last executing test programs:

3m2.192043997s ago: executing program 3 (id=5348):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @ipip={{0x9}, {0x24, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_SPORT={0x6}, @IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_FWMARK={0x8}, @IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0x200}]}}}]}, 0x54}}, 0x0)

3m2.040975754s ago: executing program 3 (id=5350):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=@newlink={0x48, 0x10, 0xc3b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_FLAGS={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ENCAP_TYPE={0x6}]}}}]}, 0x48}}, 0x0)

3m1.836108361s ago: executing program 3 (id=5353):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a0, 0x170, 0xc8, 0x8, 0x170, 0x5803, 0x2d0, 0x2e8, 0x2e8, 0x2d0, 0x2e8, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast1, [0x0, 0xff], [], 'lo\x00', 'geneve1\x00', {}, {}, 0x0, 0x0, 0x0, 0x55}, 0x0, 0x108, 0x170, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@connbytes={{0x38}, {[{0x14}, {0xc000400000000001}], 0x1, 0x2}}, @common=@hl={{0x28}, {0x2, 0x5}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x20, 0x6, 0x8, 0x401, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x10, 0x0, 0x7, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x400)

3m1.532765772s ago: executing program 3 (id=5359):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x1600008, &(0x7f0000000440)=ANY=[@ANYBLOB='nodecompose,umask=00000000000000000000001,force,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666f7263652c6e6f6465636f6d706f73652c626172726965722c00d1955f3850ce1bf3d16692f35f9b4b501fb03cbfc3728185b427944e30d75e02c5836181c835c71cbb15ed68e7cbefcdc22fc302e869626c06d1d6622c1f847de9a640beb2e62afecd291c9bcb0e5568f832b121c45e07b729314e7ffa59eed22abd6044e873c4088bd4"], 0x3, 0x632, &(0x7f0000000800)="$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")
mount$cgroup2(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000680), 0x200004, &(0x7f0000000e40)=ANY=[@ANYBLOB='pids_localevents'])

3m1.249667174s ago: executing program 3 (id=5364):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000140)=@ethtool_cmd={0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, 0xfe, 0x10, 0x0, 0x0, 0x0, 0x7e4, 0x0, 0x0, 0x45, [0x7fff, 0x10000000]}})

3m0.628066258s ago: executing program 3 (id=5372):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
link(0x0, 0x0)

3m0.31302742s ago: executing program 32 (id=5372):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
link(0x0, 0x0)

1m46.218039156s ago: executing program 2 (id=6389):
r0 = syz_open_dev$video(&(0x7f0000000200), 0x400000000009, 0x48080)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000100)={0xa, @pix_mp={0x6, 0x10001, 0x4f424752, 0x8, 0x8, [{0xf, 0xfffffffd}, {0xffffffff, 0x7}, {0xd, 0xd16}, {0x4, 0x2}, {0x3, 0x9}, {0x0, 0x9}, {0x2, 0x7}, {0x6, 0x5}], 0x4, 0x81, 0x1, 0x1, 0x6}})

1m46.010792931s ago: executing program 2 (id=6392):
r0 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000000380)='//\xf2b\x06\b\xba\xdfXo\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b/Q9\xf9\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce\x14/8\\\x00\x00\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x93\xd7S\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8D\xb1\xdep\x01\xcc:\xa6\xc5n\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3\x00\xaa\xd5\xfc\x1bR\xa9\x8c\xb4&\x9f\xa2$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\n\xad\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xef\xf7\x9c\x1a\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\xe5\xa8Q\xc9\xe75Q\xea\xd8\xa2=F\x9b\x8f\x8d\xfc\' {e\x949X\xda\xe8H\x1a\x85\xd7%\x93?w}\xfb\xd9t\xea\xbb\xbe\x9b\\\xd7\xd7\xd4\xe2\xd6c(`(r\xd2\xb1G\xe3\xda&\xca\xaa\xba\v\xc5\xa3H\xb1\x11G\xab\xa2\x1f\xa0\xc3\xd9\xcd\xfb\x1a,\x13S\xf1\xfe\xe5F\xf4\xfb\xc8|\x89\x0fNq\x97J\xb9J\x88S\xc5\xb8\x12\x93\xbe\xb9b\xc7\xbc\x03\x03.E\xab\x82\x1c\xbc1\x9d\x14\xfa\x1f\xdd\x1e*\x03`\x91\xe8x\x0f\x05\x1e\xf5\xbfNo\xd4\x0f]S\x85\x89@\xa9f\x05\xfe\x9fkM\xa5\xf6\xc2\x04\xbf\xc7', 0x0)

1m45.898033041s ago: executing program 2 (id=6393):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000d0918108ac051582588f0000000109022d00010000000009040000030b08000009058d67c8002a000009050502000000000009058b6e", @ANYRESOCT=0x0], 0x0)
syz_usb_ep_write(r0, 0x8d, 0x0, 0x0)

1m44.02813733s ago: executing program 2 (id=6410):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x567, &(0x7f0000003080)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})

1m43.367548699s ago: executing program 2 (id=6422):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000001700)={0x77359400}, 0x10)

1m42.568033266s ago: executing program 2 (id=6437):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000000)=""/2, &(0x7f0000001080)=0x2)

1m42.064760193s ago: executing program 33 (id=6437):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$bt_hci(r0, 0x0, 0x1, &(0x7f0000000000)=""/2, &(0x7f0000001080)=0x2)

