last executing test programs:

16.043932444s ago: executing program 4 (id=786):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r4, 0x0, 0x0)
close(r3)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_FLOW_MODE={0x8}, @TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r2, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200000214000e", 0x9}], 0x1}, 0x5)

13.417367733s ago: executing program 4 (id=790):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200047fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
write$binfmt_elf64(r1, &(0x7f0000000f80)=ANY=[], 0x540)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1)

13.23595875s ago: executing program 0 (id=791):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)

13.210846311s ago: executing program 4 (id=792):
ftruncate(0xffffffffffffffff, 0x2007ffc)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_usb_ep_write(0xffffffffffffffff, 0x81, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@bridge_getlink={0x28, 0x12, 0xdbf44c00c5896d57, 0x10, 0x0, {0x7, 0x0, 0x0, 0x0, 0x20000}, [@IFLA_EXT_MASK={0x8, 0x1d, 0xeca}]}, 0x28}}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, 0x0}, 0x0)

12.93464465s ago: executing program 0 (id=794):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x10e, &(0x7f0000000080)={[{@barrier}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@noinit_itable}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x40)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r4, &(0x7f0000000400)={0x1f, @none}, 0x8)

10.187906403s ago: executing program 0 (id=796):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$sock_int(r2, 0x1, 0x20, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x58}}, 0x0)
syz_open_dev$swradio(0x0, 0x0, 0x2)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r5, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x6000000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

9.816225616s ago: executing program 4 (id=798):
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x2)
getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x6a, 0x1, 0x0, &(0x7f0000000640))
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000009c0)='/sys/kernel/kexec_crash_size', 0x149a82, 0x0)
sendfile(r3, r3, 0x0, 0x3)
socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x5, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1}, 0x1c)

9.055359062s ago: executing program 0 (id=801):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
socket(0xb, 0x800, 0x5)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x7)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBSENT(r2, 0x4b49, &(0x7f0000000080)={0xb8, "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"})
ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000040))

8.664583466s ago: executing program 3 (id=804):
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x44}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000003c0000000000000008000f0001000000", 0x24)

7.273874153s ago: executing program 3 (id=807):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x5}]}], {0x14}}, 0x64}}, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
r5 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r7, &(0x7f0000000100)={0x20000014})
epoll_wait(r8, &(0x7f0000000340)=[{}], 0x1, 0x80000000)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r5, &(0x7f0000000000)={0xa0000001})
ppoll(&(0x7f0000000200)=[{r8, 0x1}], 0x1, 0x0, 0x0, 0x3)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f00000049c0)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r4, 0x40046208, 0x0)

5.491731603s ago: executing program 1 (id=809):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r1 = fcntl$dupfd(r0, 0x406, r0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)
sendmsg$TIPC_NL_NODE_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[], 0x134}, 0x1, 0x0, 0x0, 0x40d0}, 0x1404cc09)
write$binfmt_elf64(r1, &(0x7f0000000f80)=ANY=[], 0x540)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1)

5.454644754s ago: executing program 3 (id=810):
ftruncate(0xffffffffffffffff, 0x2007ffc)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_usb_ep_write(0xffffffffffffffff, 0x81, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@bridge_getlink={0x28, 0x12, 0xdbf44c00c5896d57, 0x10, 0x0, {0x7, 0x0, 0x0, 0x0, 0x20000}, [@IFLA_EXT_MASK={0x8, 0x1d, 0xeca}]}, 0x28}}, 0x0)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001640)={0x0, 0x0, 0x0}, 0x0)

5.28369504s ago: executing program 2 (id=811):
unshare(0x26020480)
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x9)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r1, 0x0, 0x0}, 0x10)

5.083368037s ago: executing program 1 (id=812):
r0 = io_uring_setup(0x758a, &(0x7f0000000000)={0x0, 0x4af8, 0x10, 0x3, 0x213})
landlock_create_ruleset(&(0x7f0000000000)={0x0, 0x1}, 0x18, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
close_range(r0, 0xffffffffffffffff, 0x0)

4.332247752s ago: executing program 2 (id=813):
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
creat(0x0, 0xd931d3864d39ddd8)
socket$nl_netfilter(0x10, 0x3, 0xc)
io_uring_setup(0x2c4e, 0x0)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r1, 0x0, 0xf3a, 0x8)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
splice(r0, 0x0, r3, 0x0, 0x80, 0x8)
write$FUSE_INIT(r1, &(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x7d4, 0x48000, 0x6, 0xf, 0x2, 0x16d1, 0x0, 0x0, 0x2a, 0x3}}, 0x50)

4.217728216s ago: executing program 1 (id=814):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, 0x0}, 0x8810)
write$P9_RLOCK(0xffffffffffffffff, &(0x7f00000001c0)={0x8, 0x35, 0x1, 0x2}, 0x8)
r0 = add_key$user(&(0x7f0000000380), &(0x7f0000000000), &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'streebog512-generic\x00'}})

3.855707649s ago: executing program 1 (id=815):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r4, 0x0, 0x0)
close(r3)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_FLOW_MODE={0x8}, @TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$kcm(r2, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200000214000e", 0x9}], 0x1}, 0x5)

3.83381144s ago: executing program 3 (id=816):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpgid(0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$TIPC_DEST_DROPPABLE(0xffffffffffffffff, 0x10f, 0x81, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x4, 0xfff, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="0000230c1100"})
write$cgroup_subtree(r3, &(0x7f0000000000)=ANY=[@ANYBLOB="36400000250091"], 0xfe33)
ioctl$KVM_SET_IDENTITY_MAP_ADDR(0xffffffffffffffff, 0x4008ae48, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000180)='net/mcfilter\x00')
recvmmsg(0xffffffffffffffff, &(0x7f0000006940)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$sock(r4, &(0x7f00000044c0), 0x4000000000001c0, 0x0)
sendfile(0xffffffffffffffff, r1, 0x0, 0x180000504)
recvfrom(r5, &(0x7f0000000040)=""/60, 0x3c, 0x40, 0x0, 0x0)

3.691592444s ago: executing program 0 (id=817):
mount_setattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, 0x0, 0x0)
epoll_create1(0x80000)
r1 = openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
poll(0x0, 0x0, 0x7f)
syz_usb_connect(0x0, 0x24, &(0x7f0000000380)=ANY=[@ANYBLOB="120100004b41460860163209ea800102030109021e0001000000000904"], 0x0)
r2 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r2, 0x707, &(0x7f0000000340)={&(0x7f0000000140)=[{0x63, 0x0, 0x0, 0x0}], 0x1})

3.595815128s ago: executing program 4 (id=818):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x10e, &(0x7f0000000080)={[{@barrier}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@noinit_itable}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$eJzs28tvG8UfAPDvrpP219cvoZRHH0CgICIeSZMW6IEDIJA4gITEpRxDklalboOaINGqgoBQOaJK3BFHJP4CTnBBwAmJK9xRpQrlQuFktPZu/IjtJsGJS/35SNvM7I498/Xs2LM73QAG1lj2TxKxNyJ+jYiRWra5wFjtz82VK7N/rVyZTaJSefOPpFruz5Urs0XR4nV78sx4GpF+ksThNvUuXrp8bqZcnr+Y5yeXzr87uXjp8tNnz8+cmT8zf2H65MkTx6eee3b6mZ7EeVfW1kMfLBw5+Opb116fPXXt7R+/Tor4W+LokbFuBx+rVHpcXX/ta0gnQ31sCBtSioisu4ar438kSlHvvJF45eO+Ng7YUpVch8PLFeAOlkS/WwD0R/FDn13/Ftv2zT7678aLtQugLO6b+VY7MhRp1C6Mhluub3tpLCJOLf/9RbbF1tyHAABo8m02/3mq3fwvjXsbyv0/XxsazddS9kfE3RFxICLuiaiWvS8i7t9g/a2LJGvnP+n1TQW2Ttn87/l8bat5/pcWRUZLeW5fNTOcnD5bnj+WfybjMbwzy091qeO7l3/5rNOxxvlftmX1F3PBvB3Xh3Y2v2ZuZmnm38Tc6MZHEYeG2sWfrK4EJBFxMCIObbKOs098daTTsdb4K0m3d3qhOduDdabKlxGP1/p/OVriLyTd1ycn/xfl+WOTxVmx1k8/X32jU/237v+tlfX/7rbn/2r8o0njeu3ixuu4+tunHa9pJjZ1/td37Mj/vj+ztHRxKmJH8lqt0Y37p+uvLfJF+Sz+8aPtx//+qH8ShyMiO4kfiIgHI+KhvO8ejohHIuJol/h/eOnRdzodux36f66l/0ebi7T0fz2xI1r3tE+Uzn3/TfM71pPr+/47UU2N53vW8/23nnZt7mwGAACA/540IvZGkk6sptN0YqL2f/gPxO60vLC49OTphfcuzNWeERiN4bS401W7H1y7HzqVX9YX+emW/PH8vvHnpV3V/MTsQnmu38HDgNvTYfxnfi/1u3XAlvO8Fgwu4x8Gl/EPg8v4h8HVZvzv6kc7gO3X7vf/w3qyMrKdjQG2Vcv4t+wHA8T1Pwwu4x8GV+P47/r8PXAnWdwVt35IXkJiTSLS26IZvUkkWzwK9vY7wI0n+v3NBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0Bv/BAAA///oO+WP")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x40)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r3, &(0x7f0000000400)={0x1f, @none}, 0x8)
setsockopt$inet_tcp_TCP_MD5SIG(r3, 0x6, 0x13, 0x0, 0x0)

2.63913948s ago: executing program 3 (id=819):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file0\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x5, 0x4451, &(0x7f0000008900)="$eJzs3T9sVPcdAPDfe3aLTYHalIFKlXpSUVu1lWUz0RqpxhiMDS4VLQxdjrN9gJuzD9nnKAODoyxImSJliDKgRMrmCXnLRJZIGbNkJDNSMmSJFAnlort7Z99758MX4sMBfT4S/t37/be/9373e8PxixOVO0truaW1XGElV164tXY693q5tL5cDHHWp205+6Lr8TlQvYiT2B+cq+cv/ufG6RA+WfziSbVarYaa/rCrsZbX335zb6E1bYpbL95q9Lt7b/vlfyGEE23zqukLIQwkr88l6WSSDoYQjoUQohDCjXtv38zt02wePi6ezT+du781fmp288FW5989CuH90m//dnv5qz/0jX/5l30aHgAAAAAAAAAAAAAAAACAl9z0tavX/z06Fh5FoX8zav++7nSSdvp+bHXf/L73vywAAAAAAAAAAAAAAAAAAAD8TO18/z8XHd/l+/9TSTrRoX31n92N88efOE96Y+ZfV6cujI4l579HbeVnkqyvz/WF4eb56p91Pv/9XKb97ue/t4/zvJrza447FKJ4JHUdxyMjIXyYHPx+Mjocl8prlb/eKq+vLO7bNF5a6fg3Tu9PRSc50D8V/2ec/z+Z6b/35///pu3dVLu+uX9vsVdaOv59Het99Gb0jPj/crve+Uy7FxF/nl86/v31vMHWChONBaAW/3f6977/pzL99yr+x0IIuag211xqBajtYWr5nfYrpKXj/4t6XmrpTP6Qne7/7zLxv5Dp/6DW/43sBxG7Sse/sY4PpGrs3P/D8d73/8VM/wcR/9r8N3z+dyUd/0ONzP5Ulfpfstv1fzrTf6/ifz1O5nksSr0DNqNGfqf/r460dPwH2sp3nv/irvb/lzLtX9TzX3Pc5vNfc/n/c9R4/mN32/HfCk+q1cGO9bq9/2cy7Xq9/k/U939tzpzo5aCvkPT9f7iel947D9V/dop/NRP/2Uz/zxH/jzs/he6o70oGmvHfWU++P9TI/8D+ryvp+P+qkRm31tio/6zv/6K99/+XM/0fxP6vNv+NuLejvirS8T/SsV4t/p938fl/JdOu9/EPYbT5BmjfvrCHdPyPdqxXv/8H9o7/XKZdr+P/p152DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPASmEzSoRDFI6nrOB4ZCeF8cn0yHI7mC4v5+VJ54bW1EKaS/Fw4Ht0ulecLpfzSSnmxmC+USuWFEC4k5SfCQLRWKlfyy4W7F7f7GozuFAurlflioRJCmE7yfxeONvuaX6osF+6GEC5tl/06Lq/evVNYyS8urf5jdHR0NMxsz2E4Kr5RKa5UGqM3SkOY3W47FLVMrl58eXsuR6L/l9dXVwqlev6Vljal8kKh1NJmLil7NwxHldX1lYVCpZgvlW83xztIE0k6NXPtv9eujLWV34wa6eSLnRYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9Kj8b+/F0Lob1zFIYRclLyIkn8pDx8Xz+afzt3fGj81u/lg68ludQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4gR04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirs0j9KA0EUB+A3Y6Glx7BadjvbFUW0cEXwBHoMD6NH8RLewSJF2hQhkMxC2D+wTVJ9X/Ngfsy8B/MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACWe3zr3l/rJiLF1fYy4vfz7/84fy71+276/sUZZuR0nl66+4e6Kf+eRvltOVq1eZ9u1l8fMVF7P4M9Ge7TwbjP0Ny+zc3X972OlKuIaEt+k3KuqmVvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAsAAAAACPO3jqJvAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//9HQIRk=")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c000000140011f225bd70", @ANYRES32], 0x4c}, 0x1, 0x0, 0x0, 0x48000}, 0x40)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r4, 0x4030582b, 0x0)
capset(&(0x7f0000000000)={0x20080522}, 0x0)
r5 = socket$nl_sock_diag(0x10, 0x3, 0x4)
setsockopt$sock_int(r5, 0x1, 0x20, &(0x7f0000000000)=0x6, 0x4)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r7=>0x0})
bind$can_j1939(r6, &(0x7f0000000340)={0x1d, r7, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r4, 0x10e, 0x8, &(0x7f0000000300)=0x8, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000002800)=@bpf_tracing={0x1a, 0x13, &(0x7f00000015c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x7}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@cb_func={0x18, 0x4, 0x4, 0x0, 0x4}, @map_val={0x18, 0x9, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0x2}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000100)='syzkaller\x00', 0x9, 0x1000, &(0x7f0000001680)=""/4096, 0x41100, 0x50, '\x00', r7, 0x1c, r4, 0x8, &(0x7f0000000140)={0x2, 0x4}, 0x8, 0x10, &(0x7f0000002680)={0x3, 0xe, 0x8001, 0x7}, 0x10, 0x2e7e7, 0xffffffffffffffff, 0x3, &(0x7f0000002740), &(0x7f0000002780)=[{0x5, 0x2, 0x7, 0xf}, {0x1, 0x1, 0x8, 0xb}, {0x0, 0x5, 0x2, 0x2}], 0x10, 0x25}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001440)={0xffffffffffffffff, 0x0, 0x0, 0x1000, &(0x7f0000000180), &(0x7f00000003c0)=""/4096, 0xe872, 0x0, 0x44, 0x71, &(0x7f0000000280)="22dfc0d21d1a2a2205a3a93bcc1e47cda6794a0d6710247cb619dea38e63c21280c87cbc42523489662e2bd659f13f5b3b8751a10cb19a1dff3a19e5f8abc09ba43bf7d3", &(0x7f00000013c0)="c4b0c9b70a363a9c9b584bede51c90b79ea68c6b159e89a6b02ebc41746a7fdb210bfc2b638bbe62780e71b669098020dcd1f4d2d10e048bd80fd2f6f9263782f224daa919b510a85c4f47ad58e16497b467899cc7e6d62134b4700795aa22abc72cdd90413508866fce006d6046f44d51", 0x4, 0x0, 0x7f}, 0x50)

