last executing test programs:

1m21.307871082s ago: executing program 0 (id=686):
ioperm(0x0, 0x2, 0x7e)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
migrate_pages(0x0, 0x3, 0x0, 0x0)

1m21.182040774s ago: executing program 0 (id=687):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x3, 0x6576, 0xd, 0x0, <r1=>0x0})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000000)
ioctl$DRM_IOCTL_MODE_DESTROY_DUMB(r0, 0xc00464b4, &(0x7f0000000080)={r1})

1m20.834233529s ago: executing program 0 (id=690):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f00000024c0)=[{{&(0x7f0000000240)={0xa, 0x4e21, 0x2, @private0}, 0x1c, &(0x7f0000000d00)=[{&(0x7f00000002c0)='\n', 0x1}], 0x1}}, {{&(0x7f0000000740)={0xa, 0x4e21, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f0000002340)=[{&(0x7f0000000dc0)="03", 0x1}], 0x1}}], 0x2, 0x40088d4)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f00000000c0)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

1m20.692497502s ago: executing program 0 (id=693):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})
syz_mount_image$msdos(&(0x7f0000000940), &(0x7f0000001cc0)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='system.posix_acl_access\x00', 0x0, 0x0, 0x1)

1m20.070112391s ago: executing program 0 (id=698):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
getgroups(0x0, 0x0)

1m19.502244819s ago: executing program 0 (id=699):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m19.014407376s ago: executing program 32 (id=699):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.065906614s ago: executing program 1 (id=1382):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0xffff0000, 0xf0, 0x0, &(0x7f0000001a40)="2b206d074843b397737ea49da2aa", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x48)

4.70773147s ago: executing program 1 (id=1385):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0xffffffff, 0xfffffffd})
r0 = syz_io_uring_setup(0x63ab, &(0x7f00000006c0)={0x0, 0x1d11, 0x10000}, &(0x7f0000010080), &(0x7f0000000400))
setrlimit(0x40000000000008, &(0x7f0000000000)={0x0, 0x5})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000300)=""/43, 0x2b}], 0x1)

4.483371983s ago: executing program 1 (id=1387):
r0 = syz_usb_connect$cdc_ecm(0x0, 0x5a, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000402505a1a4400001020301090248000101570040090400000002060000052406000005240000000d240f010008000000000000000424020009058103"], 0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e"], 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000080)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x9, 0x10, 0xd9, [{{0x9, 0x4, 0x0, 0xf6, 0x2, 0x7, 0x1, 0x2, 0x9, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x4, 0x4, 0x1}}}}}]}}]}}, 0x0)

4.182698048s ago: executing program 2 (id=1390):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x5, 0x5512, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x1a37c1, 0xf4)
write$tun(r0, &(0x7f00000001c0)=ANY=[], 0xa4)
truncate(&(0x7f0000000080)='./file1\x00', 0x10)

2.767316049s ago: executing program 2 (id=1400):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
tkill(r0, 0x33)
ptrace$peeksig(0x4209, r0, &(0x7f0000000580)={0x1, 0x0, 0x1}, &(0x7f00000016c0)=[{}])

2.466349473s ago: executing program 4 (id=1401):
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
getsockopt$ax25_int(r0, 0x101, 0x8, 0x0, &(0x7f0000000000))

2.304317366s ago: executing program 4 (id=1402):
r0 = timerfd_create(0x8, 0x0)
timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_gettime(r0, 0x0)

2.166195608s ago: executing program 4 (id=1404):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b07080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf5af51d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa16509945ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a0000000000000000000000000000cf7b6c4ba9bec153d6834bfef080df374703a8ff56a63ec1fe5f2e05a79e3cace7283dd68d41e94420c325fe4dae144fde5ec25a87d625cab20753a77b323fa3783c8b675859b9012647885a242adfee2fe812ecbe5191e0a15142f7349e7627cc39d724e2e34e7a24154f26ae3125b36d0504965295d0453902ac7079b11a3a1e655e482331e3dc35b2e7e4e3ea99064fe5b9c8ae0ca3e5fd653f3286a99d81ce4eba765c38d097391ad4babac38ce5b4344e24a361cd54e5"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffffef}, 0x27)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="800000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740000000011c001080"], 0x80}}, 0x0)

1.941294681s ago: executing program 4 (id=1405):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="020a000002000000"], 0x10}, 0x1, 0x0, 0x0, 0x300}, 0x0)

1.910204871s ago: executing program 2 (id=1406):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x442d, &(0x7f0000004480)="$eJzs3c9PHGUfAPBnBvoW+rZ9oW8PfZM3cRObaNQQ6EmliZTSUmixptrGeNkusG3RhW1gMR56wFsTTyYejIdGE2+cGg5e65/gxWM9N9GDFxOTRszuzgIz7IaVsGDr53NgmOc3fGeefeYw+8SJyp25pdzcUq6wkCvP3Fo6k/u4XFqeL4Z4nzTt/9D+9U97OnGdHPS190929fzFd2+cCeH72R+frK+vr4eq7tDU0Jbff/v13szWY0OcqVNtt3lre+WDEMLJbeOq6gohvP9dCFEI4VySNpoce0MIx0I978a9z27m9mg0Dx8Xz+afTt1fGz49ufpgrfXfHoXwVel/r92e//nFruGfXtmj7gEAAAAAAAAAAAAAAAAAeMaNX7t6/Z3BofAoCt2r0fb3dceTY6v3Y9f3zAsh9HX+7wUAAAAAAAAAAAAAAAAAAIC/o833/3PRiSbv/48lx5EW9dff6vwY6ZyJt6+OXRgcSvZ/j7blv54k/XKuK/Q32fc9u//7uUz95vu/b+9ntxrja/TbF6J4IHUexwMDIXyTbPx+KjoSl8pLlVdvlZcXZvdsGM+sdPzru/enopNs6N9u/Ecz7Xd+////bruaquc39+4Se66l49/Vsty3n0Ztxf98pt5+xJ/dS8e/u5bWu7XASH0CqMb/8+6d4z+Wab9T8T8eQshF1bHmUjNAdQ1TTW+1XiEtHf9DtbTU1Jn8I1vd/79n4n8h0/5Bzf8r2Q8imkrH/1+1tJ5Uic37vz/e+f6/mGn/IOJfHf+Kz/+2pON/uJ7YnSpS+0+2O/+PZ9rvVPyvx8k4j0epK2A1qqe3+r460tLx79mWv/n8F7e1/ruUqb9fz3+NfhvPf43p/+Wo/vxHc+n497Ys1+79P5Gp1+n5f6S2/mO30vE/UktLr53rX8rZbvwnM+13Kv61VUlPI/6b88kfh+vpX1v/tSUd/3/XE+OtJVZqP2vrv2jn9f/lTPsHsf6rjn8l7myvz4t0/I+2LFeN/w9tfP5fydTrfPxDGLTW37V0/I+1LFe7/3t2jv9Upl6n4/9SJxsHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeAaMJse+EMUDqfM4HhgI4XxyfiociaYLs/npUnnmo6UQxpL0XDgR3S6Vpwul/NxCebaYL5RK5ZkQLiT5J0NPtFQqV/LzhbsXN9rqje4UC4uV6WKhEkIYT9L/H4412pqeq8wX7oYQLm3k/ScuL969U1jIz84tvjk4ODgYJjbG0B8VP6kUFyr13uu5IUxu1O2Ltgyuln15YyxHow/Ly4sLhVIt/cqWOqXyTKG0pc5UkvdF6I8qi8sLM4VKMV8q3270d5BGkuPYxLX3rl0Z2pZ/M6ofR/d3WAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8RY+G3/gyhNBdP4tDCCONX6Jm5R8+Lp7NP526vzZ8enL1wdqTVuUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgT3bgQAAAAAAAyP+1EaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwS8coDQRRGIDfjIXaeQyrZbezXVFEC1cET6DH8DB6FC/hHVKkSJsiBJJZCJtd2Capvq95MD8z78E8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYJ6n9+7jrW4iUlxtLiP+vv4Xh/lLqT/34/cvzjAjp/P82j081k3593SU35WjZZt36Xr1/Rkjtfc72JPhPu31fa4n55rat6n5+r43kXIVEW3Jb1POVTXvLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAtO3AgAAAAAADk/9oIVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVdiBYwEAAAAAYf7WUfRtAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPwKAAD//+UFHyA=")
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x4000, 0x0)
preadv2(r0, &(0x7f0000000140)=[{&(0x7f0000002200)=""/4100, 0x1004}], 0x1, 0x0, 0x0, 0xd)

1.747276884s ago: executing program 4 (id=1407):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
writev(r0, &(0x7f0000019880)=[{&(0x7f0000000400)="fb", 0xffffff5c}, {&(0x7f00000197c0)="1902eb02d5e5f29e59e1a7caec33eb76d2430da474d87e367f6598d026438b65eda8341073b6752abdcee080c8e1e876b25227c37d7dd79886ce33f13e857c8eda1cecf6ac36c03dbf54e3cb5136da5a33fee76fb3113f8b6700e9e5fc006b8eed665fed48738d59395ad07438c3610ae3976aac75caf2facafa21c25be3c2", 0x7f}], 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

1.540048467s ago: executing program 1 (id=1408):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=@migrate={0xa0, 0x21, 0x1, 0x0, 0x0, {{@in6=@private2, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x0, 0xa, 0xe0}, 0x2}, [@migrate={0x50, 0x11, [{@in6=@ipv4={'\x00', '\xff\xff', @loopback}, @in6=@private2, @in=@rand_addr=0x64010102, @in6=@private2, 0x3c, 0x0, 0x0, 0x0, 0x8, 0x2}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x800}, 0x0)

1.430072999s ago: executing program 3 (id=1409):
socket$unix(0x1, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
unshare(0x20040600)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x800000}, &(0x7f0000000200)={0x18, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x8000000000000}, 0x0, 0x0, 0x0)

1.400560219s ago: executing program 1 (id=1410):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1808014, &(0x7f0000000900)=ANY=[@ANYBLOB="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"/716, @ANYRESHEX, @ANYRES64, @ANYRES16], 0x5, 0x5593, &(0x7f00000061c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000a00)='./file2\x00', 0x8442, 0x5c)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x22)

1.201817652s ago: executing program 3 (id=1411):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)={0x58, r1, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_KEYS={0x24, 0x51, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "b168fa3167"}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac09}]}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

939.118926ms ago: executing program 3 (id=1412):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x4, 0xffff, 0x0, 0x1}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280)=[r0]}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x7, 0x0, r0}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000024c0), &(0x7f0000001280), 0x2, r1}, 0x38)

870.278157ms ago: executing program 2 (id=1413):
r0 = socket$packet(0x11, 0x2, 0x300)
mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r0, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r1, 0x106, 0x1, &(0x7f0000000000), 0x4)

798.941288ms ago: executing program 4 (id=1414):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000240)='./bus\x00', 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x1, 0x54f4, &(0x7f0000005600)="$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")
r0 = open(&(0x7f0000000140)='./file1\x00', 0x141242, 0x40)
pwrite64(r0, &(0x7f0000000940)='2', 0x1, 0x8000c5d)
fallocate(r0, 0x8, 0x1200, 0x10000)

645.12153ms ago: executing program 3 (id=1415):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000180)={0x80, 0x2a, 0x3})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]})
close_range(r1, 0xffffffffffffffff, 0x0)

644.16345ms ago: executing program 2 (id=1416):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000008c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x4, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x7fffffff, 0x14, 0xfcc, 0x400, 0x9}, 0x81, 0x0, 0xc8c3, 0x40, 0x4, 0x1c, 0x11, 0x9, 0x8, 0xffffffff, {0xfffffff5, 0x4, 0xad8, 0x7, 0x4, 0x4}}}}]}, 0x78}}, 0x0)

387.301884ms ago: executing program 3 (id=1417):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="580000001000030528bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800c0001006d6163766c616e002000028008000100100000000a0004000000150000000000080003000000000008000500", @ANYRES32=r2], 0x58}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

365.080615ms ago: executing program 2 (id=1418):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x1000803, &(0x7f0000002ac0)=ANY=[], 0x2, 0x1fb, &(0x7f0000000b00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r0, 0xaa1f, 0x7, 0x3)

122.626268ms ago: executing program 3 (id=1419):
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x2000)
ppoll(&(0x7f00000000c0)=[{r0, 0x9620}], 0x1, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x4000)

0s ago: executing program 1 (id=1420):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000001c0)=0x7fb, 0x4)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)

kernel console output (not intermixed with test programs):

