriptor read/8, error -71
[  326.733871][ T5786] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  326.839153][    T9] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  326.912946][    T9] usb 2-1: device descriptor read/8, error -71
[  326.929536][ T5800] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 10 /dev/loop3 scanned by udevd (5800)
[  327.061433][    T9] usb usb2-port1: unable to enumerate USB device
[  327.483857][ T8266] loop2: detected capacity change from 0 to 32768
[  327.582340][ T8266] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  327.802663][ T8266] XFS (loop2): Ending clean mount
[  327.828960][ T8266] XFS (loop2): Quotacheck needed: Please wait.
[  328.021030][ T8266] XFS (loop2): Quotacheck: Done.
[  328.269846][ T8266] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  328.350196][ T8285] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  328.454508][ T8286] loop3: detected capacity change from 0 to 8
[  329.033537][ T8288] loop1: detected capacity change from 0 to 1024
[  329.165518][ T8288] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.867298][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.664558][ T8313] loop3: detected capacity change from 0 to 2048
[  331.730046][ T8313] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  331.772958][ T8313] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  331.879813][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  332.098020][ T5874] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  332.120786][ T8319] loop3: detected capacity change from 0 to 256
[  332.298003][ T5874] usb 3-1: device descriptor read/64, error -71
[  332.565715][ T8308] loop1: detected capacity change from 0 to 32768
[  332.583728][ T8308] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  332.594774][ T5874] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  332.730943][ T5800] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  332.778329][ T5874] usb 3-1: device descriptor read/64, error -71
[  332.900165][ T5874] usb usb3-port1: attempt power cycle
[  333.328004][ T5874] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  333.368119][ T5874] usb 3-1: device descriptor read/8, error -71
[  333.648167][ T5874] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  333.689020][ T5874] usb 3-1: device descriptor read/8, error -71
[  333.706475][ T8324] loop1: detected capacity change from 0 to 32768
[  333.829710][ T5874] usb usb3-port1: unable to enumerate USB device
[  333.989124][ T8326] loop1: detected capacity change from 0 to 1024
[  334.055971][ T8326] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.434932][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.467791][ T8262] Set syz1 is full, maxelem 65536 reached
[  336.505823][ T8352] loop2: detected capacity change from 0 to 2048
[  336.584649][ T8352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.194041][ T8352] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  337.444317][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.115999][ T8370] loop1: detected capacity change from 0 to 8
[  341.263729][ T8385] loop2: detected capacity change from 0 to 512
[  341.441466][ T8385] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  341.663045][ T8385] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  341.788694][ T8385] System zones: 1-12
[  341.826704][ T8385] EXT4-fs (loop2): 1 truncate cleaned up
[  341.855265][ T8385] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  342.875229][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.440911][ T8399] netlink: 1440 bytes leftover after parsing attributes in process `syz.2.655'.
[  343.883441][ T8404] (null): rxe_set_mtu: Set mtu to 1024
[  344.101896][ T8405] loop2: detected capacity change from 0 to 512
[  344.173923][ T8404] infiniband syz!: set active
[  344.179019][ T8404] infiniband syz!: added team_slave_0
[  344.508069][ T8404] RDS/IB: syz!: added
[  344.517034][ T8404] smc: adding ib device syz! with port count 1
[  344.524710][ T8404] smc:    ib device syz! port 1 has pnetid 
[  344.900132][ T8405] EXT4-fs (loop2): bad geometry: first data block is 0 with a 1k block and cluster size
[  347.060040][ T8410] loop2: detected capacity change from 0 to 32768
[  347.076540][ T8410] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  347.504120][ T5800] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  350.229021][ T8442] loop2: detected capacity change from 0 to 7
[  350.249311][ T5851] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  350.252312][ T8442] Dev loop2: unable to read RDB block 7
[  350.283561][ T8442]  loop2: unable to read partition table
[  350.301094][ T8442] loop2: partition table beyond EOD, truncated
[  350.323130][ T8442] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  350.370764][ T5161] Dev loop2: unable to read RDB block 7
[  350.388811][ T5161]  loop2: unable to read partition table
[  350.396163][ T5161] loop2: partition table beyond EOD, truncated
[  350.447966][ T5851] usb 2-1: Using ep0 maxpacket: 32
[  350.465334][ T5851] usb 2-1: config 211 has an invalid interface number: 98 but max is 0
[  350.499170][ T5851] usb 2-1: config 211 has no interface number 0
[  350.505527][ T5851] usb 2-1: config 211 interface 98 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
[  350.545068][ T5851] usb 2-1: config 211 interface 98 has no altsetting 0
[  350.614085][ T5851] usb 2-1: New USB device found, idVendor=0711, idProduct=0210, bcdDevice=7c.8a
[  350.634167][ T5851] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  350.657925][ T5851] usb 2-1: Product: syz
[  350.662164][ T5851] usb 2-1: Manufacturer: syz
[  350.666794][ T5851] usb 2-1: SerialNumber: syz
[  350.698511][ T8438] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  350.886768][ T8366] Set syz1 is full, maxelem 65536 reached
[  350.969574][ T8438] netlink: 4 bytes leftover after parsing attributes in process `syz.1.667'.