2.494636485s ago: executing program 2 (id=820):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x5}]}], {0x14}}, 0x64}}, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x10000000000)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x50, 0x0, &(0x7f0000000580)="b3185d7bb56f70f003360fa8bf71ac3086aedebf6fff904f92849a7a07395ee7f0e4cb1d78001c08a0ab73ffcf5ad07693727980eea946e6cba1723e81bfa5c3688803c8a124dcb27df7938e7ddfdd52"})
r5 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r7, &(0x7f0000000100)={0x20000014})
epoll_wait(r8, &(0x7f0000000340)=[{}], 0x1, 0x80000000)
epoll_ctl$EPOLL_CTL_ADD(r8, 0x1, r5, &(0x7f0000000000)={0xa0000001})
ppoll(&(0x7f0000000200)=[{r8, 0x1}], 0x1, 0x0, 0x0, 0x3)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000004a40)={0x44, 0x0, &(0x7f00000049c0)=[@transaction={0x40406300, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r4, 0x40046208, 0x0)

2.33995959s ago: executing program 1 (id=821):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@jqfmt_vfsv0}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000000)=@v1={0x0, @aes128, 0x0, @desc3})
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r1, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r2, 0x890b, &(0x7f00000007c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x5, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x5, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]})

963.115637ms ago: executing program 4 (id=822):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
bind$can_raw(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, 0x0)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file0\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x5, 0x4451, &(0x7f0000008900)="$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")
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x804053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
rename(&(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000300)='./file0\x00')

900.40591ms ago: executing program 1 (id=823):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x10e, &(0x7f0000000080)={[{@barrier}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@noinit_itable}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$eJzs28tvG8UfAPDvrpP219cvoZRHH0CgICIeSZMW6IEDIJA4gITEpRxDklalboOaINGqgoBQOaJK3BFHJP4CTnBBwAmJK9xRpQrlQuFktPZu/IjtJsGJS/35SNvM7I498/Xs2LM73QAG1lj2TxKxNyJ+jYiRWra5wFjtz82VK7N/rVyZTaJSefOPpFruz5Urs0XR4nV78sx4GpF+ksThNvUuXrp8bqZcnr+Y5yeXzr87uXjp8tNnz8+cmT8zf2H65MkTx6eee3b6mZ7EeVfW1kMfLBw5+Opb116fPXXt7R+/Tor4W+LokbFuBx+rVHpcXX/ta0gnQ31sCBtSioisu4ar438kSlHvvJF45eO+Ng7YUpVch8PLFeAOlkS/WwD0R/FDn13/Ftv2zT7678aLtQugLO6b+VY7MhRp1C6Mhluub3tpLCJOLf/9RbbF1tyHAABo8m02/3mq3fwvjXsbyv0/XxsazddS9kfE3RFxICLuiaiWvS8i7t9g/a2LJGvnP+n1TQW2Ttn87/l8bat5/pcWRUZLeW5fNTOcnD5bnj+WfybjMbwzy091qeO7l3/5rNOxxvlftmX1F3PBvB3Xh3Y2v2ZuZmnm38Tc6MZHEYeG2sWfrK4EJBFxMCIObbKOs098daTTsdb4K0m3d3qhOduDdabKlxGP1/p/OVriLyTd1ycn/xfl+WOTxVmx1k8/X32jU/237v+tlfX/7rbn/2r8o0njeu3ixuu4+tunHa9pJjZ1/td37Mj/vj+ztHRxKmJH8lqt0Y37p+uvLfJF+Sz+8aPtx//+qH8ShyMiO4kfiIgHI+KhvO8ejohHIuJol/h/eOnRdzodux36f66l/0ebi7T0fz2xI1r3tE+Uzn3/TfM71pPr+/47UU2N53vW8/23nnZt7mwGAACA/540IvZGkk6sptN0YqL2f/gPxO60vLC49OTphfcuzNWeERiN4bS401W7H1y7HzqVX9YX+emW/PH8vvHnpV3V/MTsQnmu38HDgNvTYfxnfi/1u3XAlvO8Fgwu4x8Gl/EPg8v4h8HVZvzv6kc7gO3X7vf/w3qyMrKdjQG2Vcv4t+wHA8T1Pwwu4x8GV+P47/r8PXAnWdwVt35IXkJiTSLS26IZvUkkWzwK9vY7wI0n+v3NBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0Bv/BAAA///oO+WP")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$phonet_pipe(0x23, 0x5, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x40)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r4, &(0x7f0000000400)={0x1f, @none}, 0x8)

675.913907ms ago: executing program 2 (id=824):
r0 = io_uring_setup(0x758a, &(0x7f0000000000)={0x0, 0x4af8, 0x10, 0x3, 0x213})
landlock_create_ruleset(&(0x7f0000000000)={0x0, 0x1}, 0x18, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00'})
close_range(r0, 0xffffffffffffffff, 0x0)

271.57972ms ago: executing program 2 (id=825):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x3, 0x0}, 0x8810)
write$P9_RLOCK(0xffffffffffffffff, &(0x7f00000001c0)={0x8, 0x35, 0x1, 0x2}, 0x8)
r0 = add_key$user(&(0x7f0000000380), &(0x7f0000000000), &(0x7f00000003c0)='X', 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r0, r1, r1}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'streebog512-generic\x00'}})

271.295361ms ago: executing program 3 (id=826):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000025300)=""/102392, 0x18ff8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x8080)
socket$nl_route(0x10, 0x3, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

55.861588ms ago: executing program 2 (id=827):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
socket(0xb, 0x800, 0x5)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
memfd_create(0x0, 0x7)
r1 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBSENT(r2, 0x4b49, &(0x7f0000000080)={0xb8, "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"})
ioctl$VT_OPENQRY(r2, 0x5600, &(0x7f0000000040))

0s ago: executing program 0 (id=828):
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0xffffffffffff8000, 0x0)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f0000000000)=<r2=>0x0)
bind$nfc_llcp(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$nfc_llcp(r3, &(0x7f00000000c0)={0x27, r2, 0x1, 0x4, 0x0, 0xff, "bae09ec7a5ad488702b535116fad55baf63cdd52fc30106310abb622a1c3c01c13c04df6b906288e64e96754059e65c39c5759b069d6e6d9589e5f2348878c", 0x24}, 0x60)
sendmmsg(r0, 0x0, 0x0, 0x4000)

kernel console output (not intermixed with test programs):