 to 40427
[   98.665943][ T6602] F2FS-fs (loop3): heap/no_heap options were deprecated
[   98.686742][ T6602] F2FS-fs (loop3): invalid crc value
[   98.700300][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.720970][ T6602] F2FS-fs (loop3): Found nat_bits in checkpoint
[   98.852423][ T6602] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   98.976765][ T6615] Zero length message leads to an empty skb
[   99.013397][ T5770] syz-executor: attempt to access beyond end of device
[   99.013397][ T5770] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   99.040543][ T5770] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   99.052512][   T27] audit: type=1326 audit(1751434995.602:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6616 comm="syz.0.324" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd714b8e929 code=0x0
[   99.199937][ T6622] loop2: detected capacity change from 0 to 2048
[   99.228279][ T6622] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   99.684064][ T6633] loop2: detected capacity change from 0 to 512
[   99.734308][ T6634] netlink: 44 bytes leftover after parsing attributes in process `syz.3.331'.
[   99.766683][ T6633] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   99.791771][ T6633] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.112413][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  100.230880][ T6651] bridge_slave_0: left allmulticast mode
[  100.268568][ T6651] bridge_slave_0: left promiscuous mode
[  100.275554][ T6651] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.292819][ T6651] bridge_slave_1: left allmulticast mode
[  100.299757][ T6651] bridge_slave_1: left promiscuous mode
[  100.310043][ T6651] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.332147][ T6651] bond0: (slave bond_slave_0): Releasing backup interface
[  100.360675][ T6651] bond0: (slave bond_slave_1): Releasing backup interface
[  100.444978][ T6651] team0: Port device team_slave_0 removed
[  100.457799][ T6651] team0: Port device team_slave_1 removed
[  100.474442][ T6651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.487412][ T6651] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.499390][ T6651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  100.520474][ T6651] batman_adv: batadv0: Removing interface: batadv_slave_1
[  100.540236][ T6654] netlink: 12 bytes leftover after parsing attributes in process `syz.2.337'.
[  100.555510][ T6654] netlink: 24 bytes leftover after parsing attributes in process `syz.2.337'.
[  100.881629][ T6670] netlink: 16 bytes leftover after parsing attributes in process `syz.2.344'.
[  101.445020][  T965] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  101.544792][ T5777] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  101.634773][  T965] usb 3-1: Using ep0 maxpacket: 16
[  101.658012][  T965] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  101.705142][  T965] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  101.745022][  T965] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  101.758487][  T965] usb 3-1: config 0 interface 0 has no altsetting 0
[  101.767056][ T5777] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  101.778462][  T965] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  101.787913][ T5777] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  101.798115][  T965] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.806472][ T5777] usb 1-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice= 0.00
[  101.819225][  T965] usb 3-1: config 0 descriptor??
[  101.833551][ T5777] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.867090][ T5777] usb 1-1: config 0 descriptor??
[  102.121090][ T6702] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.357'.
[  102.312840][ T5777] apple 0003:05AC:0262.0001: unbalanced delimiter at end of report description
[  102.335451][  T965] hid (null): global environment stack underflow
[  102.341849][  T965] hid (null): invalid report_count 107748025
[  102.381330][ T5777] apple 0003:05AC:0262.0001: parse failed
[  102.395434][ T5777] apple: probe of 0003:05AC:0262.0001 failed with error -22
[  102.568838][ T5103] usb 3-1: USB disconnect, device number 7
[  102.583913][ T5777] usb 1-1: USB disconnect, device number 4
[  102.729879][ T6723] capability: warning: `syz.3.364' uses 32-bit capabilities (legacy support in use)
[  103.244798][ T6736] loop2: detected capacity change from 0 to 1024
[  103.282897][ T6739] loop0: detected capacity change from 0 to 164
[  103.459229][ T2910] hfsplus: b-tree write err: -5, ino 4
[  103.718039][ T6731] loop3: detected capacity change from 0 to 32768
[  103.723396][ T6728] loop1: detected capacity change from 0 to 40427
[  103.764176][ T6728] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff
[  103.785884][ T6728] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x2
[  103.788452][ T6731] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  103.840539][ T6728] F2FS-fs (loop1): Image doesn't support compression
[  103.864598][ T6728] F2FS-fs (loop1): Image doesn't support compression
[  103.885332][ T5777] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  103.951444][ T6728] F2FS-fs (loop1): invalid crc value
[  104.001903][ T6728] F2FS-fs (loop1): Found nat_bits in checkpoint
[  104.036492][ T6731] XFS (loop3): Ending clean mount
[  104.065582][ T6731] XFS (loop3): Quotacheck needed: Please wait.
[  104.114826][ T5777] usb 3-1: Using ep0 maxpacket: 16
[  104.123958][ T5777] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.142041][ T6731] XFS (loop3): Quotacheck: Done.
[  104.185842][ T5777] usb 3-1: New USB device found, idVendor=0e8f, idProduct=0003, bcdDevice= 0.00
[  104.203961][ T6728] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  104.214793][ T5777] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.247327][ T6767] netlink: 201392 bytes leftover after parsing attributes in process `syz.0.372'.
[  104.249677][ T5777] usb 3-1: config 0 descriptor??
[  104.290342][ T6767] netlink: zone id is out of range
[  104.323125][ T6767] netlink: zone id is out of range
[  104.349477][ T6767] netlink: del zone limit has 8 unknown bytes
[  104.395569][   T27] kauditd_printk_skb: 4 callbacks suppressed
[  104.395583][   T27] audit: type=1800 audit(1751435000.942:3268): pid=6728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.365" name="bus" dev="loop1" ino=10 res=0 errno=0
[  104.502352][ T5767] syz-executor: attempt to access beyond end of device
[  104.502352][ T5767] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  104.523553][ T5770] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  104.529811][ T5767] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  104.734456][ T5777] pantherlord 0003:0E8F:0003.0003: item fetching failed at offset 3/5
[  104.775472][ T5777] pantherlord 0003:0E8F:0003.0003: parse failed
[  104.790002][ T5777] pantherlord: probe of 0003:0E8F:0003.0003 failed with error -22
[  104.812260][ T6774] loop0: detected capacity change from 0 to 64
[  104.892105][ T6774] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  104.994125][ T5103] usb 3-1: USB disconnect, device number 8
[  105.196491][ T6778] process 'syz.0.377' launched './file2' with NULL argv: empty string added
[  105.691968][ T6776] loop3: detected capacity change from 0 to 32768
[  105.783325][ T6776] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  106.022666][ T6776] syz.3.375 (6776) used greatest stack depth: 17712 bytes left
[  106.166471][ T5770] ocfs2: Unmounting device (7,3) on (node local)
[  106.406391][ T6788] loop0: detected capacity change from 0 to 32768
[  106.459098][ T6788] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.380 (6788)
[  106.481977][ T6786] loop1: detected capacity change from 0 to 40427
[  106.564374][ T6786] F2FS-fs (loop1): invalid crc value
[  106.589096][ T6786] F2FS-fs (loop1): Found nat_bits in checkpoint
[  106.607097][ T6788] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  106.642839][ T6788] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  106.674955][ T6788] BTRFS info (device loop0): use zlib compression, level 3
[  106.682237][ T6788] BTRFS info (device loop0): turning on sync discard
[  106.734397][ T6786] F2FS-fs (loop1): Start checkpoint disabled!
[  106.735600][ T6788] BTRFS info (device loop0): doing ref verification
[  106.778413][ T6786] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  106.784000][ T6788] BTRFS info (device loop0): disabling tree log
[  106.807077][ T6788] BTRFS info (device loop0): enabling tree log
[  106.824982][  T965] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  106.834369][ T6788] BTRFS info (device loop0): enabling ssd optimizations
[  106.854182][ T6788] BTRFS info (device loop0): using spread ssd allocation scheme
[  106.880268][ T6788] BTRFS info (device loop0): not using ssd optimizations
[  106.900101][ T6788] BTRFS info (device loop0): not using spread ssd allocation scheme
[  106.914118][ T6788] BTRFS info (device loop0): using free space tree
[  107.029680][  T965] usb 4-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  107.050474][  T965] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.059210][  T965] usb 4-1: Product: syz
[  107.065560][  T965] usb 4-1: Manufacturer: syz
[  107.070183][  T965] usb 4-1: SerialNumber: syz
[  107.085749][  T965] usb 4-1: config 0 descriptor??
[  107.115090][ T3479] kworker/u4:10: attempt to access beyond end of device
[  107.115090][ T3479] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  107.132264][ T3479] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  107.139842][ T3479] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  107.147812][ T3479] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  107.249153][ T6821] loop2: detected capacity change from 0 to 64
[  107.289075][   T27] audit: type=1800 audit(1751435003.822:3269): pid=6788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.380" name="bus" dev="loop0" ino=263 res=0 errno=0
[  107.365151][  T965] usb 4-1: ignoring: probably an ADSL modem
[  107.620081][ T5771] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  107.761077][  T965] cxacru 4-1:0.0: usbatm_usb_probe: bind failed: -19!
[  108.009769][  T965] usb 4-1: USB disconnect, device number 4
[  108.240841][ T6838] Bluetooth: MGMT ver 1.22
[  108.258047][ T6838] Bluetooth: hci0: load_link_keys: expected 6403 bytes, got 7 bytes
[  108.718134][ T6833] loop1: detected capacity change from 0 to 40427
[  108.744798][ T6833] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  108.779873][ T6833] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  108.843414][ T6833] F2FS-fs (loop1): invalid crc value
[  108.888214][ T6855] capability: warning: `syz.3.399' uses deprecated v2 capabilities in a way that may be insecure
[  108.907683][ T6833] F2FS-fs (loop1): Found nat_bits in checkpoint
[  109.106568][ T6833] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  109.121292][ T6833] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  109.236912][   T27] audit: type=1800 audit(1751435005.830:3270): pid=6833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.391" name="file1" dev="loop1" ino=10 res=0 errno=0
[  109.253310][ T6833] syz.1.391: attempt to access beyond end of device
[  109.253310][ T6833] loop1: rw=34817, sector=77824, nr_sectors = 8 limit=40427
[  109.636207][ T6878] loop9: detected capacity change from 0 to 8
[  109.660195][ T6878] Dev loop9: unable to read RDB block 8
[  109.698998][ T6878]  loop9: unable to read partition table
[  109.732351][ T6878] loop9: partition table beyond EOD, truncated
[  109.755436][ T6878] loop_reread_partitions: partition scan of loop9 (þ被xüÿÿÿÿÿÿÿ ) failed (rc=-5)
[  110.512764][ T6899] netlink: 56 bytes leftover after parsing attributes in process `syz.2.420'.
[  110.646717][ T6877] loop3: detected capacity change from 0 to 40427
[  110.685848][ T6877] F2FS-fs (loop3): invalid crc value
[  110.757303][ T6877] F2FS-fs (loop3): Found nat_bits in checkpoint
[  110.996231][ T6877] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  111.135303][ T5770] syz-executor: attempt to access beyond end of device
[  111.135303][ T5770] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  111.176479][ T5770] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  111.228905][   T27] audit: type=1800 audit(1751435007.965:3271): pid=6927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.428" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  112.712655][ T6962] loop3: detected capacity change from 0 to 32768
[  112.728801][ T6962] (syz.3.435,6962,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  112.755061][ T6962] (syz.3.435,6962,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  112.850974][ T6962] JBD2: Ignoring recovery information on journal
[  112.979227][ T6962] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  113.004761][ T6986] relay: one or more items not logged [item size (56) > sub-buffer size (5)]
[  113.136845][ T6988] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.444'.
[  113.302422][ T5770] ocfs2: Unmounting device (7,3) on (node local)
[  113.457431][ T6998] program syz.0.450 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.605998][ T7004] netlink: 'syz.0.452': attribute type 21 has an invalid length.
[  113.613974][ T7004] netlink: 128 bytes leftover after parsing attributes in process `syz.0.452'.
[  113.641324][ T7004] netlink: 'syz.0.452': attribute type 4 has an invalid length.
[  113.655563][ T7004] netlink: 'syz.0.452': attribute type 5 has an invalid length.
[  113.683125][ T7004] netlink: 3 bytes leftover after parsing attributes in process `syz.0.452'.
[  114.074858][ T7010] loop0: detected capacity change from 0 to 8192
[  114.191521][ T7000] loop2: detected capacity change from 0 to 32768
[  114.255333][ T7000] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  114.672263][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  115.106272][ T7043] loop0: detected capacity change from 0 to 1024
[  115.156697][ T7043] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.245537][ T7033] loop3: detected capacity change from 0 to 32768
[  115.279543][ T7033] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  115.393554][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.513849][ T7033] XFS (loop3): Ending clean mount
[  115.549198][ T7033] XFS (loop3): Quotacheck needed: Please wait.
[  115.680792][ T7033] XFS (loop3): Quotacheck: Done.
[  115.909904][ T7071] pim6reg: entered allmulticast mode
[  115.946485][ T7070] pim6reg: left allmulticast mode
[  115.973700][ T5770] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  115.989756][ T5514] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  116.166357][ T5514] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.209906][ T5514] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.241409][ T5514] usb 1-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[  116.283975][ T5514] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.299635][ T5514] usb 1-1: config 0 descriptor??
[  116.471438][ T7082] loop1: detected capacity change from 0 to 1024
[  116.499279][ T7082] EXT4-fs: Ignoring removed orlov option
[  116.558367][ T7082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.726452][ T5514] steelseries 0003:1038:12B6.0004: unknown main item tag 0x3
[  116.730612][ T7082] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2797: inode #2: comm syz.1.483: corrupted in-inode xattr: bad e_name length
[  116.781041][ T7082] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2867: Unable to expand inode 2. Delete some EAs or run e2fsck.
[  116.786064][ T5514] steelseries 0003:1038:12B6.0004: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.0-1/input0
[  116.827890][ T7089] EXT4-fs error (device loop1): ext4_xattr_ibody_get:653: inode #2: comm syz.1.483: corrupted in-inode xattr: bad e_name length
[  116.926230][ T7084] loop2: detected capacity change from 0 to 32768
[  116.968200][ T7092] loop3: detected capacity change from 0 to 1764
[  116.975650][ T7084] XFS: attr2 mount option is deprecated.
[  117.010525][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.051858][ T7084] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  117.134621][ T7084] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  117.174019][   T23] usb 1-1: USB disconnect, device number 5
[  117.244306][ T7084] XFS (loop2): Ending clean mount
[  117.319279][ T7084] XFS (loop2): Quotacheck needed: Please wait.
[  117.370592][ T7105] netlink: 12 bytes leftover after parsing attributes in process `syz.3.488'.
[  117.401794][ T7084] XFS (loop2): Quotacheck: Done.
[  117.458872][ T7107] loop1: detected capacity change from 0 to 16
[  117.492659][ T7107] erofs: (device loop1): mounted with root inode @ nid 36.
[  117.855087][ T5772] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  117.876756][ T7120] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0
[  118.145765][ T7126] xt_CT: No such helper "snmp"
[  118.358082][ T7138] loop2: detected capacity change from 0 to 512
[  118.422714][ T7138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.468186][ T7138] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.559849][ T7147] vivid-000: disconnect