4.312957946s ago: executing program 4 (id=8010):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000002c0)='./file0\x00', 0x44, &(0x7f00000000c0)=ANY=[], 0x1, 0x6216, &(0x7f000000cb40)="$eJzs3c2OHFfZB/Cn+ms+/CaxsojyRghNEgMJIf4MxhAgyQIWbFggb5GtySSycADZBjmWhSeaDQsuAoTEEhBLVlxAFmzZcQFYspGArFKoZs4Z1zTT7rGd7uqZ8/tJk6qnTtX0qfy7prtdVX0CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIjvffcHZ6qIuPTztOB4xP9FP6IXsdLUaxGxsnY8rz+IiOdjuzmei4jhUkSVG5+JeCMiPn464t792+vNorMH7Md3/vi33/7w2Pf/+vvhqX//6Ub/zUnr3bz5q3/9+c7j7y8AAACUqK7rukof819In+97XXcKAJiL/PpfJ3m5euHqzQXrj1qtVqsPYd1W7+9Ou4iIzfY2zXsGp+MB4JDZjE+67gIdkn/RBhFxrOtOAAut6roDzMS9+7fXq5Rv1X49WNtpz9eC7Ml/s9q9v2PSdJrxa0zm9fzain48O6E/K3PqwyLJ+ffG87+00z5K6806/3mZlP9o59an4uT8++P5jzk6+ff2zb9UOf/BI+Xflz8AAAAAACyw/O//xzs+/7v05LtyIA87/7s2pz4AAAAAAAAAwGftScf/21UZ/w8AAAAWVfNZvfHrpx8sm/RdbM3yi1XEU2PrA4VJN8usdt0PAAAAAAAAAAAAACjJYOca3otVxDAinlpdreu6+Wkbrx/Vk25/2JW+/1Cyrv/IAwDAjo+fHruXv4pYjoiL6bv+hqurq3W9vLJar9YrS/n97GhpuV5pfa7N02bZ0ugAb4gHo7r5Zcut7dqmfV6e1j7++5rHGtX9A3RsPjoMHAAiYufV6J5XpCOmrp+Jrt/lcDg4/o8exz8H0fXzFAAAAJi9uq7rKn2d9wvpnH+v604BAHORX//Hzwuo1Wq1Wq0+enVbvb877SIiNtvbNO8ZDMcPAIfMZnzSdRfokPyLNoiI57vuBLDQqq47wEzcu397vUr5Vu3XgzS+e74WZE/+m9X2dnn7/abTjF9jMq/n11b049kJ/XluTn1YJDn/3nj+l3baR2m9Wec/L5Pyb/bzeAf96VrOvz+e/5ijk39v3/xLlfMfPFL+ffkDAAAAAMACy//+f3yhzv+OHnd3pnrY+d+1mT0qAAAAAAAAAMzWvfu31/N9r/n8/+f2Wc/9n0dTzr+Sf5Fy/un+/90Lb14ZW6/fmr/7zoP8/3n/9vrvbvzj//P0oPkv5ZkqPbOq9Iyo0iNVgzR9zB2bYGvYHzWPNKx6/UG65qcevhdX4mpsxOk96/bS8fCg/cye9qanw+32ur/TfnZP+2C3PW9/bk/7MF3pVK/k9pOxHj+Jq/HudnvTtjRl/5entNdT2nP+fcd/kXL+g9ZPk/9qaq/Gpo27H/X+57hvT/d7nLevfP6Xp2e/O1NtRX9339qa/Xupg/5s/z85disiNq6dvHn5xo1rZyJNjo3iZ9fz0rORJp+xnP8w/eT8X3l5pz3/3W8fr3c/Gj1y/otiKwYT83+5Nd/s76tz7lsXcv6j9JPzfze173/8H+b8Jx//r3XQHwAAAAAAAAAAAAAAAHiYuq63bxF9OyLOp/t/uro3EwCYr/z6Xyd5+bzq/uNu/4e9+9FV/9XqOdfVgvVnrvWn9WL1R72Q9X8WrD8LV7fV+3urXUTEX9rbNO8ZfrHfLwMAFtmnEfH3rjtBZ+RfsPx9f830RNedAebq+oe3fnT56tWNa9e77gkAAAAAAAAA8Ljy+J9rrfGfT9R1fWdsvT3jv74Ta086/ucgz+wOMDphoOr+o+/Tw2z1Rv1ea7jxF2PS+N/D3bmHjf89mPJ4wyntoyntS1Pal6e073ujR0vO/8XWeOcnIuKFseHXSxj/dXzM+xLk/F9qPZ+b/L80tl47//o3hzn/3p78T9344Kenrn946/UrH1x+f+P9jR+fO3Pm9Lnz5y9cuHDqvStXN07v/LfDHs9Wzj+Pfe060LLk/HPm8i9Lzv8LqZZ/WXL+X0y1/MuS88/v9+Rflpx//uwj/7Lk/F9NtfzLkvP/cqrlX5ac/2upln9Zcv5fSbX8y5Lzfz3V8i9Lzv9kquVflpz/qVQfMP+VWfeL+cj55zNcjv+y5PzzlQ3yL0vO/2yq5V+WnP+5VMu/LDn/N1It/7Lk/L+aavmXJed/PtXyL0vO/2upln9Zcv4XUi3/suT8v55q+Zcl5/+NVMu/LDn/N1Mt/7Lk/L+ZavmXJef/rVTLvyw5/2+nWv5lyfm/lWr5l+XB9/+bMWNmRjODw3egdf2XCQAAAAAAAAAAAAAYN4/LibveRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC/7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKe/cWI9dd3wH8zN68diA2EFInNWHtGGOcTXZ9iS+0LiZcG24lIRR6wXa9a7PgG167BBrVjgIlEkZFFW3DQ1tAqM1LhVXxQKuA8oBaVapE2gf6gqhQeYiqgAJSVVpBtpo5//9/Z2ZnZ3a9483Zcz4fKfllZ87MOXPmP7P7tfPdAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg2dY3TX+mlmVZrVbLL9iUZS+pz/VjmxqXvP7FPT4AAABg5X7R+PfzG9MFR5Zwo6Zt/umO73x9bm5uLvvA4J8Of2FuLl0xlmXD67KscV107QcfrDVvEzyWjdYGmr4e6LH7wR7XD/W4frjH9SM9rl/X4/rRHtcvOAELrM9q6c62N/5zU35Ks1uy4cZ12zvc6rHauoH6uUu3zWqN28wNn8xmstPZdDbZsn2+ba2x/VNb6/t6exb3NdC0ry31FfKTR07EY6iFc7y9ZV/z9xn96I3Z2E9/8siJv7743G2dZs/T0HJ/+XHu3FY/zk+FS/JjrWXr0jmJxznQdJxbOjwngy3HWWvcrv7f7cf5/BKPc3D+MFdV+3M+mg00/vuZxnkaqmUdztOWcNnP7syy7Mr8Ybdvs2Bf2UC2oeWSgfnnZzRfkfX7qC+ll2dDy1qnW5ewTutzanvrOm1/TcTnf2u43dAix9D8NP3o0ZGm5/3nc9ezTqP6o17stdK+Bvv9WinKGozr4pnGg3684xrcHh7/IzsWX4Md106HNZged9Ma3NZrDQ6MDDaOOT0JtcZt5tfg7pbtBxt7qjXmszu6r8GJi2fOT8x+4pN3z5w5fmr61PTZvbt3T+7dv//gwYMTJ2dOT0/m/77Os118G7KB9BrYFs5dfA28tm3b5qU69+WRBe+/1/s6HO3yOtzUtm2/X4dD7Q+utjovyIVrOn9tvK9+0kevDmSLvMYaz8+ulb8O0+Nueh0ONb0OO35P6fA6HFrC67C+zfldS/uZZajpn07HsPj3gpWtwU1Na7D955H2Ndjvn0eKsgZHw7r43q7FvxdsCcf7+Phyfx4ZXLAG08MN7z31S9LP+6MHG6PTury9fsVNI9ml2ekL9zx8/OLFC7uzMFbFK5rWSvt63dD0mLIF63Vg2ev1yMwdj9/e4fJN4VyN3l3/1+iiz1V9m333dH+uGt/dOp/Plkv3ZGH02Wqfz07fzevncyTLvvjtRx/45iNffNOi57OeNz81sfKfxVMubXr/HV7k/Tfm/hfy/aW7emxweCh//Q6mszPc8n7c+lQNNd67ao19Pz+xtPfj4fDPar8f39Ll/Xhz27b9fj8ebn9w8f241utPO1am/fkcDevk9GT39+P6Npv3LHdNDnV9P74zzFo4/68LSSHloqa1s9i6TfsaGhoOj2so7qF1ne5t2X44ZLP6vp7cc33rdOed+X0Npkc3b7XW6Vjbtv1ep+nPvhZbp7Vef/p2fdqfz9GwLm7Z232d1rd5et/K3zvXx/9seu8c6bUGhwdH6sc8nBZh4/0+m1sf1+A92YnsXHY6m2pcO9JYT7XGvsbvXdoaHAn/rPZ75eYua3Bn27b9XoPp+9hia682tPDB90H78zka1sUT93Zfg/Vt3nygvz+77gyXpG2afnZt//O1xf7M6/a203Sj1spQOM5vH+j+Z7P1bU4fXG7O7H6e7gqX3NThPLW/fhd7TU1lq3OeNofjfO7g4uepfjz1bb5waInr6UiWZZc/dl/jz3vD36/83aXvfr3l7106/Z3O5Y/d9+OXnvzH5Rw/AGvfC/nYkH+va/qbqaX8/T8AAACwJsTcPxBmIv8DAABAacTcH/+v8ET+BwAAgNKIuX8ozKQi+X/zm5+beeFylpr5c0G8Pp2G+/PtYsd1Mnw9Njevfvl9X53+73+4vLR9D2RZ9vP7/6Dj9pvvj8eVGwvHee0trZcv8PW7l7TvYw9dTvtt7q9/Kdx/fDxLXQadKriTWZY9tfFzjf2MffBqYz59/7HGfODK44/Vt3n+UP51vP2zr8i3/4tQ/j1y8njL7Z8N5+GHYU6+o/P5iLf72tXXbTnw/vn9xdvVtt3ceNhPfCi/3/h7cj7/WL59PM+LHf83P/vk1+rbP/yazsd/eaDz8T8Z7verYf7vq/Ltm5+D+tfxdp8Oxx/3F293z1e+1fH4r30m3/78W/PtjoUZ978zfL39rc/NNJ+vh2vHWx5X9rZ8u7j/ye/+ceP6eH/x/tuPf/To1Zbz0b4+nv63/H4m2raPl8f9RH/ftv/6/TSvz7j/J//oWMt57rX/aw88+6r6/bbv/6627c5/bFdj//P31/obm/7y05/ruL94PEf+9nzL4zny3vA6Dvt/4kNhPYbr/+9afn/tv13h2Htb33/i9l/adLnl8URv/2m+/2tvONWY60bXb7jpJS+9+cqr6+cuy55Zl99fr/2f+qtzLcf/5Vvz8xGvjx399v0vJu7/wsfHz56bvTQzlc7qIxsbvzvnnfnxxOPdGN5b278+eu7ih6cvjE2OTWbZWHl/hd51+0qYP87Hle5bzy14B931UHg+b//zpzbs+NfPxsv//X355VffkX/fem3Y7vPh8k3h+Vve/hd6Yuutjdd37elwhHMLf1/wSmzZ/l8Hl7RhePztPxfE9X7+lR9unIf6dY3vG/F1vcLj//5Ufj/fCOd1Lvxm5m23zu+vefv4uxGuPpi/3ld8/sLbXHxe/yY83+/6YX7/8bji4/1++DnmW5tb3+/i+vjG5YH2+2/8Fo8r4f0ku5JfH7eK5/vq87d2PLz4e0iyK7c1vv6TdD+3LethLmb2E7MTp2fOXnp44uL07MWJ2U988uiZc5fOXjza+F2eRz/S6/bz708bGu9PU9P792WNd6tz+bjBXuzjP//QiakDkzumpk8ev3Ty4kPnpy+cOjE7e2J6anbH8ZMnpz/e6/YzU4d37zm098Ce8VMzU4cPHjq099D4zNlz9cPID6qH/ZMfHT974WjjJrOH9x3afe+9+ybHz5ybmj58YHJy/FKv2ze+N43Xb/374xemTx+/OHNmenx25pPTh3cf2r9/T8/fBnjm/MnZsYkLl85OXJqdvjCRP5axi42L69/7et2ecpr9j/zn2Xa1/BfxZe+5a3/6/ax1X3100bvKN2n7BaLPhd9F888vO39wKV/H3D8cZlKR/A8AAABVEHP/SJiJ/A8AAAClEXP/ujAT+R8AAABKI+b+0TCTiuT/0vX/N19e0v71//X/m8+X/n/F+v8PFq3/n79f6P/3x0r79/r/gf6//r/+v/6//j99ULT+f8z967OskvkfAAAAqiDm/g1hJvI/AAAAlEbM/TeFmcj/AAAAUBox978kzKQi+V//X/9f/1//X/+/8/71/9cm/f/u9P970P+fyKrV/7/Sz+PX/9f/Z6Gi9f9j7n9pmElF8j8AAABUQcz9N4eZyP8AAABQGjH3bwwzkf8BAACgNGLu3xRmUpH8r//ftf/fXkNelP5/6/Hr/3deH/r/+v/6/zee/n93+v896P/7/H/9f/1/+qpo/f+Y+18WZlKR/A8AAABVEHP/y8NM5H8AAAAonqHru1nM/a8IM1mQ/69zBwAAAMCLLub+W7K2InhF/v5f/9/n/xe//78uXaf/r/+fFbL/P5jp/xeH/n93+v896P/r/+v/6//TV0Xr/zdyfzaavTLMpCL5HwAAAKog5v5bw0zkfwAAACiNmPt/KcxE/gcAAIDSiLl/c5hJRfK//r/+f/H7/z7/X/+/6P1/n/9fJPr/3en/96D/r/+v/6//T18Vrf8fc/9tYSYVyf8AAABQBTH33x5mIv8DAABAacTc/8thJvI/AAAAlEbM/VvCTCqS//X/C97/j81R/X/9f/1//X/9/yXR/+9O/78H/X/9f/1//X/6qmj9/5j7XxVmUpH8DwAAAFUQc/8dYSbyPwAAAJRGzP2vDjOR/wEAAKA0Yu4fCzOpSP7X/y94/z/vwY/4/H/9f/1//X/9/6XR/+9O/78H/X/9/770/+cu6//r/5MrWv8/5v6tYSYVyf8AAABQBTH3bwszkf8BAACgNGLuvzPMRP4HAACA0oi5f3uYSUXyv/7/muj/Z/r/+v/6//r/+v9Lo//fnf5/D/r/+v8+/1//n74qWv8/5v7XhJlUJP8DAABAFcTcvyPMRP4HAACA0oi5/7VhJvI/AAAAlEbM/TvDTCqS//X/9f/1//X/9f8771//f23S/+9O/78H/X/9f/1//X/6qmj9/5j7XxdmUpH8DwAAAFUQc/+uMBP5HwAAAEoj5v67wkzkfwAAACiNmPvHw0wqkv/1//X/9f/1//X/O+9f/39t0v/vTv+/B/1//X/9f/1/+qpo/f+Y++8OM6lI/gcAAIAqiLn/njAT+R8AAABKI+b+iTAT+R8AAABKI+b+yTCTiuR//X/9f/1//f9l9f9fPX+/+v85/f9i0f/vTv+/B/1//f8Xvf8/rP9PqRSt/x9z/+4wk4rkfwAAAKiCmPv3hJnI/wAAAFAaMffvDTOR/wEAAKA0Yu7fF2ZSkfyv/6//r/+v/+/z/zvvX/9/bdL/767//f/4EPX/9f/1/33+v/4/CxWt/x9z/71hJhXJ/wAAAFAFMffvDzOR/wEAAKA0Yu4/EGYi/wMAAEBpxNx/MMykIvlf/1//X/9f/1//v/P+9f/XJv3/7nz+fw/6//r/+v/6/6zQg3/Y/FXR+v8x9x8KM6lI/gcAAIAqiLn/9WEm8j8AAACURsz9vxJmIv8DAABAacTc/6thJhXJ//r/Ld3z+sPV/9f/1//X/2/Q/1+b9P+70//vQf9f/1//X/+fvlq0/x+i92r3/2PuPxxmUpH8DwAAAFUQc/+vhZnI/wAAAFAaMfe/IcxE/gcAAIDSiLn/SJhJRfK//r/P/9f/1//X/++8/9Xu/4/E+9X/XxH9/+70/3vQ/9f/1//X/6evivb5/zH3vzHMpCL5HwAAAKog5v77wkzkfwAAACiNmPvfFGYi/wMAAEBpxNz/5jCTiuR//X/9f/1//X/9/8779/n/a5P+f3f6/8GdGzsfgP6//r/+v/4/fVW0/n/M/W8JM6lI/gcAAIAqiLn/rWEm8j8AAACURsz9bwszkf8BAACgNGLuf3uYSUXyv/6//r/+v/6//n/n/ev/r036/93p//eg/6//r/+v/09fFa3/H3P/r4eZVCT/AwAAQBXE3H9/mIn8DwAAAKURc/87wkzkfwAAACiNmPvfGWZSkfyv/6//r/+v/6//33n/+v9rk/5/d2us//+Lm8Pl+v85/f9iH/9y+/9DbV/fkP7/Dxbr/8+ta7+9/j83QtH6/zH3vyvMpCL5HwAAAKog5v53h5nI/wAAAFAaMfe/J8xE/gcAAIDSiLn/N8JMKpL/9f/rxzHfXtb/L2v/f0D/X/9f/78i9P+7W2P9f5//30b/v9jH7/P/9f9ZqGj9/5j73xtmUpH8DwAAAFUQc/8DYSbyPwAAAJRGzP0PhpnI/wAAAFAaMfe/L8ykIvlf/9/n/1ej/+/z/zP9f/3/itD/707/vwf9f/3/ovX//1P/n7WtaP3/mPsfCjOpSP4HAACAKoi5//1hJvI/AAAAlEbM/b8ZZiL/AwAAQGnE3P+BMJOK5H/9/7XS/x9bo/3/R/X/b2D//46b8+30//X/maf/353+fw/6//r/Rev/+/x/1rii9f9j7v9gmMnS8//okrcEAAAAXhQx9/9WmElF/v4fAAAAqiDm/t8OM5H/AQAAoDRi7v+dMJOK5H/9/7XS//f5/5n+v8//b3s8+v/6/52sXv8/vvPo/+v/6/9H+v/6//r/tCta/z/m/t8NM6lI/gcAAIAqiLn/Q2Em8j8AAACsCZ3+n+x2MfcfDTOR/wEAAKA0Yu4/FmZSkfyv/6//r/9f0P7/n237l+99593