ETDEV_CHANGE): bridge0: link becomes ready
[   78.183449][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.210630][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.224151][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.236213][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.245435][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.254731][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.263800][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.272898][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.282615][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   78.299823][ T4275] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   78.310799][ T4275] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.330062][ T4273] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.349622][ T4274] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.362971][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.373321][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.382549][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.391519][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.399893][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.409177][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.417952][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   78.426913][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   78.435383][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.456260][ T4266] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.475009][ T4266] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   78.499248][ T4273] 8021q: adding VLAN 0 to HW filter on device team0
[   78.513063][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   78.534976][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   78.543692][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.552574][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.594942][ T4267] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.622379][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   78.632332][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   78.642672][ T4281] Bluetooth: hci2: command 0x041b tx timeout
[   78.648724][ T4281] Bluetooth: hci4: command 0x041b tx timeout
[   78.656067][ T4279] Bluetooth: hci3: command 0x041b tx timeout
[   78.656085][ T4271] Bluetooth: hci0: command 0x041b tx timeout
[   78.671712][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.678868][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.719630][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   78.730277][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   78.738491][ T4283] Bluetooth: hci1: command 0x041b tx timeout
[   78.755553][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.762752][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.782513][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   78.822718][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   78.842628][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   78.877255][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   78.902842][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   78.922037][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   78.957085][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   78.969591][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   78.979593][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   78.991937][ T4267] 8021q: adding VLAN 0 to HW filter on device team0
[   79.002598][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   79.016805][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   79.042158][   T33] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   79.075857][ T4273] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   79.093148][ T4273] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   79.106505][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   79.117214][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   79.139421][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.146610][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.160820][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   79.169994][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   79.184793][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.191968][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.217526][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   79.227417][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   79.239097][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   79.280448][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   79.316762][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   79.337764][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   79.362798][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   79.370342][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   79.406001][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   79.430383][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   79.466760][ T4275] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.501494][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   79.510818][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   79.527039][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   79.537250][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   79.548932][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   79.558313][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   79.573974][ T4266] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.585062][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   79.595356][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   79.616362][ T4274] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.657134][ T4267] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   79.674548][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   79.711426][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   79.720706][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   79.731449][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   79.740342][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   79.750906][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   79.760480][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   79.795522][ T4275] device veth0_vlan entered promiscuous mode
[   79.826599][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   79.837736][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   79.854087][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   79.867568][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   79.885282][ T4266] device veth0_vlan entered promiscuous mode
[   79.919414][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   79.929946][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   79.955212][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   79.966060][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   79.998408][ T4266] device veth1_vlan entered promiscuous mode
[   80.022983][ T4275] device veth1_vlan entered promiscuous mode
[   80.030796][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   80.040315][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   80.048643][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   80.057074][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   80.065730][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   80.079850][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   80.093071][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   80.100894][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   80.112392][ T4274] device veth0_vlan entered promiscuous mode
[   80.173307][ T4266] device veth0_macvtap entered promiscuous mode
[   80.199980][ T4275] device veth0_macvtap entered promiscuous mode
[   80.220446][ T4274] device veth1_vlan entered promiscuous mode
[   80.230364][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   80.246072][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   80.262006][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   80.282223][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   80.289711][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   80.299541][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   80.309001][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   80.319579][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   80.329764][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   80.345087][ T4266] device veth1_macvtap entered promiscuous mode
[   80.364176][ T4275] device veth1_macvtap entered promiscuous mode
[   80.378371][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   80.387370][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   80.396252][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   80.405643][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   80.420227][ T4273] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.468515][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   80.491747][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   80.506279][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.519093][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.559191][ T4267] 8021q: adding VLAN 0 to HW filter on device batadv0
[   80.568231][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   80.578575][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   80.589754][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   80.599040][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   80.614987][ T4266] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.624604][ T4266] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.634343][ T4266] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.644534][ T4266] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.655490][ T4275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.671341][ T4275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.683338][ T4275] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.709649][ T4274] device veth0_macvtap entered promiscuous mode
[   80.721405][ T4283] Bluetooth: hci0: command 0x040f tx timeout
[   80.727477][ T4283] Bluetooth: hci4: command 0x040f tx timeout
[   80.733668][ T4271] Bluetooth: hci3: command 0x040f tx timeout
[   80.733845][ T4281] Bluetooth: hci2: command 0x040f tx timeout
[   80.752271][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   80.773970][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   80.783248][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   80.792494][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   80.801871][ T4281] Bluetooth: hci1: command 0x040f tx timeout
[   80.812108][ T4275] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.830104][ T4275] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.842290][ T4275] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.855254][ T4274] device veth1_macvtap entered promiscuous mode
[   80.865581][ T4275] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.877891][ T4275] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.888196][ T4275] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.900678][ T4275] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.911016][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   80.919709][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   80.928638][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   80.938018][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   80.947011][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   80.956452][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   81.012174][ T4267] device veth0_vlan entered promiscuous mode
[   81.051421][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   81.059862][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   81.079103][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   81.088515][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   81.117091][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.139098][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.149646][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.160399][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.174696][ T4274] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.205722][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   81.215245][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   81.227590][ T4267] device veth1_vlan entered promiscuous mode
[   81.243601][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.266312][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.276608][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.288567][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.301446][ T4274] batman_adv: batadv0: Interface activated: batadv_slave_1
[   81.339591][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   81.352322][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   81.369408][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   81.380056][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   81.391878][ T4274] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.400614][ T4274] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.410041][ T4274] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.419689][ T4274] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.455373][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.471948][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.505511][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   81.570200][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   81.579760][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   81.602393][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.610261][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.628018][ T4267] device veth0_macvtap entered promiscuous mode
[   81.639574][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.659885][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   81.669404][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   81.677548][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.698085][ T4267] device veth1_macvtap entered promiscuous mode
[   81.714233][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   81.722773][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   81.750620][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.799778][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.810850][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.814557][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.845994][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.856719][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.867094][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   81.877744][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.901757][ T4267] batman_adv: batadv0: Interface activated: batadv_slave_0
[   81.915095][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   81.936248][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   81.949936][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   81.974024][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   81.988199][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   81.999503][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.012086][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.022367][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.032889][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.052186][ T4267] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.074358][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   82.084302][ T4321] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.086943][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   82.101641][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   82.110689][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   82.139365][ T4321] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.159687][ T4267] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.206583][ T4267] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.215652][ T4267] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.234036][ T4267] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.259065][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   82.271743][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   82.290752][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   82.307234][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   82.322706][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   82.334802][ T4356] Bluetooth: MGMT ver 1.22
[   82.359181][ T4321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.378984][ T4321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.466481][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.495419][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.568637][ T4273] device veth0_vlan entered promiscuous mode
[   82.589045][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   82.612595][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   82.833782][ T4362] syz.3.4 uses obsolete (PF_INET,SOCK_PACKET)
[   82.854501][ T4283] Bluetooth: hci3: command 0x0419 tx timeout
[   82.861034][ T4281] Bluetooth: hci4: command 0x0419 tx timeout
[   82.867890][ T4281] Bluetooth: hci2: command 0x0419 tx timeout
[   82.874701][ T4283] Bluetooth: hci0: command 0x0419 tx timeout
[   82.881909][ T4283] Bluetooth: hci1: command 0x0419 tx timeout
[   82.980405][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.345260][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.396280][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   83.774224][ T4273] device veth1_vlan entered promiscuous mode
[   83.896493][ T4359] syz.0.6 (4359) used greatest stack depth: 19920 bytes left
[   83.972888][ T4273] device veth0_macvtap entered promiscuous mode
[   83.990990][ T4273] device veth1_macvtap entered promiscuous mode
[   84.050966][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.089598][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.130517][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.260386][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.331160][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.346645][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.366764][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.384694][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.403708][ T4273] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.324912][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   85.334625][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   85.343926][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   85.354388][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   85.368949][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   85.379613][ T4367] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   85.391414][ T4371] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.7'.
[   85.405244][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.423080][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.433788][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.446031][ T4379] loop0: detected capacity change from 0 to 128
[   85.525482][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.535976][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.550931][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.561503][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.589196][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.659520][ T4273] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.722006][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   85.733320][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   85.767167][ T4273] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.777886][ T4273] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.827330][ T4273] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.856545][ T4273] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.489270][ T4383] loop1: detected capacity change from 0 to 4096
[   86.714247][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.725669][    T7] cfg80211: failed to load regulatory.db
[   86.757258][ T4386] loop2: detected capacity change from 0 to 4096