[  351.007588][ T5851] mct_u232 2-1:211.98: MCT U232 converter detected
[  351.021215][ T5851] mct_u232 ttyUSB0: expected endpoint missing
[  351.072409][ T5851] usb 2-1: USB disconnect, device number 6
[  351.085459][ T5851] mct_u232 2-1:211.98: device disconnected
[  351.311265][ T8444] loop2: detected capacity change from 0 to 32768
[  351.388869][ T8444] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  351.586943][ T8448] loop3: detected capacity change from 0 to 32768
[  351.653209][ T5800] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 10
[  354.380970][ T8456] loop2: detected capacity change from 0 to 32768
[  354.416852][ T8456] syz.2.673: attempt to access beyond end of device
[  354.416852][ T8456] loop2: rw=1, sector=4701696, nr_sectors = 8 limit=32768
[  354.431001][ T8456] metapage_write_end_io: I/O error
[  354.438024][ T8456] ERROR: (device loop2): diWrite: ixpxd invalid
[  354.438024][ T8456] 
[  354.464974][ T8456] ERROR: (device loop2): remounting filesystem as read-only
[  354.472516][ T8456] ERROR: (device loop2): txCommit: 
[  354.472516][ T8456] 
[  354.508914][ T8456] blkno = 8f7c0, nblocks = 1
[  354.514067][ T8456] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  354.514067][ T8456] 
[  354.537986][ T8456] ERROR: (device loop2): dbAllocNext: Corrupt dmap page
[  354.537986][ T8456] 
[  354.548368][ T8456] ialloc: diAlloc returned -5!
[  355.952735][ T5787] syz-executor: attempt to access beyond end of device
[  355.952735][ T5787] loop2: rw=1, sector=4701696, nr_sectors = 8 limit=32768
[  355.992295][ T5787] metapage_write_end_io: I/O error
[  356.322575][ T8473] loop1: detected capacity change from 0 to 256
[  356.463134][ T8473] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  357.326931][ T8479] loop3: detected capacity change from 0 to 16
[  357.334741][ T8479] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  357.482828][ T8479] erofs: DAX unsupported by block device. Turning off DAX.
[  357.490679][ T8479] erofs: (device loop3): mounted with root inode @ nid 36.
[  358.551548][ T8478] loop1: detected capacity change from 0 to 32768
[  358.590361][ T8478] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  358.825749][ T5800] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  360.497453][ T8505] loop1: detected capacity change from 0 to 64
[  361.505420][ T8511] loop2: detected capacity change from 0 to 512
[  361.537994][ T8511] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  361.588980][ T8511] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  361.658103][ T8511] System zones: 1-12
[  361.674099][ T8511] EXT4-fs (loop2): 1 truncate cleaned up
[  361.695833][ T8511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  362.066508][ T8516] netlink: 4 bytes leftover after parsing attributes in process `syz.1.691'.
[  362.107395][ T8516] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  362.135751][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.276379][ T8516] batman_adv: batadv0: Removing interface: batadv_slave_1
[  362.306522][ T8519] loop2: detected capacity change from 0 to 7
[  362.319017][ T8519] Dev loop2: unable to read RDB block 7
[  362.331445][ T8519]  loop2: unable to read partition table
[  362.343973][ T8519] loop2: partition table beyond EOD, truncated
[  362.359705][ T8519] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  362.936182][ T8521] loop2: detected capacity change from 0 to 32768
[  363.494232][ T8528] loop1: detected capacity change from 0 to 2048
[  363.603863][ T8528] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  363.611928][ T8528] UDF-fs: Scanning with blocksize 512 failed
[  363.665397][ T8528] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  363.738566][ T8528] overlayfs: missing 'lowerdir'
[  365.818068][    T9] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  366.203474][    T9] usb 4-1: Using ep0 maxpacket: 8
[  366.230718][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  366.510867][    T9] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  366.590556][    T9] usb 4-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  366.777955][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.814486][    T9] usb 4-1: config 0 descriptor??
[  369.950642][ T5869] usb 4-1: USB disconnect, device number 4
[  370.081927][ T8591] loop2: detected capacity change from 0 to 512
[  370.144308][ T8591] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  370.182056][ T8591] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  370.198073][ T8591] System zones: 1-12
[  370.209137][ T8591] EXT4-fs (loop2): 1 truncate cleaned up
[  370.216214][ T8591] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  370.424422][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.788047][ T8603] loop3: detected capacity change from 0 to 256
[  371.924573][ T8609] netlink: 24 bytes leftover after parsing attributes in process `syz.2.716'.
[  373.483023][ T8624] loop2: detected capacity change from 0 to 8
[  374.215569][   T50] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  376.592382][ T8641] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  378.456249][ T8657] loop2: detected capacity change from 0 to 512
[  378.468325][ T8657] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  378.612042][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  378.623502][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  378.716393][ T8657] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  378.857549][ T8657] System zones: 1-12
[  379.040101][ T8657] EXT4-fs (loop2): 1 truncate cleaned up
[  379.047287][ T8657] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.211596][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.238718][ T5792] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  379.478102][ T5792] usb 2-1: Using ep0 maxpacket: 8
[  379.486611][ T5792] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  379.521567][ T5792] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  379.541181][ T5792] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  379.565973][ T5792] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  379.607519][ T5792] usb 2-1: config 0 descriptor??