Hduv/6//r/y/Lqn7+f/3F7/P/9f/1/xP9f/1//X/aFa3/H3P/8TCTiuR/AAAAqIKY+38vzET+BwAAgNKIuf9EmIn8DwAAAKURc/9UmElF8r/+v/6//n9B+/9r+PP/4/nQ/2/Vt/5/fNPV/+8o79+nVXRj+//vn++J6/8vt/8/0vFS/X/9/7V8/Pr/+v8sVLT+f8z902EmFcn/AAAAUAUh9w+czOf8FfI/AAAAlEbM/afCTOR/AAAAKI2Y+z8cZlKR/K//r/+v/6//7/P/O++/W/+/NuTz/4sq9e9/1nih6P+3KU7/vzP9f/3/tXz8+v/6/yxUtP5/zP0zYSYVyf8AAABQBTH3fyTMRP4HAACA0oi5/6NhJvI/AAAAlEbM/afDTCqS//X/9f/1//X/9f8777+wn/+v/9/VSvv3+v+B/n+1+///o/+v/6//T38Urf8fc/+ZMJOK5H8AAACogv9n706aLKvLPI7f7C66soJe9K4X3YuO6N71S2DRve5+AS7cuDHCcIEKKs4UziOKirMiOA84gCCigvMATiiKA6g4izNOiBJlkPU8T1Vmnjw3s+pm5jn//+ezqEfSSu6VqKjiV1lfT+7+8+MW+x8AAACakbv/UXGL/Q8AAADNyN3/6Lilk/2v/z+b/v9Upaz/3/z+J9H//4/+f6fX1//r/1um/x+n/19C/+/5//p//T8rNbX+P3f/Y+KWTvY/AAAA9CB3/wVxi/0PAAAAzcjdf2HcYv8DAABAM3L3PzZu6WT/b+n/1xZ99v+Z8Xr+f0v9v+f/7/j6+n/9f8sOtv+/5MGf+fT/+n/9f9D/76r/P7rT5+v/adHU+v/c/Y+LWzrZ/wAAANCD3P2Pj1vsfwAAAGhG7v6L4hb7HwAAAJqRu/8JcUsn+391z/8/tvHxmfb/Rf+v/9/4gP5f/6//ny3P/x/XU/9/4e3nnn/v9f92w15eX/+v//f8f/0/qzW1/j93/xPjlk72PwAAAPQgd/+T4hb7HwAAAJqRu//JcYv9DwAAAM3I3f+UuKWT/b+6/n/Wz/8v+n/9/8YH9P/6f/3/bOn/x/XU/5/J6+v/9f/6f/0/qzW1/j93/1Pjlk72PwAAAPQgd//T4hb7HwAAAJqRu//iuMX+BwAAgGbk7j8et3Sy//X/+9//P6D/1//H1f/r//X/+0//P07/v4T+X/+v/9f/s1JT6/9z918St3Sy/wEAAKAHufufHrfY/wAAANCM3P3PiFvsfwAAAGhG7v5nxi2d7H/9v+f/6/+X9/8X6P+D/l//P336/3H6/yX0/2fbz5+j/9f/6/853R77//tHftpeSf+fu/9ZcUsn+x8AAAB6kLv/2XGL/Q8AAADNyN3/nLjF/gcAAIBm5O5/btzSyf7X/+v/9f+e/3/G/f/2H3ob9P/D9P8HQ/8/bjL9/9qRwQ/r/2ff/3v+v/5f/88mU3v+f+7+58Utnex/AAAA6EHu/ufHLSP7f8+/mQ8AAAAcqtz9L4hbfP0fAAAAZi+rs9z9L4xbOtn/+n/9v/5f/+/5/8OvP9b/33Da+9P/T4v+f9xk+v8d6P/1/3N+//p//T/bTa3/z93/orilk/0PAAAAPcjdf2ncYv8DAABAM3L3vzhusf8BAACgGbn7XxK3dLL/h/v/U/+9/n939P+b37/+f/jHx6r6//w76v9H+///9fz/Pun/xx18/39U/7/576//30eH/f4b7/+PLft8/T9Dptb/5+6/LG7pZP8DAABAD3L3vzRusf8BAACgGbn7Xxa32P8AAADQjNz9L49bOtn/nv+v/9f/z6//9/z/kw7z+f+LA+//j+j/d0n/P87z/5fQ/+v/9f+e/89KTa3/z91/edzSyf4HAACAHlx+32Jj979isbD/AQAAYI5O/7MDW/9Aacjd/8q4xf4HAACAZuTuf1Xc0sn+1//r//X/+n/9//DrT6v/9/z/3dL/j9P/L6H/349+/khj/f8VO33+FPr/i/X/TMym/v+mUx8/rP4/d/+r45ZO9j8AAAD0IHf/a+IW+x8AAACakbv/tXGL/Q8AAADNyN3/urilk/2/7/3/sZ1fe+b9/6byRP+/+f3r/zfT/8ePB/2//v8A6P/H6f+X0P97/r/n/+v/WalT/f/mnw8Pq//P3f/6uKWT/Q8AAAA9yN3/hrjF/gcAAIBm5O6/Im6x/wEAAKAZufvfGLd0sv89/9/z//X/+n/9//Dr6//nSf8/Tv+/hP5f/6//1/+zUpue/3+aw+r/c/dfGbd0sv8BAACgB7n7r4pb7H8AAABoRu7+N8Ut9j8AAAA0I3f/m+OWTva//n9/+//8uP5f/7/Q/+v/9f8Hotv+f23oV6Ltduj/b33E8f/f/BH9v/5f/6//1/+zApPo/0+c+rfL3P1viVs62f8AAADQg9z9b41b7H8AAABoRu7+t8Ut9j8AAAA0I3f/2+OWPe7/f1npuzo4+n/P/9f/6//1/8Ovr/+fp277/13y/P8l9P/6f/2//p+VmkT/f9pf5+5/R9zi6/8AAADQjNz974xb7H8AAABoRu7+d8Ut9j8AAAA0I3f/u+OWTva//l//r/+fZf9/XnwX/f8E+//1xTD9/8HQ/4/T/y+h/9f/6//1/6zU1Pr/3P1Xxy2d7H8AAADoQe7+98Qt9j8AAAA0I3f/e+MW+x8AAACakbv/fXFLJ/tf/6//1//Psv/3/P8J9/870f8fDP3/OP3/YrG4ZuQNDPX/J47q//X/+n/9P2doav1/7v73xy2d7H8AAADoQe7+a+IW+x8AAACakbv/2rjF/gcAAIBm5O7/QNzSyf7X/+v/9f/6f/3/8Ovr/+dJ/z9O/7+E5//r//X/+n9Wamr9f+7+6+KWTvY/AAAA9CB3//Vxi/0PAAAAzcjd/8G4xf4HAACAZuTuvyFu6WT/6//1//p//f++9P/H9f9b6f8Pxv71/wv9v/5f/7+E/l//r/9nq4Pq/++Pn++X9f+5+z8Ut3Sy/wEAAKAHuftvjFvsfwAAAGhG7v4Pxy32PwAAADQjd/9H4pZO9r/+X/+v/9f/e/7/8Ovr/+fJ8//H6f+X0P/r//X/+n9W6qD6/516/61/nbv/o3FLJ/sfAAAAepC7/6a4xf4HAACAZuTuvzlusf8BAACgGbn7Pxa3dLL/9f/6/839/2Kh/9f/6/9POoD+f32h/185/f84/f8S+v82+/9/WDTU/x/b8fP1/0zR1Pr/3P0fj1s62f8AAADQg9z9n4hb7H8AAABoRu7+T8Yt9j8AAAA0I3f/p+KWlvb/Azunb/Pv/49u+UT9/2KxuPMiz//X/4+8vv5/Mv1//VPV/6+O/n/cv//XPXes7+Y76v/1/y31/57/r//n0Eyt/8/d/+m4paX9DwAAAJ3L3f+ZuMX+BwAAgGbk7v9s3GL/AwAAQDNy938ubulk/8+//9/6ifr/xVk9/1//v/EB/b/+X/8/W2fb31+5Hr+mtdv/e/7/GP3/0n5+bYd/71no//X/+n8GTK3/z93/+bilk/0PAAAAPcjdf0vcYv8DAABAM3L33xq32P8AAADQjNz9X4hbOtn/+n/9/5z6/3X9f/X/6/p//b/+f9BUnv9/3nn/d5v+X//fYv8/Rv+v/9f/s9XU+v/c/V+MWzrZ/wAAANCD3P1filvsfwAAAGhG7v4vxy32PwAAADQjd/9X4pZO9v/2/v+cxclC9aSh/j8aNf3/afT/m9+/5/8P//jw/H/9v/5//02l//f8/zN7//p//f+c3/+e+v//2P75+n9aNLX+P3f/bXFLJ/sfAAAAepC7/6txi/0PAAAAzcjd/7W4xf4HAACAZuTuvz1u6WT/e/6//l//r//X/w+/vv5/nvT/4/T/S+j/z76fz59V9f/zff7/P+r/WZ2p9f+5+78et2wMv//85zP8nwkAAABMSO7+b8QtnXz9HwAAAHqQu/+OuMX+BwAAgGbk7v9m3NLJ/tf/6//1//p//f/w6+v/50n/P07/v0Q//f/60AcPu58/W4f9/pvp/z3/nxWaWv+fu/9bcUsn+x8AAADadt/Gt7n7vx232P8AAADQjNz934lb7H8AAABoRu7+O+OWTva//l//337//zD9/5bX1//r/1um/89f0Yfp/5fop/8fdNj9/Nzfv/5f/892U+v/c/ffFbd0sv8BAACgB7n7vxu32P8AAADQjNz934tb7H8AAABoRu7+78ctnex//X9f/f/aosf+3/P/9f/6/57Mp/+/6sjQRz3/X/+v/5/v+9f/6//Zbmr9f+7+u9eOdLn/AQAAYK4e8t+PvGu33/fujW/XFz+IW+x/AAAAaEbu/h/GLfY/AAAANCN3/4/ilk72v/6/r/6/z+f/6//1//r/nsyn/x+m/9f/6//n+/576P//aeTz9f8MmVr/n7v/x3HLacNv8P+gBwAAADg8Y78pNSB3/0/ilk6+/g8AAAA9yN3/07hl2/4/scs/1Q4AAABMTe7+n8UtnXz9X/8/8f5/sU/9f3w//f9J+n/9/9Dr6//nSf8/7iz7/xNr+n/9/wj9f/v9/xj9P0Om1v/n7r/xukWX+x8AAAAatel3FH6+8e364p64xf4HAACAZuTu/0XcYv8DAABAM3L3/zJu6WT/6/8n3v+f0fP/j9V/8vz/zvv/S9cHX1//r/9vmf5/nOf/L6H/1//r//X/rNQe+v+NQbrf/X/u/l/FLZ3sfwAAAOhB7v5fxy32PwAAADQjd/9v4hb7HwAAAJqRu/+3cUsn+1//fwj9/2VHF4t97f938fx//X8f/f8Or99O//+v5x6/5aEPv/Zq/T+nHGT/nz8W9P/6f/3/Sfp//b/+n62m9vz/3P2/i1s62f8AAADQg9z998Yt9j8AAAA0I3f/7+OWB/f/zYf1rgAAAIBVyt3/h7ilk6//6/9bfP7/PPv//Gd9CP3/8fn1/9kU997/e/6//n87z/8fp/9fQv+v/9f/6/9Zqan1/7n7/xi3dLL/AQAAoAe5+/8Ut+T+X9vzb90DAAAAE5O7/89xi6//AwAAQDNy998Xt3Sy//X/+v+p9P/J8/9PfZ7n/5+k/9f/74X+f5z+fwn9v/5f/6//Z6Wm1v/n7v9L3NLJ/gcAAIAe5O6/P26x/wEAAKAZufv/GrfY/wAAANCM3P1/i1s62f/6f/2//l//r/8ffn39/zzp/8fp/5fQ/+v/9f/6f1Zqav1/7v6/BwAA//+l7G5O")
truncate(&(0x7f0000000080)='./file1\x00', 0x3)

3.299798318s ago: executing program 4 (id=8022):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x2c, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x34}}}}]}]}, 0x2c}}, 0x0)

2.40765638s ago: executing program 5 (id=8036):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000e00)=ANY=[@ANYBLOB="1c000000000605"], 0x1c}}, 0x0)

2.219520755s ago: executing program 5 (id=8039):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x7, 0x4, 0x3e0, 0x110, 0x0, 0x110, 0x2f8, 0x2f8, 0x2f8, 0x4, 0x0, {[{{@uncond, 0xc0, 0x11e}, @mangle={0x50, 'mangle\x00', 0x0, {@mac, @mac=@remote, @loopback, @local, 0x1, 0x1}}}, {{@arp={@multicast2, @private=0xa010100, 0xff, 0xffffff00, 0xc, 0x4, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, {[0xff, 0xff, 0xff, 0xff, 0x0, 0xbe9240b8a223bba0]}}, {@mac=@dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}, {[0xff, 0x0, 0xff, 0xff, 0xff]}}, 0x2, 0x6, 0x23b0, 0x9dd7, 0x80, 0x9, 'veth1_vlan\x00', 'ip_vti0\x00', {0xff}, {0xff}, 0x0, 0x12}, 0xc0, 0x100}, @unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "716ebd2e1aa0cc683e62f312359594df00da56317f76121697127951fdba"}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE0={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x430)

2.163515737s ago: executing program 4 (id=8041):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bind(r0, &(0x7f00000002c0)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x4}, [@null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default]}, 0x80)

2.035187085s ago: executing program 5 (id=8043):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f0000000140)={0x5, 0x10, 0xfa00, {0x0}}, 0x18)

1.92514033s ago: executing program 4 (id=8044):
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f00000001c0)={0x1, 0x5})

1.912895172s ago: executing program 5 (id=8046):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'iso8859-15'}}, {}, {@unhide}, {@gid}, {@uid_forget}, {@longad}, {@undelete}, {@unhide}, {@unhide}]}, 0x1, 0xc43, &(0x7f0000001040)="$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")
openat$incfs(0xffffffffffffff9c, &(0x7f0000000540)='.log\x00', 0x1c10c1, 0x9c37611dc13d0db7)

1.716213011s ago: executing program 6 (id=8047):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x2}, 0x48)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x4}, 0x38)

1.715520482s ago: executing program 4 (id=8048):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001400030000120800040043000000a80016000a00014020000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee", 0xd8}], 0x1}, 0x0)

1.527774576s ago: executing program 5 (id=8050):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x1010000, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x1, 0x61d0, &(0x7f000000cb40)="$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")
lchown(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)

1.513006784s ago: executing program 6 (id=8051):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000780)=ANY=[@ANYBLOB="020d0000100000000000000000000000080012000200020000000000000000001200330002030000000000000000000000000000000000000000000000000000fc020000000000000000000000000000030005000000000002000000ac1414aa00000000fa000000030006000000000002"], 0x80}}, 0x0)