[   86.765894][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.857623][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   86.893374][ T4319] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.936457][ T4319] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.995886][ T4274] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[   87.005042][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   87.055687][ T4274] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[   87.211151][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   87.231136][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   87.261136][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   87.271128][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   87.281124][    T0] NOHZ tick-stop error: local softirq work is pending, handler #8a!!!
[   87.291131][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   87.301125][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   87.311125][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   87.321127][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   87.331137][    T0] NOHZ tick-stop error: local softirq work is pending, handler #18a!!!
[   88.370540][ T4397] loop4: detected capacity change from 0 to 131072
[   88.421601][ T4397] F2FS-fs (loop4): Wrong CP boundary, start(512) end(1536) blocks(0)
[   88.429985][ T4397] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   88.504093][ T4397] F2FS-fs (loop4): invalid crc value
[   88.673454][ T4402] device syzkaller0 entered promiscuous mode
[   88.708976][ T4397] F2FS-fs (loop4): Found nat_bits in checkpoint
[   88.780639][ T4397] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   88.788171][ T4397] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[   89.040525][   T26] audit: type=1800 audit(1774794890.127:2): pid=4397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5" name="file1" dev="loop4" ino=7 res=0 errno=0
[   90.300965][ T4419] loop3: detected capacity change from 0 to 128
[   90.311110][    C0] sched: RT throttling activated
[   90.405311][ T4419] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   90.415393][ T4419] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   91.149903][ T4414] ALSA: mixer_oss: invalid OSS volume 'MO'
[   91.415518][ T4275] EXT4-fs (loop3): unmounting filesystem.
[   92.980145][ T4445] loop2: detected capacity change from 0 to 128
[   93.134400][ T4448] =======================================================
[   93.134400][ T4448] WARNING: The mand mount option has been deprecated and
[   93.134400][ T4448]          and is ignored by this kernel. Remove the mand
[   93.134400][ T4448]          option from the mount to silence this warning.
[   93.134400][ T4448] =======================================================
[   93.921046][ T4444] loop3: detected capacity change from 0 to 4096
[   94.373524][ T4459] device syzkaller0 entered promiscuous mode
[   94.907372][ T4275] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[   95.101268][ T4275] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[   96.642944][ T4479] loop0: detected capacity change from 0 to 128
[   97.016551][ T4479] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   97.343857][ T4473] loop3: detected capacity change from 0 to 131072
[   97.424510][ T4473] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[   97.433588][ T4473] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   97.445143][ T4473] F2FS-fs (loop3): invalid crc value
[   97.492863][ T4479] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   97.730524][ T4473] F2FS-fs (loop3): Found nat_bits in checkpoint
[   97.799454][ T4474] ALSA: mixer_oss: invalid OSS volume 'MO'
[   97.972964][ T4473] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   97.980118][ T4473] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[   98.733100][   T26] audit: type=1800 audit(1774794899.827:3): pid=4473 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.31" name="file1" dev="loop3" ino=7 res=0 errno=0
[   99.286607][ T4266] EXT4-fs (loop0): unmounting filesystem.
[   99.462706][ T4505] device syzkaller0 entered promiscuous mode
[   99.541962][ T4502] loop1: detected capacity change from 0 to 4096
[  100.780452][ T4274] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[  100.788944][ T4274] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  102.909707][ T4532] loop1: detected capacity change from 0 to 2048
[  103.001014][ T4532] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  103.202916][ T4539] loop4: detected capacity change from 0 to 128
[  103.248580][ T4539] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  103.264648][ T4539] ext4 filesystem being mounted at /6/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  103.342935][ T4518] loop0: detected capacity change from 0 to 32768
[  103.476794][ T4518] JBD2: Ignoring recovery information on journal
[  103.672375][ T4518] JBD2: recovery failed
[  103.690867][ T4518] (syz.0.43,4518,1):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  103.712793][ T4518] (syz.0.43,4518,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  103.751498][ T4518] (syz.0.43,4518,0):ocfs2_check_volume:2489 ERROR: status = -5
[  103.766765][ T4518] (syz.0.43,4518,0):ocfs2_mount_volume:1821 ERROR: status = -5
[  103.826785][ T4518] (syz.0.43,4518,0):ocfs2_fill_super:1176 ERROR: status = -5
[  104.014415][ T4537] ALSA: mixer_oss: invalid OSS volume 'MO'
[  105.183462][ T4560] 8021q: adding VLAN 0 to HW filter on device bond1
[  105.335875][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  105.685626][ T4555] loop1: detected capacity change from 0 to 131072
[  105.728144][ T4555] F2FS-fs (loop1): Found nat_bits in checkpoint
[  105.778520][ T4555] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  105.801262][   T26] audit: type=1804 audit(1774794906.887:4): pid=4555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.54" name="/newroot/15/file1/bus" dev="loop1" ino=10 res=1 errno=0
[  106.069479][ T4574] device syzkaller0 entered promiscuous mode
[  106.186681][ T4312] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  106.256609][ T4559] loop2: detected capacity change from 0 to 32768
[  106.346595][ T4559] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  106.367171][ T4562] loop0: detected capacity change from 0 to 32768
[  106.399312][ T4559] JBD2: Ignoring recovery information on journal
[  106.416888][ T4312] usb 4-1: Using ep0 maxpacket: 32
[  106.456805][ T4312] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  106.470212][ T4562] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  106.507295][ T4559] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  106.523755][ T4562] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  106.551250][ T4312] usb 4-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  106.584260][ T4562] JBD2: Ignoring recovery information on journal
[  106.609201][ T4312] usb 4-1: config 0 interface 0 has no altsetting 0
[  106.796347][ T4312] usb 4-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  106.805663][ T4312] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.813745][ T4312] usb 4-1: Product: syz
[  106.818579][ T4312] usb 4-1: Manufacturer: syz
[  106.823699][ T4312] usb 4-1: SerialNumber: syz
[  106.840378][ T4312] usb 4-1: config 0 descriptor??
[  107.612015][ T4312] gs_usb 4-1:0.0: Configuring for 1 interfaces
[  107.812265][ T4571] delete_channel: no stack
[  107.953359][ T4562] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  108.008583][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  108.345585][ T4312] usb 4-1: USB disconnect, device number 2
[  108.377523][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  109.038861][ T4608] loop0: detected capacity change from 0 to 128
[  109.071858][ T4608] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  109.096621][ T4608] ext4 filesystem being mounted at /15/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  109.813026][ T4607] ALSA: mixer_oss: invalid OSS volume 'MO'
[  110.277395][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  110.537770][ T4621] device syzkaller0 entered promiscuous mode
[  111.625775][ T4625] loop1: detected capacity change from 0 to 131072
[  112.170075][ T4625] F2FS-fs (loop1): Found nat_bits in checkpoint
[  112.227669][ T4625] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  112.246615][   T26] audit: type=1804 audit(1774794913.337:5): pid=4625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.72" name="/newroot/18/file1/bus" dev="loop1" ino=10 res=1 errno=0
[  112.775281][ T4649] loop3: detected capacity change from 0 to 64
[  113.024375][ T4651] loop4: detected capacity change from 0 to 128
[  113.077298][ T4651] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  113.086630][ T4651] ext4 filesystem being mounted at /11/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  114.504917][ T4650] ALSA: mixer_oss: invalid OSS volume 'MO'
[  114.812768][ T4637] loop2: detected capacity change from 0 to 32768
[  114.879895][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  114.916743][ T4637] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  114.947497][ T4637] JBD2: Ignoring recovery information on journal
[  115.093529][ T4669] device syzkaller0 entered promiscuous mode
[  115.168666][ T4637] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  115.219837][ T4671] loop3: detected capacity change from 0 to 2048
[  115.332943][ T4671] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  116.333002][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  117.444620][ T4689] Zero length message leads to an empty skb
[  117.718369][ T4693] loop0: detected capacity change from 0 to 64
[  117.756801][ T4695] binder: 4694:4695 ioctl c0306201 2000000004c0 returned -14
[  117.786118][ T4695] binder: 4694:4695 ioctl c0306201 200000000180 returned -14
[  118.075678][ T4706] loop2: detected capacity change from 0 to 128
[  118.206500][ T4706] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  118.336322][ T4706] ext4 filesystem being mounted at /15/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  119.158597][ T4700] ALSA: mixer_oss: invalid OSS volume 'MO'
[  119.307054][ T4718] loop0: detected capacity change from 0 to 256
[  119.318432][ T4691] loop1: detected capacity change from 0 to 32768
[  119.369158][ T4691] JBD2: Ignoring recovery information on journal
[  119.429453][ T4691] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  119.704890][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  120.257727][ T4733] loop3: detected capacity change from 0 to 64
[  121.551018][ T4720] loop4: detected capacity change from 0 to 32768
[  122.276580][ T4720] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  122.307097][ T4720] JBD2: Ignoring recovery information on journal
[  122.507007][ T4720] JBD2: recovery failed
[  122.526412][ T4720] (syz.4.100,4720,0):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  122.557369][ T4720] (syz.4.100,4720,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  122.587743][ T4720] (syz.4.100,4720,0):ocfs2_check_volume:2489 ERROR: status = -5
[  122.607981][ T4720] (syz.4.100,4720,0):ocfs2_mount_volume:1821 ERROR: status = -5
[  122.672100][ T4720] (syz.4.100,4720,0):ocfs2_fill_super:1176 ERROR: status = -5
[  122.832441][ T4756] loop1: detected capacity change from 0 to 512
[  122.921024][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  122.994336][ T4756] EXT4-fs error (device loop1): ext4_xattr_inode_iget:401: inode #12: comm syz.1.114: missing EA_INODE flag
[  123.026388][ T4756] EXT4-fs error (device loop1): ext4_xattr_inode_iget:406: comm syz.1.114: error while reading EA inode 12 err=-117
[  123.151995][ T4756] EXT4-fs (loop1): 1 orphan inode deleted
[  123.157830][ T4756] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  123.215457][ T4756] syz.1.114 (pid 4756) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  123.303886][ T4766] loop3: detected capacity change from 0 to 64
[  123.479511][ T4769] loop4: detected capacity change from 0 to 128
[  123.562722][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  125.110719][ T4755] loop0: detected capacity change from 0 to 32768
[  125.194154][ T4755] JBD2: Ignoring recovery information on journal
[  125.273248][ T4755] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  125.453848][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  126.280258][ T4799] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.128'.
[  127.207577][ T4805] loop3: detected capacity change from 0 to 131072
[  127.403329][ T4805] F2FS-fs (loop3): Found nat_bits in checkpoint
[  127.609093][ T4805] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  127.874199][   T26] audit: type=1804 audit(1774794928.967:6): pid=4805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.131" name="/newroot/34/file1/bus" dev="loop3" ino=10 res=1 errno=0
[  127.958550][ T4816] loop0: detected capacity change from 0 to 512
[  128.052996][ T4787] loop4: detected capacity change from 0 to 32768
[  128.084685][ T4787] (syz.4.125,4787,0):ocfs2_initialize_super:2286 ERROR: status = -12
[  128.117981][ T4787] (syz.4.125,4787,0):ocfs2_fill_super:1176 ERROR: status = -12
[  128.141467][ T4816] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  128.267906][ T4816] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  128.330750][ T4823] device syzkaller0 entered promiscuous mode
[  128.620326][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  129.266247][ T4832] loop0: detected capacity change from 0 to 2048
[  129.358215][ T4832] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  129.915799][ T4836] loop0: detected capacity change from 0 to 1764
[  130.041540][ T4838] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.141'.
[  130.252786][ T4826] loop1: detected capacity change from 0 to 32768
[  130.290322][ T4830] loop4: detected capacity change from 0 to 32768
[  130.307300][ T4826] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  130.339781][ T4830] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  130.367438][ T4836] iso9660: Corrupted directory entry in block 2 of inode 1920
[  130.392434][ T4826] JBD2: Ignoring recovery information on journal
[  130.418826][ T4830] JBD2: Ignoring recovery information on journal
[  130.671708][ T4826] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  130.890735][ T4830] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  133.028349][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  133.037420][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  133.044417][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  133.088141][ T4848] loop2: detected capacity change from 0 to 4096
[  133.140960][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  135.131802][ T4864] tmpfs: Unknown parameter 'usrquota'
[  135.184616][ T4267] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22.
[  135.211147][ T4267] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  135.331559][ T4866] device syzkaller0 entered promiscuous mode
[  135.803023][ T4873] loop4: detected capacity change from 0 to 2048
[  135.915604][ T4873] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  136.653652][ T4882] netlink: 'syz.2.154': attribute type 39 has an invalid length.
[  136.892242][ T4877] loop1: detected capacity change from 0 to 16
[  137.400085][ T4877] erofs: (device loop1): mounted with root inode @ nid 36.
[  137.468586][ T4875] erofs: (device loop1): erofs_read_inode: bogus i_mode (0) @ nid 4294967052
[  137.481726][ T4875] process 'syz.1.151' launched '/dev/fd/9' with NULL argv: empty string added
[  137.514668][ T4890] netlink: 4 bytes leftover after parsing attributes in process `syz.3.155'.
[  138.223254][ T4893] loop0: detected capacity change from 0 to 131072
[  138.257974][ T4893] F2FS-fs (loop0): Test dummy encryption mode enabled
[  138.266926][ T4893] F2FS-fs (loop0): invalid crc value
[  138.298762][ T4893] F2FS-fs (loop0): Found nat_bits in checkpoint
[  138.357731][ T4893] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0
[  138.364989][ T4893] F2FS-fs (loop0): Start checkpoint disabled!
[  138.384373][ T4893] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  140.607214][ T4917] loop3: detected capacity change from 0 to 4096
[  140.729350][ T4919] device syzkaller0 entered promiscuous mode
[  140.977521][ T4275] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[  140.991276][ T4275] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  141.076881][ T4923] loop0: detected capacity change from 0 to 2048
[  141.156338][ T4923] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  143.174378][ T4926] loop4: detected capacity change from 0 to 32768
[  143.190971][ T4926] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  143.233986][ T4926] JBD2: Ignoring recovery information on journal
[  143.572098][ T4941] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  143.635920][ T4926] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  145.277985][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  145.503167][ T4952] netlink: 4 bytes leftover after parsing attributes in process `syz.0.181'.
[  145.619519][ T4954] loop1: detected capacity change from 0 to 1764
[  145.753873][ T4954] iso9660: Corrupted directory entry in block 2 of inode 1920
[  145.787194][ T4959] netlink: 'syz.4.169': attribute type 39 has an invalid length.
[  145.806850][ T4954] iso9660: Corrupted directory entry in block 2 of inode 1920
[  146.346918][ T4968] device syzkaller0 entered promiscuous mode
[  146.455908][ T4972] loop4: detected capacity change from 0 to 2048
[  146.516930][ T4972] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  148.510288][ T4992] device syzkaller1 entered promiscuous mode
[  149.415225][ T5011] device syzkaller0 entered promiscuous mode
[  149.470296][ T5013] loop2: detected capacity change from 0 to 2048
[  149.531014][ T5013] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  149.566560][ T4316] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  150.625102][ T4316] usb 1-1: Using ep0 maxpacket: 32
[  150.639953][ T4316] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  150.665759][ T4316] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  150.701159][ T4316] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  150.719653][ T4316] usb 1-1: Product: syz
[  150.725069][ T4316] usb 1-1: Manufacturer: syz
[  150.750100][ T4316] usb 1-1: SerialNumber: syz
[  150.763323][ T5021] binder: BINDER_SET_CONTEXT_MGR already set
[  150.769709][ T5021] binder: 5020:5021 ioctl 4018620d 2000000002c0 returned -16
[  150.802095][ T4316] usb 1-1: config 0 descriptor??
[  150.807788][ T5003] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  150.832082][ T4316] hub 1-1:0.0: bad descriptor, ignoring hub
[  150.838084][ T4316] hub: probe of 1-1:0.0 failed with error -5
[  151.052183][ T5030] loop1: detected capacity change from 0 to 128
[  151.104551][ T5030] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  151.114319][ T5030] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  151.372019][ T4311] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[  151.574520][ T4311] usb 3-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  151.600345][ T4311] usb 3-1: New USB device found, idVendor=3344, idProduct=22f0, bcdDevice=ef.4d
[  151.635368][ T4311] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.670664][ T4311] usb 3-1: Product: syz
[  151.705969][ T5029] ALSA: mixer_oss: invalid OSS volume 'MO'
[  151.708736][ T4311] usb 3-1: Manufacturer: syz
[  151.759672][ T4311] usb 3-1: SerialNumber: syz
[  151.821008][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  152.053775][ T4311] usb 3-1: selecting invalid altsetting 1
[  152.140699][ T5024] loop4: detected capacity change from 0 to 32768
[  152.167909][ T5024] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  152.178988][ T5024] JBD2: Ignoring recovery information on journal
[  152.229728][ T5024] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  152.258915][ T5031] loop2: detected capacity change from 0 to 256
[  152.262001][ T4311] LME2510(C): Firmware Status: 00 00 00 00 00 00
[  152.265294][ T4311] dvb_usb_lmedm04: probe of 3-1:2.0 failed with error -22
[  152.329616][ T5031] FAT-fs (loop2): Directory bread(block 64) failed
[  152.479310][ T5031] FAT-fs (loop2): Directory bread(block 65) failed
[  152.495699][ T5031] FAT-fs (loop2): Directory bread(block 66) failed
[  152.581028][ T5031] FAT-fs (loop2): Directory bread(block 67) failed
[  152.990111][ T4316] usb 1-1: USB disconnect, device number 2
[  153.038222][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  153.047789][ T5031] FAT-fs (loop2): Directory bread(block 68) failed
[  153.082213][ T5031] FAT-fs (loop2): Directory bread(block 69) failed
[  153.119487][ T5031] FAT-fs (loop2): Directory bread(block 70) failed
[  153.151403][ T5031] FAT-fs (loop2): Directory bread(block 71) failed