[  118.590045][ T7147] vivid-000: reconnect
[  118.610224][   T27] audit: type=1800 audit(1751435015.883:3272): pid=7138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.494" name="file1" dev="loop2" ino=15 res=0 errno=0
[  118.796876][ T7155] loop8: detected capacity change from 0 to 1
[  118.812606][ T7155] Dev loop8: unable to read RDB block 1
[  118.843628][ T7155]  loop8: unable to read partition table
[  118.865207][ T7155] loop8: partition table beyond EOD, truncated
[  118.871985][ T7155] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  119.214348][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.288134][ T7169] loop3: detected capacity change from 0 to 4096
[  119.341816][ T5514] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  119.546631][ T5514] usb 1-1: Using ep0 maxpacket: 32
[  119.571930][ T5514] usb 1-1: config 0 interface 0 has no altsetting 0
[  119.593378][ T5514] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  119.621228][ T5514] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.637724][ T5514] usb 1-1: Product: syz
[  119.651513][ T5514] usb 1-1: Manufacturer: syz
[  119.671113][ T5514] usb 1-1: SerialNumber: syz
[  119.684936][ T5514] usb 1-1: config 0 descriptor??
[  119.940382][ T5814] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  120.086317][ T5514] gs_usb 1-1:0.0: Configuring for 1 interfaces
[  120.142520][ T5814] usb 4-1: Using ep0 maxpacket: 8
[  120.161576][ T5814] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 13
[  120.179118][ T5814] usb 4-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  120.188629][ T5814] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.196756][ T5814] usb 4-1: Product: syz
[  120.201384][ T5814] usb 4-1: Manufacturer: syz
[  120.206052][ T5814] usb 4-1: SerialNumber: syz
[  120.214134][ T5814] usb 4-1: config 0 descriptor??
[  120.232870][ T5814] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  120.302382][ T7205] loop2: detected capacity change from 0 to 8
[  120.324336][ T7206] loop1: detected capacity change from 0 to 256
[  120.351974][ T7206] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  120.461516][ T5514] gs_usb 1-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  120.551382][ T5514] usb 1-1: USB disconnect, device number 6
[  120.815437][ T5814] gspca_zc3xx: reg_w_i err -71
[  121.014854][ T7223] loop2: detected capacity change from 0 to 512
[  121.031410][ T7223] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  121.071219][ T7223] EXT4-fs (loop2): 1 truncate cleaned up
[  121.096944][ T7223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.247090][ T7223] EXT4-fs error (device loop2): ext4_empty_dir:3177: inode #2: block 13: comm syz.2.541: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  121.282984][ T7223] EXT4-fs (loop2): Remounting filesystem read-only
[  121.358786][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.410954][ T5814] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  121.417326][ T5814] gspca_zc3xx: probe of 4-1:0.0 failed with error -71
[  121.470003][ T5814] usb 4-1: USB disconnect, device number 5
[  121.519948][ T7237] loop2: detected capacity change from 0 to 512
[  121.536106][ T7237] EXT4-fs: Ignoring removed mblk_io_submit option
[  121.558290][ T7237] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  121.655740][ T7237] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  121.671733][ T7237] System zones: 1-12
[  121.728254][ T7237] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.546: corrupted in-inode xattr: e_value size too large
[  121.815939][ T7237] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.546: couldn't read orphan inode 15 (err -117)
[  121.862715][ T7237] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  122.006978][ T5834] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  122.055996][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.193997][ T5834] usb 4-1: Using ep0 maxpacket: 32
[  122.209912][ T5834] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  122.221318][ T5834] usb 4-1: config 0 has no interface number 0
[  122.228139][ T5834] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.248171][ T5834] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.258403][ T5834] usb 4-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  122.269906][ T5834] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.290510][ T5834] usb 4-1: config 0 descriptor??
[  122.704807][ T5834] hid (null): unknown global tag 0xc
[  122.773466][  T965] kernel write not supported for file /uinput (pid: 965 comm: kworker/0:3)
[  122.898847][ T5834] uclogic 0003:28BD:0094.0005: pen parameters not found
[  122.912059][ T5834] uclogic 0003:28BD:0094.0005: interface is invalid, ignoring
[  122.930365][ T5834] usb 4-1: USB disconnect, device number 6
[  123.215615][ T7290] loop0: detected capacity change from 0 to 1024
[  123.697687][ T7287] loop2: detected capacity change from 0 to 32768
[  123.767553][ T7287] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  123.899160][ T5834] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  123.920102][ T7287] XFS (loop2): Ending clean mount
[  123.930899][ T7287] XFS (loop2): Quotacheck needed: Please wait.
[  123.991258][ T7287] XFS (loop2): Quotacheck: Done.
[  124.088333][ T5834] usb 4-1: Using ep0 maxpacket: 32
[  124.108826][ T5834] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.143808][ T5834] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.162019][ T5834] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  124.185182][ T5834] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.214824][ T5834] usb 4-1: config 0 descriptor??
[  124.224826][ T7312] kvm: apic: phys broadcast and lowest prio
[  124.242812][ T5834] hub 4-1:0.0: USB hub found
[  124.295979][ T7315] loop0: detected capacity change from 0 to 64
[  124.317854][ T5772] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  124.449174][ T5834] hub 4-1:0.0: config failed, can't read hub descriptor (err -90)
[  124.664594][ T5834] usbhid 4-1:0.0: can't add hid device: -71
[  124.689106][ T5834] usbhid: probe of 4-1:0.0 failed with error -71
[  124.761543][ T5834] usb 4-1: USB disconnect, device number 7
[  125.022427][ T7335] netlink: 12 bytes leftover after parsing attributes in process `syz.1.587'.
[  125.253954][ T7345] netlink: 'syz.0.592': attribute type 1 has an invalid length.
[  125.438342][ T7351] loop2: detected capacity change from 0 to 256
[  125.470159][ T7351] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18e2c, utbl_chksum : 0xe619d30d)
[  125.848545][ T7367] ALSA: mixer_oss: invalid OSS volume ''
[  125.947321][ T7371] loop0: detected capacity change from 0 to 512
[  125.961699][ T7371] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  126.002872][ T7371] EXT4-fs (loop0): 1 truncate cleaned up
[  126.030530][ T7371] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.215084][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.645544][ T7393] loop2: detected capacity change from 0 to 1024
[  126.741380][ T7397] loop3: detected capacity change from 0 to 512
[  126.758199][ T7397] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  126.808353][ T7393] hfsplus: xattr searching failed
[  126.815950][ T7397] EXT4-fs (loop3): 1 truncate cleaned up
[  126.829987][ T7397] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.853585][   T23] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  126.908780][ T1128] hfsplus: b-tree write err: -5, ino 3
[  126.910810][ T7397] fscrypt (loop3, inode 18): Direct key flag not allowed with different contents and filenames modes
[  127.053165][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.077539][   T23] usb 1-1: Using ep0 maxpacket: 16
[  127.095084][   T23] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  127.113475][   T23] usb 1-1: config 0 has no interface number 0
[  127.135115][   T23] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  127.176047][   T23] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  127.202436][ T7406] loop3: detected capacity change from 0 to 256
[  127.202996][   T23] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  127.245432][   T23] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  127.253650][   T23] usb 1-1: Product: syz
[  127.263484][   T23] usb 1-1: SerialNumber: syz
[  127.275124][   T23] usb 1-1: config 0 descriptor??
[  127.301208][ T5814] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  127.302894][   T27] audit: type=1800 audit(1751435025.217:3273): pid=7406 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.619" name="file2" dev="loop3" ino=1048623 res=0 errno=0
[  127.310837][   T23] cm109 1-1:0.8: invalid payload size 0, expected 4
[  127.345560][ T7406] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 198)
[  127.354608][ T7406] FAT-fs (loop3): Filesystem has been set read-only
[  127.373451][   T23] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input7
[  127.376392][ T7406] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 198)
[  127.533705][ T5814] usb 3-1: Using ep0 maxpacket: 8
[  127.551707][ T5814] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 13
[  127.579755][ T5814] usb 3-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  127.617871][ T5814] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.625936][ T5814] usb 3-1: Product: syz
[  127.675804][ T5814] usb 3-1: Manufacturer: syz
[  127.680494][ T5814] usb 3-1: SerialNumber: syz
[  127.717852][ T5814] usb 3-1: config 0 descriptor??
[  127.725098][ T5814] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  127.854786][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  127.866687][ T5834] usb 1-1: USB disconnect, device number 7
[  127.869765][    C1] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  127.879473][    C1] cm109 1-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  127.883765][ T7401] loop1: detected capacity change from 0 to 32768
[  127.906339][ T5834] cm109 1-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  127.930764][ T7401] (syz.1.617,7401,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  127.975770][ T7401] (syz.1.617,7401,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  128.062928][ T7401] JBD2: Ignoring recovery information on journal
[  128.197652][ T7401] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  128.300698][ T5814] gspca_zc3xx: reg_w_i err -71
[  128.577371][ T5767] ocfs2: Unmounting device (7,1) on (node local)
[  128.782866][ T5777] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  128.792498][ T7440] loop3: detected capacity change from 0 to 64
[  128.904902][ T5814] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  128.911860][ T5814] gspca_zc3xx: probe of 3-1:0.0 failed with error -71
[  128.931274][ T5814] usb 3-1: USB disconnect, device number 9
[  128.978761][ T5777] usb 1-1: Using ep0 maxpacket: 16
[  129.001725][ T5777] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  129.044173][ T5777] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  129.085041][ T5777] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  129.121345][ T5777] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  129.146939][ T5777] usb 1-1: Product: syz
[  129.151145][ T5777] usb 1-1: Manufacturer: syz
[  129.155753][ T5777] usb 1-1: SerialNumber: syz
[  129.173079][   T27] audit: type=1326 audit(1751435027.213:3274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.212630][   T27] audit: type=1326 audit(1751435027.213:3275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.213909][ T7448] kvm: apic: phys broadcast and lowest prio
[  129.247177][   T27] audit: type=1326 audit(1751435027.245:3276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.285084][   T27] audit: type=1326 audit(1751435027.245:3277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.312450][   T27] audit: type=1326 audit(1751435027.245:3278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.339793][   T27] audit: type=1326 audit(1751435027.245:3279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.368853][   T27] audit: type=1326 audit(1751435027.267:3280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f488732ab19 code=0x7ffc0000
[  129.415947][   T27] audit: type=1326 audit(1751435027.267:3281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f488732ab19 code=0x7ffc0000
[  129.443661][   T27] audit: type=1326 audit(1751435027.299:3282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7449 comm="syz.2.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  129.626380][ T5777] usb 1-1: cannot find UAC_HEADER
[  129.648278][ T5777] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  129.732095][ T5760] udevd[5760]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  129.848191][ T7462] mkiss: ax0: crc mode is auto.
[  129.911792][ T5103] usb 1-1: USB disconnect, device number 8
[  130.479080][ T7478] binder: 7474:7478 ioctl c018620c 200000000000 returned -22
[  130.762286][ T7471] loop3: detected capacity change from 0 to 40427
[  130.784793][ T7471] F2FS-fs (loop3): invalid crc value
[  130.796538][ T7471] F2FS-fs (loop3): Found nat_bits in checkpoint
[  130.928072][ T7471] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  131.011900][ T7471] syz.3.634: attempt to access beyond end of device
[  131.011900][ T7471] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  131.022391][ T7491] loop0: detected capacity change from 0 to 256
[  131.108491][ T5770] syz-executor: attempt to access beyond end of device
[  131.108491][ T5770] loop3: rw=2049, sector=45120, nr_sectors = 8 limit=40427
[  131.122750][ T5770] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  131.267815][ T7493] loop0: detected capacity change from 0 to 1024
[  131.313688][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  131.328213][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  131.491150][ T7499] loop2: detected capacity change from 0 to 1024
[  131.553721][ T7209] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  131.741450][ T7503] bond0: option miimon: invalid value (18446744073072017407)
[  131.765822][ T7503] bond0: option miimon: allowed values 0 - 2147483647
[  131.831000][ T7505] loop1: detected capacity change from 0 to 256
[  131.849073][ T7505] exfat: Deprecated parameter 'namecase'
[  131.856696][ T7505] exfat: Deprecated parameter 'namecase'
[  131.979441][ T7505] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  132.056055][ T7505] syz.1.650: attempt to access beyond end of device
[  132.056055][ T7505] loop1: rw=524288, sector=34225520824, nr_sectors = 1 limit=256
[  132.120188][ T7505] syz.1.650: attempt to access beyond end of device
[  132.120188][ T7505] loop1: rw=0, sector=34225520824, nr_sectors = 1 limit=256
[  132.154658][ T7513] loop3: detected capacity change from 0 to 4096
[  132.165879][   T27] kauditd_printk_skb: 108 callbacks suppressed
[  132.165890][   T27] audit: type=1800 audit(1751435030.432:3391): pid=7505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.650" name="file1" dev="loop1" ino=1048626 res=0 errno=0
[  132.213393][ T7505] syz.1.650: attempt to access beyond end of device
[  132.213393][ T7505] loop1: rw=0, sector=34225520824, nr_sectors = 1 limit=256
[  132.255251][ T7513] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  132.270386][   T27] audit: type=1804 audit(1751435030.485:3392): pid=7505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.650" name="/newroot/152/file0/file1" dev="loop1" ino=1048626 res=1 errno=0
[  132.308965][ T7517] loop0: detected capacity change from 0 to 2048
[  132.348592][   T27] audit: type=1800 audit(1751435030.539:3393): pid=7505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.650" name="file1" dev="loop1" ino=1048626 res=0 errno=0
[  132.404391][ T7517] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.448683][ T7517] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.536170][ T5770] ntfs3: loop3: ino=9, ntfs_sync_fs failed, -22.
[  132.612327][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.918131][ T7539] loop0: detected capacity change from 0 to 128
[  132.942199][ T7539] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  133.231613][ T7543] nvme_fabrics: missing parameter 'transport=%s'
[  133.238851][ T7543] nvme_fabrics: missing parameter 'nqn=%s'
[  133.409895][ T7529] loop3: detected capacity change from 0 to 32768
[  133.466862][ T7529] JBD2: Ignoring recovery information on journal
[  133.546032][ T7529] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  133.742333][ T7560] loop2: detected capacity change from 0 to 1024
[  133.781415][ T7564] loop1: detected capacity change from 0 to 256
[  133.814886][ T7564] exfat: Deprecated parameter 'utf8'
[  133.822237][ T7560] hfsplus: catalog searching failed
[  133.841400][ T7564] exfat: Deprecated parameter 'utf8'
[  133.884695][ T5770] ocfs2: Unmounting device (7,3) on (node local)
[  133.938567][ T3511] hfsplus: bad catalog file entry
[  133.968004][ T3511] hfsplus: b-tree write err: -5, ino 3
[  133.995070][ T7564] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7bac8b1f, utbl_chksum : 0xe619d30d)
[  134.145413][   T27] audit: type=1800 audit(1751435032.545:3394): pid=7564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.675" name="file1" dev="loop1" ino=1048628 res=0 errno=0