1.301206198s ago: executing program 4 (id=8053):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000040)='./bus\x00', 0x18, &(0x7f00000000c0), 0x1, 0x55ae, &(0x7f000000ac40)="$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")
pivot_root(&(0x7f00000001c0)='.\x00', &(0x7f0000002080)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')

1.223732245s ago: executing program 6 (id=8055):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000180)={0x65f5, 0x0, 0xff})

1.168850887s ago: executing program 1 (id=8056):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x83}, @IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x60}}, 0x0)

1.111749884s ago: executing program 0 (id=8057):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448d4, 0x0)

984.971967ms ago: executing program 1 (id=8058):
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$restrict_keyring(0xa, r0, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='\x00\x00\x00\x00\x00\x00')

958.787106ms ago: executing program 6 (id=8059):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f0000001680)=[{{&(0x7f0000000080)={0xa, 0x4e21, 0x1000, @mcast2}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000280)="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", 0x5ae}], 0x1, &(0x7f0000001280)=[@dontfrag={{0x14, 0x29, 0x3e, 0x1}}], 0x18}}], 0x1, 0x84)

840.768822ms ago: executing program 0 (id=8060):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=@ipv4_newroute={0x2c, 0x18, 0x1, 0x70bd3e, 0x25dfdbfe, {0x2, 0x0, 0x20, 0x8, 0xfc, 0x1, 0x0, 0x1, 0x5100}, [@RTA_PREFSRC={0x8, 0x7, @multicast1}, @RTA_GATEWAY={0x8, 0x5, @loopback}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0xc8c4)

807.485177ms ago: executing program 1 (id=8061):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000400080000000000000000008500000017000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000001000000850000005000000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

779.992077ms ago: executing program 6 (id=8062):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000240)='./bus\x00', 0x1a00840, &(0x7f0000000040)={[{@fat=@nfs}, {@numtail}, {@numtail}, {@uni_xlate}, {@fat=@nfs_nostale_ro}, {@shortname_lower}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@numtail}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@utf8no}, {@utf8no}, {@uni_xlate}, {@utf8}]}, 0x1, 0x367, &(0x7f0000000c80)="$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")
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)=@FILEID_INO32_GEN={0x8, 0x1, {0x47f, 0x11457213}}, 0x0, 0x1200)

632.886974ms ago: executing program 0 (id=8063):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="b40000001800090000000000000000001c140000fe0000010000000005001a0008"], 0xb4}}, 0x24040810)

583.958053ms ago: executing program 1 (id=8064):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="340000001c000104000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="e0009c050a0001"], 0x34}}, 0x40080)

351.034253ms ago: executing program 1 (id=8065):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$sock_int(r0, 0x1, 0x1e, 0x0, &(0x7f0000000040))

339.02813ms ago: executing program 0 (id=8066):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_int(r0, 0x29, 0x48, &(0x7f0000000000)=0xfffffff8, 0x4)

296.222163ms ago: executing program 6 (id=8067):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x282, 0x0)
sendfile(r0, r0, 0x0, 0x40008)

177.668841ms ago: executing program 1 (id=8068):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x581, 0x0, 0x200000, {0x0, 0x0, 0x0, 0x0, 0x0, 0x20802}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @sit={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_FLAGS={0x6, 0x8, 0x39}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x89}]}}}]}, 0x40}}, 0x0)

156.747667ms ago: executing program 0 (id=8069):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
uname(&(0x7f0000000640)=""/4096)

59.039608ms ago: executing program 5 (id=8070):
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x801)
ioctl$SNDRV_CTL_IOCTL_HWDEP_NEXT_DEVICE(r0, 0xc0045520, &(0x7f0000000040)=0xeaca)

0s ago: executing program 0 (id=8071):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x46, &(0x7f0000000100)=0x1, 0x4)

kernel console output (not intermixed with test programs):

oad upcase table (idx : 0x0000fe7f, chksum : 0x09066d1f, utbl_chksum : 0xe619d30d)
[  611.842838][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  611.842856][   T30] audit: type=1800 audit(1759886047.621:117): pid=25044 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.6237" name="file2" dev="loop1" ino=1048646 res=0 errno=0
[  612.231217][T25020] loop2: detected capacity change from 0 to 32768
[  612.342827][T25020] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  612.498990][T25020] XFS (loop2): Ending clean mount
[  612.677213][ T5831] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  612.847930][T25124] netlink: 68 bytes leftover after parsing attributes in process `syz.5.6257'.
[  613.377031][   T24] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  613.648667][   T24] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  613.663728][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  613.686831][   T24] usb 6-1: Product: syz
[  613.706565][   T24] usb 6-1: Manufacturer: syz
[  613.726615][   T24] usb 6-1: SerialNumber: syz
[  613.753737][   T24] usb 6-1: config 0 descriptor??
[  613.775970][   T24] ch341 6-1:0.0: ch341-uart converter detected
[  613.823946][T25186] loop0: detected capacity change from 0 to 512
[  613.841655][T25186] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  613.909043][T25186] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #17: comm syz.0.6273: iget: bad i_size value: -6917529027641081756
[  613.961423][T25196] overlayfs: failed to resolve './bus': -2
[  614.021196][T25186] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.6273: couldn't read orphan inode 17 (err -117)
[  614.072147][T25186] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  614.199071][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  614.224941][   T24] usb 6-1: failed to send control message: -71
[  614.252649][   T24] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  614.306823][   T24] usb 6-1: USB disconnect, device number 7
[  614.340120][   T24] ch341 6-1:0.0: device disconnected
[  614.528567][T25189] loop2: detected capacity change from 0 to 32768
[  614.920862][T25245] tc_dump_action: action bad kind
[  615.243970][T25263] xt_ecn: cannot match TCP bits for non-tcp packets
[  615.459227][T25278] netlink: 'syz.2.6299': attribute type 5 has an invalid length.
[  615.852272][T25252] loop0: detected capacity change from 0 to 32768
[  615.897651][T25252] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6289 (25252)
[  615.973240][T25252] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  616.016048][T25252] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  616.199981][T25327] loop2: detected capacity change from 0 to 736
[  616.242402][T25252] BTRFS info (device loop0): enabling ssd optimizations
[  616.295734][T25252] BTRFS info (device loop0): enabling free space tree
[  616.392778][T25296] loop1: detected capacity change from 0 to 32768
[  616.423596][T25296] BTRFS info: device /dev/loop1 (7:1) using temp-fsid 15d75507-949f-41b6-918c-f644935403e8
[  616.463854][T25296] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6304 (25296)
[  616.525432][T25352] loop2: detected capacity change from 0 to 512
[  616.553676][ T5837] Bluetooth: hci1: unexpected subevent 0x0e length: 30 > 15
[  616.561479][ T5837] Bluetooth: hci1: Unable to find connection for dst 00:00:00:00:00:00 sid 0x00
[  616.563450][ T5836] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  616.615946][T25296] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  616.654021][T25352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  616.712586][T25296] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  616.721309][T25352] ext4 filesystem being mounted at /1255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  616.809812][T25352] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #12: comm syz.2.6314: corrupted xattr block 6: invalid header
[  616.971124][T25296] BTRFS info (device loop1): enabling ssd optimizations
[  616.978118][T25296] BTRFS info (device loop1): enabling free space tree
[  617.080067][T25398] loop5: detected capacity change from 0 to 1024
[  617.193424][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  617.446349][ T5827] BTRFS info (device loop1): last unmount of filesystem 15d75507-949f-41b6-918c-f644935403e8
[  617.457156][T25417] netlink: 'syz.4.6328': attribute type 1 has an invalid length.
[  617.599317][T25421] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6331'.
[  617.663076][T25425] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  617.818935][T25432] Malformed UNC in devname
[  617.818935][T25432] 
[  617.873814][T25432] CIFS: VFS: Malformed UNC in devname
[  618.085831][T25450] loop5: detected capacity change from 0 to 256
[  618.221759][T25458] netlink: 'syz.4.6340': attribute type 11 has an invalid length.
[  618.285051][T25458] netlink: 'syz.4.6340': attribute type 4 has an invalid length.
[  618.317092][T25458] netlink: 224 bytes leftover after parsing attributes in process `syz.4.6340'.
[  618.412332][    T9] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  618.605961][    T9] usb 6-1: Using ep0 maxpacket: 8
[  618.634467][    T9] usb 6-1: config 4 has an invalid interface number: 244 but max is 0
[  618.674958][    T9] usb 6-1: config 4 has no interface number 0
[  618.711821][    T9] usb 6-1: config 4 interface 244 altsetting 1 endpoint 0x1 has an invalid bInterval 41, changing to 7
[  618.753307][    T9] usb 6-1: config 4 interface 244 altsetting 1 endpoint 0x2 has invalid maxpacket 11380, setting to 1024
[  618.810782][    T9] usb 6-1: config 4 interface 244 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 1024
[  618.854349][    T9] usb 6-1: config 4 interface 244 has no altsetting 0
[  618.887182][    T9] usb 6-1: New USB device found, idVendor=05ac, idProduct=fa33, bcdDevice=cb.aa
[  618.905179][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  618.914788][    T9] usb 6-1: Product: syz
[  618.919142][    T9] usb 6-1: Manufacturer: syz
[  618.923745][    T9] usb 6-1: SerialNumber: syz
[  618.974140][T25450] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  619.025266][T25451] loop1: detected capacity change from 0 to 32768
[  619.054012][T25451] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6339 (25451)
[  619.108178][T25451] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  619.139724][T25451] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  619.230731][    T9] ipheth 6-1:4.244: Unable to find endpoints
[  619.259532][T25520] loop0: detected capacity change from 0 to 256
[  619.264213][    T9] usb 6-1: USB disconnect, device number 8
[  619.314340][T25520] exfat: Deprecated parameter 'namecase'
[  619.414171][T25520] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  619.448327][T25451] BTRFS info (device loop1): enabling ssd optimizations
[  619.462502][T25451] BTRFS info (device loop1): enabling free space tree
[  619.669328][ T5827] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  620.205380][T25580] vim2m vim2m.0: Fourcc format (0x42474752) invalid.
[  620.347756][T25587] kAFS: unable to lookup cell 'mS�jQ�����=ȠA4Z1ˡ8'
[  621.061949][T25628] netlink: 'syz.2.6378': attribute type 8 has an invalid length.
[  621.109154][T25559] loop4: detected capacity change from 0 to 32768
[  621.177911][T25559] jfs_strtoUCS: char2uni returned -22.
[  621.203253][T25559] charset = ascii, char = 0xb2
[  621.846524][T25670] pim6reg: entered allmulticast mode
[  622.228859][    T9] usb 3-1: new high-speed USB device number 124 using dummy_hcd
[  622.378550][   T44] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  622.398079][T25681] loop5: detected capacity change from 0 to 32768
[  622.401834][T25660] loop1: detected capacity change from 0 to 32768
[  622.412233][T25681] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.6394 (25681)
[  622.428889][    T9] usb 3-1: Using ep0 maxpacket: 8
[  622.432738][T25660] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  622.442504][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  622.457857][T25660] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  622.464747][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  622.464775][    T9] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  622.464794][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  622.464817][    T9] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  622.464858][    T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  622.464878][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  622.475464][T25681] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  622.535686][    T9] usb 3-1: config 0 descriptor??
[  622.543410][T25681] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  622.550071][T25683] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  622.587607][   T44] usb 5-1: config 201 has an invalid interface number: 249 but max is 0
[  622.592565][T25660] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  622.599604][   T44] usb 5-1: config 201 has no interface number 0
[  622.636251][   T44] usb 5-1: config 201 interface 249 has no altsetting 0
[  622.652444][   T44] usb 5-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=fa.df
[  622.704036][   T44] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  622.713127][T25681] BTRFS info (device loop5): rebuilding free space tree
[  622.725743][   T44] usb 5-1: Product: syz
[  622.738189][T25660] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  622.755865][   T44] usb 5-1: Manufacturer: syz
[  622.771431][   T44] usb 5-1: SerialNumber: syz
[  622.824237][T25681] BTRFS info (device loop5): enabling ssd optimizations
[  622.873728][T25681] BTRFS info (device loop5): using spread ssd allocation scheme
[  622.908321][T25681] BTRFS info (device loop5): enabling free space tree
[  622.917637][T25681] BTRFS info (device loop5): force clearing of disk cache
[  623.073955][   T44] ath6kl: Failed to submit usb control message: -71
[  623.092577][   T44] ath6kl: unable to send the bmi data to the device: -71
[  623.108128][ T5833] usb 3-1: USB disconnect, device number 124
[  623.109770][ T5837] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  623.123869][   T44] ath6kl: Unable to send get target info: -71
[  623.148271][   T44] ath6kl: Failed to init ath6kl core: -71
[  623.156428][   T44] ath6kl_usb 5-1:201.249: probe with driver ath6kl_usb failed with error -71
[  623.176816][T20865] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  623.197119][   T44] usb 5-1: USB disconnect, device number 2
[  623.272597][T25755] netlink: 40 bytes leftover after parsing attributes in process `syz.0.6402'.
[  623.841629][T25789] loop2: detected capacity change from 0 to 1024
[  623.900774][T25798] netlink: 140 bytes leftover after parsing attributes in process `syz.5.6411'.
[  623.911912][T25789] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  624.407341][T25828] loop5: detected capacity change from 0 to 128
[  624.606712][ T5831] EXT4-fs error (device loop2): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[  624.694220][ T5831] EXT4-fs error (device loop2): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[  624.944275][  T984] usb 1-1: new low-speed USB device number 121 using dummy_hcd
[  625.073992][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  625.155650][  T984] usb 1-1: config 32 interface 0 altsetting 0 endpoint 0x85 is Bulk; changing to Interrupt
[  625.166932][  T984] usb 1-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7
[  625.190456][  T984] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  625.223592][T25847] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  625.433300][  T140] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  625.465460][  T984] usb 1-1: string descriptor 0 read error: -71
[  625.476732][  T984] hub 1-1:32.0: USB hub found
[  625.493077][  T984] hub 1-1:32.0: config failed, can't read hub descriptor (err -22)
[  625.609465][  T984] usb 1-1: USB disconnect, device number 121
[  625.687003][T25865] loop5: detected capacity change from 0 to 32768
[  625.721063][  T140] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  625.793606][T25865] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  625.930784][T25865] XFS (loop5): Ending clean mount
[  625.950186][   T30] audit: type=1326 audit(1759886060.819:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25926 comm="syz.4.6443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  625.956019][T25865] XFS (loop5): Quotacheck needed: Please wait.
[  625.975277][   T30] audit: type=1326 audit(1759886060.819:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25926 comm="syz.4.6443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  626.026531][   T30] audit: type=1326 audit(1759886060.847:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25926 comm="syz.4.6443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  626.113734][  T140] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.136573][   T30] audit: type=1326 audit(1759886060.847:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25926 comm="syz.4.6443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  626.161533][T25865] XFS (loop5): Quotacheck: Done.
[  626.226966][   T30] audit: type=1326 audit(1759886060.847:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25926 comm="syz.4.6443" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  626.375855][  T140] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  626.438694][T25946] netlink: 'syz.4.6449': attribute type 11 has an invalid length.
[  626.453218][T20865] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  626.533047][ T5845] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  626.550202][ T5845] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  626.571221][ T5845] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  626.600351][ T5845] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  626.622859][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  626.674185][T25956] loop1: detected capacity change from 0 to 1024
[  626.972058][ T3481] hfsplus: b-tree write err: -5, ino 4
[  626.980293][  T140] bridge_slave_1: left allmulticast mode
[  626.990427][  T140] bridge_slave_1: left promiscuous mode
[  626.996514][  T140] bridge0: port 2(bridge_slave_1) entered disabled state
[  627.024190][  T140] bridge_slave_0: left allmulticast mode
[  627.041700][  T140] bridge_slave_0: left promiscuous mode
[  627.058180][  T140] bridge0: port 1(bridge_slave_0) entered disabled state
[  627.289984][T26002] netlink: 'syz.1.6459': attribute type 1 has an invalid length.
[  627.547446][T26017] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6464'.
[  628.015428][T26029] loop0: detected capacity change from 0 to 256
[  628.084051][T26029] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  628.164976][  T140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  628.179604][  T140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  628.207645][  T140] bond0 (unregistering): Released all slaves
[  628.279398][  T140] bond1 (unregistering): Released all slaves
[  628.571857][T26055] loop1: detected capacity change from 0 to 256
[  628.766420][T26066] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6477'.
[  628.790473][T26066] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6477'.
[  628.825175][ T5845] Bluetooth: hci2: command tx timeout
[  629.380958][T26109] Unknown options in mask b7f2
[  629.590583][T26124] loop1: detected capacity change from 0 to 512
[  629.623501][T25948] wg2 speed is unknown, defaulting to 1000
[  629.645367][T26124] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.6489: error while reading EA inode 32 err=-116
[  629.704050][T26124] EXT4-fs (loop1): Remounting filesystem read-only
[  629.722088][T26124] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  629.739962][T26124] EXT4-fs (loop1): 1 orphan inode deleted
[  629.748683][T26124] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  629.846848][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  630.424586][T26173] netlink: 'syz.0.6498': attribute type 5 has an invalid length.
[  630.688012][T26193] loop0: detected capacity change from 0 to 164
[  631.049015][ T5845] Bluetooth: hci2: command tx timeout
[  631.141145][T26228] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  631.174317][T26228] batman_adv: batadv0: Removing interface: batadv_slave_0
[  631.232172][T26228] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  631.239590][T26228] batman_adv: batadv0: Removing interface: batadv_slave_1
[  631.857491][T26277] loop1: detected capacity change from 0 to 256
[  631.917891][T26277] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  632.007297][T26272] loop4: detected capacity change from 0 to 4096
[  632.046764][T26272] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  632.151935][  T140] hsr_slave_0: left promiscuous mode
[  632.166332][T26272] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  632.180176][  T140] hsr_slave_1: left promiscuous mode
[  632.187812][T26272] ntfs3(loop4): mft corrupted
[  632.193500][T26272] ntfs3(loop4): Failed to load $Extend (-22).
[  632.201391][  T140] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  632.216323][ T5888] usb 1-1: new high-speed USB device number 122 using dummy_hcd
[  632.232613][T26272] ntfs3(loop4): Failed to initialize $Extend.
[  632.243518][  T140] batman_adv: batadv0: Removing interface: batadv_slave_0
[  632.292744][T26272] ntfs3(loop4): ino=1e, mi_enum_attr
[  632.295335][  T140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  632.298085][T26272] ntfs3(loop4): ino=1e, mi_enum_attr
[  632.319681][  T140] batman_adv: batadv0: Removing interface: batadv_slave_1
[  632.393796][  T140] veth1_macvtap: left promiscuous mode
[  632.420806][  T140] veth0_macvtap: left promiscuous mode
[  632.449625][  T140] veth1_vlan: left promiscuous mode
[  632.455001][  T140] veth0_vlan: left promiscuous mode
[  632.470786][ T5888] usb 1-1: Using ep0 maxpacket: 32
[  632.482575][ T5888] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  632.490949][ T5888] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  632.535853][ T5888] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  632.556271][ T5888] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  632.574600][ T5888] usb 1-1: config 1 has no interface number 0
[  632.625484][ T5888] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  632.653339][ T5888] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  632.688193][T26379] loop1: detected capacity change from 0 to 4096
[  632.690720][ T5888] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  632.744080][T26379] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  632.827250][T26379] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  632.934310][ T5888] snd_usb_pod 1-1:1.1: endpoint not available, using fallback values
[  632.943953][ T5888] snd_usb_pod 1-1:1.1: invalid control EP
[  632.951060][ T5888] snd_usb_pod 1-1:1.1: cannot start listening: -22
[  632.959543][ T5888] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  632.991020][ T5888] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -22
[  633.112401][T26403] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6535'.
[  633.179793][ T5888] usb 1-1: USB disconnect, device number 122
[  633.274736][ T5845] Bluetooth: hci2: command tx timeout
[  633.650906][  T140] team0 (unregistering): Port device team_slave_1 removed
[  633.705761][  T140] team0 (unregistering): Port device team_slave_0 removed
[  633.976914][T26427] loop0: detected capacity change from 0 to 8
[  634.538362][T26405] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  634.609922][T25948] chnl_net:caif_netlink_parms(): no params data found
[  634.712715][T26458] netlink: 'syz.0.6546': attribute type 15 has an invalid length.
[  634.728730][T26458] netlink: 666 bytes leftover after parsing attributes in process `syz.0.6546'.
[  634.788472][T26461] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6547'.
[  634.930087][T26491] netlink: 'syz.5.6550': attribute type 27 has an invalid length.
[  634.993480][  T984] usb 2-1: new high-speed USB device number 120 using dummy_hcd
[  635.166621][  T984] usb 2-1: Using ep0 maxpacket: 8
[  635.185017][  T984] usb 2-1: config 7 has an invalid interface number: 246 but max is 0
[  635.218000][  T984] usb 2-1: config 7 has no interface number 0
[  635.224275][  T984] usb 2-1: config 7 interface 246 altsetting 128 endpoint 0x4 has invalid maxpacket 1024, setting to 64
[  635.296942][  T984] usb 2-1: config 7 interface 246 altsetting 128 has an invalid descriptor for endpoint zero, skipping
[  635.358005][  T984] usb 2-1: config 7 interface 246 altsetting 128 endpoint 0xB has an invalid bInterval 251, changing to 7
[  635.386247][  T984] usb 2-1: config 7 interface 246 altsetting 128 has an invalid descriptor for endpoint zero, skipping
[  635.399112][T25948] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.407247][  T984] usb 2-1: config 7 interface 246 altsetting 128 bulk endpoint 0x1 has invalid maxpacket 64
[  635.438991][  T984] usb 2-1: config 7 interface 246 has no altsetting 0
[  635.448339][T25948] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.466708][  T984] usb 2-1: string descriptor 0 read error: -22
[  635.473027][  T984] usb 2-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice= 8.30
[  635.479905][T25948] bridge_slave_0: entered allmulticast mode
[  635.509385][ T5845] Bluetooth: hci2: command tx timeout
[  635.519662][  T984] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  635.528036][T25948] bridge_slave_0: entered promiscuous mode
[  635.539307][  T984] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  635.546938][  T984] usb 2-1: selecting invalid altsetting 0
[  635.573962][ T2344] pvrusb2: Invalid read control endpoint
[  635.591748][ T2344] usb 2-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[  635.604074][T25948] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.617714][ T2344] usb 2-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[  635.642329][T25948] bridge0: port 2(bridge_slave_1) entered disabled state
[  635.674821][T25948] bridge_slave_1: entered allmulticast mode
[  635.692283][T25948] bridge_slave_1: entered promiscuous mode
[  635.834175][T26560] loop4: detected capacity change from 0 to 8192
[  635.879951][T25948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  635.917309][T25948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  635.991982][  T984] usb 2-1: USB disconnect, device number 120
[  636.188404][T25948] team0: Port device team_slave_0 added
[  636.221472][T25948] team0: Port device team_slave_1 added
[  636.373262][T25948] batman_adv: batadv0: Adding interface: batadv_slave_0
[  636.386563][T25948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  636.458025][T25948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  636.485688][T25948] batman_adv: batadv0: Adding interface: batadv_slave_1
[  636.492890][T26551] loop0: detected capacity change from 0 to 32768
[  636.511989][T25948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  636.555383][T25948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  636.588447][T26551] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  636.728545][T26551] XFS (loop0): Ending clean mount
[  636.813678][T26551] XFS (loop0): Quotacheck needed: Please wait.
[  636.921895][T26551] XFS (loop0): Quotacheck: Done.
[  636.927280][T26551] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  636.960126][T25948] hsr_slave_0: entered promiscuous mode
[  636.997436][T25948] hsr_slave_1: entered promiscuous mode
[  637.051498][T25948] debugfs: 'hsr0' already exists in 'hsr'
[  637.090525][T25948] Cannot create hsr debugfs directory
[  637.115027][T26735] netlink: 'syz.1.6573': attribute type 1 has an invalid length.
[  637.157398][T26735] netlink: 240 bytes leftover after parsing attributes in process `syz.1.6573'.
[  637.310956][T26720] netdevsim netdevsim4: Direct firmware load for � failed with error -2
[  637.356288][T26720] netdevsim netdevsim4: Falling back to sysfs fallback for: �
[  637.554202][T26777] loop5: detected capacity change from 0 to 1024
[  637.716036][ T3481] hfsplus: b-tree write err: -5, ino 4
[  638.228776][T25948] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  638.263369][T26862] IPVS: length: 4096 != 8
[  638.279693][T25948] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  638.307311][T25948] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  638.344985][T25948] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  638.584256][T25948] 8021q: adding VLAN 0 to HW filter on device bond0
[  638.624835][T25948] 8021q: adding VLAN 0 to HW filter on device team0
[  638.665144][ T3481] bridge0: port 1(bridge_slave_0) entered blocking state
[  638.672473][ T3481] bridge0: port 1(bridge_slave_0) entered forwarding state
[  638.705652][  T140] bridge0: port 2(bridge_slave_1) entered blocking state
[  638.712916][  T140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  638.977461][T26907] netlink: 'syz.4.6596': attribute type 11 has an invalid length.
[  639.065053][T26912] netlink: 'syz.4.6597': attribute type 1 has an invalid length.
[  639.160089][T25948] 8021q: adding VLAN 0 to HW filter on device batadv0
[  639.167264][   T24] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  639.265744][T26923] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6600'.
[  639.309724][T26923] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6600'.
[  639.320101][T26923] netlink: 'syz.4.6600': attribute type 4 has an invalid length.
[  639.382284][   T24] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[  639.391333][   T24] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  639.422238][   T24] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  639.457871][   T24] usb 6-1: config 220 has no interface number 2
[  639.484181][   T24] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  639.515427][   T24] usb 6-1: config 220 interface 0 has no altsetting 0
[  639.535271][   T24] usb 6-1: config 220 interface 76 has no altsetting 0
[  639.550764][   T24] usb 6-1: config 220 interface 1 has no altsetting 0
[  639.565009][   T24] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  639.569375][T26939] [U] v�3��f��"S��/��4:�XTz�W�t��lW��=
[  639.585118][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  639.596112][T26939] [U] J"�e:��"