[  153.161325][ T5031] FAT-fs (loop2): Directory bread(block 72) failed
[  153.168051][ T5031] FAT-fs (loop2): Directory bread(block 73) failed
[  153.385537][ T5053] loop1: detected capacity change from 0 to 2048
[  153.399576][ T4312] usb 3-1: USB disconnect, device number 2
[  153.553166][ T5053] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  154.280559][ T5061] loop0: detected capacity change from 0 to 16
[  154.305044][ T5061] erofs: (device loop0): mounted with root inode @ nid 36.
[  154.624904][ T5065] device syzkaller0 entered promiscuous mode
[  154.812028][ T5055] loop4: detected capacity change from 0 to 32768
[  154.913745][ T5074] loop0: detected capacity change from 0 to 128
[  154.968989][ T5074] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  154.980388][ T5074] ext4 filesystem being mounted at /43/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  155.147704][ T5055] XFS (loop4): Mounting V5 Filesystem
[  155.464391][ T5072] ALSA: mixer_oss: invalid OSS volume 'MO'
[  155.633819][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  155.669847][ T5085] netlink: 268 bytes leftover after parsing attributes in process `syz.1.211'.
[  155.914729][ T5055] XFS (loop4): Ending clean mount
[  156.040471][ T5055] XFS (loop4): Quotacheck needed: Please wait.
[  156.811797][ T5055] XFS (loop4): Quotacheck: Done.
[  156.950683][ T4273] XFS (loop4): Unmounting Filesystem
[  157.559598][ T5088] loop2: detected capacity change from 0 to 32768
[  157.630032][ T5088] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  157.742492][ T5094] loop0: detected capacity change from 0 to 32768
[  157.756363][ T5088] JBD2: Ignoring recovery information on journal
[  157.812805][ T5116] loop4: detected capacity change from 0 to 128
[  157.832043][ T5116] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  157.840979][ T5116] ext4 filesystem being mounted at /38/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.881304][ T5094] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  157.955606][ T5088] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  158.019494][ T5094] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  158.035143][ T5115] ALSA: mixer_oss: invalid OSS volume 'MO'
[  158.146174][ T5094] JBD2: Ignoring recovery information on journal
[  158.155761][ T5121] device syzkaller0 entered promiscuous mode
[  158.164960][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  158.284758][ T5094] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  159.834705][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  159.878959][ T5130] loop4: detected capacity change from 0 to 512
[  159.948065][ T5130] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  160.021141][ T5130] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  160.132122][ T5130] EXT4-fs (loop4): 1 orphan inode deleted
[  160.161692][ T5130] EXT4-fs (loop4): 1 truncate cleaned up
[  160.370522][ T5130] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  160.529569][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  160.620589][ T5130] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  160.859237][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  160.927516][ T5137] loop1: detected capacity change from 0 to 1024
[  161.358719][ T5148] binder_alloc: 5146: binder_alloc_buf, no vma
[  161.698471][ T5151] netlink: 'syz.3.231': attribute type 39 has an invalid length.
[  162.159036][ T5155] loop2: detected capacity change from 0 to 128
[  162.225211][ T5157] loop4: detected capacity change from 0 to 128
[  162.286712][ T5157] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  162.297182][ T5157] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  162.492110][ T5156] ALSA: mixer_oss: invalid OSS volume 'MO'
[  162.617501][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  162.827473][ T5170] loop4: detected capacity change from 0 to 164
[  162.952873][ T4347] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  163.185781][ T5175] netlink: 8 bytes leftover after parsing attributes in process `syz.3.241'.
[  163.194929][ T5175] netlink: 8 bytes leftover after parsing attributes in process `syz.3.241'.
[  164.234347][ T5180] loop4: detected capacity change from 0 to 128
[  164.504727][ T5162] loop1: detected capacity change from 0 to 32768
[  164.532274][ T5162] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  164.546783][ T5162] JBD2: Ignoring recovery information on journal
[  164.595475][ T5162] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  164.842366][ T5166] loop0: detected capacity change from 0 to 32768
[  164.895754][ T5166] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  165.447068][ T5166] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  165.542718][ T5166] JBD2: Ignoring recovery information on journal
[  165.639182][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  165.660271][ T5166] JBD2: recovery failed
[  165.683655][ T5200] loop4: detected capacity change from 0 to 128
[  165.702750][ T5166] (syz.0.236,5166,0):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  165.789023][ T5200] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  165.798278][ T5200] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  165.871814][ T5166] (syz.0.236,5166,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  165.923987][ T5199] loop3: detected capacity change from 0 to 4096
[  165.961513][ T5166] (syz.0.236,5166,0):ocfs2_check_volume:2489 ERROR: status = -5
[  166.013939][ T5196] ALSA: mixer_oss: invalid OSS volume 'MO'
[  166.060364][ T5166] (syz.0.236,5166,0):ocfs2_mount_volume:1821 ERROR: status = -5
[  166.136963][ T5166] (syz.0.236,5166,1):ocfs2_fill_super:1176 ERROR: status = -5
[  166.197394][ T5199] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  166.208600][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  167.390865][ T5223] binder_alloc: 5222: binder_alloc_buf, no vma
[  168.310577][ T5230] netlink: 'syz.4.257': attribute type 39 has an invalid length.
[  168.401771][ T5236] loop2: detected capacity change from 0 to 128
[  168.873828][ T5244] netlink: 'syz.1.271': attribute type 39 has an invalid length.
[  168.952533][ T5235] loop0: detected capacity change from 0 to 32768
[  169.085461][ T5235] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  169.100630][ T5235] JBD2: Ignoring recovery information on journal
[  169.932530][ T5235] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  170.604727][ T5257] loop4: detected capacity change from 0 to 128
[  170.667219][ T5257] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  170.676171][ T5257] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  170.690374][ T5256] ALSA: mixer_oss: invalid OSS volume 'MO'
[  170.742996][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  170.885049][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  172.126657][ T5278] loop2: detected capacity change from 0 to 128
[  172.669053][ T5261] loop3: detected capacity change from 0 to 32768
[  173.852200][ T5261] (syz.3.265,5261,1):ocfs2_initialize_super:2286 ERROR: status = -12
[  173.903568][ T5294] loop4: detected capacity change from 0 to 128
[  173.912207][ T5261] (syz.3.265,5261,0):ocfs2_fill_super:1176 ERROR: status = -12
[  173.943669][ T5294] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  173.952635][ T5294] ext4 filesystem being mounted at /51/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  173.969997][ T5293] ALSA: mixer_oss: invalid OSS volume 'MO'
[  174.018526][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  174.087916][ T5298] loop1: detected capacity change from 0 to 512
[  174.165590][ T5300] loop2: detected capacity change from 0 to 256
[  174.219315][ T5298] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  174.272664][ T5300] exfat: Deprecated parameter 'namecase'
[  174.281980][ T5305] netlink: 'syz.3.280': attribute type 39 has an invalid length.
[  174.347020][ T5298] EXT4-fs (loop1): 1 orphan inode deleted
[  174.381226][ T5300] exfat: Deprecated parameter 'utf8'
[  174.381260][ T5298] EXT4-fs (loop1): 1 truncate cleaned up
[  174.402892][ T5298] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  174.463555][ T5300] exfat: Deprecated parameter 'namecase'
[  174.524334][ T5300] exfat: Deprecated parameter 'utf8'
[  174.573685][ T5300] exfat: Deprecated parameter 'utf8'
[  174.690253][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  174.703170][ T5300] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36332e94, utbl_chksum : 0xe619d30d)
[  174.884044][ T5312] loop0: detected capacity change from 0 to 2048
[  174.962005][ T5312] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  174.987369][ T5314] loop1: detected capacity change from 0 to 512
[  175.154985][ T5314] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  175.298195][ T5306] loop4: detected capacity change from 0 to 32768
[  175.312971][ T5314] EXT4-fs (loop1): 1 orphan inode deleted
[  175.318870][ T5314] EXT4-fs (loop1): 1 truncate cleaned up
[  175.525275][ T5306] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  175.685588][ T5314] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  175.998043][ T5306] JBD2: Ignoring recovery information on journal
[  176.033375][ T5318] loop2: detected capacity change from 0 to 4096
[  176.406835][ T5306] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  177.815595][ T5318] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  177.980014][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  178.036709][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  178.284352][ T5341] loop0: detected capacity change from 0 to 128
[  178.726128][ T5351] binder: 5350:5351 ioctl 4018620d 0 returned -22
[  179.366016][ T5357] loop4: detected capacity change from 0 to 128
[  179.529817][ T5357] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  179.596909][ T5357] ext4 filesystem being mounted at /53/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  179.708267][ T5351] loop2: detected capacity change from 0 to 131072
[  179.718369][ T5354] ALSA: mixer_oss: invalid OSS volume 'MO'
[  179.857719][ T5365] netlink: 'syz.0.295': attribute type 39 has an invalid length.
[  179.897191][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  180.220889][ T5351] F2FS-fs (loop2): Test dummy encryption mode enabled
[  180.229924][ T5351] F2FS-fs (loop2): invalid crc value
[  180.530640][ T5351] F2FS-fs (loop2): Found nat_bits in checkpoint
[  180.574338][ T5351] F2FS-fs (loop2): sanity_check_inode: corrupted inode ino=3, run fsck to fix.
[  180.599648][ T5351] F2FS-fs (loop2): Failed to read root inode
[  183.438300][ T5396] binder: BINDER_SET_CONTEXT_MGR already set
[  183.498194][ T5396] binder: 5394:5396 ioctl 4018620d 2000000002c0 returned -16
[  183.648387][ T5402] loop0: detected capacity change from 0 to 128
[  183.820613][ T5402] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  183.831745][ T5402] ext4 filesystem being mounted at /64/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  184.633468][ T5401] ALSA: mixer_oss: invalid OSS volume 'MO'
[  185.178321][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  185.357859][ T5413] loop4: detected capacity change from 0 to 512
[  185.384420][ T5413] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  185.436875][ T5413] EXT4-fs (loop4): 1 orphan inode deleted
[  185.453400][ T5413] EXT4-fs (loop4): 1 truncate cleaned up
[  185.466027][ T5413] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  185.538341][ T5420] netlink: 'syz.0.310': attribute type 39 has an invalid length.
[  185.685513][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  185.864513][ T5424] loop3: detected capacity change from 0 to 128
[  187.511799][ T5442] binder: BINDER_SET_CONTEXT_MGR already set
[  187.517868][ T5442] binder: 5441:5442 ioctl 4018620d 2000000002c0 returned -16
[  187.680710][ T5446] loop4: detected capacity change from 0 to 128
[  187.711314][ T5446] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  187.720681][ T5446] ext4 filesystem being mounted at /60/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  188.586280][ T5445] ALSA: mixer_oss: invalid OSS volume 'MO'
[  188.788055][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  189.846207][ T5469] loop1: detected capacity change from 0 to 512
[  189.894703][ T5469] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  189.968971][ T5469] EXT4-fs (loop1): 1 orphan inode deleted
[  189.974870][ T5469] EXT4-fs (loop1): 1 truncate cleaned up
[  189.991163][ T5469] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  190.278563][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  191.203823][ T5486] binder: BINDER_SET_CONTEXT_MGR already set
[  191.227990][ T5486] binder: 5485:5486 ioctl 4018620d 2000000002c0 returned -16
[  191.380558][ T5490] loop0: detected capacity change from 0 to 128
[  191.436822][ T5490] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  191.445930][ T5490] ext4 filesystem being mounted at /69/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  192.269922][ T5489] ALSA: mixer_oss: invalid OSS volume 'MO'
[  192.413875][ T5498] loop4: detected capacity change from 0 to 1024
[  192.477123][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  192.931241][ T5484] loop1: detected capacity change from 0 to 32768
[  192.948542][ T5502] loop0: detected capacity change from 0 to 4096
[  193.204432][ T5484] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  193.507414][ T5484] JBD2: Ignoring recovery information on journal
[  193.562490][ T5502] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  193.769543][ T5511] loop2: detected capacity change from 0 to 512
[  193.781523][ T5484] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  193.810033][ T5511] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  193.880738][ T5511] EXT4-fs (loop2): 1 orphan inode deleted
[  193.981385][ T5511] EXT4-fs (loop2): 1 truncate cleaned up
[  193.994323][ T5511] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  194.248859][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.255486][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  195.579164][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  195.689233][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  196.019079][ T5536] loop0: detected capacity change from 0 to 128
[  196.222484][ T5539] netlink: 4 bytes leftover after parsing attributes in process `syz.3.348'.
[  196.810922][ T5532] ALSA: mixer_oss: invalid OSS volume 'MO'
[  199.145961][ T5557] device vlan2 entered promiscuous mode
[  199.152200][ T5557] device macvlan0 entered promiscuous mode
[  199.196652][ T5555] device syzkaller0 entered promiscuous mode
[  199.375824][ T5561] IPVS: length: 245 != 24
[  202.042023][ T4281] Bluetooth: hci0: command 0x0406 tx timeout
[  202.042071][ T4279] Bluetooth: hci4: command 0x0406 tx timeout
[  202.042121][ T4283] Bluetooth: hci3: command 0x0406 tx timeout
[  202.060928][ T4271] Bluetooth: hci1: command 0x0406 tx timeout
[  202.061092][ T4282] Bluetooth: hci2: command 0x0406 tx timeout
[  202.576357][ T5588] loop0: detected capacity change from 0 to 128
[  203.665907][ T5596] loop4: detected capacity change from 0 to 128
[  203.766125][ T5596] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  203.803230][ T5596] hpfs: filesystem error: improperly stopped
[  203.825870][ T5598] netlink: 4 bytes leftover after parsing attributes in process `syz.3.364'.
[  203.874101][ T5596] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  203.929296][ T5596] hpfs: You really don't want any checks? You are crazy...
[  203.957218][ T5601] device syzkaller0 entered promiscuous mode
[  203.992244][ T5596] hpfs: hpfs_map_sector(): read error
[  204.024635][ T5596] hpfs: code page support is disabled
[  204.094775][ T5596] hpfs: hpfs_map_4sectors(): unaligned read
[  204.144885][ T5596] hpfs: hpfs_map_4sectors(): unaligned read
[  204.178183][ T5596] hpfs: filesystem error: unable to find root dir
[  205.264170][ T5618] netlink: 'syz.3.370': attribute type 39 has an invalid length.
[  206.849003][ T5623] ALSA: mixer_oss: invalid OSS volume 'MO'
[  207.127144][ T5635] loop4: detected capacity change from 0 to 128
[  207.178159][ T5637] device syzkaller0 entered promiscuous mode
[  207.437895][ T5628] loop1: detected capacity change from 0 to 32768
[  207.677706][ T5628] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  208.050030][ T5628] JBD2: Ignoring recovery information on journal
[  208.330328][ T5628] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  209.171410][ T4311] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  209.455882][ T4311] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  209.496782][ T4311] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xBE, skipping
[  209.544271][ T4311] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  210.318019][ T5662] netlink: 'syz.0.382': attribute type 39 has an invalid length.
[  210.457593][ T4311] usb 4-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  210.467801][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  210.475503][ T4311] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  210.490672][ T4311] usb 4-1: Product: syz
[  210.511389][ T4311] usb 4-1: Manufacturer: syz
[  210.516085][ T4311] usb 4-1: SerialNumber: syz
[  210.556004][ T4311] usb 4-1: config 0 descriptor??
[  210.570755][ T4311] radio-si470x 4-1:0.0: could not find interrupt in endpoint
[  210.591905][ T5664] binder: BINDER_SET_CONTEXT_MGR already set
[  210.598623][ T4311] radio-si470x: probe of 4-1:0.0 failed with error -5
[  210.620387][ T4311] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  210.628147][ T5664] binder: 5663:5664 ioctl 4018620d 2000000002c0 returned -16
[  211.061919][ T5673] loop0: detected capacity change from 0 to 128
[  211.117474][ T5673] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  211.126407][ T5673] ext4 filesystem being mounted at /80/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  211.864158][   T22] usb 4-1: USB disconnect, device number 3
[  211.924458][ T5672] ALSA: mixer_oss: invalid OSS volume 'MO'
[  212.031630][ T5684] device syzkaller0 entered promiscuous mode
[  212.063950][ T5686] loop2: detected capacity change from 0 to 128
[  212.388638][ T5689] loop1: detected capacity change from 0 to 1024
[  213.586119][ T5689] hfsplus: walked past end of dir
[  215.027893][ T5704] binder: BINDER_SET_CONTEXT_MGR already set
[  215.055317][ T5704] binder: 5703:5704 ioctl 4018620d 2000000002c0 returned -16
[  215.432558][ T5711] netlink: 'syz.3.397': attribute type 39 has an invalid length.
[  215.872249][ T5713] loop2: detected capacity change from 0 to 512
[  215.969779][ T5713] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  216.114416][ T5715] loop4: detected capacity change from 0 to 512
[  216.144807][ T5713] EXT4-fs (loop2): 1 orphan inode deleted
[  216.150639][ T5713] EXT4-fs (loop2): 1 truncate cleaned up
[  216.193059][ T5715] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  216.231519][ T5713] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  216.273184][ T5715] EXT4-fs (loop4): 1 orphan inode deleted
[  216.279094][ T5715] EXT4-fs (loop4): 1 truncate cleaned up
[  216.310421][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  216.339184][ T5715] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  216.386832][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  216.467886][ T5723] device syzkaller0 entered promiscuous mode
[  216.958018][ T5730] loop1: detected capacity change from 0 to 128
[  217.768764][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  218.444423][ T5742] loop4: detected capacity change from 0 to 1024
[  218.659397][ T5736] rdma_op ffff888141a699f0 conn xmit_rdma 0000000000000000
[  219.519586][ T5749] binder: BINDER_SET_CONTEXT_MGR already set
[  219.553929][ T5749] binder: 5748:5749 ioctl 4018620d 2000000002c0 returned -16
[  219.710792][ T5758] netlink: 'syz.4.411': attribute type 39 has an invalid length.
[  219.920501][ T5761] loop0: detected capacity change from 0 to 128
[  220.162882][ T5761] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  220.712606][ T5764] loop3: detected capacity change from 0 to 512
[  220.762212][ T5761] ext4 filesystem being mounted at /84/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  221.275414][ T5772] loop4: detected capacity change from 0 to 32768
[  221.416437][ T5764] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  221.641996][ T5764] EXT4-fs (loop3): 1 orphan inode deleted
[  221.752260][ T5764] EXT4-fs (loop3): 1 truncate cleaned up