[  134.197905][ T7573] Illegal XDP return value 4294967294 on prog  (id 87) dev N/A, expect packet loss!
[  134.222820][ T7575] loop3: detected capacity change from 0 to 256
[  134.382925][ T7577] loop1: detected capacity change from 0 to 512
[  134.401251][ T7571] loop0: detected capacity change from 0 to 4096
[  134.427152][ T7577] EXT4-fs: Ignoring removed bh option
[  134.464975][ T7577] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  134.490619][ T7571] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  134.499413][   T27] audit: type=1326 audit(1751435032.942:3395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.3.682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19ea98e929 code=0x7ffc0000
[  134.576404][   T27] audit: type=1326 audit(1751435032.942:3396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.3.682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19ea98e929 code=0x7ffc0000
[  134.581619][ T7577] EXT4-fs (loop1): 1 truncate cleaned up
[  134.599364][   T27] audit: type=1326 audit(1751435032.964:3397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.3.682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f19ea98e929 code=0x7ffc0000
[  134.627020][   T27] audit: type=1326 audit(1751435032.964:3398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.3.682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19ea98e929 code=0x7ffc0000
[  134.653337][ T7577] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.784725][ T7586] loop3: detected capacity change from 0 to 1024
[  134.825259][ T7586] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  134.893000][ T7586] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.924003][ T7586] ext4 filesystem being mounted at /162/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  134.954979][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.148614][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.587574][   T23] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  135.604781][ T7605] loop0: detected capacity change from 0 to 1024
[  135.653374][ T7605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.724165][ T7594] loop1: detected capacity change from 0 to 32768
[  135.792664][   T23] usb 3-1: Using ep0 maxpacket: 8
[  135.800671][ T7594] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  135.813462][   T23] usb 3-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  135.839706][ T7615] EXT4-fs error (device loop0): __ext4_remount:6741: comm syz.0.693: Abort forced by user
[  135.843691][   T23] usb 3-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  135.862183][   T23] usb 3-1: Product: syz
[  135.866380][   T23] usb 3-1: Manufacturer: syz
[  135.874206][   T23] usb 3-1: SerialNumber: syz
[  135.904619][   T23] usb 3-1: config 0 descriptor??
[  135.926640][   T23] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  135.931763][ T7615] EXT4-fs (loop0): Remounting filesystem read-only
[  135.939705][ T7615] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  136.011550][ T5767] ocfs2: Unmounting device (7,1) on (node local)
[  136.206438][ T7619] loop1: detected capacity change from 0 to 2048
[  136.283998][ T7622] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  136.352462][ T7619] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12
[  136.390727][ T7619] Remounting filesystem read-only
[  136.505172][   T23] input: gspca_zc3xx as /devices/platform/dummy_hcd.2/usb3/3-1/input/input8
[  136.640410][ T5771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.785935][   T23] usb 3-1: USB disconnect, device number 10
[  137.011202][   T58] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.165639][   T58] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.184993][ T7621] loop3: detected capacity change from 0 to 32768
[  137.321162][   T58] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.484837][   T58] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.667348][   T27] audit: type=1326 audit(1751435036.343:3399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  137.762708][   T27] audit: type=1326 audit(1751435036.343:3400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  137.851475][   T27] audit: type=1326 audit(1751435036.343:3401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  137.894012][ T7637] loop3: detected capacity change from 0 to 256
[  137.910796][ T7639] netlink: 12 bytes leftover after parsing attributes in process `syz.2.706'.
[  137.944455][ T7637] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d)
[  137.974948][   T27] audit: type=1326 audit(1751435036.343:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  138.016535][ T7637] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  138.123329][   T27] audit: type=1326 audit(1751435036.343:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  138.203758][   T27] audit: type=1326 audit(1751435036.343:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  138.227109][   T27] audit: type=1326 audit(1751435036.343:3405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  138.250279][ T5769] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  138.262455][   T27] audit: type=1326 audit(1751435036.343:3406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  138.285267][ T5769] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  138.303460][ T5769] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  138.327062][ T5769] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  138.332192][ T7637] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[  138.346820][ T5769] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  138.357902][   T27] audit: type=1326 audit(1751435036.343:3407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  138.380888][ T5769] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  138.389104][ T7637] exFAT-fs (loop3): Filesystem has been set read-only
[  138.524270][ T7629] loop1: detected capacity change from 0 to 32768
[  138.565895][ T7629] XFS (loop1): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  138.874709][ T7629] XFS (loop1): Starting recovery (logdev: internal)
[  138.992663][ T7629] XFS (loop1): Ending recovery (logdev: internal)
[  139.056993][   T27] audit: type=1800 audit(1751435037.813:3408): pid=7629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.702" name="file1" dev="loop1" ino=7430 res=0 errno=0
[  139.099323][ T7672] loop3: detected capacity change from 0 to 2048
[  139.228736][ T7672] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.274480][ T5767] XFS (loop1): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  139.311994][ T7672] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #2: comm syz.3.712: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  139.423503][ T7672] EXT4-fs (loop3): Remounting filesystem read-only
[  139.560827][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.643396][ T7641] chnl_net:caif_netlink_parms(): no params data found
[  139.955112][ T7666] loop2: detected capacity change from 0 to 40427
[  140.002711][ T7666] F2FS-fs (loop2): heap/no_heap options were deprecated
[  140.014161][ T5777] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  140.032602][ T7666] F2FS-fs (loop2): invalid crc value
[  140.075737][ T7666] F2FS-fs (loop2): Found nat_bits in checkpoint
[  140.213639][ T5777] usb 4-1: Using ep0 maxpacket: 16
[  140.244109][ T5777] usb 4-1: config index 0 descriptor too short (expected 59154, got 18)
[  140.269216][ T7666] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  140.284822][ T5777] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  140.306245][ T5777] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  140.332102][ T5769] Bluetooth: hci3: command tx timeout
[  140.340605][ T5777] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  140.386944][ T5777] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  140.419778][ T5777] usb 4-1: Product: syz
[  140.436505][ T5777] usb 4-1: Manufacturer: syz
[  140.452782][ T5777] usb 4-1: SerialNumber: syz
[  140.485307][ T5777] usb 4-1: config 0 descriptor??
[  140.497183][ T7641] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.505611][ T5772] syz-executor: attempt to access beyond end of device
[  140.505611][ T5772] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  140.510630][ T5777] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  140.522572][ T5772] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  140.535298][ T7641] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.543973][ T7641] bridge_slave_0: entered allmulticast mode
[  140.560246][ T7641] bridge_slave_0: entered promiscuous mode
[  140.626063][ T7641] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.633584][ T7641] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.646407][ T7641] bridge_slave_1: entered allmulticast mode
[  140.654901][ T7641] bridge_slave_1: entered promiscuous mode
[  140.838600][ T7641] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  140.865807][ T7641] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  140.991419][   T58] hsr_slave_0: left promiscuous mode
[  140.999831][   T58] hsr_slave_1: left promiscuous mode
[  141.027346][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.042417][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.071188][   T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.082888][   T58] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.102378][   T58] bridge_slave_1: left allmulticast mode
[  141.117946][   T58] bridge_slave_1: left promiscuous mode
[  141.130821][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.152853][   T58] bridge_slave_0: left allmulticast mode
[  141.159766][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.236674][   T58] veth1_macvtap: left promiscuous mode
[  141.251404][   T58] veth0_macvtap: left promiscuous mode
[  141.270012][   T58] veth1_vlan: left promiscuous mode
[  141.277433][   T58] veth0_vlan: left promiscuous mode
[  141.301421][ T5777] ssu100: probe of 4-1:0.0 failed with error -71
[  141.335302][ T5777] usb 4-1: USB disconnect, device number 8
[  142.297579][ T5769] Bluetooth: hci3: command tx timeout
[  142.402508][   T58] team0 (unregistering): Port device team_slave_1 removed
[  142.469072][   T58] team0 (unregistering): Port device team_slave_0 removed
[  142.536198][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  142.603513][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  142.660516][ T7730] loop2: detected capacity change from 0 to 32768
[  142.750705][ T7730] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  142.814997][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  142.815012][   T27] audit: type=1800 audit(1751435041.847:3410): pid=7730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.726" name="file1" dev="loop2" ino=17058 res=0 errno=0
[  142.926650][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  143.110070][ T7734] loop2: detected capacity change from 0 to 8192
[  143.286842][   T58] bond0 (unregistering): Released all slaves
[  143.465995][ T7641] team0: Port device team_slave_0 added
[  143.473168][ T7716] netlink: 16255 bytes leftover after parsing attributes in process `syz.1.719'.
[  143.497879][ T7641] team0: Port device team_slave_1 added
[  143.627565][ T7641] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.639610][ T7641] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.666452][ T7641] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  143.704841][ T7641] batman_adv: batadv0: Adding interface: batadv_slave_1
[  143.749125][ T7641] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.817311][ T7641] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.974420][ T7748] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  144.110676][ T7641] hsr_slave_0: entered promiscuous mode
[  144.144248][ T7736] loop2: detected capacity change from 0 to 32768
[  144.151063][ T7641] hsr_slave_1: entered promiscuous mode
[  144.208757][ T5769] Bluetooth: hci3: command tx timeout
[  144.224638][ T7641] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  144.250539][ T7641] Cannot create hsr debugfs directory
[  144.298878][ T7736] ERROR: (device loop2): jfs_readdir: DT_GETPAGE: dtree page corrupt
[  144.298878][ T7736] 
[  144.339590][ T7736] ERROR: (device loop2): remounting filesystem as read-only
[  144.341240][ T7757] loop3: detected capacity change from 0 to 512
[  144.359005][ T7757] EXT4-fs: Ignoring removed bh option
[  144.411371][ T7757] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  144.504060][ T7763] loop1: detected capacity change from 0 to 64
[  144.639661][ T7757] EXT4-fs (loop3): 1 truncate cleaned up
[  144.675323][ T7757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.950669][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.123887][ T7641] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  145.134335][ T7775] loop9: detected capacity change from 0 to 8
[  145.159801][ T7775] Dev loop9: unable to read RDB block 8
[  145.177382][ T7775]  loop9: unable to read partition table
[  145.192280][ T7641] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  145.198668][ T7775] loop9: partition table beyond EOD, truncated
[  145.221143][ T7641] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  145.224773][ T7775] loop_reread_partitions: partition scan of loop9 (þ被xüÿÿÿÿÿÿÿ ) failed (rc=-5)
[  145.285082][ T7641] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  145.630432][ T7641] 8021q: adding VLAN 0 to HW filter on device bond0
[  145.694607][ T7641] 8021q: adding VLAN 0 to HW filter on device team0
[  145.722315][ T3479] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.729522][ T3479] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.748549][ T7803] relay: one or more items not logged [item size (56) > sub-buffer size (5)]
[  145.851533][ T1128] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.858711][ T1128] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.108168][ T7808] loop2: detected capacity change from 0 to 8192
[  146.147566][ T5769] Bluetooth: hci3: command tx timeout
[  146.156801][ T7808] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  146.192407][ T7808] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  146.234006][ T7808] REISERFS (device loop2): using ordered data mode
[  146.270162][ T7808] reiserfs: using flush barriers
[  146.292250][ T7808] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  146.372355][ T7808] REISERFS (device loop2): checking transaction log (loop2)
[  146.423341][ T7808] REISERFS (device loop2): Using r5 hash to sort names
[  146.433827][ T7641] 8021q: adding VLAN 0 to HW filter on device batadv0
[  146.445778][ T7808] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  147.520179][ T7641] veth0_vlan: entered promiscuous mode
[  147.553800][ T7641] veth1_vlan: entered promiscuous mode
[  147.625170][ T7641] veth0_macvtap: entered promiscuous mode
[  147.671792][ T7641] veth1_macvtap: entered promiscuous mode
[  147.736051][ T7641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.755994][ T7641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.768539][ T7641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.785246][ T7641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.806902][ T7641] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.837948][ T7641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.870661][ T7641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.892905][ T7641] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  147.927063][ T7641] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.958800][ T7641] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.976827][ T7863] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.757'.
[  148.015854][ T7641] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.036943][ T7641] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.046586][ T7641] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.055746][ T7641] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.212688][ T3460] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.242752][ T3460] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.259586][ T7872] loop1: detected capacity change from 0 to 256
[  148.345442][ T3540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.379949][ T3540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.681946][ T7886] loop1: detected capacity change from 0 to 1024
[  148.771535][ T7882] loop4: detected capacity change from 0 to 4096
[  148.801507][ T7882] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  148.850177][ T7886] hfsplus: catalog searching failed
[  148.894642][ T7882] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  148.961306][ T3460] hfsplus: bad catalog file entry
[  148.994278][ T3460] hfsplus: b-tree write err: -5, ino 3
[  149.780090][ T7887] loop3: detected capacity change from 0 to 32768
[  149.933811][ T7887] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  150.209216][ T1128] Bluetooth: hci4: Frame reassembly failed (-84)
[  150.224601][ T7924] loop2: detected capacity change from 0 to 256
[  150.241954][ T1128] Bluetooth: hci4: Frame reassembly failed (-84)
[  150.262030][ T7921] Bluetooth: hci4: Frame reassembly failed (-84)