[  639.603273][   T24] usb 6-1: Product: syz
[  639.607689][   T24] usb 6-1: Manufacturer: syz
[  639.622471][   T24] usb 6-1: SerialNumber: syz
[  639.789683][T25948] veth0_vlan: entered promiscuous mode
[  639.839341][T25948] veth1_vlan: entered promiscuous mode
[  639.875887][   T24] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  639.904851][   T24] uvcvideo 6-1:220.0: No valid video chain found.
[  639.919343][   T24] usb 6-1: selecting invalid altsetting 0
[  639.966763][T25948] veth0_macvtap: entered promiscuous mode
[  639.992899][   T24] usb 6-1: selecting invalid altsetting 0
[  640.001332][   T24] usbtest 6-1:220.1: probe with driver usbtest failed with error -22
[  640.013248][T25948] veth1_macvtap: entered promiscuous mode
[  640.031955][   T24] usb 6-1: USB disconnect, device number 9
[  640.078968][T25948] batman_adv: batadv0: Interface activated: batadv_slave_0
[  640.147567][T25948] batman_adv: batadv0: Interface activated: batadv_slave_1
[  640.193957][T26980] bond0: (slave bond_slave_0): Releasing backup interface
[  640.229522][T26984] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6614'.
[  640.241744][T26980] bond0: (slave bond_slave_1): Releasing backup interface
[  640.265833][T26980] team0: Port device C removed
[  640.277275][T26980] team0: Port device team_slave_1 removed
[  640.283729][T26980] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  640.291487][T26980] batman_adv: batadv0: Removing interface: batadv_slave_0
[  640.300396][T26980] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  640.308522][T26980] batman_adv: batadv0: Removing interface: batadv_slave_1
[  640.320182][T26980] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  640.337076][   T43] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  640.431068][   T43] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  640.440895][   T43] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  640.465672][   T43] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  640.611163][T26996] loop4: detected capacity change from 0 to 256
[  640.713823][T14452] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  640.745023][T14452] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  640.806321][T26996] FAT-fs (loop4): Directory bread(block 64) failed
[  640.823983][ T3481] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  640.839872][T26996] FAT-fs (loop4): Directory bread(block 65) failed
[  640.851066][T26996] FAT-fs (loop4): Directory bread(block 66) failed
[  640.858703][ T3481] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  640.872360][T26996] FAT-fs (loop4): Directory bread(block 67) failed
[  640.881356][T26996] FAT-fs (loop4): Directory bread(block 68) failed
[  640.893532][T26996] FAT-fs (loop4): Directory bread(block 69) failed
[  640.903742][T26996] FAT-fs (loop4): Directory bread(block 70) failed
[  640.914158][T26996] FAT-fs (loop4): Directory bread(block 71) failed
[  640.921676][T26996] FAT-fs (loop4): Directory bread(block 72) failed
[  640.929415][T26996] FAT-fs (loop4): Directory bread(block 73) failed
[  641.379079][T27047] loop4: detected capacity change from 0 to 16
[  641.399644][T27001] loop0: detected capacity change from 0 to 32768
[  641.422456][T27001] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6617 (27001)
[  641.441582][T27047] erofs (device loop4): mounted with root inode @ nid 36.
[  641.493893][T27001] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  641.536380][T27001] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  641.585669][T27001] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  641.804566][T27001] BTRFS info (device loop0): rebuilding free space tree
[  641.885837][T27001] BTRFS info (device loop0): disabling free space tree
[  641.913937][T27001] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  641.942481][T27001] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  642.017645][T27001] BTRFS info (device loop0): enabling ssd optimizations
[  642.044367][T27001] BTRFS info (device loop0): turning on sync discard
[  642.092532][T27001] BTRFS info (device loop0): enabling disk space caching
[  642.100083][T27001] BTRFS info (device loop0): force clearing of disk cache
[  642.169499][T27001] BTRFS info (device loop0): enabling auto defrag
[  642.399379][T27044] loop5: detected capacity change from 0 to 32768
[  642.427692][ T5836] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  642.442222][T27044] BTRFS info: device /dev/loop5 (7:5) using temp-fsid c7598123-89e5-409b-a09d-4178e9bd0a88
[  642.470908][T27044] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.6626 (27044)
[  642.551350][T27044] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  642.585459][T27044] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  642.869742][T27044] BTRFS info (device loop5): enabling ssd optimizations
[  642.933042][T27044] BTRFS info (device loop5): enabling free space tree
[  643.079978][T27044] BTRFS error (device loop5): device add not supported on cloned temp-fsid mount
[  643.310281][T20865] BTRFS info (device loop5): last unmount of filesystem c7598123-89e5-409b-a09d-4178e9bd0a88
[  643.987191][T27210] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6667'.
[  644.093265][T27161] loop4: detected capacity change from 0 to 32768
[  644.129934][T27161] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.6650 (27161)
[  644.249594][T27161] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  644.292969][T27161] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  644.322424][T27214] loop6: detected capacity change from 0 to 4096
[  644.366472][T27214] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[  644.540402][T27161] BTRFS info (device loop4): enabling ssd optimizations
[  644.551327][T27214] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  644.583745][T27161] BTRFS info (device loop4): enabling free space tree
[  644.799521][T27246] bridge2: entered promiscuous mode
[  644.861984][ T5839] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  644.970663][T27208] loop5: detected capacity change from 0 to 32768
[  645.166014][T27203] loop0: detected capacity change from 0 to 40427
[  645.217975][T27203] F2FS-fs (loop0): Invalid log_blocksize (64), supports only 12
[  645.240755][T27203] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  645.287838][T27203] F2FS-fs (loop0): invalid crc value
[  645.635001][T27203] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  645.673504][T27203] F2FS-fs (loop0): Start checkpoint disabled!
[  645.713136][T27203] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[  645.792680][T27203] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  645.799782][T27203] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  645.885410][T27298] netlink: 'syz.4.6684': attribute type 2 has an invalid length.
[  646.770415][T27358] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  647.044437][T27378] bridge_slave_0: left allmulticast mode
[  647.050133][T27378] bridge_slave_0: left promiscuous mode
[  647.076585][T27382] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6711'.
[  647.101304][T27378] bridge0: port 1(bridge_slave_0) entered disabled state
[  647.166056][T27378] bridge_slave_1: left allmulticast mode
[  647.190347][T27378] bridge_slave_1: left promiscuous mode
[  647.206936][T27378] bridge0: port 2(bridge_slave_1) entered disabled state
[  647.249194][T27378] bond0: (slave bond_slave_0): Releasing backup interface
[  647.290317][T27378] bond0: (slave bond_slave_1): Releasing backup interface
[  647.351317][T27378] team0: Port device team_slave_0 removed
[  647.373445][ T5888] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  647.421004][T27378] team0: Port device team_slave_1 removed
[  647.460515][T27378] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  647.475587][T27378] batman_adv: batadv0: Removing interface: batadv_slave_0
[  647.516709][T27378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  647.544631][T27378] batman_adv: batadv0: Removing interface: batadv_slave_1
[  647.556221][T27378] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  647.559288][ T5888] usb 6-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  647.596087][ T5895] wg2 speed is unknown, defaulting to 1000
[  647.623847][ T5888] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  647.640538][ T5888] usb 6-1: Product: syz
[  647.644995][ T5888] usb 6-1: Manufacturer: syz
[  647.650165][ T5888] usb 6-1: SerialNumber: syz
[  647.659481][T27408] loop4: detected capacity change from 0 to 4096
[  647.701005][T27408] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  647.701869][ T5888] usb 6-1: config 0 descriptor??
[  647.741342][ T5888] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  647.781336][T27408] ntfs3(loop4): ino=19, mi_enum_attr
[  647.812570][T27408] ntfs3(loop4): failed to convert "c46c" to iso8859-2
[  647.817746][T27408] ntfs3(loop4): ino=20, mi_enum_attr
[  647.900204][T27396] loop6: detected capacity change from 0 to 32768
[  647.936957][T27396] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.6714 (27396)
[  648.030751][T27396] BTRFS info (device loop6): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  648.078795][T27396] BTRFS info (device loop6): using xxhash64 (xxhash64-generic) checksum algorithm
[  648.166172][T27446] Mount JFS Failure: -5
[  648.174288][T27446] jfs_mount failed w/return code = -5
[  648.207775][T27396] BTRFS info (device loop6): enabling ssd optimizations
[  648.215201][T27396] BTRFS info (device loop6): enabling free space tree
[  648.238183][T27455] netlink: 'syz.1.6725': attribute type 3 has an invalid length.
[  648.262426][T27455] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.6725'.
[  648.340670][ T5888] usb 6-1: USB disconnect, device number 10
[  648.453084][T27396] BTRFS info (device loop6): balance: start -f -susage=34359738372,drange=7..107,limit=2047..4294967295
[  648.475269][T27396] BTRFS info (device loop6): balance: ended with status: 0
[  648.647022][T25948] BTRFS info (device loop6): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  649.504545][T27528] netlink: 56 bytes leftover after parsing attributes in process `syz.4.6747'.
[  649.581055][T27534] mac80211_hwsim hwsim6 ��: renamed from wlan0 (while UP)
[  649.821563][ T5888] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  650.015693][ T5888] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  650.056577][ T5888] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  650.107575][ T5888] usb 7-1: config 0 descriptor??
[  650.573116][ T5888] ath6kl: Failed to read usb control message: -71
[  650.606371][ T5888] ath6kl: Unable to read the bmi data from the device: -71
[  650.627181][ T5888] ath6kl: Unable to recv target info: -71
[  650.655525][ T5888] ath6kl: Failed to init ath6kl core: -71
[  650.692053][ T5888] ath6kl_usb 7-1:0.0: probe with driver ath6kl_usb failed with error -71
[  650.751436][ T5888] usb 7-1: USB disconnect, device number 2
[  651.458448][T27662] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6780'.
[  651.693670][T27678] netlink: 'syz.4.6786': attribute type 2 has an invalid length.
[  653.659117][T27744] loop1: detected capacity change from 0 to 32768
[  653.699223][T27744] read_mapping_page failed!
[  653.704698][T27819] tmpfs: Bad value for 'mpol'
[  653.723477][T27744] jfs_mount: diMount failed w/rc = -5
[  653.748564][T27744] Mount JFS Failure: -5
[  653.752783][T27744] jfs_mount failed w/return code = -5
[  653.812526][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  653.823422][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  654.025215][T27834] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6827'.
[  654.082421][T27839] netlink: 'syz.0.6828': attribute type 10 has an invalid length.
[  654.267379][T27839] team0: Port device wlan1 added
[  654.368371][T27849] team0: Port device dummy0 removed
[  654.406348][T27849] bridge_slave_0: left allmulticast mode
[  654.439208][T27849] bridge_slave_0: left promiscuous mode
[  654.450870][T27849] bridge0: port 1(bridge_slave_0) entered disabled state
[  654.506451][T27849] bridge_slave_1: left allmulticast mode
[  654.523723][T27849] bridge_slave_1: left promiscuous mode
[  654.555180][T27849] bridge0: port 2(bridge_slave_1) entered disabled state
[  654.618433][T27849] bond0: (slave bond_slave_0): Releasing backup interface
[  654.663742][T27849] bond0: (slave bond_slave_1): Releasing backup interface
[  654.688994][T27849] team0: Port device team_slave_0 removed
[  654.719414][T27849] team0: Port device team_slave_1 removed
[  654.726889][T27849] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  654.751171][ T5833] usb 1-1: new high-speed USB device number 123 using dummy_hcd
[  654.953569][ T5833] usb 1-1: Using ep0 maxpacket: 32
[  654.968856][ T5833] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[  655.007605][ T5833] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  655.033979][ T5833] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[  655.063619][ T5833] usb 1-1: config 1 has no interface number 0
[  655.083002][ T5833] usb 1-1: config 1 interface 1 altsetting 0 has an endpoint descriptor with address 0xF5, changing to 0x85
[  655.147462][ T5833] usb 1-1: config 1 interface 1 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  655.180549][ T5833] usb 1-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  655.232828][ T5833] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  655.268440][ T5833] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  655.309583][ T5833] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[  655.340812][T27921] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6849'.
[  655.374449][T27921] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6849'.
[  655.531162][ T5833] snd_usb_pod 1-1:1.1: endpoint not available, using fallback values
[  655.540447][ T5833] snd_usb_pod 1-1:1.1: invalid control EP
[  655.585663][ T5833] snd_usb_pod 1-1:1.1: cannot start listening: -22
[  655.602794][ T5833] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[  655.654837][ T5833] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -22
[  655.767243][ T5895] usb 1-1: USB disconnect, device number 123
[  655.789197][T27926] loop1: detected capacity change from 0 to 4096
[  655.833627][T27926] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  655.897216][T27926] ntfs3(loop1): Failed to load $Extend (-22).
[  655.918004][T27926] ntfs3(loop1): Failed to initialize $Extend.
[  655.963123][T27952] loop5: detected capacity change from 0 to 4096
[  656.151264][T27952] ntfs3(loop5): ino=5, "/" indx_read
[  656.173178][T27952] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  656.238603][T27974] delete_channel: no stack
[  656.570548][T27997] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6867'.
[  656.593698][T27979] loop1: detected capacity change from 0 to 8192
[  656.627874][T27997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6867'.
[  656.666060][T27979] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  656.733773][T27979] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  656.826328][T27979] FAT-fs (loop1): Filesystem has been set read-only
[  657.865695][T28082] loop5: detected capacity change from 0 to 1024
[  658.131668][   T13] hfsplus: b-tree write err: -5, ino 4
[  658.164794][T28106] netlink: 'syz.1.6901': attribute type 21 has an invalid length.
[  658.176834][T28107] loop6: detected capacity change from 0 to 512
[  658.180868][T28109] ieee802154 phy0 wpan0: encryption failed: -22
[  658.285145][T28107] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  658.329166][T28107] EXT4-fs (loop6): warning: maximal mount count reached, running e2fsck is recommended
[  658.367694][T28107] EXT4-fs error (device loop6): ext4_orphan_get:1392: comm syz.6.6900: inode #15: comm syz.6.6900: iget: illegal inode #
[  658.450285][T28107] EXT4-fs (loop6): Remounting filesystem read-only
[  658.491255][T28107] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  658.567043][T28137] SET target dimension over the limit!
[  658.626788][T25948] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.868821][T28161] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6914'.
[  658.887110][   T44] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  658.908901][T28161] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6914'.
[  659.024202][T28172] netlink: 'syz.4.6918': attribute type 1 has an invalid length.
[  659.042302][T28169] loop0: detected capacity change from 0 to 4096
[  659.079467][   T44] usb 6-1: Using ep0 maxpacket: 16
[  659.090779][   T44] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 102, changing to 7
[  659.103588][T28176] loop6: detected capacity change from 0 to 1764
[  659.128680][   T44] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 24624, setting to 1024
[  659.156261][T28169] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  659.175011][   T44] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55
[  659.209397][   T44] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  659.217459][   T44] usb 6-1: Product: syz
[  659.226215][   T44] usb 6-1: Manufacturer: syz
[  659.231603][   T44] usb 6-1: SerialNumber: syz
[  659.247157][   T44] usb 6-1: config 0 descriptor??
[  659.270821][   T44] usb 6-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  659.308300][ T5836] ntfs3(loop0): ino=9, ntfs_sync_fs failed, -22.
[  659.499451][   T44] usb 6-1: USB disconnect, device number 11
[  659.507502][ T3481] usb 6-1: Failed to submit usb control message: -71
[  659.517094][ T3481] usb 6-1: unable to send the bmi data to the device: -71
[  659.535219][ T3481] usb 6-1: unable to get target info from device
[  659.546913][ T3481] usb 6-1: could not get target info (-71)
[  659.554862][ T3481] usb 6-1: could not probe fw (-71)
[  659.932223][T28183] loop4: detected capacity change from 0 to 32768
[  659.969393][T28183] find_entry called with index >= next_index
[  659.978277][T28183] find_entry called with index >= next_index
[  659.984296][T28183] find_entry called with index >= next_index
[  660.235657][T28217] loop0: detected capacity change from 0 to 32768
[  660.278108][T28217] (syz.0.6926,28217,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  660.316442][T28217] (syz.0.6926,28217,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  660.436604][T28217] JBD2: Ignoring recovery information on journal
[  660.493908][T28240] bond1: Unable to set peer notification delay as MII monitoring is disabled
[  660.511503][T28217] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  660.518787][T28240] bond1 (unregistering): Released all slaves
[  660.561995][T28305] netlink: 308 bytes leftover after parsing attributes in process `syz.5.6935'.
[  660.572407][T28305] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6935'.
[  660.600602][T28305] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  660.750556][ T5836] ocfs2: Unmounting device (7,0) on (node local)
[  660.969117][T28331] netlink: 'syz.6.6939': attribute type 5 has an invalid length.
[  660.997713][T28331] netlink: 3657 bytes leftover after parsing attributes in process `syz.6.6939'.
[  661.164510][T28347] netlink: 'syz.4.6944': attribute type 3 has an invalid length.
[  661.172709][T28347] netlink: 'syz.4.6944': attribute type 3 has an invalid length.
[  661.311396][T28348] loop0: detected capacity change from 0 to 4096
[  661.341854][T28348] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  661.539860][T28348] ntfs3(loop0): ino=0, attr_set_size
[  661.608437][T28370] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6951'.
[  661.626394][T28370] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6951'.
[  661.887102][T28397] loop5: detected capacity change from 0 to 256
[  661.897022][T28397] exfat: Deprecated parameter 'utf8'
[  661.897135][T28397] exfat: Deprecated parameter 'utf8'
[  661.953178][T28397] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d)
[  662.296921][T28423] loop6: detected capacity change from 0 to 16
[  662.315165][T28423] erofs (device loop6): mounted with root inode @ nid 36.
[  662.349288][T28423] erofs (device loop6): bogus lookback distance 1388 @ lcn 42 of nid 36
[  662.398625][T28423] erofs (device loop6): read error -117 @ 43 of nid 36
[  662.522372][T28436] loop0: detected capacity change from 0 to 16
[  662.554620][T28436] erofs (device loop0): mounted with root inode @ nid 36.
[  662.746544][T28402] loop1: detected capacity change from 0 to 32768
[  662.807070][T28402] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  662.838460][T28402] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  662.842577][   T44] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  663.027764][   T44] usb 5-1: Using ep0 maxpacket: 8
[  663.037839][   T44] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  663.054533][ T5827] ocfs2: Unmounting device (7,1) on (node local)
[  663.061969][   T44] usb 5-1: config 179 has no interface number 0
[  663.087039][   T44] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  663.098701][T28478] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6978'.
[  663.120487][   T44] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  663.133168][ T5945] usb 1-1: new high-speed USB device number 124 using dummy_hcd
[  663.141587][T28478] netlink: 'syz.5.6978': attribute type 1 has an invalid length.
[  663.164091][   T44] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[  663.170847][T28478] netlink: 224 bytes leftover after parsing attributes in process `syz.5.6978'.
[  663.185599][   T44] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[  663.207858][   T44] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  663.222450][   T44] usb 5-1: config 179 interface 65 has no altsetting 0
[  663.230079][   T44] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  663.243394][   T44] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  663.314100][   T44] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input61
[  663.326573][ T5945] usb 1-1: Using ep0 maxpacket: 32
[  663.345746][ T5945] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  663.353809][ T5945] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  663.388000][ T5888] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  663.391324][ T5945] usb 1-1: config 0 has no interface number 0
[  663.414595][ T5182] input input61: unable to receive magic message: -110
[  663.445435][ T5945] usb 1-1: config 0 interface 8 altsetting 248 endpoint 0xD has invalid maxpacket 1024, setting to 64
[  663.462948][ T5182] input input61: unable to receive magic message: -32
[  663.514079][ T5945] usb 1-1: config 0 interface 8 altsetting 248 has 3 endpoint descriptors, different from the interface descriptor's value: 10
[  663.558811][ T5888] usb 7-1: Using ep0 maxpacket: 16
[  663.559057][ T5945] usb 1-1: config 0 interface 8 has no altsetting 0
[  663.571599][ T5182] input input61: unable to receive magic message: -32
[  663.574951][ T5945] usb 1-1: New USB device found, idVendor=04da, idProduct=390d, bcdDevice=2d.bb
[  663.597756][ T5945] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  663.598290][ T5888] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  663.607983][ T5945] usb 1-1: Product: syz
[  663.608136][ T5182] input input61: unable to receive magic message: -32
[  663.628164][ T5945] usb 1-1: Manufacturer: syz
[  663.644635][ T5945] usb 1-1: SerialNumber: syz
[  663.655737][ T5888] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  663.667563][ T5945] usb 1-1: config 0 descriptor??
[  663.679063][ T5888] usb 7-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  663.690638][ T5888] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  663.691260][ T5182] input input61: unable to receive magic message: -32
[  663.701943][T28511] sit0: entered promiscuous mode
[  663.711287][ T5888] usb 7-1: Product: syz
[  663.733442][ T5888] usb 7-1: Manufacturer: syz
[  663.743473][T28511] netlink: 'syz.5.6986': attribute type 1 has an invalid length.
[  663.753405][ T5888] usb 7-1: SerialNumber: syz
[  663.759747][T28511] netlink: 1 bytes leftover after parsing attributes in process `syz.5.6986'.
[  663.772608][ T5888] usb 7-1: config 0 descriptor??
[  663.793172][ T5833] usb 5-1: USB disconnect, device number 3
[  663.793330][    C1] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  663.901629][ T5945] ath6kl: Failed to submit usb control message: -71
[  663.915463][ T5945] ath6kl: unable to send the bmi data to the device: -71
[  663.926153][ T5945] ath6kl: Unable to send get target info: -71
[  663.946135][ T5945] ath6kl: Failed to init ath6kl core: -71