[  380.493130][ T8679] loop3: detected capacity change from 0 to 8
[  381.692499][ T5792] usb 2-1: USB disconnect, device number 7
[  383.378609][ T8696] loop2: detected capacity change from 0 to 2048
[  383.422070][ T8696] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  383.429919][ T8696] UDF-fs: Scanning with blocksize 512 failed
[  383.451116][ T8696] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  383.497121][ T8696] overlayfs: missing 'lowerdir'
[  384.355223][ T8701] ptrace attach of "./syz-executor exec"[5784] was attempted by "./syz-executor exec"[8701]
[  384.599347][ T8694] loop3: detected capacity change from 0 to 32768
[  384.619618][ T8705] ptrace attach of "./syz-executor exec"[5787] was attempted by "./syz-executor exec"[8705]
[  384.670914][ T8705] netlink: 88 bytes leftover after parsing attributes in process `syz.2.744'.
[  384.748208][ T8694] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  384.898713][ T8705] netlink: 'syz.2.744': attribute type 21 has an invalid length.
[  384.918812][ T8705] netlink: 128 bytes leftover after parsing attributes in process `syz.2.744'.
[  384.940157][ T8694] XFS (loop3): Ending clean mount
[  384.975468][ T8705] netlink: 'syz.2.744': attribute type 4 has an invalid length.
[  385.010924][ T8705] netlink: 3 bytes leftover after parsing attributes in process `syz.2.744'.
[  385.042068][ T8694] XFS (loop3): Quotacheck needed: Please wait.
[  385.198354][ T8694] XFS (loop3): Quotacheck: Done.
[  385.330449][ T5786] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  385.829207][   T28] audit: type=1326 audit(1755692253.146:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  385.914651][   T28] audit: type=1326 audit(1755692253.146:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  385.973000][   T28] audit: type=1326 audit(1755692253.156:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.057803][   T28] audit: type=1326 audit(1755692253.156:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.082443][    C0] vkms_vblank_simulate: vblank timer overrun
[  386.115232][   T28] audit: type=1326 audit(1755692253.156:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.155628][   T28] audit: type=1326 audit(1755692253.156:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.183242][   T28] audit: type=1326 audit(1755692253.166:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.215973][   T28] audit: type=1326 audit(1755692253.166:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.273510][   T28] audit: type=1326 audit(1755692253.166:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  386.397980][   T28] audit: type=1326 audit(1755692253.166:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8721 comm="syz.3.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  388.189018][ T8741] netlink: 'syz.1.751': attribute type 21 has an invalid length.
[  388.217508][ T8741] netlink: 128 bytes leftover after parsing attributes in process `syz.1.751'.
[  388.268494][ T8741] netlink: 'syz.1.751': attribute type 4 has an invalid length.
[  388.484473][ T8741] netlink: 3 bytes leftover after parsing attributes in process `syz.1.751'.
[  389.674332][ T8752] loop3: detected capacity change from 0 to 64
[  390.118721][ T8757] loop3: detected capacity change from 0 to 40427
[  390.180746][ T8757] F2FS-fs (loop3): LFS is not compatible with checkpoint=disable
[  390.658237][ T5776] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  391.082138][ T5776] usb 4-1: Using ep0 maxpacket: 16
[  391.121943][ T5776] usb 4-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  391.145203][ T5776] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  391.197988][ T5776] usb 4-1: Product: syz
[  391.202219][ T5776] usb 4-1: Manufacturer: syz
[  391.206878][ T5776] usb 4-1: SerialNumber: syz
[  391.239248][ T5776] usb 4-1: config 0 descriptor??
[  391.263338][ T5776] visor 4-1:0.0: Sony Clie 3.5 converter detected
[  391.452309][ T8759] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  391.483998][ T8759] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  391.748497][ T5776] usb 4-1: Sony Clie 3.5 converter now attached to ttyUSB0
[  392.054635][ T5792] usb 4-1: USB disconnect, device number 5
[  392.089282][ T5792] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0
[  392.110575][ T5792] visor 4-1:0.0: device disconnected
[  392.927472][ T8776] loop1: detected capacity change from 0 to 32768
[  392.970563][ T8776] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  393.120387][ T8776] XFS (loop1): Ending clean mount
[  393.161904][ T8796] netlink: 4 bytes leftover after parsing attributes in process `syz.0.768'.
[  393.191553][ T8776] XFS (loop1): Quotacheck needed: Please wait.
[  393.216717][ T8798] netlink: 204 bytes leftover after parsing attributes in process `syz.3.769'.
[  393.265647][ T8776] XFS (loop1): Quotacheck: Done.
[  393.420415][ T5784] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  393.641823][ T8801] loop3: detected capacity change from 0 to 40427
[  393.660661][ T8801] F2FS-fs (loop3): Invalid log sectors per block(24) log sectorsize(9)
[  393.669001][ T8801] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  393.719094][ T8801] F2FS-fs (loop3): build fault injection attr: rate: 15, type: 0x7ffff
[  393.838683][ T5800] I/O error, dev loop3, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  394.340159][ T8804] loop3: detected capacity change from 0 to 32768
[  395.021081][ T8814] loop2: detected capacity change from 0 to 32768
[  395.104180][ T8814] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  395.251506][ T8814] XFS (loop2): Ending clean mount
[  395.262595][ T8814] XFS (loop2): Quotacheck needed: Please wait.
[  395.393890][ T8825] loop3: detected capacity change from 0 to 64
[  395.409297][ T8814] XFS (loop2): Quotacheck: Done.
[  395.614472][ T5787] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  396.498015][ T5792] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  396.721817][ T5792] usb 4-1: Using ep0 maxpacket: 32
[  396.729596][ T5792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  396.767968][ T5792] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  396.793542][ T5792] usb 4-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  396.817982][ T5792] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.841729][ T5792] usb 4-1: config 0 descriptor??