[  150.270947][ T7924] exfat: Deprecated parameter 'utf8'
[  150.341756][ T5770] ocfs2: Unmounting device (7,3) on (node local)
[  150.789508][ T7945] bridge_slave_0: left allmulticast mode
[  150.795277][ T7945] bridge_slave_0: left promiscuous mode
[  150.802541][ T7945] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.821476][ T7945] bridge_slave_1: left promiscuous mode
[  150.829547][ T7945] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.851135][ T7945] bond0: (slave bond_slave_0): Releasing backup interface
[  150.877225][ T7945] bond0: (slave bond_slave_1): Releasing backup interface
[  150.945998][ T7945] team0: Port device team_slave_0 removed
[  150.967462][ T7945] team0: Port device team_slave_1 removed
[  150.973790][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.982024][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_0
[  150.990766][ T7945] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  150.998441][   T23] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  151.006925][ T7945] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.190410][   T23] usb 4-1: Using ep0 maxpacket: 16
[  151.198780][   T23] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.217262][   T23] usb 4-1: config 0 interface 0 has no altsetting 0
[  151.236617][   T23] usb 4-1: New USB device found, idVendor=046d, idProduct=c71b, bcdDevice= 0.00
[  151.255045][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.275882][   T23] usb 4-1: config 0 descriptor??
[  151.703084][   T23] logitech-djreceiver 0003:046D:C71B.0006: hidraw0: USB HID v0.05 Device [HID 046d:c71b] on usb-dummy_hcd.3-1/input0
[  151.763159][ T7970] loop2: detected capacity change from 0 to 2048
[  151.854874][ T7970] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.945415][ T7970] EXT4-fs error (device loop2): ext4_find_extent:936: inode #2: comm syz.2.783: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  152.011088][ T7970] EXT4-fs (loop2): Remounting filesystem read-only
[  152.069639][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.091941][ T5103] usb 4-1: USB disconnect, device number 9
[  152.112516][ T5769] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  152.114413][ T5779] Bluetooth: hci4: command 0x1003 tx timeout
[  152.919170][ T8008] loop2: detected capacity change from 0 to 1024
[  152.951950][ T5834] kernel write not supported for file /input/event2 (pid: 5834 comm: kworker/0:6)
[  152.954210][ T8012] loop4: detected capacity change from 0 to 128
[  153.006250][ T8014] bridge0: port 3(syz_tun) entered blocking state
[  153.038040][ T8012] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  153.065221][ T8014] bridge0: port 3(syz_tun) entered disabled state
[  153.082104][ T8012] ext4 filesystem being mounted at /11/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  153.103161][ T8014] syz_tun: entered allmulticast mode
[  153.130689][ T8014] syz_tun: entered promiscuous mode
[  153.137082][ T8014] bridge0: port 3(syz_tun) entered blocking state
[  153.145365][ T8014] bridge0: port 3(syz_tun) entered forwarding state
[  153.176297][ T3479] hfsplus: bad catalog file entry
[  153.181554][ T3479] hfsplus: b-tree write err: -5, ino 3
[  153.212379][ T7641] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  153.273908][ T8018] loop3: detected capacity change from 0 to 128
[  153.372588][ T8018] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  153.392947][ T8018] ext4 filesystem being mounted at /192/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.459083][   T27] audit: type=1800 audit(1751435053.274:3411): pid=8018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.798" name="file1" dev="loop3" ino=12 res=0 errno=0
[  153.595780][   T27] audit: type=1326 audit(1751435053.424:3412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.1.804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb452d8e929 code=0x0
[  153.640813][   T27] audit: type=1326 audit(1751435053.445:3413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8033 comm="syz.1.804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb452d8e929 code=0x0
[  153.646967][ T5770] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  153.848245][ T8041] sctp: [Deprecated]: syz.2.807 (pid 8041) Use of struct sctp_assoc_value in delayed_ack socket option.
[  153.848245][ T8041] Use struct sctp_sack_info instead
[  154.815229][ T5834] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  154.884618][ T8072] loop4: detected capacity change from 0 to 512
[  154.908663][ T8072] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  154.949484][ T8072] EXT4-fs (loop4): 1 truncate cleaned up
[  154.975601][ T8072] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.006486][ T5834] usb 3-1: Using ep0 maxpacket: 32
[  155.039254][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  155.072947][ T5834] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  155.089899][ T5834] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.117052][ T5834] usb 3-1: Product: syz
[  155.121362][ T8072] EXT4-fs error (device loop4): ext4_empty_dir:3177: inode #2: block 13: comm syz.4.820: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  155.140884][ T5834] usb 3-1: Manufacturer: syz
[  155.154894][ T5834] usb 3-1: SerialNumber: syz
[  155.165222][ T5834] usb 3-1: config 0 descriptor??
[  155.174480][ T8072] EXT4-fs (loop4): Remounting filesystem read-only
[  155.240712][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.448161][ T8082] loop4: detected capacity change from 0 to 1024
[  155.534779][   T58] hfsplus: bad catalog file entry
[  155.539908][   T58] hfsplus: b-tree write err: -5, ino 3
[  155.581095][ T5834] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  155.963529][ T5834] gs_usb 3-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  156.047577][ T5834] usb 3-1: USB disconnect, device number 11
[  157.405718][ T8105] loop1: detected capacity change from 0 to 32768
[  157.490390][   T23] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  157.501411][ T8105] ERROR: (device loop1): duplicateIXtree: 
[  157.501411][ T8105] 
[  157.520761][ T8105] ERROR: (device loop1): remounting filesystem as read-only
[  157.715878][   T23] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  157.735134][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.752486][   T23] usb 4-1: config 0 descriptor??
[  157.852380][ T8124] bridge_slave_0: left allmulticast mode
[  157.860592][ T8124] bridge_slave_0: left promiscuous mode
[  157.867541][ T8124] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.882694][ T8124] bridge_slave_1: left allmulticast mode
[  157.889839][ T8124] bridge_slave_1: left promiscuous mode
[  157.897845][ T8124] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.937551][ T8124] bond0: (slave bond_slave_0): Releasing backup interface
[  157.974383][   T23] [drm] vendor descriptor length:6 data:06 5f 00 00 00 00 00 00 00 00 00
[  157.997045][   T23] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  158.022415][ T8124] bond0: (slave bond_slave_1): Releasing backup interface
[  158.200067][   T23] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2
[  158.207442][ T8124] team0: Port device team_slave_0 removed
[  158.222229][   T23] [drm] Initialized udl on minor 2
[  158.305993][ T8124] team0: Port device team_slave_1 removed
[  158.348987][ T8124] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  158.384265][ T8124] batman_adv: batadv0: Removing interface: batadv_slave_0
[  158.412001][ T8124] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  158.432651][ T8124] batman_adv: batadv0: Removing interface: batadv_slave_1
[  158.469255][   T23] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  158.485731][   T23] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  158.497686][ T5514] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  158.532943][ T5514] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  158.542692][   T23] usb 4-1: USB disconnect, device number 10
[  158.566670][ T5514] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  159.019443][ T8160] loop1: detected capacity change from 0 to 4096
[  159.055699][ T8159] loop4: detected capacity change from 0 to 4096
[  159.173432][ T8160] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  159.525724][ T5767] ntfs3: loop1: ino=9, ntfs_sync_fs failed, -22.
[  159.652526][ T8152] loop2: detected capacity change from 0 to 32768
[  159.693388][ T8152] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  159.800382][ T8152] XFS (loop2): Ending clean mount
[  159.866215][ T8180] loop4: detected capacity change from 0 to 8192
[  159.900680][ T8180] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  160.013886][ T8183] loop1: detected capacity change from 0 to 512
[  160.035239][ T5772] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  160.058338][ T8183] EXT4-fs: Ignoring removed i_version option
[  160.074263][ T8183] EXT4-fs: Ignoring removed mblk_io_submit option
[  160.135686][ T8183] ext4: Unknown parameter 'seclabel'
[  160.615600][ T8195] loop2: detected capacity change from 0 to 64
[  160.683721][   T27] audit: type=1800 audit(1751435061.031:3414): pid=8195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.866" name="file1" dev="loop2" ino=18 res=0 errno=0
[  160.729899][ T8166] loop3: detected capacity change from 0 to 32768
[  160.830692][ T8204] loop1: detected capacity change from 0 to 1024
[  160.857503][ T8166] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  161.005103][ T8204] hfsplus: xattr searching failed
[  161.107286][ T8217] devpts: called with bogus options
[  161.238825][ T3460] hfsplus: b-tree write err: -5, ino 3
[  161.282471][ T8166] XFS (loop3): Ending clean mount
[  161.309228][ T8166] XFS (loop3): Quotacheck needed: Please wait.
[  161.448044][ T8166] XFS (loop3): Quotacheck: Done.
[  161.468769][ T8229] loop1: detected capacity change from 0 to 512
[  161.508060][ T8229] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  161.587872][ T8229] EXT4-fs (loop1): 1 truncate cleaned up
[  161.596205][ T8229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.751542][ T5770] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  161.783839][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.264295][ T8252] loop2: detected capacity change from 0 to 4096
[  162.473108][ T8252] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  162.795456][ T5772] ntfs3: loop2: ino=9, ntfs_sync_fs failed, -22.
[  163.032283][ T8272] loop2: detected capacity change from 0 to 256
[  163.090624][ T8272] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d)
[  163.162058][ T8272] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  163.288290][ T8279] netlink: 52 bytes leftover after parsing attributes in process `syz.4.886'.
[  163.354951][ T8272] exFAT-fs (loop2): error, invalid access to FAT (entry 0xffffffff)
[  163.409066][ T8272] exFAT-fs (loop2): Filesystem has been set read-only
[  163.516457][ T8287] loop4: detected capacity change from 0 to 1024
[  163.624372][ T8287] hfsplus: bad catalog entry type
[  163.782408][ T3479] hfsplus: b-tree write err: -5, ino 4
[  163.861664][ T8296] loop1: detected capacity change from 0 to 1024
[  163.920945][ T8296] EXT4-fs: Ignoring removed orlov option
[  163.969208][ T8296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.035560][ T8296] EXT4-fs (loop1): shut down requested (0)
[  164.268749][ T8313] vlan2: entered promiscuous mode
[  164.273837][ T8313] bridge0: entered promiscuous mode
[  164.290828][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.308592][ T8313] vlan2: entered allmulticast mode
[  164.338538][ T8313] bridge0: entered allmulticast mode
[  164.564040][ T8293] loop2: detected capacity change from 0 to 40427
[  164.588672][ T8293] F2FS-fs (loop2): heap/no_heap options were deprecated
[  164.606637][ T8293] F2FS-fs (loop2): invalid crc value
[  164.615154][ T8293] F2FS-fs (loop2): Found nat_bits in checkpoint
[  164.719988][ T8293] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  164.851623][ T5772] syz-executor: attempt to access beyond end of device
[  164.851623][ T5772] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  164.883857][ T5772] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  165.113108][ T8332] loop4: detected capacity change from 0 to 512
[  165.186874][ T8332] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  165.227671][ T8332] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.390125][ T8342] loop1: detected capacity change from 0 to 1764
[  165.446272][ T5762] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  165.601469][ T8342] loop1: detected capacity change from 0 to 256
[  165.627740][ T5514] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  165.777990][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  165.841837][ T5514] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  165.869633][ T5514] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.907564][ T5514] usb 4-1: config 0 descriptor??
[  165.935735][ T5514] cp210x 4-1:0.0: cp210x converter detected
[  166.391828][ T8375] bridge_slave_0: entered promiscuous mode
[  166.458134][ T8377] loop1: detected capacity change from 0 to 2048
[  166.500128][ T8377] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.506862][ T5514] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71
[  166.531666][ T8377] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.548601][ T5514] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  166.584030][ T5514] usb 4-1: cp210x converter now attached to ttyUSB0
[  166.586340][ T8384] loop4: detected capacity change from 0 to 256
[  166.625506][ T5514] usb 4-1: USB disconnect, device number 11
[  166.654495][ T5514] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  166.674224][ T8384] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d)
[  166.691999][ T5514] cp210x 4-1:0.0: device disconnected
[  166.728343][ T8384] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  166.781235][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.875520][ T8384] exFAT-fs (loop4): error, invalid access to FAT (entry 0xffffffff)
[  166.908973][ T8384] exFAT-fs (loop4): Filesystem has been set read-only
[  167.304263][ T8409] loop2: detected capacity change from 0 to 512
[  167.360369][ T8409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.364844][ T8405] nvme_fabrics: missing parameter 'transport=%s'
[  167.374682][ T8409] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.410998][ T8405] nvme_fabrics: missing parameter 'nqn=%s'
[  167.422000][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 3: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  167.522796][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 12: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  167.560721][ T8420] loop1: detected capacity change from 0 to 128
[  167.592938][ T8420] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  167.593852][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 13: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  167.630550][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 14: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  167.666402][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 15: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  167.739108][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 16: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  167.807343][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 17: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  167.834315][ T8409] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #2: block 18: comm syz.2.921: lblock 23 mapped to illegal pblock 18 (length 1)
[  167.886390][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 19: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  167.923790][ T8427] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  167.949728][ T8409] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 20: comm syz.2.921: path /229/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  168.298178][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.572816][  T785] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  168.697236][ T8454] netlink: 4 bytes leftover after parsing attributes in process `syz.2.933'.
[  168.768425][  T785] usb 5-1: Using ep0 maxpacket: 32
[  168.796869][  T785] usb 5-1: config 0 has no interfaces?
[  168.803268][  T785] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  168.835274][  T785] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.871983][  T785] usb 5-1: config 0 descriptor??
[  169.073584][ T8441] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.097264][ T8460] loop2: detected capacity change from 0 to 4096
[  169.102393][ T8441] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.135232][ T5514] usb 5-1: USB disconnect, device number 2
[  169.140137][ T8435] loop1: detected capacity change from 0 to 40427
[  169.187240][ T8435] F2FS-fs (loop1): invalid crc value
[  169.214419][ T8460] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  169.223985][ T8435] F2FS-fs (loop1): Found nat_bits in checkpoint
[  169.340150][ T8435] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  169.400305][ T8435] syz.1.927: attempt to access beyond end of device