[  663.953178][ T5945] ath6kl_usb 1-1:0.8: probe with driver ath6kl_usb failed with error -71
[  664.031449][ T5945] usb 1-1: USB disconnect, device number 124
[  664.163407][T28546] loop1: detected capacity change from 0 to 64
[  664.214374][ T5888] asix 7-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  664.232881][ T5888] asix 7-1:0.0: probe with driver asix failed with error -71
[  664.295679][ T5888] usb 7-1: USB disconnect, device number 3
[  664.648376][T28585] netlink: 'syz.4.7001': attribute type 1 has an invalid length.
[  664.862288][T28603] nft_compat: unsupported protocol 1
[  664.994710][ T5945] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  665.199544][ T5945] usb 6-1: Using ep0 maxpacket: 16
[  665.215259][ T5945] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  665.249734][ T5945] usb 6-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f
[  665.275843][ T5945] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  665.310040][ T5945] usb 6-1: Product: syz
[  665.334255][ T5945] usb 6-1: Manufacturer: syz
[  665.338901][ T5945] usb 6-1: SerialNumber: syz
[  665.396445][ T5945] usb 6-1: config 0 descriptor??
[  665.423764][ T5945] hub 6-1:0.0: bad descriptor, ignoring hub
[  665.444202][ T5945] hub 6-1:0.0: probe with driver hub failed with error -5
[  665.460411][ T5945] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  665.685326][ T5833] usb 6-1: USB disconnect, device number 12
[  665.784212][T28671] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7018'.
[  665.845522][T28612] loop4: detected capacity change from 0 to 32768
[  665.882598][T28612] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  665.974116][T28612] XFS (loop4): Ending clean mount
[  666.049166][ T5839] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  666.643666][T28708] netlink: 248 bytes leftover after parsing attributes in process `syz.1.7026'.
[  667.311301][T28763] netlink: 'syz.6.7041': attribute type 3 has an invalid length.
[  667.842765][T28798] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7052'.
[  668.156075][T28815] loop1: detected capacity change from 0 to 1024
[  668.183949][T28750] loop4: detected capacity change from 0 to 32768
[  668.211793][T28815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  668.263886][T28750] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  668.386849][T28815] Quota error (device loop1): do_check_range: Getting block 9 out of range 1-5
[  668.473221][T28815] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  668.475125][T28750] XFS (loop4): Ending clean mount
[  668.496013][T28815] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.7054: Failed to acquire dquot type 0
[  668.552355][T28750] XFS (loop4): Quotacheck needed: Please wait.
[  668.688773][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.754502][T28750] XFS (loop4): Quotacheck: Done.
[  669.050190][ T5839] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  669.777978][T28924] loop1: detected capacity change from 0 to 512
[  669.818868][T28924] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.7078: iget: bad i_size value: 38620345925642
[  669.856292][T28924] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.7078: couldn't read orphan inode 15 (err -117)
[  669.945739][T28939] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7082'.
[  669.961086][T28939] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7082'.
[  669.962664][T28924] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  670.089614][T28877] loop5: detected capacity change from 0 to 32768
[  670.133191][T28924] EXT4-fs error (device loop1): empty_inline_dir:1760: inode #12: block 7: comm syz.1.7078: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0
[  670.214316][T28924] EXT4-fs warning (device loop1): empty_inline_dir:1767: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[  670.249003][T28877] o2cb: This node has not been configured.
[  670.262187][T28877] o2cb: Cluster check failed. Fix errors before retrying.
[  670.269402][T28877] (syz.5.7066,28877,0):ocfs2_dlm_init:3354 ERROR: status = -22
[  670.385945][T28877] (syz.5.7066,28877,1):ocfs2_mount_volume:1735 ERROR: status = -22
[  670.428483][T28877] (syz.5.7066,28877,1):ocfs2_fill_super:1177 ERROR: status = -22
[  670.523152][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.605024][T28968] loop0: detected capacity change from 0 to 764
[  670.779281][T28981] loop4: detected capacity change from 0 to 2048
[  670.847632][T28981] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  670.963150][T28981] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  671.562478][T29037] loop4: detected capacity change from 0 to 4096
[  671.659733][T29051] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  671.697574][   T44] usb 1-1: new full-speed USB device number 125 using dummy_hcd
[  671.769301][T29049] bond3: option primary: mode dependency failed, not supported in mode balance-rr(0)
[  671.797592][T29049] bond3 (unregistering): Released all slaves
[  671.824601][ T5895] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  671.899436][   T44] usb 1-1: config 0 has an invalid interface number: 147 but max is 0
[  671.919760][   T44] usb 1-1: config 0 has no interface number 0
[  671.928766][   T44] usb 1-1: config 0 interface 147 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  671.958769][   T44] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=51.03
[  671.978798][   T44] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  672.005166][   T44] usb 1-1: Product: syz
[  672.012297][   T44] usb 1-1: Manufacturer: syz
[  672.031159][ T5895] usb 7-1: Using ep0 maxpacket: 8
[  672.045004][   T44] usb 1-1: SerialNumber: syz
[  672.051693][ T5895] usb 7-1: config 145 has an invalid interface number: 60 but max is 0
[  672.073939][   T44] usb 1-1: config 0 descriptor??
[  672.079660][ T5895] usb 7-1: config 145 has no interface number 0
[  672.087057][ T5895] usb 7-1: config 145 interface 60 has no altsetting 0
[  672.094787][T29031] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  672.123056][ T5895] usb 7-1: New USB device found, idVendor=0421, idProduct=04df, bcdDevice=fc.f8
[  672.133171][   T44] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  672.164720][ T5895] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  672.183866][ T5895] usb 7-1: Product: syz
[  672.212364][ T5895] usb 7-1: Manufacturer: syz
[  672.217020][ T5895] usb 7-1: SerialNumber: syz
[  672.375477][   T36] usb 1-1: Failed to submit usb control message: -71
[  672.379153][   T44] usb 1-1: USB disconnect, device number 125
[  672.421762][   T36] usb 1-1: unable to send the bmi data to the device: -71
[  672.429371][   T36] usb 1-1: unable to get target info from device
[  672.463091][ T5895] usb 7-1: bad CDC descriptors
[  672.474847][   T36] usb 1-1: could not get target info (-71)
[  672.485485][T29164] usb usb8: usbfs: process 29164 (syz.1.7120) did not claim interface 0 before use
[  672.496506][ T5895] usb 7-1: USB disconnect, device number 4
[  672.521586][   T36] usb 1-1: could not probe fw (-71)
[  673.197144][T29217] netlink: 'syz.5.7134': attribute type 2 has an invalid length.
[  673.225663][T29217] netlink: 'syz.5.7134': attribute type 1 has an invalid length.
[  673.403274][   T30] audit: type=1326 audit(2000000020.821:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29227 comm="syz.1.7139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  673.507153][   T30] audit: type=1326 audit(2000000020.821:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29227 comm="syz.1.7139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  673.588986][   T30] audit: type=1326 audit(2000000020.850:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29227 comm="syz.1.7139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  673.710405][   T30] audit: type=1326 audit(2000000020.850:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29227 comm="syz.1.7139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  673.742718][T29255] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  673.799151][   T30] audit: type=1326 audit(2000000020.850:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29227 comm="syz.1.7139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  673.862893][T29265] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7151'.
[  674.046398][    T9] usb 1-1: new high-speed USB device number 126 using dummy_hcd
[  674.204433][T29294] loop4: detected capacity change from 0 to 512
[  674.239274][    T9] usb 1-1: Using ep0 maxpacket: 32
[  674.249778][T29294] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.252346][    T9] usb 1-1: config 0 has an invalid interface number: 132 but max is 0
[  674.275043][    T9] usb 1-1: config 0 has no interface number 0
[  674.282502][    T9] usb 1-1: config 0 interface 132 has no altsetting 0
[  674.290221][T29294] ext4 filesystem being mounted at /1436/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  674.316759][    T9] usb 1-1: New USB device found, idVendor=0525, idProduct=9901, bcdDevice=39.75
[  674.326692][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  674.334719][    T9] usb 1-1: Product: syz
[  674.339184][    T9] usb 1-1: Manufacturer: syz
[  674.343866][    T9] usb 1-1: SerialNumber: syz
[  674.360471][    T9] usb 1-1: config 0 descriptor??
[  674.405277][T29294] Quota error (device loop4): write_blk: dquota write failed
[  674.409880][ T5837] Bluetooth: hci2: command 0x0405 tx timeout
[  674.415306][T29294] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  674.438319][T29294] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.7159: Failed to acquire dquot type 1
[  674.622680][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.631923][    T9] cdc_subset 1-1:0.132 usb0: register 'cdc_subset' at usb-dummy_hcd.0-1, Belkin, eTEK, or compatible, d2:cb:4c:28:4c:24
[  674.881893][   T44] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  674.919232][ T5833] usb 1-1: USB disconnect, device number 126
[  674.938752][ T5833] cdc_subset 1-1:0.132 usb0: unregister 'cdc_subset' usb-dummy_hcd.0-1, Belkin, eTEK, or compatible
[  675.051789][   T44] usb 6-1: Using ep0 maxpacket: 8
[  675.070079][   T44] usb 6-1: unable to get BOS descriptor or descriptor too short
[  675.090088][   T44] usb 6-1: config 8 has an invalid interface number: 255 but max is 0
[  675.114435][   T44] usb 6-1: config 8 has no interface number 0
[  675.137427][   T44] usb 6-1: config 8 interface 255 has no altsetting 0
[  675.156304][   T44] usb 6-1: string descriptor 0 read error: -22
[  675.174551][   T44] usb 6-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice=2e.bf
[  675.211701][   T44] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  675.584438][T29398] loop0: detected capacity change from 0 to 164
[  675.622349][T29398] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  675.664115][T29398] isofs: Unable to find the ".." directory for NFS.
[  675.704080][   T44] eth%d: CATC EL1210A NetMate USB Ethernet at usb-dummy_hcd.5-1, 00:00:00:00:00:00.
[  675.792186][   T44] usb 6-1: USB disconnect, device number 13
[  675.941240][T29382] loop6: detected capacity change from 0 to 32768
[  675.981438][T29382] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7178 (29382)
[  676.027795][T29382] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  676.060513][T29382] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  676.184751][T29392] loop4: detected capacity change from 0 to 32768
[  676.251573][T29382] BTRFS info (device loop6): enabling ssd optimizations
[  676.258570][T29382] BTRFS info (device loop6): enabling free space tree
[  676.310276][T29392] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  676.379698][T29392] (syz.4.7180,29392,1):ocfs2_find_entry:1094 ERROR: status = -117
[  676.398574][T29392] (syz.4.7180,29392,1):ocfs2_find_entry:1094 ERROR: status = -117
[  676.406622][T29392] (syz.4.7180,29392,1):ocfs2_mknod:505 ERROR: status = -117
[  676.415653][T29392] (syz.4.7180,29392,1):ocfs2_create:678 ERROR: status = -117
[  676.643840][ T5839] ocfs2: Unmounting device (7,4) on (node local)
[  676.651245][T25948] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  676.960568][T29482] netlink: 'syz.4.7190': attribute type 21 has an invalid length.
[  676.983097][T29482] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7190'.
[  677.277971][T29437] loop0: detected capacity change from 0 to 32768
[  677.488923][ T5833] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  677.649891][ T5833] usb 5-1: Using ep0 maxpacket: 16
[  677.668198][ T5833] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  677.689265][T29519] netlink: 'syz.5.7198': attribute type 1 has an invalid length.
[  677.698956][ T5833] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  677.720941][ T5833] usb 5-1: config 0 has no interface number 0
[  677.738641][ T5833] usb 5-1: config 0 interface 8 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  677.786252][ T5833] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  677.812249][ T5833] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  677.825980][ T5833] usb 5-1: Product: syz
[  677.833106][ T5833] usb 5-1: SerialNumber: syz
[  677.850854][ T5833] usb 5-1: config 0 descriptor??
[  677.871548][ T5833] usbhid 5-1:0.8: couldn't find an input interrupt endpoint
[  677.963237][T29525] bond1 (unregistering): Released all slaves
[  678.006418][T29548] bridge2: entered promiscuous mode
[  678.011725][T29548] bridge2: entered allmulticast mode
[  678.092225][ T5833] usb 5-1: USB disconnect, device number 4
[  678.191346][T29612] netlink: 'syz.0.7204': attribute type 2 has an invalid length.
[  678.214290][T29612] netlink: 119 bytes leftover after parsing attributes in process `syz.0.7204'.
[  678.837660][T29663] dlm: non-version read from control device 90
[  679.064245][T29675] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7224'.
[  679.318282][T29641] loop1: detected capacity change from 0 to 32768
[  679.351444][T29696] cifs: Unknown parameter '�[���b����IT�&��:���"����1:���ӭ'�4,�Zz-#F�<��]%gC��
[  679.351444][T29696] S�Ș�ȞZ�6��'
[  679.361541][T29641] lmLogInit: exit(-22)
[  679.381330][T29641] lmLogOpen: exit(-22)
[  679.385437][T29641] jfs_mount_rw failed, return code = -22
[  679.806958][T29726] netlink: 228 bytes leftover after parsing attributes in process `syz.6.7241'.
[  679.900621][T29735] netlink: 'syz.5.7244': attribute type 23 has an invalid length.
[  680.003315][T29742] loop0: detected capacity change from 0 to 64
[  680.024721][ T5837] Bluetooth: hci0: unexpected event for opcode 0x080c
[  680.048440][T29745] loop1: detected capacity change from 0 to 16
[  680.059093][T29745] erofs: Unknown parameter 'cache_straregy'
[  680.360020][T29769] loop4: detected capacity change from 0 to 1024
[  680.422936][T29769] EXT4-fs: Ignoring removed nobh option
[  680.472946][T29769] EXT4-fs: inline encryption not supported
[  680.613924][T29769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  680.720641][T29823] loop5: detected capacity change from 0 to 256
[  680.770509][T29825] loop6: detected capacity change from 0 to 256
[  680.798709][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.839821][T29825] FAT-fs (loop6): Directory bread(block 64) failed
[  680.869977][T29825] FAT-fs (loop6): Directory bread(block 65) failed
[  680.906066][T29825] FAT-fs (loop6): Directory bread(block 66) failed
[  680.935649][T29825] FAT-fs (loop6): Directory bread(block 67) failed
[  680.946993][T29759] loop1: detected capacity change from 0 to 32768
[  680.970221][T29825] FAT-fs (loop6): Directory bread(block 68) failed
[  680.999747][T29825] FAT-fs (loop6): Directory bread(block 69) failed
[  681.011172][T29759] ERROR: (device loop1): xtTruncate_pmap: xt_getpage: xtree page corrupt
[  681.011172][T29759] 
[  681.049332][T29825] FAT-fs (loop6): Directory bread(block 70) failed
[  681.059426][T29825] FAT-fs (loop6): Directory bread(block 71) failed
[  681.087056][T29825] FAT-fs (loop6): Directory bread(block 72) failed
[  681.097845][T29759] ERROR: (device loop1): remounting filesystem as read-only
[  681.115090][T29825] FAT-fs (loop6): Directory bread(block 73) failed
[  681.123849][T29759] ERROR: (device loop1): jfs_unlink: 
[  681.123849][T29759] 
[  681.297882][ T5827] ERROR: (device loop1): xtTruncate: xt_getpage: xtree page corrupt
[  681.297882][ T5827] 
[  681.855598][T29894] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7279'.
[  682.011991][T29893] loop0: detected capacity change from 0 to 4096
[  682.713844][   T30] audit: type=1326 audit(2000000029.530:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29948 comm="syz.6.7292" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbd6278eec9 code=0x0
[  682.844706][ T5945] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  683.040322][ T5945] usb 6-1: Using ep0 maxpacket: 32
[  683.062825][ T5945] usb 6-1: config 0 has an invalid interface number: 61 but max is 1
[  683.080444][T29962] loop1: detected capacity change from 0 to 4096
[  683.084220][ T5945] usb 6-1: config 0 has no interface number 1
[  683.122509][ T5945] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  683.137447][ T5945] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  683.154325][T29962] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  683.202095][ T5945] usb 6-1: Product: syz
[  683.234763][T29982] netlink: 'syz.0.7302': attribute type 5 has an invalid length.
[  683.255552][ T5945] usb 6-1: Manufacturer: syz
[  683.260199][ T5945] usb 6-1: SerialNumber: syz
[  683.326752][ T5945] usb 6-1: config 0 descriptor??
[  683.395339][ T5845] Bluetooth: hci1: command 0x0406 tx timeout
[  683.437271][T29991] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7304'.
[  683.486648][ T5945] viperboard 6-1:0.61: version 0.00 found at bus 006 address 014
[  683.519029][ T5945] viperboard-i2c viperboard-i2c.2.auto: error -EIO: failure setting i2c_bus_freq to 100
[  683.539948][ T5945] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5
[  683.612992][ T5945] viperboard 6-1:0.0: version 0.00 found at bus 006 address 014
[  683.675641][ T5945] viperboard-i2c viperboard-i2c.5.auto: error -EIO: failure setting i2c_bus_freq to 100
[  683.710100][ T5945] viperboard-i2c viperboard-i2c.5.auto: probe with driver viperboard-i2c failed with error -5
[  683.779913][T30038] loop6: detected capacity change from 0 to 64
[  683.799305][ T5945] usb 6-1: USB disconnect, device number 14
[  684.089191][T30082] netlink: 'syz.4.7315': attribute type 5 has an invalid length.
[  684.178274][T30082] ip6erspan0: entered promiscuous mode
[  684.898843][T30076] loop0: detected capacity change from 0 to 32768
[  684.940761][T30076] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.7313 (30076)
[  685.008427][T30076] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  685.036338][T30076] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  685.123588][T30154] netlink: 216 bytes leftover after parsing attributes in process `syz.5.7334'.
[  685.282612][T30076] BTRFS info (device loop0): enabling ssd optimizations
[  685.297208][T30076] BTRFS info (device loop0): enabling free space tree
[  685.519095][ T5836] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  685.659438][ T5945] usb 6-1: new full-speed USB device number 15 using dummy_hcd
[  685.865584][ T5945] usb 6-1: config 0 has an invalid interface number: 110 but max is 0
[  685.877243][ T5945] usb 6-1: config 0 has no interface number 0
[  685.891752][ T5945] usb 6-1: config 0 interface 110 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  685.935331][ T5945] usb 6-1: config 0 interface 110 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  685.968496][T30216] loop4: detected capacity change from 0 to 64
[  685.974882][ T5945] usb 6-1: config 0 interface 110 has no altsetting 0
[  686.004562][ T5945] usb 6-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55
[  686.028650][ T5945] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  686.073363][   T44] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  686.081628][ T5945] usb 6-1: Product: syz
[  686.107484][ T5945] usb 6-1: Manufacturer: syz
[  686.112133][ T5945] usb 6-1: SerialNumber: syz
[  686.203989][ T5945] usb 6-1: config 0 descriptor??
[  686.238685][T30220] bond5 (unregistering): Released all slaves
[  686.277642][   T44] usb 7-1: Using ep0 maxpacket: 8
[  686.303288][   T44] usb 7-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  686.339289][   T44] usb 7-1: config 0 interface 0 altsetting 252 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  686.384354][   T44] usb 7-1: config 0 interface 0 has no altsetting 0
[  686.419972][   T44] usb 7-1: New USB device found, idVendor=056a, idProduct=009f, bcdDevice= 0.00
[  686.438320][ T5945] cdc_subset 6-1:0.110: probe with driver cdc_subset failed with error -22
[  686.457345][   T44] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  686.485513][   T44] usb 7-1: config 0 descriptor??
[  686.528787][T30178] loop1: detected capacity change from 0 to 32768
[  686.609521][T30178] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  686.660959][ T5945] usb 6-1: USB disconnect, device number 15
[  686.720617][   T44] usbhid 7-1:0.0: can't add hid device: -71
[  686.728009][   T44] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  686.763116][   T44] usb 7-1: USB disconnect, device number 5
[  686.918035][T30178] XFS (loop1): Ending clean mount
[  686.931179][T30337] loop0: detected capacity change from 0 to 4096
[  686.940056][T30337] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512).
[  687.016613][T30337] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  687.027232][ T5827] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  687.040647][T30337] ntfs3(loop0): ino=5, mi_enum_attr
[  687.103752][T30337] ntfs3(loop0): ino=5, "/" mi_enum_attr
[  687.123877][T30337] ntfs3(loop0): ino=5, "/" mi_enum_attr
[  687.142838][T30337] ntfs3(loop0): ino=5, "/" mi_enum_attr
[  687.150284][T30337] ntfs3(loop0): ino=5, "/" mi_enum_attr
[  687.170193][T30337] ntfs3(loop0): ino=5, "/" mi_enum_attr
[  687.185345][T30337] ntfs3(loop0): ino=5, "/" attr_set_size
[  687.562917][T30369] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7366'.
[  687.696436][T30381] netlink: 'syz.6.7368': attribute type 3 has an invalid length.
[  687.851099][T30395] rtc_cmos 00:00: Alarms can be up to one day in the future
[  688.694888][ T5833] usb 1-1: new high-speed USB device number 127 using dummy_hcd
[  688.830008][T30424] loop4: detected capacity change from 0 to 32768
[  688.839194][T30424] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7382 (30424)
[  688.860944][T30464] netlink: 'syz.6.7395': attribute type 1 has an invalid length.
[  688.873589][T30424] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  688.889415][T30424] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  688.899260][T30424] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  688.917786][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  688.940726][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 238, changing to 7
[  688.955112][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid maxpacket 50512, setting to 1024
[  689.027080][ T5833] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  689.045667][ T5833] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  689.076485][T30424] BTRFS info (device loop4): rebuilding free space tree
[  689.090320][ T5833] usb 1-1: Product: syz
[  689.094521][ T5833] usb 1-1: Manufacturer: syz
[  689.113142][ T5833] usb 1-1: SerialNumber: syz
[  689.132144][T30424] BTRFS info (device loop4): disabling free space tree
[  689.154828][ T5833] usb 1-1: config 0 descriptor??
[  689.163655][T30424] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  689.194448][ T5833] usb 1-1: 0:0 : invalid sync pipe. bmAttributes e5, bLength 9, bSynchAddress d7
[  689.219753][T30424] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  689.278906][T30424] BTRFS info (device loop4): setting nodatasum
[  689.294096][T30424] BTRFS info (device loop4): allowing degraded mounts
[  689.312021][T30424] BTRFS info (device loop4): enabling disk space caching
[  689.325738][T30498] loop6: detected capacity change from 0 to 1024
[  689.332218][T30424] BTRFS info (device loop4): force clearing of disk cache
[  689.355875][T30424] BTRFS info (device loop4): force zlib compression, level 3
[  689.460089][   T43] hfsplus: b-tree write err: -5, ino 4
[  689.538620][ T5833] usb 1-1: USB disconnect, device number 127
[  689.562036][ T5839] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  689.589791][T30522] 