[  397.428007][   T27] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  397.590095][ T5792] ft260 0003:0403:6030.0001: unknown main item tag 0x7
[  397.608521][ T8843] netlink: 20 bytes leftover after parsing attributes in process `syz.0.783'.
[  397.628069][   T27] usb 2-1: Using ep0 maxpacket: 8
[  397.629338][ T8845] loop2: detected capacity change from 0 to 128
[  397.640791][ T8845] EXT4-fs: Ignoring removed nobh option
[  397.643654][   T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  397.682679][   T27] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  397.693959][   T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.706071][ T8845] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  397.728650][ T8845] ext4 filesystem being mounted at /188/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  397.750624][   T27] usb 2-1: config 0 descriptor??
[  397.783594][   T27] gspca_main: vc032x-2.14.0 probing 046d:0892
[  397.791419][ T5792] ft260 0003:0403:6030.0001: chip code: 6424 8183
[  397.973858][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  398.007087][   T27] gspca_vc032x: reg_r err -32
[  398.016766][   T27] vc032x: probe of 2-1:0.0 failed with error -32
[  398.125796][ T5792] ft260 0003:0403:6030.0001: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.3-1/input0
[  398.460130][ T5792] ft260 0003:0403:6030.0001: failed to retrieve status: -71
[  398.653950][ T5792] ft260 0003:0403:6030.0001: failed to reset I2C controller: -71
[  399.865807][ T8876] syz.2.796 uses obsolete (PF_INET,SOCK_PACKET)
[  400.049344][ T5869] usb 2-1: USB disconnect, device number 8
[  400.547359][ T8890] loop1: detected capacity change from 0 to 512
[  400.762917][ T5792] usb 4-1: USB disconnect, device number 6
[  400.912386][ T8896] loop2: detected capacity change from 0 to 128
[  400.957339][ T8896] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  400.976169][ T8890] EXT4-fs (loop1): Test dummy encryption mode enabled
[  400.993663][ T8890] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  401.025170][ T8896] ext4 filesystem being mounted at /196/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  401.059436][ T8890] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.802: bad orphan inode 131083
[  401.093870][ T8890] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.238425][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  401.371349][ T8890] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  401.476132][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.605708][   T28] kauditd_printk_skb: 42 callbacks suppressed
[  401.605725][   T28] audit: type=1326 audit(1755692268.936:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  401.694880][   T28] audit: type=1326 audit(1755692268.986:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  401.759188][   T28] audit: type=1326 audit(1755692268.986:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  401.823366][   T28] audit: type=1326 audit(1755692268.986:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  401.978186][   T28] audit: type=1326 audit(1755692268.986:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  402.133063][   T28] audit: type=1326 audit(1755692268.986:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  402.247613][   T28] audit: type=1326 audit(1755692268.986:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  402.270085][    C1] vkms_vblank_simulate: vblank timer overrun
[  402.295333][   T28] audit: type=1326 audit(1755692268.986:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  402.368017][   T28] audit: type=1326 audit(1755692268.996:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  402.428891][   T28] audit: type=1326 audit(1755692268.996:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8918 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a1ab8ebe9 code=0x7ffc0000
[  402.750758][ T8940] loop1: detected capacity change from 0 to 2048
[  402.827538][ T8940] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  402.835626][ T8940] UDF-fs: Scanning with blocksize 512 failed
[  402.860009][ T8940] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  402.897572][ T8940] overlayfs: missing 'lowerdir'
[  404.768033][ T5851] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  405.732554][ T5851] usb 4-1: Using ep0 maxpacket: 16
[  405.959725][ T5851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  405.969779][ T5851] usb 4-1: New USB device found, idVendor=1ea7, idProduct=0907, bcdDevice= 0.00
[  405.979270][ T5851] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.991412][ T5851] usb 4-1: config 0 descriptor??
[  407.299185][ T5869] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  407.464484][ T8987] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  407.478103][ T5869] usb 2-1: Using ep0 maxpacket: 16
[  407.508733][ T5869] usb 2-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  407.557896][ T5869] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  407.601370][ T5869] usb 2-1: Product: syz
[  407.615098][ T5869] usb 2-1: Manufacturer: syz
[  407.620735][ T5869] usb 2-1: SerialNumber: syz
[  407.638558][ T5869] usb 2-1: config 0 descriptor??
[  407.654696][ T5869] visor 2-1:0.0: Sony Clie 3.5 converter detected
[  407.860762][ T8979] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.948241][ T8979] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  408.228418][ T5869] usb 2-1: Sony Clie 3.5 converter now attached to ttyUSB0
[  408.462333][ T5776] usb 2-1: USB disconnect, device number 9
[  408.511137][ T5851] usbhid 4-1:0.0: can't add hid device: -71
[  408.517173][ T5851] usbhid: probe of 4-1:0.0 failed with error -71
[  408.539009][ T5776] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0
[  408.577722][ T5776] visor 2-1:0.0: device disconnected
[  408.579582][ T5851] usb 4-1: USB disconnect, device number 7
[  408.718770][ T8990] loop3: detected capacity change from 0 to 22
[  408.738782][ T8990] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  408.750554][ T8990] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  409.176631][ T8995] loop2: detected capacity change from 0 to 128
[  409.250705][ T8995] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  409.358245][ T8995] ext4 filesystem being mounted at /201/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  410.247662][ T8995] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.836: No space for directory leaf checksum. Please run e2fsck -D.
[  410.263187][ T9000] can: request_module (can-proto-4) failed.