[  169.400305][ T8435] loop1: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  169.531881][ T5767] syz-executor: attempt to access beyond end of device
[  169.531881][ T5767] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  169.558982][ T5767] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  169.718582][ T5514] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  169.765130][ T8483] loop2: detected capacity change from 0 to 1024
[  169.803309][ T8483] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  169.872924][ T8483] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.890241][ T8483] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.936619][ T5514] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  169.960082][ T5514] usb 5-1: config 0 has no interface number 0
[  170.002572][ T5514] usb 5-1: config 0 interface 184 has no altsetting 0
[  170.042401][ T5514] usb 5-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=69.ee
[  170.063550][ T5514] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.076054][ T5514] usb 5-1: Product: syz
[  170.080242][ T5514] usb 5-1: Manufacturer: syz
[  170.091944][ T5514] usb 5-1: SerialNumber: syz
[  170.114106][ T5514] usb 5-1: config 0 descriptor??
[  170.121548][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.125383][ T5514] ttusbir 5-1:0.184: cannot find expected altsetting
[  170.318841][   T28] usb 5-1: USB disconnect, device number 3
[  170.670872][ T8516] loop2: detected capacity change from 0 to 1024
[  170.689309][ T8516] EXT4-fs: Ignoring removed orlov option
[  170.746023][ T8516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.772546][ T8522] loop1: detected capacity change from 0 to 2048
[  170.816235][ T8523] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  170.882301][ T8516] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2797: inode #2: comm syz.2.946: corrupted in-inode xattr: bad e_name length
[  170.959884][ T8525] EXT4-fs error (device loop2): ext4_xattr_ibody_get:653: inode #2: comm syz.2.946: corrupted in-inode xattr: bad e_name length
[  171.088814][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.147960][ T8528] loop4: detected capacity change from 0 to 4096
[  171.254168][ T8528] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  171.770728][ T8546] loop3: detected capacity change from 0 to 2048
[  171.803154][ T8546] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  171.907401][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.225381][ T8542] loop4: detected capacity change from 0 to 32768
[  172.233777][ T8551] loop3: detected capacity change from 0 to 512
[  172.246439][ T8551] EXT4-fs: Ignoring removed mblk_io_submit option
[  172.270074][ T8545] loop2: detected capacity change from 0 to 40427
[  172.271734][ T8542] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  172.301553][ T8551] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  172.321035][ T8551] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  172.327487][ T8545] F2FS-fs (loop2): invalid crc value
[  172.338532][ T8551] System zones: 1-12
[  172.354909][ T8551] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.957: corrupted in-inode xattr: e_value size too large
[  172.370347][ T8551] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.957: couldn't read orphan inode 15 (err -117)
[  172.374354][ T8545] F2FS-fs (loop2): Found nat_bits in checkpoint
[  172.385325][ T8551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.472920][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.541203][ T8545] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  172.542986][ T8542] XFS (loop4): Ending clean mount
[  172.618689][ T8542] XFS (loop4): Quotacheck needed: Please wait.
[  172.651528][ T8567] netlink: 20 bytes leftover after parsing attributes in process `syz.3.958'.
[  172.683134][ T8567] netem: invalid attributes len -18
[  172.688383][ T8567] netem: change failed
[  172.737806][ T5772] syz-executor: attempt to access beyond end of device
[  172.737806][ T5772] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  172.771643][ T5772] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  172.785050][ T8542] XFS (loop4): Quotacheck: Done.
[  172.946302][ T7641] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  173.006245][ T8571] netlink: 44 bytes leftover after parsing attributes in process `syz.3.962'.
[  173.015985][ T8571] netlink: 59 bytes leftover after parsing attributes in process `syz.3.962'.
[  173.026683][ T8571] netlink: 59 bytes leftover after parsing attributes in process `syz.3.962'.
[  173.151361][ T8573] kvm: user requested TSC rate below hardware speed
[  173.502521][ T8583] netlink: 52 bytes leftover after parsing attributes in process `syz.2.966'.
[  173.658298][ T8578] loop3: detected capacity change from 0 to 40427
[  173.669289][ T8578] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  173.679939][ T8578] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  173.731059][ T8578] F2FS-fs (loop3): Found nat_bits in checkpoint
[  173.826360][ T8578] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  173.840739][ T8578] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  173.941925][   T27] audit: type=1326 audit(1751435075.257:3415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8594 comm="syz.2.970" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x0
[  174.003580][   T27] audit: type=1326 audit(1751435075.311:3416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8594 comm="syz.2.970" exe="/root/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f488738e929 code=0x0
[  174.536023][ T8599] loop4: detected capacity change from 0 to 4096
[  174.808692][ T8604] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.971'.
[  175.607907][ T8606] loop1: detected capacity change from 0 to 32768
[  175.648348][ T8606] XFS: attr2 mount option is deprecated.
[  175.741364][ T8606] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  175.819351][ T8606] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  175.987839][ T8606] XFS (loop1): Ending clean mount
[  176.020106][ T8606] XFS (loop1): Quotacheck needed: Please wait.
[  176.094672][ T8606] XFS (loop1): Quotacheck: Done.
[  176.302438][ T8644] loop3: detected capacity change from 0 to 256
[  176.443195][ T8646] loop4: detected capacity change from 0 to 1024
[  176.480991][ T8646] EXT4-fs: Ignoring removed orlov option
[  176.503065][ T5767] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  176.547703][ T8646] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.702127][ T8646] EXT4-fs (loop4): shut down requested (0)
[  176.855355][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.423534][ T8667] loop1: detected capacity change from 0 to 1024
[  177.602816][ T8667] hfsplus: xattr search failed
[  178.033981][ T8681] netlink: 'syz.1.1004': attribute type 15 has an invalid length.
[  178.249344][ T8691] sp0: Synchronizing with TNC
[  178.270102][ T8687] loop2: detected capacity change from 0 to 4096
[  178.316225][ T8687] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  178.362080][   T23] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  178.575066][   T23] usb 4-1: config 0 has no interfaces?
[  178.593426][   T23] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  178.603770][ T8699] loop2: detected capacity change from 0 to 1024
[  178.610235][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.614719][   T23] usb 4-1: config 0 descriptor??
[  178.647081][ T8699] EXT4-fs: Ignoring removed orlov option
[  178.703283][ T8699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.797740][ T8699] EXT4-fs (loop2): shut down requested (0)
[  178.889316][   T23] usb 4-1: USB disconnect, device number 12
[  178.962077][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.997519][ T8712] loop4: detected capacity change from 0 to 1024
[  179.054473][ T8712] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  179.311493][ T8721] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1020'.
[  179.408175][   T27] audit: type=1326 audit(1751435081.115:3417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8722 comm="syz.2.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  179.445244][   T27] audit: type=1326 audit(1751435081.115:3418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8722 comm="syz.2.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  179.509388][   T27] audit: type=1326 audit(1751435081.148:3419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8722 comm="syz.2.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  179.569809][   T27] audit: type=1326 audit(1751435081.148:3420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8722 comm="syz.2.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  179.663602][   T27] audit: type=1326 audit(1751435081.148:3421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8722 comm="syz.2.1022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f488738e929 code=0x7ffc0000
[  179.891587][ T8741] IPv6: NLM_F_CREATE should be specified when creating new route
[  180.282298][ T8746] loop3: detected capacity change from 0 to 8192
[  180.330966][ T8746] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  180.432796][ T8746] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  180.467350][ T8755] sp0: Synchronizing with TNC
[  180.501063][ T8746] REISERFS (device loop3): using ordered data mode
[  180.543883][ T8746] reiserfs: using flush barriers
[  180.590227][ T8746] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  180.644330][ T8746] REISERFS (device loop3): checking transaction log (loop3)
[  180.903361][ T8746] REISERFS (device loop3): Using tea hash to sort names
[  180.941164][ T8746] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  180.971023][ T8742] loop4: detected capacity change from 0 to 65536
[  180.992761][ T5781] Bluetooth: hci0: command 0x0406 tx timeout
[  180.998927][ T5781] Bluetooth: hci1: command 0x0406 tx timeout
[  181.121201][ T8742] XFS (loop4): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  181.289113][ T8742] XFS (loop4): Ending clean mount
[  181.338350][ T8742] XFS (loop4): Quotacheck needed: Please wait.
[  181.490160][ T8780] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1042'.
[  181.506550][ T8742] XFS (loop4): Quotacheck: Done.
[  181.565586][ T7641] XFS (loop4): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  181.953373][ T8792] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0
[  182.144380][ T8798] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1050'.
[  182.710102][ T8794] loop1: detected capacity change from 0 to 32768
[  182.962813][ T8823] loop2: detected capacity change from 0 to 512
[  182.995043][ T8823] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  183.044959][ T8823] EXT4-fs (loop2): 1 truncate cleaned up
[  183.113744][ T8823] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.288361][ T8823] fscrypt (loop2, inode 18): Direct key flag not allowed with different contents and filenames modes
[  183.345058][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.028705][ T5834] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  184.062918][ T5834] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  184.414359][ T8837] loop2: detected capacity change from 0 to 40427
[  184.434418][ T8862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1078'.
[  184.446001][ T8837] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff
[  184.469175][ T8862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1078'.
[  184.469224][ T8837] F2FS-fs (loop2): Image doesn't support compression
[  184.501496][ T8837] F2FS-fs (loop2): heap/no_heap options were deprecated
[  184.508496][ T8837] F2FS-fs (loop2): Image doesn't support compression
[  184.532328][ T8837] F2FS-fs (loop2): invalid crc value
[  184.545868][ T8837] F2FS-fs (loop2): Found nat_bits in checkpoint
[  184.678409][ T8837] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  184.853183][ T8837] syz.2.1067: attempt to access beyond end of device
[  184.853183][ T8837] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  184.883753][ T8837] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  184.895874][ T8837] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  185.264156][ T8884] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1087'.
[  185.321710][ T8884] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1087'.
[  185.358671][ T8884] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1087'.
[  185.397405][ T8884] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1087'.
[  185.430055][ T8884] netlink: 'syz.1.1087': attribute type 6 has an invalid length.
[  186.128065][    C0] hrtimer: interrupt took 178252 ns
[  186.149247][ T8918] tun0: tun_chr_ioctl cmd 1074025677
[  186.166747][ T8918] tun0: linktype set to 270
[  186.878302][ T8950] loop3: detected capacity change from 0 to 2048
[  186.943302][ T5834] usb 5-1: new low-speed USB device number 4 using dummy_hcd
[  186.950890][ T8955] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  187.013628][ T8950] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  187.057735][ T8950] Remounting filesystem read-only
[  187.083879][ T8950] NILFS (loop3): error -2 truncating bmap (ino=16)
[  187.137801][ T5834] usb 5-1: unable to get BOS descriptor or descriptor too short
[  187.176686][ T5834] usb 5-1: unable to read config index 0 descriptor/start: -71
[  187.184291][ T5834] usb 5-1: can't read configurations, error -71
[  187.227381][ T5770] NILFS (loop3): discard dirty page: offset=4096, ino=6
[  187.241191][ T5770] NILFS (loop3): discard dirty block: blocknr=39, size=1024
[  187.270020][ T5770] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  187.287981][ T5770] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  187.298484][ T5770] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  187.316960][ T5770] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[  187.339415][ T5770] NILFS (loop3): discard dirty page: offset=0, ino=3
[  187.363047][ T5770] NILFS (loop3): discard dirty block: blocknr=42, size=1024
[  187.370380][ T5770] NILFS (loop3): discard dirty block: blocknr=43, size=1024
[  187.386190][ T5770] NILFS (loop3): discard dirty block: blocknr=44, size=1024
[  187.399446][ T5770] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024
[  187.727310][ T8972] wireguard: wg0: Could not create IPv4 socket
[  188.345223][ T9000] loop2: detected capacity change from 0 to 1024
[  188.472301][ T9000] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.480005][ T9000] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.527418][ T9000] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.564802][ T9000] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.578403][ T1284] ieee802154 phy0 wpan0: encryption failed: -22
[  188.589527][ T1284] ieee802154 phy1 wpan1: encryption failed: -22
[  188.595199][ T9006] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.628363][ T9006] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.759330][ T1128] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.787675][ T1128] hfsplus: request for non-existent node 33554434 in B*Tree
[  188.869977][ T9021] loop1: detected capacity change from 0 to 64
[  189.016390][ T5767] hfs: node 4:3 still has 2 user(s)!
[  189.401842][ T9037] loop1: detected capacity change from 0 to 1024
[  189.476250][ T9025] loop3: detected capacity change from 0 to 32768
[  189.491319][ T9037] hfsplus: xattr search failed
[  190.057213][ T9035] loop2: detected capacity change from 0 to 32768
[  190.084920][ T9035] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1149 (9035)
[  190.122175][ T9035] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  190.148661][ T9035] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  190.165609][ T9035] BTRFS info (device loop2): using free space tree
[  190.299641][ T9035] BTRFS info (device loop2): enabling ssd optimizations
[  190.321827][ T9035] BTRFS info (device loop2): auto enabling async discard
[  190.684419][ T1128] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  190.869891][ T5772] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  190.882843][ T9049] loop3: detected capacity change from 0 to 32768
[  190.908598][ T9049] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.1155 (9049)
[  191.101203][ T5762] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (5762)
[  191.439981][ T9089] loop2: detected capacity change from 0 to 256
[  191.953419][ T9087] loop4: detected capacity change from 0 to 40427
[  191.991215][ T9087] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x7ffff
[  192.014637][ T9087] F2FS-fs (loop4): Image doesn't support compression
[  192.021380][ T9087] F2FS-fs (loop4): heap/no_heap options were deprecated
[  192.035619][ T9087] F2FS-fs (loop4): Image doesn't support compression
[  192.048580][ T9087] F2FS-fs (loop4): invalid crc value
[  192.071963][ T9087] F2FS-fs (loop4): Found nat_bits in checkpoint
[  192.142851][ T9087] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  192.256738][ T9087] syz.4.1163: attempt to access beyond end of device
[  192.256738][ T9087] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  192.268846][ T9107] loop2: detected capacity change from 0 to 1024