[  221.759118][ T5764] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  221.840172][ T5759] ALSA: mixer_oss: invalid OSS volume 'MO'
[  221.853344][ T5772] XFS (loop4): Mounting V5 Filesystem
[  221.974310][ T5772] XFS (loop4): Ending clean mount
[  222.073274][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  222.097137][ T5787] loop2: detected capacity change from 0 to 128
[  222.716597][ T5790] device syzkaller0 entered promiscuous mode
[  223.363346][ T4273] XFS (loop4): Unmounting Filesystem
[  224.808384][ T5810] netlink: 'syz.2.424': attribute type 39 has an invalid length.
[  224.939852][ T5813] netlink: 4 bytes leftover after parsing attributes in process `syz.4.418'.
[  225.172311][ T5817] loop2: detected capacity change from 0 to 1024
[  225.201703][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  225.381603][ T5822] loop0: detected capacity change from 0 to 512
[  225.406718][ T5822] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  225.653607][ T5822] EXT4-fs (loop0): 1 orphan inode deleted
[  225.661321][ T5822] EXT4-fs (loop0): 1 truncate cleaned up
[  225.667048][ T5822] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  226.625042][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  226.941366][   T22] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  227.159593][   T22] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  227.282319][   T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.535991][   T22] usb 5-1: config 0 descriptor??
[  227.632819][   T22] cp210x 5-1:0.0: cp210x converter detected
[  227.776578][ T5819] loop3: detected capacity change from 0 to 32768
[  227.841470][ T5819] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  227.888826][ T5819] JBD2: Ignoring recovery information on journal
[  228.018657][ T5850] loop1: detected capacity change from 0 to 128
[  228.036985][   T22] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32
[  228.046949][ T5854] netlink: 'syz.0.436': attribute type 39 has an invalid length.
[  228.058643][ T5850] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  228.069866][ T5850] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  228.195537][ T5819] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  228.288495][   T22] usb 5-1: cp210x converter now attached to ttyUSB0
[  228.305913][   T22] usb 5-1: USB disconnect, device number 2
[  228.323374][   T22] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  228.363770][   T22] cp210x 5-1:0.0: device disconnected
[  228.456880][ T4275] ocfs2: Unmounting device (7,3) on (node local)
[  228.885106][ T5849] ALSA: mixer_oss: invalid OSS volume 'MO'
[  229.224142][ T5863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.439'.
[  230.779444][ T5878] loop4: detected capacity change from 0 to 512
[  230.789116][ T5878] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  230.945387][ T5878] EXT4-fs (loop4): 1 orphan inode deleted
[  230.951297][ T5878] EXT4-fs (loop4): 1 truncate cleaned up
[  231.021325][ T5878] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  231.193036][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  232.046915][ T5894] netlink: 'syz.3.450': attribute type 39 has an invalid length.
[  232.123298][ T5898] loop0: detected capacity change from 0 to 128
[  233.608714][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  233.849582][ T5897] loop4: detected capacity change from 0 to 32768
[  233.881504][ T5897] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  233.909411][ T5910] netlink: 4 bytes leftover after parsing attributes in process `syz.0.452'.
[  233.952853][ T5897] JBD2: Ignoring recovery information on journal
[  234.100398][ T5897] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  234.602086][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  235.285532][ T5935] loop4: detected capacity change from 0 to 512
[  235.324723][ T5935] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  235.386027][ T5935] EXT4-fs (loop4): 1 orphan inode deleted
[  235.449307][ T5935] EXT4-fs (loop4): 1 truncate cleaned up
[  235.489934][ T5935] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  235.554687][ T5928] loop0: detected capacity change from 0 to 32768
[  235.653978][ T5928] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  235.715098][ T5928] JBD2: Ignoring recovery information on journal
[  235.762468][ T5928] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  236.582326][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  236.674186][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  236.863179][ T5949] netlink: 'syz.0.461': attribute type 39 has an invalid length.
[  237.978078][ T5955] netlink: 8 bytes leftover after parsing attributes in process `syz.4.464'.
[  237.986154][ T5957] loop1: detected capacity change from 0 to 128
[  238.077096][ T5957] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  238.086638][ T5957] ext4 filesystem being mounted at /96/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  238.795411][ T5956] ALSA: mixer_oss: invalid OSS volume 'MO'
[  239.065171][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  239.386511][ T5966] netlink: 4 bytes leftover after parsing attributes in process `syz.4.467'.
[  240.137678][ T5986] loop3: detected capacity change from 0 to 512
[  240.165387][ T5986] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  240.225579][ T5986] EXT4-fs (loop3): 1 orphan inode deleted
[  240.251849][ T5986] EXT4-fs (loop3): 1 truncate cleaned up
[  240.257594][ T5986] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  240.383166][ T5973] loop2: detected capacity change from 0 to 32768
[  240.461730][ T5973] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  240.511634][ T5973] JBD2: Ignoring recovery information on journal
[  240.572608][ T5973] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  241.015811][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  241.081771][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  241.168907][ T6002] netlink: 'syz.1.475': attribute type 39 has an invalid length.
[  241.252192][ T6004] loop2: detected capacity change from 0 to 128
[  241.263359][ T6006] loop3: detected capacity change from 0 to 128
[  241.286089][ T6004] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  241.295175][ T6004] ext4 filesystem being mounted at /86/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  241.329785][ T5984] loop0: detected capacity change from 0 to 32768
[  241.497711][ T5984] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  242.239244][ T6003] ALSA: mixer_oss: invalid OSS volume 'MO'
[  243.714961][ T5984] JBD2: Ignoring recovery information on journal
[  243.783962][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  243.927710][ T5984] JBD2: recovery failed
[  243.971099][ T5984] (syz.0.472,5984,0):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  243.979882][ T5984] (syz.0.472,5984,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  244.060356][ T5984] (syz.0.472,5984,0):ocfs2_check_volume:2489 ERROR: status = -5
[  244.092511][ T6025] netlink: 4 bytes leftover after parsing attributes in process `syz.1.480'.
[  244.108055][ T5984] (syz.0.472,5984,0):ocfs2_mount_volume:1821 ERROR: status = -5
[  244.202704][ T5984] (syz.0.472,5984,0):ocfs2_fill_super:1176 ERROR: status = -5
[  245.421752][ T6033] loop0: detected capacity change from 0 to 4096
[  245.462727][ T6033] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  246.193198][ T6045] loop1: detected capacity change from 0 to 512
[  246.261347][ T6045] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  246.621393][ T6045] EXT4-fs (loop1): 1 orphan inode deleted
[  246.726231][ T6045] EXT4-fs (loop1): 1 truncate cleaned up
[  246.891242][ T6045] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  247.321349][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  248.571324][ T6064] loop1: detected capacity change from 0 to 128
[  248.607560][ T6064] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  248.620042][ T6064] ext4 filesystem being mounted at /104/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  248.928295][ T6062] ALSA: mixer_oss: invalid OSS volume 'MO'
[  249.102604][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  249.285438][ T6072] netlink: 4 bytes leftover after parsing attributes in process `syz.1.493'.
[  250.202056][ T6069] loop0: detected capacity change from 0 to 32768
[  250.246514][ T6069] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  250.270210][ T6069] JBD2: Ignoring recovery information on journal
[  250.405040][ T6069] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  251.210957][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  251.943612][ T6103] loop0: detected capacity change from 0 to 512
[  252.026547][ T6103] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  252.166668][ T6103] EXT4-fs (loop0): 1 orphan inode deleted
[  252.945427][ T6103] EXT4-fs (loop0): 1 truncate cleaned up
[  252.991102][ T6103] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  253.052028][ T6113] loop1: detected capacity change from 0 to 128
[  253.079450][ T6113] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  253.094366][ T6113] ext4 filesystem being mounted at /108/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  253.299780][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  253.868929][ T6110] ALSA: mixer_oss: invalid OSS volume 'MO'
[  254.138674][ T6123] loop3: detected capacity change from 0 to 64
[  254.522804][ T6127] netlink: 4 bytes leftover after parsing attributes in process `syz.3.509'.
[  254.568664][ T6121] loop0: detected capacity change from 0 to 32768
[  254.625207][ T6121] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  254.645674][ T6121] JBD2: Ignoring recovery information on journal
[  254.653852][   T22] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  254.823829][ T6121] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  254.862996][   T22] usb 3-1: Using ep0 maxpacket: 32
[  254.871758][   T22] usb 3-1: config 0 has an invalid interface number: 89 but max is 0
[  254.896098][   T22] usb 3-1: config 0 has no interface number 0
[  255.096591][   T22] usb 3-1: config 0 interface 89 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  255.121391][   T22] usb 3-1: config 0 interface 89 has no altsetting 0
[  255.138915][   T22] usb 3-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  255.161103][   T22] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  255.169268][   T22] usb 3-1: Product: syz
[  255.191108][   T22] usb 3-1: Manufacturer: syz
[  255.195799][   T22] usb 3-1: SerialNumber: syz
[  255.222786][   T22] usb 3-1: config 0 descriptor??
[  255.255152][   T22] em28xx 3-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  255.275702][   T22] em28xx 3-1:0.89: Video interface 89 found:
[  255.392717][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  255.721763][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  255.728146][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  255.833660][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  256.633082][   T22] em28xx 3-1:0.89: unknown em28xx chip ID (64)
[  256.957166][   T22] em28xx 3-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[  257.019612][ T6144] loop3: detected capacity change from 0 to 2048
[  257.031230][   T22] em28xx 3-1:0.89: board has no eeprom
[  257.093553][ T6138] loop0: detected capacity change from 0 to 32768
[  257.127002][ T6144]  loop3: p2 < > p3 < p5 > p4
[  257.132287][   T22] em28xx 3-1:0.89: Identified as Terratec Grabby (card=67)
[  257.145235][ T6138] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  257.149448][   T22] em28xx 3-1:0.89: analog set to bulk mode.
[  257.163868][ T6138] JBD2: Ignoring recovery information on journal
[  257.174475][ T6144] loop3: partition table partially beyond EOD, truncated
[  257.182922][   T22] usb 3-1: USB disconnect, device number 3
[  257.189604][   T22] em28xx 3-1:0.89: Disconnecting em28xx
[  257.196131][ T4312] em28xx 3-1:0.89: Registering V4L2 extension
[  257.249390][ T6144] loop3: p2 start 4278190080 is beyond EOD, truncated
[  257.292585][ T4312] em28xx 3-1:0.89: Config register raw data: 0xffffffed
[  257.300215][ T4312] em28xx 3-1:0.89: AC97 chip type couldn't be determined
[  257.308073][ T4312] em28xx 3-1:0.89: No AC97 audio processor
[  257.323322][ T4312] usb 3-1: Decoder not found
[  257.328097][ T4312] em28xx 3-1:0.89: failed to create media graph
[  257.335079][ T4312] em28xx 3-1:0.89: V4L2 device video103 deregistered
[  257.351670][ T6144] loop3: p4 size 8192 extends beyond EOD, truncated
[  257.364483][ T6138] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  257.371903][ T4312] em28xx 3-1:0.89: Registering snapshot button...
[  257.383327][ T6144] loop3: p5 size 8192 extends beyond EOD, truncated
[  257.412339][ T4312] input: em28xx snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.89/input/input5
[  257.495648][ T4312] em28xx 3-1:0.89: Remote control support is not available for this card.
[  257.577448][   T22] em28xx 3-1:0.89: Closing input extension
[  257.599923][   T22] em28xx 3-1:0.89: Deregistering snapshot button
[  258.534366][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  259.267786][   T22] em28xx 3-1:0.89: Freeing device
[  259.536981][ T6165] netlink: 'syz.0.516': attribute type 39 has an invalid length.
[  260.714803][ T4595] udevd[4595]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[  260.726288][ T4389] udevd[4389]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  260.740465][ T4583] udevd[4583]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  260.934496][ T6180] loop0: detected capacity change from 0 to 128
[  260.963711][ T6180] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  260.973156][ T6180] ext4 filesystem being mounted at /108/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  261.859980][ T6192] overlayfs: failed to decode file handle (len=6, type=251, flags=0, err=-22)
[  261.952944][ T6178] ALSA: mixer_oss: invalid OSS volume 'MO'
[  263.371622][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  263.414530][ T6176] loop4: detected capacity change from 0 to 32768
[  263.575165][ T6176] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  263.631092][ T6176] JBD2: Ignoring recovery information on journal
[  263.731339][ T6198] loop2: detected capacity change from 0 to 32768
[  263.792785][ T6198] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  263.826484][ T6176] JBD2: recovery failed
[  263.836632][ T6198] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  263.851135][ T6176] (syz.4.520,6176,0):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  263.875432][ T6198] JBD2: Ignoring recovery information on journal
[  263.880580][ T6176] (syz.4.520,6176,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  263.911305][ T6176] (syz.4.520,6176,0):ocfs2_check_volume:2489 ERROR: status = -5
[  263.939456][ T6176] (syz.4.520,6176,0):ocfs2_mount_volume:1821 ERROR: status = -5
[  264.157090][ T6176] (syz.4.520,6176,0):ocfs2_fill_super:1176 ERROR: status = -5
[  264.204696][ T6198] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  265.952032][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  266.036082][ T6223] netlink: 'syz.3.532': attribute type 39 has an invalid length.
[  267.368347][ T6234] netlink: 4 bytes leftover after parsing attributes in process `syz.0.534'.
[  270.118218][ T6250] loop3: detected capacity change from 0 to 128
[  270.142501][ T6250] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  270.151625][ T6250] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  270.349419][ T6255] loop4: detected capacity change from 0 to 4096
[  270.356268][ T6256] loop0: detected capacity change from 0 to 512
[  270.387965][ T6256] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  270.482340][ T6256] EXT4-fs (loop0): 1 orphan inode deleted
[  270.514207][ T6256] EXT4-fs (loop0): 1 truncate cleaned up
[  270.543430][ T6259] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  270.571511][ T6256] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  271.361629][ T6249] ALSA: mixer_oss: invalid OSS volume 'MO'
[  271.883140][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  273.317103][ T6262] loop2: detected capacity change from 0 to 32768
[  273.423537][ T6262] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  273.464697][ T6262] JBD2: Ignoring recovery information on journal
[  273.710259][ T6262] JBD2: recovery failed
[  273.721165][ T6262] (syz.2.541,6262,1):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  273.753358][ T6262] (syz.2.541,6262,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  274.421509][ T6262] (syz.2.541,6262,1):ocfs2_check_volume:2489 ERROR: status = -5
[  274.429270][ T6262] (syz.2.541,6262,1):ocfs2_mount_volume:1821 ERROR: status = -5
[  274.561218][ T6262] (syz.2.541,6262,1):ocfs2_fill_super:1176 ERROR: status = -5
[  274.573682][ T6271] loop0: detected capacity change from 0 to 32768
[  274.586879][ T6271] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  274.598490][ T6271] JBD2: Ignoring recovery information on journal
[  274.635754][ T6271] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  276.399576][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  276.645994][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  277.680615][ T6308] netlink: 4 bytes leftover after parsing attributes in process `syz.1.554'.
[  277.691206][    T7] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  277.915391][ T6313] loop4: detected capacity change from 0 to 512
[  277.923690][ T6313] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  277.931746][    T7] usb 4-1: Using ep0 maxpacket: 8
[  277.973986][    T7] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  278.000103][    T7] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  278.017945][ T6313] EXT4-fs (loop4): 1 orphan inode deleted
[  278.027117][ T6313] EXT4-fs (loop4): 1 truncate cleaned up
[  278.038230][    T7] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  278.039874][ T6313] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  278.086886][    T7] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  278.110618][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  278.119062][    T7] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  278.135135][    T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.435402][    T7] usb 4-1: GET_CAPABILITIES returned 0
[  278.502540][    T7] usbtmc 4-1:16.0: can't read capabilities
[  278.986680][    T7] usb 4-1: USB disconnect, device number 4
[  279.268234][ T6329] loop4: detected capacity change from 0 to 128
[  279.652703][ T6329] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  279.840691][ T6329] ext4 filesystem being mounted at /107/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  282.292162][ T6328] ALSA: mixer_oss: invalid OSS volume 'MO'
[  282.657112][ T6355] loop2: detected capacity change from 0 to 512
[  282.683048][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  282.766165][ T6355] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  282.870696][ T6360] loop0: detected capacity change from 0 to 256
[  282.886362][ T6355] EXT4-fs (loop2): 1 orphan inode deleted
[  282.907506][ T6355] EXT4-fs (loop2): 1 truncate cleaned up
[  283.111236][ T6355] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  284.395269][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  284.690545][ T6360] netlink: 88 bytes leftover after parsing attributes in process `syz.0.571'.
[  286.270574][ T6390] loop2: detected capacity change from 0 to 16
[  286.541322][ T6390] erofs: (device loop2): erofs_init_device: empty device tag @ pos 0
[  286.796829][ T6396] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.578'.
[  287.879924][ T6398] loop3: detected capacity change from 0 to 128
[  287.954056][ T6398] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  287.991383][ T6398] ext4 filesystem being mounted at /120/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  289.188100][ T6408] loop2: detected capacity change from 0 to 512
[  289.303477][ T6408] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  289.357469][ T6408] EXT4-fs (loop2): 1 orphan inode deleted
[  289.376893][ T6408] EXT4-fs (loop2): 1 truncate cleaned up
[  289.469554][ T6400] loop0: detected capacity change from 0 to 32768
[  289.531139][ T6408] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  289.737262][ T6397] ALSA: mixer_oss: invalid OSS volume 'MO'
[  289.751859][ T6400] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  289.873182][ T6400] JBD2: Ignoring recovery information on journal