[  410.271492][ T8995] EXT4-fs error (device loop2): __ext4_find_entry:1696: inode #2: comm syz.2.836: checksumming directory block 0
[  410.577007][ T9021] netlink: 8 bytes leftover after parsing attributes in process `syz.1.843'.
[  410.601728][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  411.634288][ T9037] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  412.210265][ T9041] loop2: detected capacity change from 0 to 2048
[  412.252082][ T9041] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  412.261126][ T9041] UDF-fs: Scanning with blocksize 512 failed
[  412.310438][ T9041] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  412.352218][ T9041] overlayfs: missing 'lowerdir'
[  412.645860][ T9043] pim6reg: entered allmulticast mode
[  413.042284][ T9050] capability: warning: `syz.3.854' uses 32-bit capabilities (legacy support in use)
[  414.528171][ T5851] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  415.179116][ T5851] usb 3-1: Using ep0 maxpacket: 32
[  415.345471][ T9077] loop1: detected capacity change from 0 to 2048
[  415.376302][ T9077] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  415.384393][ T9077] UDF-fs: Scanning with blocksize 512 failed
[  415.439000][ T5851] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  415.454124][ T9077] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  415.524525][ T9077] overlayfs: missing 'lowerdir'
[  415.802531][ T5851] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  415.873218][ T5851] usb 3-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  415.928200][ T5851] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.019359][ T5851] usb 3-1: config 0 descriptor??
[  416.162601][ T9084] loop3: detected capacity change from 0 to 512
[  416.169892][ T9086] loop1: detected capacity change from 0 to 65
[  416.192630][ T9084] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  416.231439][ T9086] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  416.246122][ T9084] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  416.273359][ T9084] System zones: 1-12
[  416.306966][ T9084] EXT4-fs (loop3): 1 truncate cleaned up
[  416.323655][ T9084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.526353][ T5851] ft260 0003:0403:6030.0002: unknown main item tag 0x7
[  416.720920][ T5851] ft260 0003:0403:6030.0002: chip code: 6424 8183
[  417.381462][ T5851] ft260 0003:0403:6030.0002: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.2-1/input0
[  417.397358][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  417.408111][ T5851] ft260 0003:0403:6030.0002: failed to retrieve status: -71, no wakeup
[  417.419123][ T5851] ft260 0003:0403:6030.0002: failed to retrieve status: -71
[  417.448145][ T5851] ft260 0003:0403:6030.0002: failed to reset I2C controller: -71
[  417.475491][ T5851] usb 3-1: USB disconnect, device number 9
[  418.003100][ T9113] loop3: detected capacity change from 0 to 2048
[  418.087541][ T9113] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  418.096021][ T9113] UDF-fs: Scanning with blocksize 512 failed
[  418.124431][ T9113] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  418.162992][ T9113] overlayfs: missing 'lowerdir'
[  419.243362][ T9121] loop2: detected capacity change from 0 to 32768
[  419.304602][ T9121] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  419.511378][ T5787] ocfs2: Unmounting device (7,2) on (node local)
[  420.030681][ T9130] loop2: detected capacity change from 0 to 32768
[  420.100425][ T9130] JBD2: Ignoring recovery information on journal
[  420.169631][ T9130] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  420.441067][ T9130] overlayfs: upper fs does not support tmpfile.
[  420.456175][ T9130] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  420.465533][ T9130] 
[  420.467912][ T9130] ======================================================
[  420.474950][ T9130] WARNING: possible circular locking dependency detected
[  420.481990][ T9130] 6.6.102-syzkaller #0 Not tainted
[  420.487210][ T9130] ------------------------------------------------------
[  420.494255][ T9130] syz.2.879/9130 is trying to acquire lock:
[  420.500185][ T9130] ffff88805e8809d8 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x165/0x4360
[  420.513563][ T9130] 
[  420.513563][ T9130] but task is already holding lock:
[  420.520989][ T9130] ffff888058da6ab8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x410/0x11f0
[  420.530526][ T9130] 
[  420.530526][ T9130] which lock already depends on the new lock.