@�: renamed from veth0_vlan (while UP)
[  689.779299][T30528] program syz.5.7404 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  689.920543][T30539] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7402'.
[  690.662120][T30585] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7419'.
[  690.735941][T30556] loop4: detected capacity change from 0 to 32768
[  690.755131][T30556] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7408 (30556)
[  690.813506][T30556] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  690.855170][T30556] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  690.898774][T30600] comedi comedi0: fl512: I/O port conflict (0xee,16)
[  691.105660][T30556] BTRFS info (device loop4): enabling ssd optimizations
[  691.133536][T30628] netlink: 'syz.6.7427': attribute type 2 has an invalid length.
[  691.150515][T30556] BTRFS info (device loop4): enabling free space tree
[  691.162120][T30628] netlink: 25 bytes leftover after parsing attributes in process `syz.6.7427'.
[  691.198860][T30635] netlink: 'syz.0.7429': attribute type 303 has an invalid length.
[  691.310013][ T5839] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  691.398384][T30646] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7431'.
[  692.196973][T30694] loop0: detected capacity change from 0 to 128
[  692.232755][T30699] Device name not specified.
[  692.232755][T30699] 
[  692.254910][T30694] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  692.309093][T30694] hpfs: filesystem error: improperly stopped
[  692.342506][T30694] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  692.393009][T30694] hpfs: You really don't want any checks? You are crazy...
[  692.405220][T30694] hpfs: hpfs_map_sector(): read error
[  692.406106][T30712] loop6: detected capacity change from 0 to 64
[  692.410621][T30694] hpfs: code page support is disabled
[  692.410743][T30694] hpfs: hpfs_map_4sectors(): unaligned read
[  692.466284][T30712] BFS-fs: bfs_fill_super(): loop6 is unclean, continuing
[  692.472534][T30694] hpfs: hpfs_map_4sectors(): unaligned read
[  692.487167][T30694] hpfs: filesystem error: unable to find root dir
[  692.876791][T30742] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode
[  692.892356][T30742] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  693.275181][T30774] loop0: detected capacity change from 0 to 1024
[  693.427389][T30774] hfsplus: trying to free free bnode 0(1)
[  693.445297][T30786] netlink: 260 bytes leftover after parsing attributes in process `syz.1.7475'.
[  693.572948][   T13] hfsplus: b-tree write err: -5, ino 4
[  693.977883][T30826] loop6: detected capacity change from 0 to 256
[  694.030857][T30829] loop4: detected capacity change from 0 to 1024
[  694.063701][T30835] netlink: 144 bytes leftover after parsing attributes in process `syz.0.7487'.
[  694.604805][T30809] loop5: detected capacity change from 0 to 32768
[  694.648304][T30869] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7497'.
[  694.686787][T30869] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7497'.
[  695.041443][T30896] loop4: detected capacity change from 0 to 128
[  695.139710][T30896] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2
[  695.492726][T30929] netlink: 'syz.5.7515': attribute type 2 has an invalid length.
[  695.514406][T30933] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7517'.
[  695.711073][T30945] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7521'.
[  695.720690][   T30] audit: type=1326 audit(2000000041.690:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30946 comm="syz.0.7522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8abcb8eec9 code=0x7ffc0000
[  695.748505][T30945] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7521'.
[  695.767398][T30945] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7521'.
[  695.797881][   T30] audit: type=1326 audit(2000000041.709:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30946 comm="syz.0.7522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f8abcb8eec9 code=0x7ffc0000
[  695.820404][    C1] vkms_vblank_simulate: vblank timer overrun
[  695.820933][T30945] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7521'.
[  695.820955][T30945] netlink: 5 bytes leftover after parsing attributes in process `syz.4.7521'.
[  695.831969][T30954] loop5: detected capacity change from 0 to 256
[  695.922214][   T30] audit: type=1326 audit(2000000041.709:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30946 comm="syz.0.7522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8abcb8eec9 code=0x7ffc0000
[  695.927448][T30954] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  695.944574][    C1] vkms_vblank_simulate: vblank timer overrun
[  695.988228][   T30] audit: type=1326 audit(2000000041.709:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30946 comm="syz.0.7522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8abcb8eec9 code=0x7ffc0000
[  696.162695][T30973] netlink: 'syz.4.7530': attribute type 13 has an invalid length.
[  696.605737][T31007] loop6: detected capacity change from 0 to 64
[  697.355716][T31060] netlink: 'syz.6.7556': attribute type 1 has an invalid length.
[  697.418434][T31063] loop0: detected capacity change from 0 to 1024
[  697.696616][ T3481] hfsplus: b-tree write err: -5, ino 4
[  697.888041][T31095] loop1: detected capacity change from 0 to 1024
[  697.925811][T31096] loop6: detected capacity change from 0 to 1024
[  698.073704][T14449] hfsplus: b-tree write err: -5, ino 4
[  698.332691][   T30] audit: type=1326 audit(2000000044.141:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31126 comm="syz.1.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  698.399572][   T30] audit: type=1326 audit(2000000044.141:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31126 comm="syz.1.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  698.445128][   T30] audit: type=1326 audit(2000000044.169:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31126 comm="syz.1.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  698.497364][ T5833] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  698.518802][   T30] audit: type=1326 audit(2000000044.169:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31126 comm="syz.1.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  698.557491][   T30] audit: type=1326 audit(2000000044.169:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31126 comm="syz.1.7574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33efb8eec9 code=0x7ffc0000
[  698.679366][ T5833] usb 7-1: Using ep0 maxpacket: 8
[  698.686452][ T5833] usb 7-1: config 8 has an invalid interface number: 125 but max is 0
[  698.696280][ T5833] usb 7-1: config 8 has no interface number 0
[  698.713102][ T5833] usb 7-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=26.ec
[  698.732617][ T5833] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.750095][ T5833] usb 7-1: Product: syz
[  698.763102][ T5833] usb 7-1: Manufacturer: syz
[  698.774156][ T5945] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  698.782807][ T5833] usb 7-1: SerialNumber: syz
[  698.814811][ T5833] gspca_main: ALi m5602-2.14.0 probing 0402:5602
[  698.957556][ T5945] usb 6-1: Using ep0 maxpacket: 32
[  698.964641][ T5945] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  698.977423][ T5945] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  698.985948][T31159] loop4: detected capacity change from 0 to 64
[  698.996949][ T5945] usb 6-1: config 0 descriptor??
[  699.023958][ T5945] gspca_main: nw80x-2.14.0 probing 055f:d001
[  699.242367][ T5833] gspca_m5602: Failed to find a sensor
[  699.261557][ T5833] ALi m5602 7-1:8.125: ALi m5602 webcam failed
[  699.293216][ T5833] usb 7-1: USB disconnect, device number 6
[  699.299265][T31107] loop0: detected capacity change from 0 to 65536
[  699.352872][T31107] XFS (loop0): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  699.414020][T31107] XFS (loop0): Ending clean mount
[  699.432862][T31107] XFS (loop0): Quotacheck needed: Please wait.
[  699.456327][ T5945] gspca_nw80x: reg_r err -71
[  699.463719][ T5945] nw80x 6-1:0.0: probe with driver nw80x failed with error -71
[  699.519667][ T5945] usb 6-1: USB disconnect, device number 16
[  699.538104][T31107] XFS (loop0): Quotacheck: Done.
[  699.675787][ T5836] XFS (loop0): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  700.049834][T31235] MTD: Couldn't look up '/dev/sg0': -15
[  700.403342][T31253] loop6: detected capacity change from 0 to 1024
[  700.538390][T31266] __nla_validate_parse: 2 callbacks suppressed
[  700.538409][T31266] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7593'.
[  700.596948][T31270] loop4: detected capacity change from 0 to 256
[  700.651552][T31270] exfat: Deprecated parameter 'utf8'
[  700.724729][T31270] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d)
[  700.788010][T31270] exFAT-fs (loop4): error, in sector 160, dentry 12 should be unused, but 0x85
[  701.327546][T31311] ieee802154 phy0 wpan0: encryption failed: -22
[  701.526053][T31278] loop5: detected capacity change from 0 to 32768
[  701.527379][T31283] loop1: detected capacity change from 0 to 32768
[  701.598586][T31278] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  701.638924][T31283] read_mapping_page failed!
[  701.645466][T31283] ERROR: (device loop1): txCommit: 
[  701.645466][T31283] 
[  701.886264][T31278] XFS (loop5): Ending clean mount
[  701.939919][T31278] XFS (loop5): Quotacheck needed: Please wait.
[  701.954324][T31301] loop0: detected capacity change from 0 to 32768
[  702.091709][T31301] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  702.122883][T31278] XFS (loop5): Quotacheck: Done.
[  702.260724][T31301] XFS (loop0): Ending clean mount
[  702.320660][T20865] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  702.334462][T31301] XFS (loop0): Quotacheck needed: Please wait.
[  702.460040][T31301] XFS (loop0): Quotacheck: Done.
[  702.737914][ T5836] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  703.079875][ T2344] pvrusb2: request_firmware fatal error with code=-110
[  703.121864][ T2344] pvrusb2: Failure uploading firmware1
[  703.130122][ T2344] pvrusb2: Device initialization was not successful.
[  703.143162][ T2344] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  703.155715][ T2344] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  703.238098][  T984] pvrusb2: Device being rendered inoperable
[  703.624730][T31452] MTD: Couldn't look up '': -22
[  704.168755][T31497] netlink: 'syz.0.7669': attribute type 5 has an invalid length.
[  704.209215][T31497] netlink: 'syz.0.7669': attribute type 11 has an invalid length.
[  704.661070][T31536] loop5: detected capacity change from 0 to 764
[  704.718360][T31536] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  704.751326][T31536] Symlink component flag not implemented
[  704.770407][T31536] Symlink component flag not implemented (7)
[  704.896208][T31553] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  704.954105][T31553] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  704.972826][T31559] netlink: 'syz.5.7690': attribute type 2 has an invalid length.
[  705.017108][T31559] netlink: 'syz.5.7690': attribute type 11 has an invalid length.
[  705.037133][T31559] netlink: 132 bytes leftover after parsing attributes in process `syz.5.7690'.
[  705.170811][T31571] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7693'.
[  705.675017][T31618] loop1: detected capacity change from 0 to 256
[  705.690569][  T984] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[  705.839207][T31618] FAT-fs (loop1): Directory bread(block 64) failed
[  705.865771][T31618] FAT-fs (loop1): Directory bread(block 65) failed
[  705.878757][T31618] FAT-fs (loop1): Directory bread(block 66) failed
[  705.897412][T31618] FAT-fs (loop1): Directory bread(block 67) failed
[  705.901445][  T984] usb 7-1: config 0 has an invalid interface number: 56 but max is 0
[  705.904079][T31618] FAT-fs (loop1): Directory bread(block 68) failed
[  705.923707][  T984] usb 7-1: config 0 has no interface number 0
[  705.951813][  T984] usb 7-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76
[  705.963076][  T984] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  705.976754][T31618] FAT-fs (loop1): Directory bread(block 69) failed
[  705.998915][  T984] usb 7-1: Product: syz
[  706.012854][T31618] FAT-fs (loop1): Directory bread(block 70) failed
[  706.019420][T31618] FAT-fs (loop1): Directory bread(block 71) failed
[  706.032690][  T984] usb 7-1: Manufacturer: syz
[  706.037870][  T984] usb 7-1: SerialNumber: syz
[  706.046068][T31618] FAT-fs (loop1): Directory bread(block 72) failed
[  706.066849][T31618] FAT-fs (loop1): Directory bread(block 73) failed
[  706.080816][  T984] usb 7-1: config 0 descriptor??
[  706.352823][  T984] peak_usb 7-1:0.56: PEAK-System PCAN-USB X6 v210 fw v181.0.0 (2 channels)
[  706.528640][T31668] qrtr: Invalid version 183
[  706.554943][  T984] peak_usb 7-1:0.56 can0: unable to request usb[type=2 value=5] err=-71
[  706.573415][  T984] peak_usb 7-1:0.56: unable to tell PCAN-USB X6 driver is loaded (err -71)
[  706.673080][T31635] loop4: detected capacity change from 0 to 32768
[  706.731212][  T984] peak_usb 7-1:0.56: probe with driver peak_usb failed with error -71
[  706.742006][T31635] (syz.4.7713,31635,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  706.766261][T31687] netlink: 'syz.5.7726': attribute type 1 has an invalid length.
[  706.785605][  T984] usb 7-1: USB disconnect, device number 7
[  706.797752][T31687] netlink: 196 bytes leftover after parsing attributes in process `syz.5.7726'.
[  706.805587][T31635] (syz.4.7713,31635,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  706.913352][T31635] JBD2: Ignoring recovery information on journal
[  706.965530][T31635] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  707.200000][ T5839] ocfs2: Unmounting device (7,4) on (node local)
[  707.365221][T31710] loop1: detected capacity change from 0 to 4096
[  707.396974][T31710] ntfs3(loop1): ino=3, Correct links count -> 2.
[  707.474807][T31722] ALSA: mixer_oss: invalid OSS volume ''
[  707.514734][T31722] ALSA: mixer_oss: invalid OSS volume '��+]OؓOG��e��c���9
bx'�ĮC�'
[  707.561437][T31722] ALSA: mixer_oss: invalid OSS volume '_����*[bYcq�~l�r�<W�|3z�'
[  707.569376][T31722] ALSA: mixer_oss: invalid OSS volume '{۱H��J:'
[  707.630488][T31722] ALSA: mixer_oss: invalid OSS volume '����B}s��둥"f�0����^�C���'
[  707.690280][T31722] ALSA: mixer_oss: invalid OSS volume '�gR�y�
�'���G!���P'
[  707.702817][T31722] ALSA: mixer_oss: invalid OSS volume '��{�����ouD�1*ڦi&qrm���4_Xn�'
[  707.741845][T31722] ALSA: mixer_oss: invalid OSS volume '��/U~d�?"���:9S��'
[  707.765525][T31722] ALSA: mixer_oss: invalid OSS volume '(�8�'
[  707.771547][T31722] ALSA: mixer_oss: invalid OSS volume '���'�)�3lo�X��+iG�9SNW�����'
[  707.807299][T31722] ALSA: mixer_oss: invalid OSS volume '�%�X%����9WsE?%�7�3'
[  707.828692][T31722] ALSA: mixer_oss: invalid OSS volume '��J�i'
[  707.853668][T31722] ALSA: mixer_oss: invalid OSS volume '������Of����S��Җ��[s��x��'
[  707.884572][T31722] ALSA: mixer_oss: invalid OSS volume ':�:IJ�U����TTځA��"B^��Csb;`c'
[  707.905530][T31754] netlink: 48 bytes leftover after parsing attributes in process `syz.1.7743'.
[  707.921178][T31722] ALSA: mixer_oss: invalid OSS volume 'cۉ�<��S٪3n���F��/���Pf'
[  707.952009][T31722] ALSA: mixer_oss: invalid OSS volume '�9������h�Ĩ�y�����^�7��]�'
[  707.994789][T31722] ALSA: mixer_oss: invalid OSS volume '�?6�<���g�$/����uX���Ad�>=V'
[  708.053298][T31722] ALSA: mixer_oss: invalid OSS volume '+����Ϳ����nU<$��^EKʘ�r�+'
[  708.061788][T31722] ALSA: mixer_oss: invalid OSS volume '+8�iYJz���'
[  708.284302][   T30] audit: type=1326 audit(2000000053.439:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31777 comm="syz.4.7753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  708.357657][T31783] netlink: 216 bytes leftover after parsing attributes in process `syz.4.7754'.
[  708.361420][   T30] audit: type=1326 audit(2000000053.439:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31777 comm="syz.4.7753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  708.415808][T31787] loop0: detected capacity change from 0 to 256
[  708.430877][   T30] audit: type=1326 audit(2000000053.439:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31777 comm="syz.4.7753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  708.471471][   T30] audit: type=1326 audit(2000000053.439:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31777 comm="syz.4.7753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  708.495686][   T30] audit: type=1326 audit(2000000053.439:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31777 comm="syz.4.7753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f236398eec9 code=0x7ffc0000
[  708.696374][T31803] netlink: 32 bytes leftover after parsing attributes in process `syz.6.7758'.
[  708.792970][   T30] audit: type=1326 audit(2000000053.935:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31807 comm="syz.5.7760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  708.831861][ T5888] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  708.935662][   T30] audit: type=1326 audit(2000000053.963:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31807 comm="syz.5.7760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  709.036891][   T30] audit: type=1326 audit(2000000053.963:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31807 comm="syz.5.7760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  709.069719][ T5888] usb 5-1: Using ep0 maxpacket: 32
[  709.091808][ T5888] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  709.105079][   T30] audit: type=1326 audit(2000000053.963:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31807 comm="syz.5.7760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  709.131544][T31823] netlink: 'syz.0.7765': attribute type 11 has an invalid length.
[  709.156693][ T5888] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  709.158874][T31823] netlink: 224 bytes leftover after parsing attributes in process `syz.0.7765'.
[  709.185178][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  709.207304][ T5888] usb 5-1: Product: syz
[  709.235760][ T5888] usb 5-1: Manufacturer: syz
[  709.251192][ T5888] usb 5-1: SerialNumber: syz
[  709.270955][ T5888] usb 5-1: config 0 descriptor??
[  709.309958][T31793] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  709.337523][ T5888] hub 5-1:0.0: bad descriptor, ignoring hub
[  709.364610][ T5888] hub 5-1:0.0: probe with driver hub failed with error -5
[  709.599676][T31842] loop6: detected capacity change from 0 to 4096
[  709.710657][  T984] usb 5-1: USB disconnect, device number 5
[  710.119263][T31889] loop1: detected capacity change from 0 to 2048
[  710.152723][T31889] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  710.793102][T31926] loop4: detected capacity change from 0 to 4096
[  710.838060][T31926] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  711.227925][T31977] loop5: detected capacity change from 0 to 512
[  711.228104][T31973] geneve3: entered allmulticast mode
[  711.275703][T31977] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  711.321513][  T140] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  711.383875][T31977] EXT4-fs (loop5): 1 orphan inode deleted
[  711.391872][  T140] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  711.412730][T31977] EXT4-fs (loop5): 1 truncate cleaned up
[  711.420132][T31977] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  711.456828][T14449] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  711.465935][T31989] netlink: 48 bytes leftover after parsing attributes in process `syz.1.7801'.
[  711.517008][T14449] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  711.528062][T31989] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7801'.
[  711.537116][T31989] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7801'.
[  711.570723][T31977] EXT4-fs error (device loop5): ext4_search_dir:1474: inode #2: block 13: comm syz.5.7799: bad entry in directory: inode out of bounds - offset=44, inode=1292, rec_len=16, size=1024 fake=0
[  711.636974][T31977] EXT4-fs (loop5): Remounting filesystem read-only
[  711.650140][T31996] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  711.748009][T20865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  712.196714][T31984] loop0: detected capacity change from 0 to 32768
[  712.243335][T31984] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  712.266873][T31964] loop6: detected capacity change from 0 to 32768
[  712.378681][T31964] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  712.378865][T31984] XFS (loop0): Ending clean mount
[  712.590760][ T5836] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  712.665892][T31964] XFS (loop6): Ending clean mount
[  712.716974][T31964] XFS (loop6): Quotacheck needed: Please wait.
[  712.756348][T31964] XFS (loop6): Quotacheck: Done.
[  712.861722][T25948] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  712.989767][T32075] netlink: 100 bytes leftover after parsing attributes in process `syz.0.7815'.
[  713.646642][T32117] loop5: detected capacity change from 0 to 1024
[  713.689507][T32117] syz.5.7830: attempt to access beyond end of device
[  713.689507][T32117] loop5: rw=0, sector=393260, nr_sectors = 2 limit=1024
[  714.446873][T32178] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7848'.
[  714.884695][T32205] loop0: detected capacity change from 0 to 1024
[  714.985229][  T140] hfsplus: b-tree write err: -5, ino 4
[  715.070226][T32216] loop1: detected capacity change from 0 to 1764
[  715.104966][T32216] iso9660: Corrupted directory entry in block 2 of inode 1920
[  715.598631][T32198] loop4: detected capacity change from 0 to 32768
[  715.630079][T32198] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7855 (32198)
[  715.709354][T32198] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  715.760857][T32198] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  716.058443][T32198] BTRFS info (device loop4): enabling ssd optimizations
[  716.089246][T32298] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  716.116365][T32198] BTRFS info (device loop4): enabling free space tree
[  716.134298][   T30] audit: type=1326 audit(2000000060.791:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32305 comm="syz.5.7884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  716.238026][   T30] audit: type=1326 audit(2000000060.791:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32305 comm="syz.5.7884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  716.297469][ T5839] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  716.317207][   T30] audit: type=1326 audit(2000000060.791:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32305 comm="syz.5.7884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdea0f8eec9 code=0x7ffc0000
[  716.389596][T32320] loop6: detected capacity change from 0 to 128
[  716.425386][ T5888] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  716.457617][T32320] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  716.576806][T32320] ext4 filesystem being mounted at /272/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  716.597882][ T5888] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  716.607207][ T5888] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  716.650263][ T5888] usb 1-1: config 0 descriptor??
[  716.704449][ T5888] cp210x 1-1:0.0: cp210x converter detected
[  716.790322][T32341] loop5: detected capacity change from 0 to 256
[  716.812123][T25948] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  717.165708][ T5888] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -71
[  717.195094][ T5888] cp210x 1-1:0.0: failed to get vendor val 0x3711 size 2: -71
[  717.232729][ T5888] cp210x 1-1:0.0: GPIO initialisation failed: -71
[  717.250418][   T10] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  717.269907][ T5888] usb 1-1: cp210x converter now attached to ttyUSB0
[  717.326134][ T5888] usb 1-1: USB disconnect, device number 2
[  717.361819][ T5888] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  717.409700][ T5888] cp210x 1-1:0.0: device disconnected
[  717.420715][   T10] usb 7-1: config 0 has an invalid interface number: 199 but max is 1
[  717.444832][   T10] usb 7-1: config 0 has no interface number 1
[  717.462794][   T10] usb 7-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  717.490835][   T10] usb 7-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  717.521646][   T10] usb 7-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00