[  290.047856][ T6400] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  290.796994][ T6415] loop1: detected capacity change from 0 to 131072
[  290.841812][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  290.866272][ T6415] F2FS-fs (loop1): Found nat_bits in checkpoint
[  290.920163][ T6415] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  290.980833][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  291.024547][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  291.364037][ T6436] netlink: 'syz.3.587': attribute type 39 has an invalid length.
[  292.301510][ T6443] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.590'.
[  294.714171][ T6462] loop1: detected capacity change from 0 to 128
[  295.449956][ T6462] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  295.458872][ T6462] ext4 filesystem being mounted at /125/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  295.587195][ T6470] loop2: detected capacity change from 0 to 512
[  295.631238][ T6470] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  295.788730][ T6470] EXT4-fs (loop2): 1 orphan inode deleted
[  295.810891][ T6470] EXT4-fs (loop2): 1 truncate cleaned up
[  295.841404][ T6470] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  296.184464][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  296.315498][ T6454] loop3: detected capacity change from 0 to 32768
[  296.429088][ T6454] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  296.489788][ T6454] JBD2: Ignoring recovery information on journal
[  296.649846][ T6472] loop0: detected capacity change from 0 to 131072
[  296.731481][ T6454] JBD2: recovery failed
[  296.750055][ T6454] (syz.3.595,6454,0):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  296.771140][ T6472] F2FS-fs (loop0): Found nat_bits in checkpoint
[  296.780361][ T6454] (syz.3.595,6454,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  296.800625][ T6454] (syz.3.595,6454,0):ocfs2_check_volume:2489 ERROR: status = -5
[  296.826978][ T6454] (syz.3.595,6454,0):ocfs2_mount_volume:1821 ERROR: status = -5
[  296.849892][ T6472] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  296.911477][ T6454] (syz.3.595,6454,0):ocfs2_fill_super:1176 ERROR: status = -5
[  297.115338][ T6459] ALSA: mixer_oss: invalid OSS volume 'MO'
[  298.464153][ T6498] netlink: 'syz.2.605': attribute type 39 has an invalid length.
[  298.644039][ T6500] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.604'.
[  301.221531][ T6515] loop4: detected capacity change from 0 to 512
[  301.234211][ T6515] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  301.964998][ T6515] EXT4-fs (loop4): 1 orphan inode deleted
[  301.991246][ T6515] EXT4-fs (loop4): 1 truncate cleaned up
[  301.996973][ T6515] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  302.025590][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  302.184494][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  303.275243][ T6523] loop1: detected capacity change from 0 to 131072
[  303.371757][ T6523] F2FS-fs (loop1): Found nat_bits in checkpoint
[  303.426290][ T6523] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  303.475211][ T6509] loop2: detected capacity change from 0 to 32768
[  304.302225][ T6539] loop0: detected capacity change from 0 to 64
[  304.466208][ T6541] loop3: detected capacity change from 0 to 128
[  305.969050][ T6551] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.617'.
[  306.663868][ T4347] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by udevd (4347)
[  308.229837][ T6562] loop4: detected capacity change from 0 to 128
[  308.357080][ T6562] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  309.365686][ T6562] ext4 filesystem being mounted at /116/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  309.485366][ T6577] loop0: detected capacity change from 0 to 512
[  309.537117][ T6577] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  309.639552][ T6577] EXT4-fs (loop0): 1 orphan inode deleted
[  309.661350][ T6577] EXT4-fs (loop0): 1 truncate cleaned up
[  309.669286][ T6577] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  309.743454][ T6577] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  309.761127][   T22] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  309.962752][   T22] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  309.990305][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  310.003366][   T22] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  310.043717][   T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.092574][   T22] usb 4-1: config 0 descriptor??
[  310.123327][   T22] pwc: Askey VC010 type 2 USB webcam detected.
[  311.479373][ T6591] loop0: detected capacity change from 0 to 131072
[  311.490733][   T22] pwc: recv_control_msg error -32 req 02 val 2b00
[  311.651273][   T22] pwc: recv_control_msg error -32 req 02 val 2700
[  311.799081][   T22] pwc: recv_control_msg error -32 req 02 val 2c00
[  311.819719][ T6591] F2FS-fs (loop0): Found nat_bits in checkpoint
[  311.914132][ T6591] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  311.940421][   T22] pwc: recv_control_msg error -32 req 04 val 1000
[  311.958377][   T22] pwc: recv_control_msg error -32 req 04 val 1300
[  311.994890][   T22] pwc: recv_control_msg error -32 req 04 val 1400
[  312.025269][ T6604] loop2: detected capacity change from 0 to 128
[  312.039710][   T22] pwc: recv_control_msg error -32 req 02 val 2000
[  312.070280][   T22] pwc: recv_control_msg error -32 req 02 val 2100
[  312.122743][   T22] pwc: recv_control_msg error -32 req 04 val 1500
[  312.336355][   T22] pwc: recv_control_msg error -32 req 02 val 2500
[  312.344233][   T22] pwc: recv_control_msg error -32 req 02 val 2400
[  312.351640][   T22] pwc: recv_control_msg error -32 req 02 val 2600
[  312.358862][   T22] pwc: recv_control_msg error -32 req 02 val 2900
[  312.367287][   T22] pwc: recv_control_msg error -32 req 02 val 2800
[  312.606369][   T22] pwc: recv_control_msg error -71 req 04 val 1200
[  312.983935][   T22] pwc: Registered as video103.
[  312.990535][   T22] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input6
[  313.167200][   T22] usb 4-1: USB disconnect, device number 5
[  314.496564][ T6588] ALSA: mixer_oss: invalid OSS volume 'MO'
[  314.913348][ T6622] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.631'.
[  315.946037][ T6625] loop0: detected capacity change from 0 to 512
[  316.746019][ T6625] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  316.772770][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  316.836976][ T6625] EXT4-fs (loop0): 1 orphan inode deleted
[  316.876222][ T6625] EXT4-fs (loop0): 1 truncate cleaned up
[  316.909405][ T6625] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  317.158388][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  317.164956][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  317.377963][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  318.652957][ T6651] loop0: detected capacity change from 0 to 131072
[  318.749403][ T6651] F2FS-fs (loop0): Found nat_bits in checkpoint
[  318.831865][ T6651] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  319.198003][ T6653] loop2: detected capacity change from 0 to 32768
[  319.230791][ T6653] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  319.298376][ T6653] JBD2: Ignoring recovery information on journal
[  319.371728][ T6653] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  320.003977][ T6668] device syzkaller0 entered promiscuous mode
[  320.240286][ T6662] loop3: detected capacity change from 0 to 32768
[  320.473467][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  320.490578][ T6662] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  321.180947][ T6662] JBD2: Ignoring recovery information on journal
[  321.317928][ T6662] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  321.660881][ T6680] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.647'.
[  322.151146][   T22] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  322.441328][   T22] usb 1-1: device descriptor read/64, error -71
[  322.741476][   T22] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  323.064937][   T22] usb 1-1: device descriptor read/64, error -71
[  323.082329][ T6695] loop2: detected capacity change from 0 to 512
[  323.169194][ T6695] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  323.221418][   T22] usb usb1-port1: attempt power cycle
[  323.250418][ T6695] EXT4-fs (loop2): 1 orphan inode deleted
[  323.257183][ T6695] EXT4-fs (loop2): 1 truncate cleaned up
[  323.262972][ T6695] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  323.471638][ T6697] loop1: detected capacity change from 0 to 32768
[  323.497127][ T6697] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.652 (6697)
[  323.529771][ T6697] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  323.540346][ T6697] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  323.549217][ T6697] BTRFS info (device loop1): using free space tree
[  323.570618][ T4275] ocfs2: Unmounting device (7,3) on (node local)
[  323.723316][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  323.851364][   T22] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  323.892273][   T22] usb 1-1: device descriptor read/8, error -71
[  324.878269][ T6697] BTRFS info (device loop1): enabling ssd optimizations
[  324.878591][ T6722] loop2: detected capacity change from 0 to 131072
[  324.971102][ T4312] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  325.016017][ T6726] loop0: detected capacity change from 0 to 2048
[  325.068279][ T6722] F2FS-fs (loop2): Found nat_bits in checkpoint
[  325.144225][ T6726] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  325.159751][ T6722] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  325.190752][ T4312] usb 4-1: Using ep0 maxpacket: 16
[  325.263732][ T4312] usb 4-1: New USB device found, idVendor=0db0, idProduct=5581, bcdDevice=f9.22
[  325.276434][ T4312] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.286657][ T4312] usb 4-1: Product: syz
[  325.291090][ T4312] usb 4-1: Manufacturer: syz
[  325.295822][ T4312] usb 4-1: SerialNumber: syz
[  326.670431][ T4312] usb 4-1: dvb_usb_v2: found a 'MSI Mega Sky 55801 DVB-T USB2.0' in warm state
[  326.698978][   T26] audit: type=1804 audit(1774795127.787:7): pid=6722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.655" name="/newroot/131/file1/bus" dev="loop2" ino=10 res=1 errno=0
[  326.775490][ T4312] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  326.843056][ T4312] dvbdev: DVB: registering new adapter (MSI Mega Sky 55801 DVB-T USB2.0)
[  326.888584][ T4312] usb 4-1: media controller created
[  326.979175][ T4312] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  327.064659][ T4312] zl10353_read_register: readreg error (reg=127, ret==-71)
[  327.163675][ T4312] dvb_usb_gl861: probe of 4-1:157.0 failed with error -5
[  327.193237][ T4274] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  327.222085][ T4312] usb 4-1: USB disconnect, device number 6
[  327.710417][ T6741] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.660'.
[  329.611363][ T6761] loop3: detected capacity change from 0 to 512
[  329.619213][ T6761] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  329.742845][ T6761] EXT4-fs (loop3): 1 orphan inode deleted
[  329.748674][ T6761] EXT4-fs (loop3): 1 truncate cleaned up
[  329.787097][ T6761] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  329.978502][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  329.985633][ T6757] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  330.175524][ T6757] usb 5-1: Using ep0 maxpacket: 16
[  330.189245][ T6757] usb 5-1: unable to get BOS descriptor or descriptor too short
[  330.238578][ T6757] usb 5-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=36.87
[  330.262283][ T6757] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.280641][ T6757] usb 5-1: Product: syz
[  330.290781][ T6757] usb 5-1: Manufacturer: syz
[  330.311266][ T6757] usb 5-1: SerialNumber: syz
[  330.396278][ T6759] loop2: detected capacity change from 0 to 32768
[  330.425714][ T6759] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[  330.442385][ T6759] JBD2: Ignoring recovery information on journal
[  330.517326][ T6759] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  331.156695][ T6757] usb 5-1: reset high-speed USB device number 3 using dummy_hcd
[  331.406610][ T4267] ocfs2: Unmounting device (7,2) on (node local)
[  331.443677][ T6757] usb 5-1: unable to get BOS descriptor or descriptor too short
[  331.496490][ T6757] usb 5-1: device firmware changed
[  331.594579][ T6757] usb 5-1: USB disconnect, device number 3
[  332.098253][ T6780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.669'.
[  332.339630][ T6777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.667'.
[  332.348517][ T6777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.667'.
[  332.588708][ T6775] loop3: detected capacity change from 0 to 32768
[  332.646660][ T6775] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  332.690214][ T6775] JBD2: Ignoring recovery information on journal
[  332.947701][ T6775] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  332.970206][ T6790] loop1: detected capacity change from 0 to 2048
[  333.236757][ T6790]  loop1: p2 < > p3 < p5 > p4
[  333.282090][ T6790] loop1: partition table partially beyond EOD, truncated
[  333.304315][ T6790] loop1: p2 start 4278190080 is beyond EOD, truncated
[  333.793507][ T6790] loop1: p4 size 8192 extends beyond EOD, truncated
[  333.810282][ T6801] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.673'.
[  333.967694][ T6790] loop1: p5 size 8192 extends beyond EOD, truncated
[  334.008858][ T4275] ocfs2: Unmounting device (7,3) on (node local)
[  334.675454][ T6784] loop4: detected capacity change from 0 to 32768
[  334.761425][ T6806] loop0: detected capacity change from 0 to 32768
[  334.789392][ T6784] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  334.957024][ T6784] JBD2: Ignoring recovery information on journal
[  335.009940][ T6806] XFS (loop0): Mounting V5 Filesystem
[  335.149565][ T6784] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  335.268927][ T6806] XFS (loop0): Ending clean mount
[  335.285312][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  336.998399][ T4266] XFS (loop0): Unmounting Filesystem
[  337.119640][ T6827] loop1: detected capacity change from 0 to 32768
[  337.265759][ T6827] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  337.309775][ T6827] JBD2: Ignoring recovery information on journal
[  338.176520][ T6827] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  339.015289][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  339.385330][ T6852] loop4: detected capacity change from 0 to 128
[  340.892633][ T6850] loop1: detected capacity change from 0 to 32768
[  341.197772][ T6850] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  341.230871][ T6868] netlink: 4 bytes leftover after parsing attributes in process `syz.0.690'.
[  341.252068][ T6850] JBD2: Ignoring recovery information on journal
[  341.330394][ T6862] loop4: detected capacity change from 0 to 32768
[  341.382215][ T6850] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  341.395979][ T6862] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  341.411184][ T6862] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  341.683932][ T6862] JBD2: Ignoring recovery information on journal
[  342.341546][ T6877] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.691'.
[  342.595349][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  342.645775][ T6862] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  344.231125][ T1169] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  344.423133][ T1169] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  344.464778][ T1169] usb 3-1: config 0 has no interfaces?
[  344.491192][ T1169] usb 3-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[  344.522932][ T1169] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.558431][ T1169] usb 3-1: Product: syz
[  344.585307][ T1169] usb 3-1: Manufacturer: syz
[  344.596038][ T1169] usb 3-1: SerialNumber: syz
[  344.630207][ T1169] usb 3-1: config 0 descriptor??
[  344.703760][ T6884] loop0: detected capacity change from 0 to 32768
[  344.748695][ T6884] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  344.779701][ T6884] JBD2: Ignoring recovery information on journal
[  344.863009][ T1169] usb 3-1: USB disconnect, device number 4
[  344.928740][ T6884] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  345.676825][ T4266] ocfs2: Unmounting device (7,0) on (node local)
[  345.753954][ T6902] loop3: detected capacity change from 0 to 128
[  347.714345][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  349.200607][ T6931] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.704'.
[  349.720855][ T6934] loop1: detected capacity change from 0 to 2048
[  349.753073][ T6934] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  350.920170][ T6943] loop1: detected capacity change from 0 to 128
[  351.234320][ T6937] loop4: detected capacity change from 0 to 32768
[  351.316966][ T6937] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  351.346121][ T6948] netlink: 'syz.2.712': attribute type 1 has an invalid length.
[  351.358179][ T6937] JBD2: Ignoring recovery information on journal
[  351.437574][ T6948] 8021q: adding VLAN 0 to HW filter on device bond1
[  351.472267][ T6937] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  351.783647][ T6950] bond1: (slave veth3): Enslaving as an active interface with a down link
[  352.172556][ T6955] bond1: (slave dummy0): making interface the new active one
[  352.258570][ T6955] device dummy0 entered promiscuous mode
[  352.296698][ T6955] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  352.461727][ T6948] netlink: 14 bytes leftover after parsing attributes in process `syz.2.712'.
[  352.489721][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  352.660100][ T6948] bond1: (slave dummy0): Releasing active interface
[  352.781448][ T6948] device dummy0 left promiscuous mode
[  355.340081][ T6979] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.719'.
[  357.304695][ T6991] loop4: detected capacity change from 0 to 2048
[  357.357803][ T6991] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  360.258525][ T6999] loop1: detected capacity change from 0 to 32768
[  360.347243][ T6999] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  360.385386][ T6999] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  360.410616][ T7024] loop3: detected capacity change from 0 to 512
[  360.428006][ T6999] BTRFS info (device loop1): turning on sync discard
[  360.435921][ T6999] BTRFS info (device loop1): turning on async discard
[  360.443295][ T6999] BTRFS warning (device loop1): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  360.458629][ T6999] BTRFS info (device loop1): trying to use backup root at mount time
[  360.480348][ T6999] BTRFS info (device loop1): enabling auto defrag
[  360.481549][ T7024] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  360.488735][ T6999] BTRFS info (device loop1): use zlib compression, level 3
[  360.557704][ T7024] EXT4-fs (loop3): 1 orphan inode deleted
[  360.563461][ T6999] BTRFS info (device loop1): using free space tree
[  360.630905][ T7024] EXT4-fs (loop3): 1 truncate cleaned up
[  360.651155][ T7024] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  360.672728][ T7033] device syzkaller0 entered promiscuous mode
[  361.791892][ T6999] BTRFS error (device loop1): open_ctree failed: -12
[  361.804881][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  362.280383][   T22] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  362.498025][   T22] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  362.514620][   T22] usb 1-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  362.558956][   T22] usb 1-1: Product: syz
[  362.576325][   T22] usb 1-1: Manufacturer: syz
[  362.606186][ T4347] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by udevd (4347)
[  362.714425][   T22] usb 1-1: SerialNumber: syz
[  362.740228][   T22] usb 1-1: config 0 descriptor??
[  362.760023][   T22] ch341 1-1:0.0: ch341-uart converter detected
[  363.105938][ T7073] loop4: detected capacity change from 0 to 65536
[  363.216280][ T7073] XFS (loop4): Mounting V5 Filesystem
[  363.312965][ T7073] XFS (loop4): Ending clean mount
[  363.339759][ T7082] loop2: detected capacity change from 0 to 512
[  363.561982][ T7082] EXT4-fs: Ignoring removed nobh option