[  420.530526][ T9130] 
[  420.540953][ T9130] 
[  420.540953][ T9130] the existing dependency chain (in reverse order) is:
[  420.550031][ T9130] 
[  420.550031][ T9130] -> #5 (&oi->ip_xattr_sem){++++}-{3:3}:
[  420.557894][ T9130]        down_read+0x46/0x2e0
[  420.562607][ T9130]        ocfs2_init_acl+0x2fa/0x720
[  420.567844][ T9130]        ocfs2_mknod+0x12e5/0x20f0
[  420.572977][ T9130]        ocfs2_create+0x196/0x410
[  420.578097][ T9130]        path_openat+0x1277/0x3190
[  420.583217][ T9130]        do_filp_open+0x1c5/0x3d0
[  420.588521][ T9130]        do_sys_openat2+0x12c/0x1c0
[  420.593733][ T9130]        __x64_sys_openat+0x139/0x160
[  420.599125][ T9130]        do_syscall_64+0x55/0xb0
[  420.604070][ T9130]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.610612][ T9130] 
[  420.610612][ T9130] -> #4 (jbd2_handle){++++}-{0:0}:
[  420.618019][ T9130]        start_this_handle+0x1e9d/0x20c0
[  420.623670][ T9130]        jbd2__journal_start+0x2bb/0x5b0
[  420.629409][ T9130]        jbd2_journal_start+0x2a/0x40
[  420.634817][ T9130]        ocfs2_start_trans+0x376/0x6c0
[  420.640293][ T9130]        ocfs2_mknod+0xe47/0x20f0
[  420.645345][ T9130]        ocfs2_create+0x196/0x410
[  420.650632][ T9130]        path_openat+0x1277/0x3190
[  420.655845][ T9130]        do_filp_open+0x1c5/0x3d0
[  420.660876][ T9130]        do_sys_openat2+0x12c/0x1c0
[  420.666864][ T9130]        __x64_sys_openat+0x139/0x160
[  420.672279][ T9130]        do_syscall_64+0x55/0xb0
[  420.677220][ T9130]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.683644][ T9130] 
[  420.683644][ T9130] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  420.692252][ T9130]        down_read+0x46/0x2e0
[  420.696957][ T9130]        ocfs2_start_trans+0x36a/0x6c0
[  420.702427][ T9130]        ocfs2_mknod+0xe47/0x20f0
[  420.707456][ T9130]        ocfs2_create+0x196/0x410
[  420.712483][ T9130]        path_openat+0x1277/0x3190
[  420.717778][ T9130]        do_filp_open+0x1c5/0x3d0
[  420.722901][ T9130]        do_sys_openat2+0x12c/0x1c0
[  420.728276][ T9130]        __x64_sys_openat+0x139/0x160
[  420.733650][ T9130]        do_syscall_64+0x55/0xb0
[  420.738596][ T9130]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.745107][ T9130] 
[  420.745107][ T9130] -> #2 (sb_internal#2){.+.+}-{0:0}:
[  420.752592][ T9130]        ocfs2_start_trans+0x26b/0x6c0
[  420.758146][ T9130]        ocfs2_mknod+0xe47/0x20f0
[  420.763170][ T9130]        ocfs2_create+0x196/0x410
[  420.768195][ T9130]        path_openat+0x1277/0x3190
[  420.773310][ T9130]        do_filp_open+0x1c5/0x3d0
[  420.778434][ T9130]        do_sys_openat2+0x12c/0x1c0
[  420.783719][ T9130]        __x64_sys_openat+0x139/0x160
[  420.789265][ T9130]        do_syscall_64+0x55/0xb0
[  420.794288][ T9130]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.800707][ T9130] 
[  420.800707][ T9130] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}:
[  420.811243][ T9130]        down_write+0x97/0x1f0
[  420.816016][ T9130]        ocfs2_reserve_local_alloc_bits+0x126/0x24b0
[  420.822780][ T9130]        ocfs2_reserve_clusters_with_limit+0x1bf/0xba0
[  420.829632][ T9130]        ocfs2_mknod+0xdee/0x20f0
[  420.834654][ T9130]        ocfs2_create+0x196/0x410
[  420.839683][ T9130]        path_openat+0x1277/0x3190
[  420.844974][ T9130]        do_filp_open+0x1c5/0x3d0
[  420.850002][ T9130]        do_sys_openat2+0x12c/0x1c0
[  420.855202][ T9130]        __x64_sys_openat+0x139/0x160
[  420.860814][ T9130]        do_syscall_64+0x55/0xb0
[  420.865852][ T9130]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.872287][ T9130] 
[  420.872287][ T9130] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{3:3}:
[  420.882895][ T9130]        __lock_acquire+0x2ddb/0x7c80
[  420.888441][ T9130]        lock_acquire+0x197/0x410
[  420.893556][ T9130]        down_write+0x97/0x1f0
[  420.898328][ T9130]        ocfs2_reserve_suballoc_bits+0x165/0x4360
[  420.904747][ T9130]        ocfs2_reserve_new_metadata_blocks+0x404/0x940
[  420.911606][ T9130]        ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0
[  420.917884][ T9130]        ocfs2_xattr_set+0xb6d/0x11f0
[  420.923269][ T9130]        __vfs_setxattr+0x431/0x470
[  420.928474][ T9130]        __vfs_setxattr_noperm+0x12d/0x5e0
[  420.934369][ T9130]        vfs_setxattr+0x16c/0x2f0
[  420.939409][ T9130]        ovl_get_workdir+0xba1/0x1740
[  420.944791][ T9130]        ovl_fill_super+0x1345/0x3560