[  717.554871][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  717.587269][   T10] usb 7-1: SerialNumber: syz
[  717.603599][   T10] usb 7-1: config 0 descriptor??
[  717.617104][   T10] uvcvideo 7-1:0.199: Found UVC 0.00 device <unnamed> (0002:0000)
[  717.627278][   T10] uvcvideo 7-1:0.199: No valid video chain found.
[  717.637501][T32402] loop4: detected capacity change from 0 to 2048
[  717.671009][T32402] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  717.712967][   T30] audit: type=1800 audit(2000000062.269:150): pid=32402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.7904" name="file1" dev="loop4" ino=1367 res=0 errno=0
[  717.786219][T32419] netlink: 'syz.5.7908': attribute type 12 has an invalid length.
[  717.859242][   T10] usb 7-1: USB disconnect, device number 8
[  717.960509][T32435] loop0: detected capacity change from 0 to 1024
[  717.990761][T32435] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  718.059123][T32435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  718.107855][T32435] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.7909: missing EA_INODE flag
[  718.129011][T32435] EXT4-fs (loop0): Remounting filesystem read-only
[  718.238447][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.332977][T32462] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7917'.
[  718.487921][T32477] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7921'.
[  718.761029][T32499] loop6: detected capacity change from 0 to 64
[  718.995773][T32517] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7931'.
[  719.099562][   T10] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  719.119455][ T5945] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  719.155505][T32528] netlink: 'syz.5.7934': attribute type 3 has an invalid length.
[  719.166761][T32528] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.7934'.
[  719.278829][   T10] usb 7-1: Using ep0 maxpacket: 8
[  719.291493][   T10] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[  719.299619][   T10] usb 7-1: config 0 has no interface number 0
[  719.303474][ T5945] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  719.328523][   T10] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  719.334229][ T5945] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  719.360596][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  719.379507][ T5945] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  719.390466][   T10] usb 7-1: Product: syz
[  719.390487][   T10] usb 7-1: Manufacturer: syz
[  719.390500][   T10] usb 7-1: SerialNumber: syz
[  719.393212][   T10] usb 7-1: config 0 descriptor??
[  719.427626][ T5945] usb 5-1: config 1 interface 0 has no altsetting 1
[  719.463723][ T5945] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  719.497871][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  719.501039][ T5945] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  719.505299][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  719.521819][ T5945] usb 5-1: Product: syz
[  719.556607][ T5945] usb 5-1: Manufacturer: syz
[  719.561248][ T5945] usb 5-1: SerialNumber: syz
[  719.613436][ T5945] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  719.632000][ T5945] cdc_ncm 5-1:1.0: bind() failure
[  719.662378][   T10] uvcvideo 7-1:0.31: Found UVC 0.04 device syz (046d:08c3)
[  719.662457][   T10] uvcvideo 7-1:0.31: No valid video chain found.
[  719.704023][   T10] usb 7-1: USB disconnect, device number 9
[  719.836234][ T5945] usb 5-1: USB disconnect, device number 6
[  719.967247][T32582] loop0: detected capacity change from 0 to 1024
[  720.027297][T32582] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5
[  720.067061][T32582] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  720.084577][T32582] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.7947: Failed to acquire dquot type 0
[  720.111559][T32547] loop1: detected capacity change from 0 to 32768
[  720.121624][T32582] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  720.124531][T32547] (syz.1.7941,32547,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  720.150301][T32582] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #13: comm syz.0.7947: corrupted inode contents
[  720.170109][T32547] (syz.1.7941,32547,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  720.194803][T32582] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #13: comm syz.0.7947: mark_inode_dirty error
[  720.211577][T32582] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #13: comm syz.0.7947: corrupted inode contents
[  720.232036][T32596] netlink: 'syz.5.7950': attribute type 3 has an invalid length.
[  720.241068][T32547] JBD2: Ignoring recovery information on journal
[  720.248371][T32582] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.7947: mark_inode_dirty error
[  720.279259][T32582] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #13: comm syz.0.7947: corrupted inode contents
[  720.306150][T32582] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[  720.343207][T32582] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #13: comm syz.0.7947: corrupted inode contents
[  720.358368][T32582] EXT4-fs error (device loop0): ext4_truncate:4637: inode #13: comm syz.0.7947: mark_inode_dirty error
[  720.374937][T32547] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  720.379189][T32582] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[  720.420275][T32582] EXT4-fs (loop0): 1 truncate cleaned up
[  720.461099][T32582] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  720.477254][T32605] kAFS: unable to lookup cell 'syz0.r�iX�����<̧���+��R!K+K���
4���[��E�����d�<��6�c�7�(n�����@��8A�5W�/7|{���?���h�T��8#&3�r�?3�U�<��G`-��Ǿ�Q8�%�$�lH�Y�L5е�Y�^�!!�\p"�3���!��
[  720.477254][T32605] ����h1�#-��*���E��=�)���"�6<��H#.��L��(��[�1�h��uC�8y
���a�H�'(��lړ�+#-�nоYM�������%'
[  720.609327][T32582] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5
[  720.633258][T32582] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  720.656141][T32615] loop6: detected capacity change from 0 to 128
[  720.658356][T32582] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.7947: Failed to acquire dquot type 0
[  720.688544][T32617] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7955'.
[  720.845163][ T5827] ocfs2: Unmounting device (7,1) on (node local)
[  720.885926][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  721.331095][   T10] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  721.517729][   T10] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[  721.540596][   T10] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  721.575894][   T10] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  721.608965][   T10] usb 6-1: config 220 has no interface number 2
[  721.628878][T32677] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  721.632146][   T10] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  721.710852][   T10] usb 6-1: config 220 interface 0 has no altsetting 0
[  721.729411][   T10] usb 6-1: config 220 interface 76 has no altsetting 0
[  721.751388][   T10] usb 6-1: config 220 interface 1 has no altsetting 0
[  721.793707][   T10] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  721.815708][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  721.833296][   T10] usb 6-1: Product: syz
[  721.844619][   T10] usb 6-1: Manufacturer: syz
[  721.853001][   T10] usb 6-1: SerialNumber: syz
[  721.923793][T32692] loop6: detected capacity change from 0 to 164
[  722.107415][   T10] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  722.129139][   T10] uvcvideo 6-1:220.0: No valid video chain found.
[  722.169798][   T10] usb 6-1: selecting invalid altsetting 0
[  722.233723][   T10] usb 6-1: selecting invalid altsetting 0
[  722.239508][   T10] usbtest 6-1:220.1: probe with driver usbtest failed with error -22
[  722.288564][   T10] usb 6-1: USB disconnect, device number 17
[  722.517870][T32740] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7985'.
[  722.626237][T32748] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  722.649023][T32748] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  722.670807][T32754] netlink: 'syz.4.7992': attribute type 46 has an invalid length.
[  722.938217][  T309] loop0: detected capacity change from 0 to 8
[  723.138293][ T5833] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  723.228301][  T324] bridge3: the hash_elasticity option has been deprecated and is always 16
[  723.311566][ T5833] usb 6-1: Using ep0 maxpacket: 32
[  723.314235][  T339] netlink: 188 bytes leftover after parsing attributes in process `syz.4.8007'.
[  723.321266][ T5833] usb 6-1: config 0 has an invalid interface number: 74 but max is 1
[  723.371824][ T5833] usb 6-1: config 0 has no interface number 1
[  723.388812][ T5833] usb 6-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=8e.fa
[  723.405898][ T5833] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  723.424103][ T5833] usb 6-1: Product: syz
[  723.432415][ T5833] usb 6-1: Manufacturer: syz
[  723.437820][ T5833] usb 6-1: SerialNumber: syz
[  723.465472][ T5833] usb 6-1: config 0 descriptor??
[  723.525243][  T347] loop0: detected capacity change from 0 to 512
[  723.556801][ T5833] snd-usb-audio 6-1:0.74: probe with driver snd-usb-audio failed with error -22
[  723.626695][  T347] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  723.672434][  T347] ext4 filesystem being mounted at /1657/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.739312][T13748] udevd[13748]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.74/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  723.785498][  T375] netlink: 9 bytes leftover after parsing attributes in process `syz.6.8013'.
[  723.785537][  T347] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  723.834388][  T984] usb 6-1: USB disconnect, device number 18
[  723.913414][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.226011][  T353] loop4: detected capacity change from 0 to 32768
[  724.247122][  T353] 
[  724.247122][  T353]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.247122][  T353] 
[  724.315043][  T353] 
[  724.315043][  T353]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.315043][  T353] 
[  724.367282][  T353] 
[  724.367282][  T353]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.367282][  T353] 
[  724.407278][  T113] 
[  724.407278][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.407278][  T113] 
[  724.779994][T14454] 
[  724.779994][T14454]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.779994][T14454] 
[  724.789912][  T431] loop5: detected capacity change from 0 to 22
[  724.801135][T14454] 
[  724.801135][T14454]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.801135][T14454] 
[  724.801389][  T431] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  724.850935][  T431] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  724.865354][ T5839] 
[  724.865354][ T5839]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.865354][ T5839] 
[  724.895952][  T114] 
[  724.895952][  T114]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.895952][  T114] 
[  724.937873][ T5839] 
[  724.937873][ T5839]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  724.937873][ T5839] 
[  725.223950][  T451] loop1: detected capacity change from 0 to 256
[  725.449890][  T464] netlink: 72 bytes leftover after parsing attributes in process `syz.0.8037'.
[  725.468062][  T469] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8036'.
[  725.500444][  T464] netlink: 72 bytes leftover after parsing attributes in process `syz.0.8037'.
[  725.805019][  T476] loop1: detected capacity change from 0 to 4096
[  725.986172][  T500] loop5: detected capacity change from 0 to 2048
[  726.058444][  T500] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  726.205603][  T514] netlink: 6 bytes leftover after parsing attributes in process `syz.4.8048'.
[  726.251877][  T514] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  727.056734][  T563] loop6: detected capacity change from 0 to 256
[  727.118470][  T563] FAT-fs (loop6): Directory bread(block 64) failed
[  727.146318][  T563] FAT-fs (loop6): Directory bread(block 65) failed
[  727.175201][  T563] FAT-fs (loop6): Directory bread(block 66) failed
[  727.193435][  T563] FAT-fs (loop6): Directory bread(block 67) failed
[  727.224086][  T563] FAT-fs (loop6): Directory bread(block 68) failed
[  727.230653][  T563] FAT-fs (loop6): Directory bread(block 69) failed
[  727.261005][  T563] FAT-fs (loop6): Directory bread(block 70) failed
[  727.269585][  T563] FAT-fs (loop6): Directory bread(block 71) failed
[  727.276976][  T563] FAT-fs (loop6): Directory bread(block 72) failed
[  727.283648][  T563] FAT-fs (loop6): Directory bread(block 73) failed
[  727.296015][  T574] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8064'.
[  727.314348][  T575] netlink: 144 bytes leftover after parsing attributes in process `syz.0.8063'.
[  727.316744][  T535] loop4: detected capacity change from 0 to 32768
[  727.388904][  T535] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8053 (535)
[  727.453685][  T535] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  727.484000][  T528] loop5: detected capacity change from 0 to 32768
[  727.505126][  T535] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  727.556335][  T528] 
[  727.556335][  T528]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  727.556335][  T528] 
[  727.716107][T14454] 
[  727.716107][T14454]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  727.716107][T14454] 
[  727.768044][T14454] 
[  727.768044][T14454]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  727.768044][T14454] 
[  727.775156][  T535] BTRFS info (device loop4): enabling ssd optimizations
[  727.778908][T20865] 
[  727.778908][T20865]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  727.778908][T20865] 
[  727.800122][T20865] 
[  727.800122][T20865]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  727.800122][T20865] 
[  727.827860][  T535] BTRFS info (device loop4): enabling free space tree
[  727.835991][  T113] ==================================================================
[  727.844073][  T113] BUG: KASAN: slab-use-after-free in __mutex_lock+0x801/0x1350
[  727.851630][  T113] Read of size 8 at addr ffff888025eb9108 by task jfsCommit/113
[  727.859269][  T113] 
[  727.861599][  T113] CPU: 0 UID: 0 PID: 113 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[  727.861621][  T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  727.861632][  T113] Call Trace:
[  727.861640][  T113]  <TASK>
[  727.861649][  T113]  dump_stack_lvl+0x189/0x250
[  727.861670][  T113]  ? __kasan_check_byte+0x12/0x40
[  727.861691][  T113]  ? __pfx_dump_stack_lvl+0x10/0x10
[  727.861709][  T113]  ? lock_release+0x4b/0x3e0
[  727.861733][  T113]  ? __virt_addr_valid+0x4a5/0x5c0
[  727.861751][  T113]  print_report+0xca/0x240
[  727.861771][  T113]  ? __mutex_lock+0x801/0x1350
[  727.861790][  T113]  kasan_report+0x118/0x150
[  727.861811][  T113]  ? __mutex_lock+0x801/0x1350
[  727.861832][  T113]  __mutex_lock+0x801/0x1350
[  727.861853][  T113]  ? __mutex_lock+0x5bb/0x1350
[  727.861873][  T113]  ? jfs_syncpt+0x25/0x90
[  727.861893][  T113]  ? __pfx___mutex_lock+0x10/0x10
[  727.861909][  T113]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  727.861927][  T113]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  727.861951][  T113]  jfs_syncpt+0x25/0x90
[  727.861971][  T113]  txEnd+0x2e5/0x530
[  727.861991][  T113]  jfs_lazycommit+0x5ba/0xa90
[  727.862015][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  727.862035][  T113]  ? __pfx_default_wake_function+0x10/0x10
[  727.862057][  T113]  ? __kthread_parkme+0x7b/0x200
[  727.862080][  T113]  ? __kthread_parkme+0x1a1/0x200
[  727.862104][  T113]  kthread+0x711/0x8a0
[  727.862123][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  727.862143][  T113]  ? __pfx_kthread+0x10/0x10
[  727.862157][  T113]  ? _raw_spin_unlock_irq+0x23/0x50
[  727.862173][  T113]  ? lockdep_hardirqs_on+0x9c/0x150
[  727.862190][  T113]  ? __pfx_kthread+0x10/0x10
[  727.862206][  T113]  ret_from_fork+0x4bc/0x870
[  727.862228][  T113]  ? __pfx_ret_from_fork+0x10/0x10
[  727.862250][  T113]  ? __switch_to_asm+0x39/0x70
[  727.862268][  T113]  ? __switch_to_asm+0x33/0x70
[  727.862285][  T113]  ? __pfx_kthread+0x10/0x10
[  727.862301][  T113]  ret_from_fork_asm+0x1a/0x30
[  727.862327][  T113]  </TASK>
[  727.862334][  T113] 
[  728.057357][  T113] Allocated by task 528:
[  728.061630][  T113]  kasan_save_track+0x3e/0x80
[  728.066300][  T113]  __kasan_kmalloc+0x93/0xb0
[  728.070878][  T113]  __kmalloc_cache_noprof+0x3d5/0x6f0
[  728.076231][  T113]  lmLogOpen+0x2d1/0xfa0
[  728.080456][  T113]  jfs_mount_rw+0xe9/0x670
[  728.084856][  T113]  jfs_fill_super+0x754/0xd80
[  728.089516][  T113]  get_tree_bdev_flags+0x40e/0x4d0
[  728.094609][  T113]  vfs_get_tree+0x92/0x2b0
[  728.099024][  T113]  do_new_mount+0x302/0xa10
[  728.103514][  T113]  __se_sys_mount+0x313/0x410
[  728.108171][  T113]  do_syscall_64+0xfa/0xfa0
[  728.112663][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.118542][  T113] 
[  728.120852][  T113] Freed by task 20865:
[  728.124902][  T113]  kasan_save_track+0x3e/0x80
[  728.129564][  T113]  __kasan_save_free_info+0x46/0x50
[  728.134761][  T113]  __kasan_slab_free+0x5c/0x80
[  728.139512][  T113]  kfree+0x19a/0x6d0
[  728.143389][  T113]  lmLogClose+0x297/0x520
[  728.147710][  T113]  jfs_umount+0x2ef/0x3c0
[  728.152024][  T113]  jfs_put_super+0x8c/0x190
[  728.156542][  T113]  generic_shutdown_super+0x135/0x2c0
[  728.161901][  T113]  kill_block_super+0x44/0x90
[  728.166564][  T113]  deactivate_locked_super+0xbc/0x130
[  728.171922][  T113]  cleanup_mnt+0x425/0x4c0
[  728.176325][  T113]  task_work_run+0x1d4/0x260
[  728.180899][  T113]  exit_to_user_mode_loop+0xe9/0x130
[  728.186177][  T113]  do_syscall_64+0x2bd/0xfa0
[  728.190750][  T113]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.196634][  T113] 
[  728.198954][  T113] The buggy address belongs to the object at ffff888025eb9000
[  728.198954][  T113]  which belongs to the cache kmalloc-1k of size 1024
[  728.212991][  T113] The buggy address is located 264 bytes inside of
[  728.212991][  T113]  freed 1024-byte region [ffff888025eb9000, ffff888025eb9400)
[  728.226865][  T113] 
[  728.229182][  T113] The buggy address belongs to the physical page:
[  728.235587][  T113] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x25eb8
[  728.244330][  T113] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  728.252809][  T113] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  728.260768][  T113] page_type: f5(slab)
[  728.264730][  T113] raw: 00fff00000000040 ffff88813fe26dc0 0000000000000000 dead000000000001
[  728.273293][  T113] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  728.281864][  T113] head: 00fff00000000040 ffff88813fe26dc0 0000000000000000 dead000000000001
[  728.290521][  T113] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  728.299271][  T113] head: 00fff00000000003 ffffea000097ae01 00000000ffffffff 00000000ffffffff
[  728.307923][  T113] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  728.316573][  T113] page dumped because: kasan: bad access detected
[  728.322969][  T113] page_owner tracks the page as allocated
[  728.328675][  T113] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1340, tgid 1340 (kworker/u8:6), ts 88343250859, free_ts 88113804776
[  728.348028][  T113]  post_alloc_hook+0x240/0x2a0
[  728.352800][  T113]  get_page_from_freelist+0x2365/0x2440
[  728.358358][  T113]  __alloc_frozen_pages_noprof+0x181/0x370
[  728.364153][  T113]  alloc_pages_mpol+0x232/0x4a0
[  728.368995][  T113]  allocate_slab+0x96/0x3a0
[  728.373515][  T113]  ___slab_alloc+0xe94/0x18a0
[  728.378180][  T113]  __slab_alloc+0x65/0x100
[  728.382581][  T113]  __kmalloc_noprof+0x471/0x7f0
[  728.387411][  T113]  ___neigh_create+0x6d5/0x2270
[  728.392268][  T113]  ip6_finish_output2+0x1175/0x1480
[  728.397534][  T113]  ip6_output+0x340/0x550
[  728.401844][  T113]  ndisc_send_skb+0xbce/0x1510
[  728.406588][  T113]  ndisc_send_ns+0xcb/0x150
[  728.411073][  T113]  addrconf_dad_work+0xaae/0x14b0
[  728.416078][  T113]  process_scheduled_works+0xae1/0x17b0
[  728.421605][  T113]  worker_thread+0x8a0/0xda0
[  728.426186][  T113] page last free pid 1340 tgid 1340 stack trace:
[  728.432489][  T113]  __free_frozen_pages+0xbc4/0xd30
[  728.437582][  T113]  __slab_free+0x2e7/0x390
[  728.441990][  T113]  qlist_free_all+0x97/0x140
[  728.446659][  T113]  kasan_quarantine_reduce+0x148/0x160
[  728.452198][  T113]  __kasan_slab_alloc+0x22/0x80
[  728.457035][  T113]  kmem_cache_alloc_lru_noprof+0x35d/0x6d0
[  728.462818][  T113]  alloc_inode+0x6a/0x1b0
[  728.467135][  T113]  new_inode+0x22/0x170
[  728.471276][  T113]  __debugfs_create_file+0x14d/0x4f0
[  728.476587][  T113]  debugfs_create_file_unsafe+0x3a/0x50
[  728.482128][  T113]  ieee80211_sta_debugfs_add+0x2b5/0x850
[  728.487769][  T113]  sta_info_insert_rcu+0x1c54/0x2840
[  728.493046][  T113]  ieee80211_ibss_finish_sta+0x293/0x380
[  728.498692][  T113]  ieee80211_ibss_rx_queued_mgmt+0x179b/0x2af0
[  728.504842][  T113]  ieee80211_iface_work+0x85f/0x12d0
[  728.510125][  T113]  cfg80211_wiphy_work+0x2bb/0x470
[  728.515220][  T113] 
[  728.517526][  T113] Memory state around the buggy address:
[  728.523138][  T113]  ffff888025eb9000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  728.531191][  T113]  ffff888025eb9080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  728.539266][  T113] >ffff888025eb9100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  728.547345][  T113]                       ^
[  728.551669][  T113]  ffff888025eb9180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  728.559725][  T113]  ffff888025eb9200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  728.567765][  T113] ==================================================================
[  728.576909][  T113] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  728.584120][  T113] CPU: 0 UID: 0 PID: 113 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[  728.593243][  T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  728.603315][  T113] Call Trace:
[  728.606607][  T113]  <TASK>
[  728.609546][  T113]  dump_stack_lvl+0x99/0x250
[  728.614151][  T113]  ? __asan_memcpy+0x40/0x70
[  728.618750][  T113]  ? __pfx_dump_stack_lvl+0x10/0x10
[  728.623959][  T113]  ? __pfx__printk+0x10/0x10
[  728.628563][  T113]  vpanic+0x237/0x6d0
[  728.632555][  T113]  ? __pfx_vpanic+0x10/0x10
[  728.637069][  T113]  panic+0xb9/0xc0
[  728.640802][  T113]  ? __pfx_panic+0x10/0x10
[  728.645233][  T113]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  728.651137][  T113]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  728.657036][  T113]  ? __mutex_lock+0x801/0x1350
[  728.661791][  T113]  check_panic_on_warn+0x89/0xb0
[  728.666718][  T113]  ? __mutex_lock+0x801/0x1350
[  728.671469][  T113]  end_report+0x78/0x160
[  728.675695][  T113]  kasan_report+0x129/0x150
[  728.680198][  T113]  ? __mutex_lock+0x801/0x1350
[  728.684948][  T113]  __mutex_lock+0x801/0x1350
[  728.689537][  T113]  ? __mutex_lock+0x5bb/0x1350
[  728.694295][  T113]  ? jfs_syncpt+0x25/0x90
[  728.698623][  T113]  ? __pfx___mutex_lock+0x10/0x10
[  728.703640][  T113]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  728.709522][  T113]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  728.715840][  T113]  jfs_syncpt+0x25/0x90
[  728.719982][  T113]  txEnd+0x2e5/0x530
[  728.723864][  T113]  jfs_lazycommit+0x5ba/0xa90
[  728.728527][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  728.733710][  T113]  ? __pfx_default_wake_function+0x10/0x10
[  728.739504][  T113]  ? __kthread_parkme+0x7b/0x200
[  728.744428][  T113]  ? __kthread_parkme+0x1a1/0x200
[  728.749441][  T113]  kthread+0x711/0x8a0
[  728.753583][  T113]  ? __pfx_jfs_lazycommit+0x10/0x10
[  728.758771][  T113]  ? __pfx_kthread+0x10/0x10
[  728.763357][  T113]  ? _raw_spin_unlock_irq+0x23/0x50
[  728.768548][  T113]  ? lockdep_hardirqs_on+0x9c/0x150
[  728.773741][  T113]  ? __pfx_kthread+0x10/0x10
[  728.778346][  T113]  ret_from_fork+0x4bc/0x870
[  728.782930][  T113]  ? __pfx_ret_from_fork+0x10/0x10
[  728.788032][  T113]  ? __switch_to_asm+0x39/0x70
[  728.792785][  T113]  ? __switch_to_asm+0x33/0x70
[  728.797533][  T113]  ? __pfx_kthread+0x10/0x10
[  728.802110][  T113]  ret_from_fork_asm+0x1a/0x30
[  728.806867][  T113]  </TASK>
[  728.810155][  T113] Kernel Offset: disabled
[  728.814460][  T113] Rebooting in 86400 seconds..