[  192.277255][ T9087] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  192.292983][ T9087] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  192.300750][ T9107] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  192.352240][ T9107] EXT4-fs error (device loop2): ext4_map_blocks:718: inode #3: block 1: comm syz.2.1169: lblock 1 mapped to illegal pblock 1 (length 1)
[  192.380947][ T9107] Quota error (device loop2): write_blk: dquota write failed
[  192.393603][ T9107] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  192.409663][ T9107] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.1169: Failed to acquire dquot type 0
[  192.428376][ T9107] EXT4-fs error (device loop2): ext4_free_blocks:6681: comm syz.2.1169: Freeing blocks not in datazone - block = 0, count = 4096
[  192.454463][ T9107] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.1169: Invalid inode bitmap blk 0 in block_group 0
[  192.487656][ T9107] EXT4-fs error (device loop2) in ext4_free_inode:363: Corrupt filesystem
[  192.500557][ T1128] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  192.525327][ T9107] EXT4-fs (loop2): 1 orphan inode deleted
[  192.539938][ T9107] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.561773][ T1128] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  192.591472][ T1128] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:5: Failed to release dquot type 0
[  192.628556][ T9107] EXT4-fs (loop2): shut down requested (1)
[  192.681119][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.772039][ T9111] @: renamed from vlan0 (while UP)
[  192.914953][ T9119] Bluetooth: MGMT ver 1.22
[  193.045577][ T9122] 9p: Unknown access argument `: -22
[  193.064750][ T9125] vlan2: entered allmulticast mode
[  193.075227][ T9125] veth1: entered allmulticast mode
[  193.154104][ T9127] loop4: detected capacity change from 0 to 128
[  193.217396][ T9127] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  193.226425][ T9130] loop3: detected capacity change from 0 to 512
[  193.251776][ T9130] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  193.283007][ T9127] ext4 filesystem being mounted at /115/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  193.298290][ T9130] EXT4-fs (loop3): 1 truncate cleaned up
[  193.355870][ T9130] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.376913][ T9127] syz.4.1179 (pid 9127) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  193.508969][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.509139][ T7641] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  194.739140][ T9135] loop2: detected capacity change from 0 to 32768
[  194.818308][ T9135] JBD2: Ignoring recovery information on journal
[  195.025011][ T9135] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  195.055501][ T9165] loop1: detected capacity change from 0 to 512
[  195.089346][ T9165] EXT4-fs: Ignoring removed nobh option
[  195.127022][ T9165] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  195.149623][ T9165] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802e02c, mo2=0002]
[  195.164526][ T9165] EXT4-fs (loop1): orphan cleanup on readonly fs
[  195.191113][ T9165] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.1191: attempt to clear invalid blocks 1024 len 1
[  195.261049][ T9165] EXT4-fs (loop1): Remounting filesystem read-only
[  195.307521][ T9165] EXT4-fs (loop1): 1 truncate cleaned up
[  195.323982][ T9165] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  195.390965][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  195.504546][ T9172] loop4: detected capacity change from 0 to 512
[  195.524611][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  195.555702][ T9172] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  195.644997][ T9172] EXT4-fs (loop4): 1 truncate cleaned up
[  195.662994][ T9172] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.816673][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.859448][ T9181] sit0: entered promiscuous mode
[  195.880171][ T9183] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  195.907830][ T9181] netlink: 'syz.1.1199': attribute type 1 has an invalid length.
[  195.945288][ T9181] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1199'.
[  196.060349][ T9187] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1201'.
[  196.114077][ T9191] loop4: detected capacity change from 0 to 512
[  196.135935][ T9193] loop1: detected capacity change from 0 to 128
[  196.170996][ T9191] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  196.209462][ T9193] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  196.240561][ T9193] ext4 filesystem being mounted at /288/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  196.251947][ T9191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.308352][ T9191] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.429526][ T5144] udevd[5144]: worker [5760] terminated by signal 33 (Unknown signal 33)
[  196.449757][   T27] audit: type=1800 audit(1751435099.387:3422): pid=9191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1202" name="file1" dev="loop4" ino=15 res=0 errno=0
[  196.470575][ T5144] udevd[5144]: worker [5760] failed while handling '/devices/virtual/block/loop1'
[  196.490486][ T5767] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  196.521832][   T27] audit: type=1800 audit(1751435099.441:3423): pid=9191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1202" name="file2" dev="loop4" ino=16 res=0 errno=0
[  196.589440][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.810687][ T9213] loop2: detected capacity change from 0 to 512
[  196.847094][ T9213] EXT4-fs: Invalid want_extra_isize 1598
[  196.855970][ T9209] loop4: detected capacity change from 0 to 4096
[  197.099890][ T9218] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1214'.
[  197.850580][ T9248] loop2: detected capacity change from 0 to 512
[  197.870437][ T9248] EXT4-fs (loop2): Test dummy encryption mode enabled
[  197.893287][ T9248] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  197.968599][ T9248] EXT4-fs (loop2): 1 truncate cleaned up
[  197.976941][ T9248] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.994310][ T9251] loop1: detected capacity change from 0 to 64
[  198.456442][ T9248] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  198.558616][ T9264] loop1: detected capacity change from 0 to 2048
[  198.607146][ T9264] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  198.625207][ T9264] UDF-fs: Scanning with blocksize 512 failed
[  198.678908][ T9264] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  198.792249][ T9248] fscrypt (loop2): Error allocating 'xts(aes)' transform: -4
[  198.810218][ T9270] pimreg: entered allmulticast mode
[  198.873312][ T9270] pimreg: left allmulticast mode
[  198.923696][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.712682][ T9306] IPv6: NLM_F_REPLACE set, but no existing node found!
[  200.207457][ T9320] loop3: detected capacity change from 0 to 4096
[  200.235626][ T9320] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  200.256092][    C1] vkms_vblank_simulate: vblank timer overrun
[  200.358053][ T9320] ntfs: volume version 3.1.
[  200.664608][ T9318] loop4: detected capacity change from 0 to 32768
[  200.783615][ T9329] loop2: detected capacity change from 0 to 128
[  200.785573][ T9318] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  200.805594][ T9329] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  200.832707][ T9330] loop3: detected capacity change from 0 to 2048
[  200.874242][ T9318] OCFS2: ERROR (device loop4): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  200.896177][ T9330] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  200.896671][ T9318] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  200.918056][ T9330] UDF-fs: Scanning with blocksize 512 failed
[  200.942623][ T9318] OCFS2: File system is now read-only.
[  200.959329][ T9318] (syz.4.1257,9318,0):ocfs2_find_leaf:1941 ERROR: status = -30
[  200.985584][ T9318] (syz.4.1257,9318,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  200.990109][ T3540] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  200.995726][ T9330] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  201.023148][ T9318] (syz.4.1257,9318,0):ocfs2_fiemap:776 ERROR: status = -30
[  201.206676][ T7641] ocfs2: Unmounting device (7,4) on (node local)
[  201.481405][ T9341] loop4: detected capacity change from 0 to 256
[  201.535088][ T9343] loop2: detected capacity change from 0 to 128
[  201.577092][ T9343] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002]
[  201.586449][ T9343] System zones: 1-3, 19-19, 35-36
[  201.657142][ T9343] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  201.762902][ T9343] ext4 filesystem being mounted at /313/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  201.794849][    C1] vkms_vblank_simulate: vblank timer overrun
[  201.865427][ T9343] EXT4-fs (loop2): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 ro.
[  201.923301][ T5772] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  202.091162][ T9359] loop4: detected capacity change from 0 to 8
[  203.045405][ T9395] loop3: detected capacity change from 0 to 128
[  203.097071][ T9395] EXT4-fs: Ignoring removed nobh option
[  203.130003][ T9395] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.161104][ T9395] ext4 filesystem being mounted at /315/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  203.195482][ T9402] loop4: detected capacity change from 0 to 2048
[  203.234747][ T9402] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  203.399454][ T5770] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  203.727494][ T9399] loop2: detected capacity change from 0 to 32768
[  203.969275][ T9416] loop4: detected capacity change from 0 to 1024
[  204.022410][ T9416] EXT4-fs (loop4): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.112629][   T27] audit: type=1800 audit(1751435107.627:3424): pid=9416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1301" name="file2" dev="loop4" ino=18 res=0 errno=0
[  204.213409][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  204.451547][ T9430] loop3: detected capacity change from 0 to 64
[  204.847441][ T9447] loop4: detected capacity change from 0 to 256
[  204.875208][ T9447] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  204.896445][ T9447] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  204.932736][ T9447] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  206.006140][ T9474] loop2: detected capacity change from 0 to 64
[  206.067106][   T27] audit: type=1800 audit(1751435109.719:3425): pid=9474 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1325" name="file1" dev="loop2" ino=18 res=0 errno=0
[  206.075625][ T9474] hfs: request for non-existent node 56 in B*Tree
[  206.094769][ T9474] hfs: request for non-existent node 56 in B*Tree
[  206.124790][ T9474] hfs: request for non-existent node 57 in B*Tree
[  206.131278][ T9474] hfs: request for non-existent node 57 in B*Tree
[  206.152613][ T9477] loop4: detected capacity change from 0 to 256
[  206.176176][ T9477] exfat: Deprecated parameter 'namecase'
[  206.183748][ T9477] exfat: Deprecated parameter 'utf8'
[  206.205317][ T9477] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  206.292141][ T9477] autofs4:pid:9477:autofs_fill_super: could not open pipe file descriptor
[  206.819713][ T9498] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1335'.
[  206.870939][   T23] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  206.900983][ T9502] loop2: detected capacity change from 0 to 64
[  206.950888][   T27] audit: type=1800 audit(1751435110.663:3426): pid=9502 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1337" name="file1" dev="loop2" ino=18 res=0 errno=0
[  207.063223][   T23] usb 4-1: Using ep0 maxpacket: 32
[  207.087149][   T23] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  207.095745][   T23] usb 4-1: config 0 has no interface number 0
[  207.105589][   T23] usb 4-1: config 0 interface 2 has no altsetting 0
[  207.126302][   T23] usb 4-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[  207.135679][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.150679][   T23] usb 4-1: Product: syz
[  207.155002][   T23] usb 4-1: Manufacturer: syz
[  207.165019][   T23] usb 4-1: SerialNumber: syz
[  207.185135][   T23] usb 4-1: config 0 descriptor??
[  207.412625][   T23] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  207.611096][ T9491] loop3: detected capacity change from 0 to 512
[  207.633184][ T9491] EXT4-fs (loop3): orphan cleanup on readonly fs
[  207.650213][ T9491] Quota error (device loop3): v2_read_file_info: Block with free entry 9 out of range (1, 6).
[  207.681054][ T9491] EXT4-fs warning (device loop3): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  207.701979][ T9491] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  207.717499][ T9491] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1332: bg 0: block 248: padding at end of block bitmap is not set
[  207.807070][ T9491] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  207.851209][ T9491] EXT4-fs (loop3): 1 orphan inode deleted
[  207.861569][ T9491] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  207.881128][ T9527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1348'.
[  207.934694][   T23] usb 4-1: invalid MIDI in EP 0
[  208.083972][   T23] snd-usb-audio: probe of 4-1:0.2 failed with error -22
[  208.133472][   T23] usb 4-1: USB disconnect, device number 13
[  208.168767][ T7102] udevd[7102]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  208.192325][ T9533] loop1: detected capacity change from 0 to 4096
[  208.732781][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.903773][   T23] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  208.963862][   T27] audit: type=1326 audit(1751435112.830:3427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.1.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb452d8e929 code=0x7ffc0000
[  209.016219][   T27] audit: type=1326 audit(1751435112.830:3428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.1.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb452d8e929 code=0x7ffc0000
[  209.061926][   T27] audit: type=1326 audit(1751435112.863:3429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.1.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fb452d8e929 code=0x7ffc0000
[  209.117209][   T23] usb 3-1: config 0 has no interfaces?
[  209.122736][   T23] usb 3-1: New USB device found, idVendor=056a, idProduct=0045, bcdDevice= 0.00
[  209.155636][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.167831][   T27] audit: type=1326 audit(1751435112.863:3430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.1.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb452d8e929 code=0x7ffc0000
[  209.175849][   T23] usb 3-1: config 0 descriptor??
[  209.252776][   T27] audit: type=1326 audit(1751435112.863:3431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9551 comm="syz.1.1361" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb452d8e929 code=0x7ffc0000
[  209.312915][   T27] audit: type=1326 audit(1751435112.873:3432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9554 comm="syz.3.1362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19ea98e929 code=0x7ffc0000
[  209.366401][   T27] audit: type=1326 audit(1751435112.873:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9554 comm="syz.3.1362" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19ea98e929 code=0x7ffc0000
[  209.398965][ T9572] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1366'.
[  209.408414][ T9572] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1366'.
[  209.507412][ T9546] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  209.555604][ T9546] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  209.567452][  T965] usb 3-1: USB disconnect, device number 12
[  210.057924][   T23] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  210.238380][   T23] usb 3-1: Using ep0 maxpacket: 8
[  210.250495][   T23] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  210.281708][   T23] usb 3-1: config 0 has no interface number 0
[  210.297491][   T23] usb 3-1: config 0 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  210.328370][   T23] usb 3-1: config 0 interface 1 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 0
[  210.365981][   T23] usb 3-1: config 0 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  210.389602][   T23] usb 3-1: config 0 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  210.406826][   T23] usb 3-1: config 0 interface 1 has no altsetting 0
[  210.426600][   T23] usb 3-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice=75.8b
[  210.445640][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.470239][   T23] usb 3-1: config 0 descriptor??
[  210.476052][ T9594] loop4: detected capacity change from 0 to 512
[  210.500052][ T5103] kernel read not supported for file /vcs (pid: 5103 comm: kworker/1:2)
[  210.518340][ T9594] EXT4-fs: Ignoring removed i_version option
[  210.538961][ T9594] EXT4-fs: Ignoring removed mblk_io_submit option