[  420.950345][ T9130]        get_tree_nodev+0xb5/0x140
[  420.955456][ T9130]        vfs_get_tree+0x8c/0x280
[  420.960566][ T9130]        do_new_mount+0x24b/0xa40
[  420.965596][ T9130]        __se_sys_mount+0x2da/0x3c0
[  420.970795][ T9130]        do_syscall_64+0x55/0xb0
[  420.975797][ T9130]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.982232][ T9130] 
[  420.982232][ T9130] other info that might help us debug this:
[  420.982232][ T9130] 
[  420.992544][ T9130] Chain exists of:
[  420.992544][ T9130]   &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3 --> jbd2_handle --> &oi->ip_xattr_sem
[  420.992544][ T9130] 
[  421.008469][ T9130]  Possible unsafe locking scenario:
[  421.008469][ T9130] 
[  421.015937][ T9130]        CPU0                    CPU1
[  421.021474][ T9130]        ----                    ----
[  421.026924][ T9130]   lock(&oi->ip_xattr_sem);
[  421.031519][ T9130]                                lock(jbd2_handle);
[  421.038116][ T9130]                                lock(&oi->ip_xattr_sem);
[  421.045231][ T9130]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3);
[  421.052658][ T9130] 
[  421.052658][ T9130]  *** DEADLOCK ***
[  421.052658][ T9130] 
[  421.060835][ T9130] 4 locks held by syz.2.879/9130:
[  421.065872][ T9130]  #0: ffff88807dff40e0 (&type->s_umount_key#85/1){+.+.}-{3:3}, at: alloc_super+0x1fa/0x920
[  421.076170][ T9130]  #1: ffff888031290418 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  421.086023][ T9130]  #2: ffff888058da6d98 (&sb->s_type->i_mutex_key#20){++++}-{3:3}, at: vfs_setxattr+0x145/0x2f0
[  421.096486][ T9130]  #3: ffff888058da6ab8 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x410/0x11f0
[  421.106414][ T9130] 
[  421.106414][ T9130] stack backtrace:
[  421.112387][ T9130] CPU: 1 PID: 9130 Comm: syz.2.879 Not tainted 6.6.102-syzkaller #0
[  421.120365][ T9130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  421.130856][ T9130] Call Trace:
[  421.134139][ T9130]  <TASK>
[  421.137069][ T9130]  dump_stack_lvl+0x16c/0x230
[  421.142366][ T9130]  ? load_image+0x3b0/0x3b0
[  421.146878][ T9130]  ? show_regs_print_info+0x20/0x20
[  421.152103][ T9130]  ? print_circular_bug+0x12b/0x1a0
[  421.157331][ T9130]  check_noncircular+0x2bd/0x3c0
[  421.162276][ T9130]  ? print_deadlock_bug+0x5d0/0x5d0
[  421.167477][ T9130]  ? lockdep_lock+0xe0/0x220
[  421.172162][ T9130]  ? _find_first_zero_bit+0xd3/0x100
[  421.177460][ T9130]  __lock_acquire+0x2ddb/0x7c80
[  421.182325][ T9130]  ? ocfs2_get_system_file_inode+0x1e3/0x7b0
[  421.188314][ T9130]  ? __lock_acquire+0x7c80/0x7c80
[  421.193339][ T9130]  ? verify_lock_unused+0x140/0x140
[  421.198543][ T9130]  ? __mutex_unlock_slowpath+0x1a2/0x6a0
[  421.204182][ T9130]  ? do_raw_spin_lock+0x121/0x2c0
[  421.209244][ T9130]  ? mutex_unlock+0x10/0x10
[  421.213755][ T9130]  lock_acquire+0x197/0x410
[  421.218263][ T9130]  ? ocfs2_reserve_suballoc_bits+0x165/0x4360
[  421.224351][ T9130]  ? ocfs2_get_system_file_inode+0x1f1/0x7b0
[  421.230365][ T9130]  ? __might_sleep+0xe0/0xe0
[  421.235149][ T9130]  ? read_lock_is_recursive+0x20/0x20
[  421.240537][ T9130]  ? ocfs2_fast_symlink_read_folio+0x530/0x530
[  421.246817][ T9130]  ? mark_lock+0x94/0x320
[  421.251181][ T9130]  ? verify_lock_unused+0x140/0x140
[  421.256413][ T9130]  ? __lock_acquire+0x1334/0x7c80
[  421.261587][ T9130]  down_write+0x97/0x1f0
[  421.265880][ T9130]  ? ocfs2_reserve_suballoc_bits+0x165/0x4360
[  421.272005][ T9130]  ? down_read_killable+0x340/0x340
[  421.277238][ T9130]  ocfs2_reserve_suballoc_bits+0x165/0x4360
[  421.283412][ T9130]  ? mark_lock+0x94/0x320
[  421.287753][ T9130]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  421.293830][ T9130]  ? lock_chain_count+0x20/0x20
[  421.298686][ T9130]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[  421.304674][ T9130]  ? ocfs2_block_group_search+0x470/0x470
[  421.310405][ T9130]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  421.316305][ T9130]  ? _raw_spin_unlock+0x40/0x40
[  421.321163][ T9130]  ? stack_trace_save+0x9c/0xe0
[  421.326017][ T9130]  ? stack_trace_snprint+0xf0/0xf0
[  421.331157][ T9130]  ? __stack_depot_save+0x560/0x630
[  421.336359][ T9130]  ? kasan_set_track+0x5f/0x70
[  421.341135][ T9130]  ? kasan_set_track+0x4e/0x70
[  421.345900][ T9130]  ? __kasan_kmalloc+0x8f/0xa0
[  421.350667][ T9130]  ? ocfs2_reserve_new_metadata_blocks+0x114/0x940