[  210.712631][ T9600] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1377'.
[  210.756185][   T23] usb 3-1: USB disconnect, device number 13
[  210.779068][ T9594] EXT4-fs (loop4): Test dummy encryption mode enabled
[  210.835427][ T9594] EXT4-fs error (device loop4): ext4_orphan_get:1399: comm syz.4.1374: inode #13: comm syz.4.1374: iget: illegal inode #
[  210.858911][ T9594] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1374: couldn't read orphan inode 13 (err -117)
[  210.904368][ T9594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.989947][ T5103] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  211.021138][ T9594] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.4.1374: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  211.065034][ T9605] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 426: padding at end of block bitmap is not set
[  211.209227][ T5103] usb 4-1: config 0 has no interfaces?
[  211.221735][ T5103] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  211.224118][ T7641] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.240031][ T5103] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.268280][ T5103] usb 4-1: Product: syz
[  211.274637][ T5103] usb 4-1: Manufacturer: syz
[  211.283915][ T5103] usb 4-1: SerialNumber: syz
[  211.338371][ T5103] usb 4-1: config 0 descriptor??
[  211.592252][ T5103] usb 4-1: USB disconnect, device number 14
[  211.903695][ T9628] loop2: detected capacity change from 0 to 128
[  211.912801][ T9628] EXT4-fs: Ignoring removed nobh option
[  211.929260][ T9628] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  211.970424][ T9628] ext4 filesystem being mounted at /345/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  212.048876][ T5772] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  212.391986][ T9632] loop4: detected capacity change from 0 to 32768
[  212.412501][ T9632] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  212.429172][ T9632] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  212.439232][ T9632] BTRFS info (device loop4): using free space tree
[  212.562495][ T9632] BTRFS info (device loop4): enabling ssd optimizations
[  212.569708][ T9632] BTRFS info (device loop4): auto enabling async discard
[  212.745465][ T1128] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared)
[  212.811256][ T5781] Bluetooth: hci3: command 0x0405 tx timeout
[  212.837009][ T7641] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  212.898571][ T9634] loop2: detected capacity change from 0 to 40427
[  212.921158][ T9634] F2FS-fs (loop2): invalid crc value
[  212.981345][ T9634] F2FS-fs (loop2): Found nat_bits in checkpoint
[  213.151504][ T9634] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  213.463062][ T5772] syz-executor: attempt to access beyond end of device
[  213.463062][ T5772] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  213.478154][ T5772] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  213.788758][ T9669] loop3: detected capacity change from 0 to 32768
[  213.819287][ T9669] 
[  213.819287][ T9669]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  213.819287][ T9669] 
[  213.909964][ T9669] JFS: Invalid stbl[1] = -128 for inode 2, block = 0
[  214.001627][   T58] 
[  214.001627][   T58]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  214.001627][   T58] 
[  214.029109][   T58] 
[  214.029109][   T58]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  214.029109][   T58] 
[  214.051616][  T110] 
[  214.051616][  T110]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  214.051616][  T110] 
[  214.112292][ T5770] 
[  214.112292][ T5770]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  214.112292][ T5770] 
[  214.132539][ T5770] 
[  214.132539][ T5770]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  214.132539][ T5770] 
[  214.200402][ T9681] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1404'.
[  214.422966][ T9686] loop3: detected capacity change from 0 to 4096
[  214.450591][ T9686] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  214.585409][ T9686] ntfs3: loop3: Failed to initialize $Extend/$Reparse.
[  214.799495][ T5770] ntfs3: loop3: ino=1a, ntfs_sync_fs failed, -22.
[  215.004851][ T9690] loop2: detected capacity change from 0 to 32768
[  215.057151][ T9690] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  215.219019][   T27] kauditd_printk_skb: 11 callbacks suppressed
[  215.219035][   T27] audit: type=1800 audit(1751435119.536:3445): pid=9690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1406" name="file1" dev="loop2" ino=17058 res=0 errno=0
[  215.306153][   T27] audit: type=1804 audit(1751435119.579:3446): pid=9690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1406" name="/newroot/348/file1/file1" dev="loop2" ino=17058 res=1 errno=0
[  215.358540][   T27] audit: type=1800 audit(1751435119.579:3447): pid=9690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1406" name="file1" dev="loop2" ino=17058 res=0 errno=0
[  215.397706][ T5772] ocfs2: Unmounting device (7,2) on (node local)
[  215.645289][ T9699] loop1: detected capacity change from 0 to 40427
[  215.671883][ T9715] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1416'.
[  215.697069][ T9699] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  215.704834][ T9699] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  215.773317][ T9699] F2FS-fs (loop1): invalid crc value
[  215.818701][ T9699] F2FS-fs (loop1): Found nat_bits in checkpoint
[  215.988703][ T9699] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  215.992615][ T9725] loop2: detected capacity change from 0 to 16
[  216.014018][ T9699] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  216.036780][ T9725] erofs: (device loop2): mounted with root inode @ nid 36.
[  216.126598][ T9725] erofs: (device loop2): erofs_find_target_block: corrupted dir block 8200 @ nid 36
[  216.190027][ T9725] ==================================================================
[  216.198129][ T9725] BUG: KASAN: slab-out-of-bounds in z_erofs_transform_plain+0x38c/0x460
[  216.206477][ T9725] Read of size 4095 at addr ffff888059bde400 by task syz.2.1418/9725
[  216.214550][ T9725] 
[  216.216888][ T9725] CPU: 0 PID: 9725 Comm: syz.2.1418 Not tainted 6.6.95-syzkaller #0
[  216.224873][ T9725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  216.234953][ T9725] Call Trace:
[  216.238245][ T9725]  <TASK>
[  216.241190][ T9725]  dump_stack_lvl+0x16c/0x230
[  216.245896][ T9725]  ? __lock_acquire+0x7c80/0x7c80
[  216.250936][ T9725]  ? show_regs_print_info+0x20/0x20
[  216.256151][ T9725]  ? load_image+0x3b0/0x3b0
[  216.260672][ T9725]  ? __virt_addr_valid+0x469/0x540
[  216.265806][ T9725]  print_report+0xac/0x230
[  216.270238][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  216.275878][ T9725]  kasan_report+0x117/0x150
[  216.280395][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  216.286040][ T9725]  kasan_check_range+0x288/0x290
[  216.290990][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  216.296634][ T9725]  __asan_memcpy+0x29/0x70
[  216.301074][ T9725]  z_erofs_transform_plain+0x38c/0x460
[  216.306556][ T9725]  ? z_erofs_lz4_decompress+0x1720/0x1720
[  216.312292][ T9725]  z_erofs_decompress_queue+0x16fb/0x2650
[  216.318023][ T9725]  ? __stack_depot_save+0x560/0x630
[  216.323242][ T9725]  ? z_erofs_onlinepage_endio+0x350/0x350
[  216.328987][ T9725]  ? slab_free_freelist_hook+0x130/0x1b0
[  216.334635][ T9725]  ? z_erofs_runqueue+0x1893/0x19d0
[  216.339870][ T9725]  ? __kmem_cache_free+0xba/0x1f0
[  216.344919][ T9725]  z_erofs_runqueue+0x18a3/0x19d0
[  216.349964][ T9725]  ? z_erofs_do_read_page+0x3680/0x3680
[  216.355537][ T9725]  ? _raw_spin_unlock+0x28/0x40
[  216.360400][ T9725]  ? lockref_put_or_lock+0x72/0xb0
[  216.365524][ T9725]  z_erofs_readahead+0xa7c/0xd50
[  216.370483][ T9725]  ? z_erofs_read_folio+0x540/0x540
[  216.375704][ T9725]  ? folio_add_lru+0x320/0xd50
[  216.377142][ T9713] loop4: detected capacity change from 0 to 40427
[  216.380466][ T9725]  ? blk_start_plug+0x6e/0x1a0
[  216.380491][ T9725]  read_pages+0x177/0x840
[  216.380510][ T9725]  ? __lock_acquire+0x7c80/0x7c80
[  216.380532][ T9725]  ? page_cache_ra_unbounded+0x770/0x770
[  216.403691][ T9713] F2FS-fs (loop4): invalid crc value
[  216.407121][ T9725]  ? folio_add_lru+0xd50/0xd50
[  216.407150][ T9725]  ? folio_add_lru+0x54f/0xd50
[  216.407173][ T9725]  ? filemap_add_folio+0x192/0x3c0
[  216.407192][ T9725]  page_cache_ra_unbounded+0x692/0x770
[  216.407217][ T9725]  force_page_cache_ra+0x2c1/0x320
[  216.407236][ T9725]  generic_fadvise+0x44f/0x730
[  216.407262][ T9725]  ? dump_task+0x5f0/0x5f0
[  216.446850][ T9725]  ? __fget_files+0x28/0x4d0
[  216.451468][ T9725]  ? __fdget+0x180/0x210
[  216.455729][ T9725]  __x64_sys_fadvise64+0x140/0x180
[  216.460859][ T9725]  do_syscall_64+0x55/0xb0
[  216.465290][ T9725]  ? clear_bhb_loop+0x40/0x90
[  216.469977][ T9725]  ? clear_bhb_loop+0x40/0x90
[  216.474662][ T9725]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  216.480579][ T9725] RIP: 0033:0x7f488738e929
[  216.485012][ T9725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.494901][ T9713] F2FS-fs (loop4): Found nat_bits in checkpoint
[  216.504610][ T9725] RSP: 002b:00007f4888271038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dd
[  216.504634][ T9725] RAX: ffffffffffffffda RBX: 00007f48875b5fa0 RCX: 00007f488738e929
[  216.504647][ T9725] RDX: 0000000000000007 RSI: 000000000000aa1f RDI: 0000000000000004
[  216.504657][ T9725] RBP: 00007f4887410b39 R08: 0000000000000000 R09: 0000000000000000
[  216.504668][ T9725] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  216.504683][ T9725] R13: 0000000000000000 R14: 00007f48875b5fa0 R15: 00007fffc6aaf218
[  216.504700][ T9725]  </TASK>
[  216.504706][ T9725] 
[  216.504711][ T9725] The buggy address belongs to the physical page:
[  216.504728][ T9725] page:ffffea000166f780 refcount:2 mapcount:0 mapping:ffff88805b120270 index:0x1 pfn:0x59bde
[  216.504746][ T9725] memcg:ffff88807eae4000
[  216.504754][ T9725] aops:z_erofs_cache_aops ino:0
[  216.504772][ T9725] flags: 0xfff40000008028(uptodate|lru|private|node=0|zone=1|lastcpupid=0x7ff)
[  216.504792][ T9725] page_type: 0xffffffff()
[  216.504806][ T9725] raw: 00fff40000008028 ffffea00018d6e88 ffff88807eae61f8 ffff88805b120270
[  216.504821][ T9725] raw: 0000000000000001 ffff8880787a2000 00000002ffffffff ffff88807eae4000
[  216.504829][ T9725] page dumped because: kasan: bad access detected
[  216.504841][ T9725] page_owner tracks the page as allocated
[  216.504847][ T9725] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x192840(GFP_NOWAIT|__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 9725, tgid 9723 (syz.2.1418), ts 216122646513, free_ts 215860517497
[  216.504880][ T9725]  post_alloc_hook+0x1cd/0x210
[  216.504897][ T9725]  get_page_from_freelist+0x195c/0x19f0
[  216.504911][ T9725]  __alloc_pages+0x1e3/0x460
[  216.504924][ T9725]  z_erofs_do_read_page+0x20c0/0x3680
[  216.559244][ T9713] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  216.559419][ T9725]  z_erofs_read_folio+0x213/0x540
[  216.672616][ T9713] syz.4.1414: attempt to access beyond end of device
[  216.672616][ T9713] loop4: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  216.674949][ T9725]  filemap_read_folio+0x167/0x760
[  216.674974][ T9725]  do_read_cache_folio+0x470/0x7e0
[  216.674992][ T9725]  erofs_bread+0x16f/0x630
[  216.675006][ T9725]  erofs_namei+0x28c/0xf00
[  216.720063][ T9725]  erofs_lookup+0x135/0x310
[  216.724553][ T9725]  path_openat+0x10b8/0x3190
[  216.729143][ T9725]  do_filp_open+0x1c5/0x3d0
[  216.733624][ T9725]  do_sys_openat2+0x12c/0x1c0
[  216.738290][ T9725]  __x64_sys_openat+0x139/0x160
[  216.743127][ T9725]  do_syscall_64+0x55/0xb0
[  216.747526][ T9725]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  216.753406][ T9725] page last free stack trace:
[  216.758062][ T9725]  free_unref_page_prepare+0x7ce/0x8e0
[  216.763514][ T9725]  free_unref_page_list+0xbe/0x860
[  216.768608][ T9725]  release_pages+0x1fa0/0x2220
[  216.773361][ T9725]  tlb_flush_mmu+0x368/0x4f0
[  216.777934][ T9725]  tlb_finish_mmu+0xc3/0x1d0
[  216.782503][ T9725]  exit_mmap+0x3f0/0xb50
[  216.786729][ T9725]  __mmput+0x118/0x3c0
[  216.790775][ T9725]  exit_mm+0x1da/0x2c0
[  216.794826][ T9725]  do_exit+0x88e/0x23c0
[  216.798963][ T9725]  do_group_exit+0x21b/0x2d0
[  216.803534][ T9725]  get_signal+0x12fc/0x1400
[  216.808024][ T9725]  arch_do_signal_or_restart+0x96/0x780
[  216.813561][ T9725]  exit_to_user_mode_loop+0x70/0x110
[  216.818835][ T9725]  exit_to_user_mode_prepare+0xb1/0x140
[  216.824369][ T9725]  syscall_exit_to_user_mode+0x1a/0x50
[  216.829835][ T9725]  do_syscall_64+0x61/0xb0
[  216.834238][ T9725] 
[  216.836544][ T9725] Memory state around the buggy address:
[  216.842152][ T9725]  ffff888059bdef80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  216.850203][ T9725]  ffff888059bdf000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  216.858250][ T9725] >ffff888059bdf080: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc 00
[  216.866463][ T9725]                                         ^
[  216.872343][ T9725]  ffff888059bdf100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  216.880414][ T9725]  ffff888059bdf180: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00
[  216.888471][ T9725] ==================================================================
[  216.899042][ T9725] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  216.906251][ T9725] CPU: 0 PID: 9725 Comm: syz.2.1418 Not tainted 6.6.95-syzkaller #0
[  216.914217][ T9725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  216.924259][ T9725] Call Trace:
[  216.927530][ T9725]  <TASK>
[  216.930445][ T9725]  dump_stack_lvl+0x16c/0x230
[  216.935118][ T9725]  ? show_regs_print_info+0x20/0x20
[  216.940311][ T9725]  ? load_image+0x3b0/0x3b0
[  216.944806][ T9725]  panic+0x2c0/0x710
[  216.948694][ T9725]  ? bpf_jit_dump+0xd0/0xd0
[  216.953182][ T9725]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  216.959082][ T9725]  ? _raw_spin_unlock+0x40/0x40
[  216.963929][ T9725]  ? print_memory_metadata+0x314/0x400
[  216.969382][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  216.975007][ T9725]  check_panic_on_warn+0x84/0xa0
[  216.979937][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  216.985563][ T9725]  end_report+0x6f/0x140
[  216.989798][ T9725]  kasan_report+0x128/0x150
[  216.994291][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  216.999913][ T9725]  kasan_check_range+0x288/0x290
[  217.004854][ T9725]  ? z_erofs_transform_plain+0x38c/0x460
[  217.010482][ T9725]  __asan_memcpy+0x29/0x70
[  217.014892][ T9725]  z_erofs_transform_plain+0x38c/0x460
[  217.020344][ T9725]  ? z_erofs_lz4_decompress+0x1720/0x1720
[  217.026058][ T9725]  z_erofs_decompress_queue+0x16fb/0x2650
[  217.031769][ T9725]  ? __stack_depot_save+0x560/0x630
[  217.036965][ T9725]  ? z_erofs_onlinepage_endio+0x350/0x350
[  217.042689][ T9725]  ? slab_free_freelist_hook+0x130/0x1b0
[  217.048309][ T9725]  ? z_erofs_runqueue+0x1893/0x19d0
[  217.053492][ T9725]  ? __kmem_cache_free+0xba/0x1f0
[  217.058506][ T9725]  z_erofs_runqueue+0x18a3/0x19d0
[  217.063529][ T9725]  ? z_erofs_do_read_page+0x3680/0x3680
[  217.069075][ T9725]  ? _raw_spin_unlock+0x28/0x40
[  217.073916][ T9725]  ? lockref_put_or_lock+0x72/0xb0
[  217.079017][ T9725]  z_erofs_readahead+0xa7c/0xd50
[  217.083949][ T9725]  ? z_erofs_read_folio+0x540/0x540
[  217.089138][ T9725]  ? folio_add_lru+0x320/0xd50
[  217.093897][ T9725]  ? blk_start_plug+0x6e/0x1a0
[  217.098664][ T9725]  read_pages+0x177/0x840
[  217.102983][ T9725]  ? __lock_acquire+0x7c80/0x7c80
[  217.107996][ T9725]  ? page_cache_ra_unbounded+0x770/0x770
[  217.113613][ T9725]  ? folio_add_lru+0xd50/0xd50
[  217.118379][ T9725]  ? folio_add_lru+0x54f/0xd50
[  217.123131][ T9725]  ? filemap_add_folio+0x192/0x3c0
[  217.128228][ T9725]  page_cache_ra_unbounded+0x692/0x770
[  217.133680][ T9725]  force_page_cache_ra+0x2c1/0x320
[  217.138781][ T9725]  generic_fadvise+0x44f/0x730
[  217.143544][ T9725]  ? dump_task+0x5f0/0x5f0
[  217.147955][ T9725]  ? __fget_files+0x28/0x4d0
[  217.152591][ T9725]  ? __fdget+0x180/0x210
[  217.156825][ T9725]  __x64_sys_fadvise64+0x140/0x180
[  217.161927][ T9725]  do_syscall_64+0x55/0xb0
[  217.166334][ T9725]  ? clear_bhb_loop+0x40/0x90
[  217.170997][ T9725]  ? clear_bhb_loop+0x40/0x90
[  217.175665][ T9725]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  217.181550][ T9725] RIP: 0033:0x7f488738e929
[  217.185951][ T9725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.205546][ T9725] RSP: 002b:00007f4888271038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dd
[  217.213953][ T9725] RAX: ffffffffffffffda RBX: 00007f48875b5fa0 RCX: 00007f488738e929
[  217.221910][ T9725] RDX: 0000000000000007 RSI: 000000000000aa1f RDI: 0000000000000004
[  217.229864][ T9725] RBP: 00007f4887410b39 R08: 0000000000000000 R09: 0000000000000000
[  217.237819][ T9725] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  217.245773][ T9725] R13: 0000000000000000 R14: 00007f48875b5fa0 R15: 00007fffc6aaf218
[  217.253737][ T9725]  </TASK>
[  217.256964][ T9725] Kernel Offset: disabled
[  217.261272][ T9725] Rebooting in 86400 seconds..