[  421.357176][ T9130]  ? ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0
[  421.363159][ T9130]  ? ocfs2_xattr_set+0xb6d/0x11f0
[  421.368190][ T9130]  ? __vfs_setxattr+0x431/0x470
[  421.373048][ T9130]  ? __vfs_setxattr_noperm+0x12d/0x5e0
[  421.378561][ T9130]  ? vfs_setxattr+0x16c/0x2f0
[  421.383675][ T9130]  ? ovl_get_workdir+0xba1/0x1740
[  421.388699][ T9130]  ? ovl_fill_super+0x1345/0x3560
[  421.393738][ T9130]  ? get_tree_nodev+0xb5/0x140
[  421.398500][ T9130]  ? vfs_get_tree+0x8c/0x280
[  421.403092][ T9130]  ? do_new_mount+0x24b/0xa40
[  421.407859][ T9130]  ? __se_sys_mount+0x2da/0x3c0
[  421.412714][ T9130]  ? do_syscall_64+0x55/0xb0
[  421.417331][ T9130]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  421.423454][ T9130]  ocfs2_reserve_new_metadata_blocks+0x404/0x940
[  421.429812][ T9130]  ? ocfs2_init_steal_slots+0x160/0x160
[  421.435370][ T9130]  ? ocfs2_xattr_block_set+0x2b40/0x2b40
[  421.441018][ T9130]  ocfs2_init_xattr_set_ctxt+0x2f8/0x6e0
[  421.446743][ T9130]  ? ocfs2_xattr_set+0xb33/0x11f0
[  421.451978][ T9130]  ? ocfs2_prepare_refcount_xattr+0xf20/0xf20
[  421.458146][ T9130]  ? ocfs2_truncate_log_needs_flush+0x135/0x2e0
[  421.464394][ T9130]  ? ocfs2_remove_btree_range+0x1480/0x1480
[  421.470291][ T9130]  ? down_write+0x162/0x1f0
[  421.474870][ T9130]  ? down_read_killable+0x340/0x340
[  421.480171][ T9130]  ? up_write+0x1c3/0x410
[  421.484536][ T9130]  ocfs2_xattr_set+0xb6d/0x11f0
[  421.489424][ T9130]  ? __ocfs2_xattr_set_handle+0xf10/0xf10
[  421.495246][ T9130]  ? verify_lock_unused+0x140/0x140
[  421.500449][ T9130]  ? mark_lock+0x94/0x320
[  421.504797][ T9130]  ? aa_get_newest_label+0xf8/0x5c0
[  421.510005][ T9130]  ? end_current_label_crit_section+0x170/0x170
[  421.516264][ T9130]  ? posix_xattr_acl+0x93/0xb0
[  421.521040][ T9130]  ? evm_protect_xattr+0x36d/0x7a0
[  421.526157][ T9130]  ? ocfs2_xattr_trusted_get+0x40/0x40
[  421.531640][ T9130]  __vfs_setxattr+0x431/0x470
[  421.536333][ T9130]  __vfs_setxattr_noperm+0x12d/0x5e0
[  421.541721][ T9130]  vfs_setxattr+0x16c/0x2f0
[  421.546235][ T9130]  ? xattr_permission+0x470/0x470
[  421.551271][ T9130]  ? up_write+0x1c3/0x410
[  421.555603][ T9130]  ? do_raw_spin_unlock+0x121/0x230
[  421.560814][ T9130]  ovl_get_workdir+0xba1/0x1740
[  421.565670][ T9130]  ? ovl_fill_super+0x3560/0x3560
[  421.570708][ T9130]  ? __lock_acquire+0x7c80/0x7c80
[  421.575826][ T9130]  ? _raw_spin_unlock+0x28/0x40
[  421.580686][ T9130]  ? ovl_inuse_trylock+0xbd/0xd0
[  421.585649][ T9130]  ovl_fill_super+0x1345/0x3560
[  421.590599][ T9130]  ? ida_alloc_range+0x79e/0x830
[  421.595549][ T9130]  ? virtio_fs_zero_page_range+0x140/0x140
[  421.601362][ T9130]  ? sget_fc+0x7f0/0x8d0
[  421.605718][ T9130]  ? __lock_acquire+0x7c80/0x7c80
[  421.610746][ T9130]  ? down_write+0x162/0x1f0
[  421.615339][ T9130]  ? down_read_killable+0x340/0x340
[  421.620548][ T9130]  ? sget_fc+0x7f0/0x8d0
[  421.624833][ T9130]  ? kill_litter_super+0xb0/0xb0
[  421.629830][ T9130]  ? virtio_fs_zero_page_range+0x140/0x140
[  421.635645][ T9130]  get_tree_nodev+0xb5/0x140
[  421.640328][ T9130]  vfs_get_tree+0x8c/0x280
[  421.644755][ T9130]  do_new_mount+0x24b/0xa40
[  421.649439][ T9130]  __se_sys_mount+0x2da/0x3c0
[  421.654156][ T9130]  ? __x64_sys_mount+0xc0/0xc0
[  421.658935][ T9130]  ? lockdep_hardirqs_on+0x98/0x150
[  421.664139][ T9130]  ? __x64_sys_mount+0x20/0xc0
[  421.668949][ T9130]  do_syscall_64+0x55/0xb0
[  421.673368][ T9130]  ? clear_bhb_loop+0x40/0x90
[  421.678066][ T9130]  ? clear_bhb_loop+0x40/0x90
[  421.682761][ T9130]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  421.688668][ T9130] RIP: 0033:0x7fef2b58ebe9
[  421.693088][ T9130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.712791][ T9130] RSP: 002b:00007fef2c3e0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  421.721213][ T9130] RAX: ffffffffffffffda RBX: 00007fef2b7b5fa0 RCX: 00007fef2b58ebe9
[  421.729193][ T9130] RDX: 0000200000000080 RSI: 00002000000000c0 RDI: 0000000000000000
[  421.737604][ T9130] RBP: 00007fef2b611e19 R08: 0000200000000500 R09: 0000000000000000
[  421.745675][ T9130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  421.753660][ T9130] R13: 00007fef2b7b6038 R14: 00007fef2b7b5fa0 R15: 00007ffc00ac7778
[  421.761671][ T9130]  </TASK>
[  421.775052][ T9130] overlayfs: upper fs missing required features.
[  421.903120][ T5787] ocfs2: Unmounting device (7,2) on (node local)