[  363.931325][ T7082] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  364.149903][   T22] usb 1-1: ch341-uart converter now attached to ttyUSB0
[  364.235963][ T7082] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  364.347001][ T7082] EXT4-fs (loop2): 1 truncate cleaned up
[  364.353581][ T7082] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  364.404199][   T22] usb 1-1: USB disconnect, device number 7
[  364.447708][   T22] ch341-uart ttyUSB0: ch341-uart converter now disconnected from ttyUSB0
[  364.511772][   T22] ch341 1-1:0.0: device disconnected
[  364.629683][ T4273] XFS (loop4): Unmounting Filesystem
[  364.638834][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  365.018884][ T7090] loop2: detected capacity change from 0 to 512
[  365.111909][ T7090] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  365.185808][ T7090] EXT4-fs (loop2): 1 orphan inode deleted
[  365.211264][ T7090] EXT4-fs (loop2): 1 truncate cleaned up
[  365.217004][ T7090] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  365.476312][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  365.776037][ T7100] loop2: detected capacity change from 0 to 512
[  365.845803][ T7100] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  365.947385][ T7104] device syzkaller0 entered promiscuous mode
[  366.014331][ T7100] EXT4-fs (loop2): 1 orphan inode deleted
[  366.099936][ T7100] EXT4-fs (loop2): 1 truncate cleaned up
[  366.106128][ T7100] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  370.829562][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  372.365806][ T7119] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.753'.
[  372.538542][ T7143] loop0: detected capacity change from 0 to 512
[  372.581590][ T7143] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  372.611183][ T6757] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  372.623338][ T7145] loop3: detected capacity change from 0 to 2048
[  372.639851][ T7145] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  372.666997][   T26] audit: type=1800 audit(1774795173.757:8): pid=7145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.759" name="file1" dev="loop3" ino=1346 res=0 errno=0
[  372.766015][ T7143] EXT4-fs (loop0): 1 orphan inode deleted
[  372.805675][ T6757] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  372.819263][ T6757] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.828616][ T7143] EXT4-fs (loop0): 1 truncate cleaned up
[  372.837696][ T6757] usb 3-1: Product: syz
[  372.846325][ T6757] usb 3-1: Manufacturer: syz
[  372.851159][ T6757] usb 3-1: SerialNumber: syz
[  372.858094][ T6757] usb 3-1: config 0 descriptor??
[  372.881314][ T7143] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  373.153818][ T6757] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  373.718079][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  373.866353][ T7159] loop1: detected capacity change from 0 to 512
[  373.888570][ T7159] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  374.581890][ T7159] EXT4-fs (loop1): 1 orphan inode deleted
[  374.588026][ T7159] EXT4-fs (loop1): 1 truncate cleaned up
[  374.611566][ T7159] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  374.903964][ T6757] dvb_usb_rtl28xxu: probe of 3-1:0.0 failed with error -71
[  374.913041][ T6757] usb 3-1: USB disconnect, device number 5
[  375.374952][ T7150] loop4: detected capacity change from 0 to 32768
[  375.522091][ T7150] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  375.570273][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  375.623276][ T7150] JBD2: Ignoring recovery information on journal
[  375.731443][ T7150] JBD2: recovery failed
[  375.735693][ T7150] (syz.4.761,7150,1):ocfs2_journal_load:1134 ERROR: Failed to load journal!
[  375.861289][ T7150] (syz.4.761,7150,0):ocfs2_check_volume:2433 ERROR: ocfs2 journal load failed! -5
[  375.905370][ T7150] (syz.4.761,7150,0):ocfs2_check_volume:2489 ERROR: status = -5
[  375.970346][ T7150] (syz.4.761,7150,1):ocfs2_mount_volume:1821 ERROR: status = -5
[  375.995034][ T7150] (syz.4.761,7150,1):ocfs2_fill_super:1176 ERROR: status = -5
[  376.173101][ T7182] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.768'.
[  376.929900][ T7185] device syzkaller0 entered promiscuous mode
[  378.597913][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  378.624208][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  378.936905][ T7200] loop4: detected capacity change from 0 to 512
[  378.973540][ T7200] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  379.085149][ T7200] EXT4-fs (loop4): 1 orphan inode deleted
[  379.100920][ T7200] EXT4-fs (loop4): 1 truncate cleaned up
[  379.127014][ T7200] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  379.220778][ T7206] netlink: 4 bytes leftover after parsing attributes in process `syz.0.777'.
[  379.302023][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  379.309477][ T7208] loop3: detected capacity change from 0 to 512
[  379.379361][ T7208] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  379.520463][ T7216] loop0: detected capacity change from 0 to 256
[  379.555620][ T7216] exfat: Deprecated parameter 'namecase'
[  379.568967][ T7208] EXT4-fs (loop3): 1 orphan inode deleted
[  379.595598][ T7208] EXT4-fs (loop3): 1 truncate cleaned up
[  379.630773][ T7208] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  379.642151][ T7216] exfat: Deprecated parameter 'utf8'
[  379.874003][ T7219] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.780'.
[  382.223692][ T7216] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x3f800a9b, utbl_chksum : 0xe619d30d)
[  382.362252][ T4275] EXT4-fs (loop3): unmounting filesystem.
[  382.991798][ T7226] loop3: detected capacity change from 0 to 65536
[  383.946167][ T7239] device syzkaller0 entered promiscuous mode
[  384.011651][ T7226] XFS (loop3): Mounting V5 Filesystem
[  384.287420][ T7226] XFS (loop3): Ending clean mount
[  385.798985][ T4275] XFS (loop3): Unmounting Filesystem
[  385.980510][ T7258] netlink: 4 bytes leftover after parsing attributes in process `syz.0.791'.
[  386.250395][ T7260] loop4: detected capacity change from 0 to 2048
[  386.281139][ T7260] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  386.378631][ T7264] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.793'.
[  387.647157][ T7271] loop0: detected capacity change from 0 to 512
[  387.846491][ T7271] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  387.922004][ T7271] EXT4-fs (loop0): 1 orphan inode deleted
[  387.958403][ T7271] EXT4-fs (loop0): 1 truncate cleaned up
[  387.964357][ T7271] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  388.893380][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  390.796983][ T7302] netlink: 4 bytes leftover after parsing attributes in process `syz.3.804'.
[  391.635727][ T7303] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.805'.
[  392.263440][ T7297] loop1: detected capacity change from 0 to 32768
[  393.083508][ T7311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.807'.
[  393.121786][ T7297] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  393.145367][ T7316] loop2: detected capacity change from 0 to 512
[  393.174576][ T7297] JBD2: Ignoring recovery information on journal
[  393.178341][ T7316] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  393.229167][ T7297] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  393.464843][ T7316] EXT4-fs (loop2): 1 orphan inode deleted
[  393.488382][ T7316] EXT4-fs (loop2): 1 truncate cleaned up
[  393.511121][ T7316] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  393.626351][ T4274] ocfs2: Unmounting device (7,1) on (node local)
[  393.839468][ T4267] EXT4-fs (loop2): unmounting filesystem.
[  393.976978][ T7326] loop3: detected capacity change from 0 to 2048
[  393.994460][ T7326] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  395.697901][ T7345] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.816'.
[  396.568050][ T7349] loop4: detected capacity change from 0 to 512
[  396.638927][ T7349] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  396.704474][ T7349] EXT4-fs (loop4): 1 orphan inode deleted
[  396.710546][ T7349] EXT4-fs (loop4): 1 truncate cleaned up
[  396.716486][ T7349] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  396.912856][ T7356] netlink: 4 bytes leftover after parsing attributes in process `syz.2.820'.
[  396.979621][ T7360] loop1: detected capacity change from 0 to 512
[  397.081255][ T6757] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  397.130875][ T7360] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  397.411320][ T6757] usb 1-1: Using ep0 maxpacket: 8
[  397.433555][ T6757] usb 1-1: config index 0 descriptor too short (expected 30, got 18)
[  397.488962][ T6757] usb 1-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  397.566947][ T7357] binder: 7355:7357 ioctl c0306201 200000000180 returned -14
[  397.631825][ T6757] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.757391][ T6757] usb 1-1: Product: syz
[  397.795282][ T7360] EXT4-fs (loop1): 1 orphan inode deleted
[  397.812297][ T7360] EXT4-fs (loop1): 1 truncate cleaned up
[  397.819097][ T6757] usb 1-1: Manufacturer: syz
[  397.842086][ T6757] usb 1-1: SerialNumber: syz
[  397.847189][ T7360] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  397.902371][ T6757] usb 1-1: config 0 descriptor??
[  397.939267][ T6757] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  397.971132][ T6757] usb 1-1: setting power ON
[  397.978596][ T6757] dvb-usb: bulk message failed: -22 (2/0)
[  398.017049][ T6757] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  398.027790][ T7351] loop3: detected capacity change from 0 to 32768
[  398.116711][ T7351] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  398.138898][ T7351] JBD2: Ignoring recovery information on journal
[  398.157013][ T7347] dvb-usb: bulk message failed: -22 (3/0)
[  398.183763][ T6757] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  398.225077][ T6757] usb 1-1: media controller created
[  398.244167][ T7351] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  398.268945][ T6757] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  398.309440][ T4273] EXT4-fs (loop4): unmounting filesystem.
[  398.511573][ T6757] usb 1-1: selecting invalid altsetting 6
[  398.512775][ T4274] EXT4-fs (loop1): unmounting filesystem.
[  398.517774][ T6757] usb 1-1: digital interface selection failed (-22)
[  398.517817][ T6757] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  398.519936][ T6757] usb 1-1: setting power OFF
[  398.586057][ T6757] dvb-usb: bulk message failed: -22 (2/0)
[  398.608145][ T6757] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  398.774548][ T6757] (NULL device *): no alternate interface
[  398.874523][ T7371] loop4: detected capacity change from 0 to 32768
[  398.928002][ T7373] loop1: detected capacity change from 0 to 512
[  398.937873][ T7371] debugfs: Directory 'B1DE653C5FFC4D88B33B244AAB9EB3E9' with parent 'ocfs2' already present!
[  398.948495][ T7371] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  398.961925][ T7371] JBD2: Ignoring recovery information on journal
[  398.985981][ T6757] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  398.997795][ T7373] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  399.046997][ T7371] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  399.118368][ T6757] usb 1-1: USB disconnect, device number 8
[  399.134915][ T7373] EXT4-fs (loop1): 1 orphan inode deleted
[  399.165914][ T7371] 
[  399.168323][ T7371] ======================================================
[  399.175394][ T7371] WARNING: possible circular locking dependency detected
[  399.182475][ T7371] syzkaller #0 Not tainted
[  399.182506][ T7373] EXT4-fs (loop1): 1 truncate cleaned up
[  399.186937][ T7371] ------------------------------------------------------
[  399.186949][ T7371] syz.4.822/7371 is trying to acquire lock:
[  399.205809][ T7371] ffff8880708a3120 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}, at: ocfs2_read_virt_blocks+0x25d/0x970
[  399.216882][ T7371] 
[  399.216882][ T7371] but task is already holding lock:
[  399.224289][ T7371] ffff8880549368e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3a4/0x6f0
[  399.234627][ T7371] 
[  399.234627][ T7371] which lock already depends on the new lock.
[  399.234627][ T7371] 
[  399.245077][ T7371] 
[  399.245077][ T7371] the existing dependency chain (in reverse order) is:
[  399.254138][ T7371] 
[  399.254138][ T7371] -> #2 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  399.262731][ T7371]        down_read+0x42/0x2d0
[  399.267484][ T7371]        ocfs2_start_trans+0x3a4/0x6f0
[  399.272997][ T7371]        ocfs2_shutdown_local_alloc+0x1f8/0xaa0
[  399.279301][ T7371]        ocfs2_dismount_volume+0x1ff/0x940
[  399.284038][ T7373] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  399.285140][ T7371]        generic_shutdown_super+0x130/0x340
[  399.299973][ T7371]        kill_block_super+0x7c/0xe0
[  399.305245][ T7371]        deactivate_locked_super+0x93/0xf0
[  399.311110][ T7371]        cleanup_mnt+0x42c/0x4b0
[  399.316108][ T7371]        task_work_run+0x1d0/0x260
[  399.321283][ T7371]        exit_to_user_mode_loop+0xe6/0x110
[  399.327249][ T7371]        exit_to_user_mode_prepare+0xee/0x180
[  399.333387][ T7371]        syscall_exit_to_user_mode+0x16/0x40
[  399.339437][ T7371]        do_syscall_64+0x58/0xa0
[  399.344441][ T7371]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  399.350920][ T7371] 
[  399.350920][ T7371] -> #1 (sb_internal#2){.+.+}-{0:0}:
[  399.358458][ T7371]        ocfs2_start_trans+0x2a5/0x6f0
[  399.364001][ T7371]        ocfs2_write_begin_nolock+0x209f/0x44f0
[  399.370305][ T7371]        ocfs2_write_begin+0x1c2/0x320
[  399.375827][ T7371]        generic_perform_write+0x2fa/0x5c0
[  399.381700][ T7371]        __generic_file_write_iter+0x148/0x2a0
[  399.388025][ T7371]        ocfs2_file_write_iter+0x1660/0x1f00
[  399.394070][ T7371]        vfs_write+0x4b1/0xa30
[  399.398894][ T7371]        ksys_write+0x14c/0x250
[  399.403830][ T7371]        do_syscall_64+0x4c/0xa0
[  399.408842][ T7371]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  399.415322][ T7371] 
[  399.415322][ T7371] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{3:3}:
[  399.424159][ T7371]        __lock_acquire+0x2d07/0x7d10
[  399.429596][ T7371]        lock_acquire+0x1bb/0x4a0
[  399.434691][ T7371]        down_read+0x42/0x2d0
[  399.439439][ T7371]        ocfs2_read_virt_blocks+0x25d/0x970
[  399.445404][ T7371]        ocfs2_read_dir_block+0xd1/0x4f0
[  399.451178][ T7371]        ocfs2_dir_foreach_blk+0x268/0x1a90
[  399.457137][ T7371]        ocfs2_dir_foreach+0x16d/0x1c0
[  399.462663][ T7371]        ocfs2_empty_dir+0x105/0x650
[  399.468011][ T7371]        ocfs2_rename+0x218a/0x3950
[  399.473273][ T7371]        vfs_rename+0xbe1/0x1100
[  399.478270][ T7371]        do_renameat2+0x8e5/0xce0
[  399.483352][ T7371]        __x64_sys_rename+0x82/0x90
[  399.488610][ T7371]        do_syscall_64+0x4c/0xa0
[  399.493622][ T7371]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  399.500112][ T7371] 
[  399.500112][ T7371] other info that might help us debug this:
[  399.500112][ T7371] 
[  399.510382][ T7371] Chain exists of:
[  399.510382][ T7371]   &ocfs2_file_ip_alloc_sem_key --> sb_internal#2 --> &journal->j_trans_barrier
[  399.510382][ T7371] 
[  399.525324][ T7371]  Possible unsafe locking scenario:
[  399.525324][ T7371] 
[  399.532818][ T7371]        CPU0                    CPU1
[  399.538238][ T7371]        ----                    ----
[  399.543641][ T7371]   lock(&journal->j_trans_barrier);
[  399.548984][ T7371]                                lock(sb_internal#2);
[  399.555814][ T7371]                                lock(&journal->j_trans_barrier);
[  399.563731][ T7371]   lock(&ocfs2_file_ip_alloc_sem_key);
[  399.569334][ T7371] 
[  399.569334][ T7371]  *** DEADLOCK ***
[  399.569334][ T7371] 
[  399.577531][ T7371] 7 locks held by syz.4.822/7371:
[  399.582604][ T7371]  #0: ffff8880532ee460 (sb_writers#18){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[  399.591944][ T7371]  #1: ffff888054223488 (&type->i_mutex_dir_key#11/1){+.+.}-{3:3}, at: do_renameat2+0x435/0xce0
[  399.602487][ T7371]  #2: ffff8880708a3488 (&sb->s_type->i_mutex_key#25){+.+.}-{3:3}, at: vfs_rename+0x839/0x1100
[  399.613036][ T7371]  #3: ffff8880708b3488 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]){+.+.}-{3:3}, at: ocfs2_lookup_lock_orphan_dir+0xe9/0x2d0
[  399.626607][ T7371]  #4: ffff8880532ee650 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_rename+0x1a48/0x3950
[  399.636111][ T7371]  #5: ffff8880549368e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3a4/0x6f0
[  399.646912][ T7371]  #6: ffff88807781e990 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x200f/0x2230
[  399.656652][ T7371] 
[  399.656652][ T7371] stack backtrace:
[  399.662608][ T7371] CPU: 0 PID: 7371 Comm: syz.4.822 Not tainted syzkaller #0
[  399.669970][ T7371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  399.680096][ T7371] Call Trace:
[  399.683435][ T7371]  <TASK>
[  399.686422][ T7371]  dump_stack_lvl+0x188/0x24e
[  399.691174][ T7371]  ? load_image+0x400/0x400
[  399.695737][ T7371]  ? show_regs_print_info+0x12/0x12
[  399.701009][ T7371]  ? print_circular_bug+0x12b/0x1a0
[  399.706276][ T7371]  check_noncircular+0x296/0x330
[  399.711307][ T7371]  ? add_chain_block+0x940/0x940
[  399.716318][ T7371]  ? _find_first_zero_bit+0xcf/0x100
[  399.721693][ T7371]  ? add_lock_to_list+0x191/0x280
[  399.726794][ T7371]  __lock_acquire+0x2d07/0x7d10
[  399.731723][ T7371]  ? __bfs+0x2a3/0x5c0
[  399.735851][ T7371]  ? verify_lock_unused+0x140/0x140
[  399.741116][ T7371]  ? check_noncircular+0x189/0x330
[  399.746298][ T7371]  ? lockdep_lock+0xf1/0x1f0
[  399.750949][ T7371]  lock_acquire+0x1bb/0x4a0
[  399.755515][ T7371]  ? ocfs2_read_virt_blocks+0x25d/0x970
[  399.761132][ T7371]  ? __lock_acquire+0x12f4/0x7d10
[  399.766221][ T7371]  ? __might_sleep+0xd0/0xd0
[  399.770861][ T7371]  ? read_lock_is_recursive+0x10/0x10
[  399.776302][ T7371]  down_read+0x42/0x2d0
[  399.780522][ T7371]  ? ocfs2_read_virt_blocks+0x25d/0x970
[  399.786137][ T7371]  ocfs2_read_virt_blocks+0x25d/0x970
[  399.791585][ T7371]  ? ocfs2_validate_dx_leaf+0x210/0x210
[  399.797192][ T7371]  ? ocfs2_seek_data_hole_offset+0x9a0/0x9a0
[  399.803240][ T7371]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  399.809293][ T7371]  ? lock_chain_count+0x20/0x20
[  399.814212][ T7371]  ocfs2_read_dir_block+0xd1/0x4f0
[  399.819411][ T7371]  ? ocfs2_check_dir_trailer+0x220/0x220
[  399.825115][ T7371]  ? __lock_acquire+0x7d10/0x7d10
[  399.830200][ T7371]  ? stack_trace_save+0xa6/0xf0
[  399.835102][ T7371]  ? read_lock_is_recursive+0x10/0x10
[  399.840544][ T7371]  ocfs2_dir_foreach_blk+0x268/0x1a90
[  399.845966][ T7371]  ? start_this_handle+0x20dd/0x2230
[  399.851316][ T7371]  ? ocfs2_dir_foreach+0x1c0/0x1c0
[  399.856489][ T7371]  ? jbd2__journal_start+0x5a0/0x5a0
[  399.861834][ T7371]  ocfs2_dir_foreach+0x16d/0x1c0
[  399.866819][ T7371]  ? ocfs2_recalc_free_list+0x4b0/0x4b0
[  399.872414][ T7371]  ? ocfs2_empty_dir+0xbe/0x650
[  399.877318][ T7371]  ocfs2_empty_dir+0x105/0x650
[  399.882133][ T7371]  ? ocfs2_check_dir_for_entry+0x450/0x450
[  399.887993][ T7371]  ? jbd2__journal_start+0x38e/0x5a0
[  399.893328][ T7371]  ? jbd2_journal_start+0x26/0x30
[  399.898526][ T7371]  ? ocfs2_start_trans+0x4d9/0x6f0
[  399.903688][ T7371]  ? ocfs2_empty_dir+0x650/0x650
[  399.908676][ T7371]  ? ocfs2_recovery_exit+0x50/0x50
[  399.913834][ T7371]  ? trace_ocfs2_rename_over_existing+0xa8/0x250
[  399.920219][ T7371]  ocfs2_rename+0x218a/0x3950
[  399.924958][ T7371]  ? ocfs2_mknod+0x25b0/0x25b0
[  399.929778][ T7371]  ? is_bpf_text_address+0x22/0x2a0
[  399.935023][ T7371]  ? kernel_text_address+0x9c/0xd0
[  399.940191][ T7371]  ? __kernel_text_address+0x9/0x30
[  399.945441][ T7371]  ? stack_trace_save+0xf0/0xf0
[  399.950367][ T7371]  ? check_noncircular+0x189/0x330
[  399.955553][ T7371]  ? add_lock_to_list+0x191/0x280
[  399.960723][ T7371]  ? __lock_acquire+0x28c4/0x7d10
[  399.965816][ T7371]  ? verify_lock_unused+0x140/0x140
[  399.971075][ T7371]  ? verify_lock_unused+0x140/0x140
[  399.976336][ T7371]  ? do_raw_spin_unlock+0x11d/0x230
[  399.981598][ T7371]  ? rwsem_write_trylock+0x135/0x1c0
[  399.986938][ T7371]  ? clear_nonspinnable+0x60/0x60
[  399.992024][ T7371]  ? take_dentry_name_snapshot+0x3f/0xf0
[  399.997753][ T7371]  ? ocfs2_mknod+0x25b0/0x25b0
[  400.002573][ T7371]  vfs_rename+0xbe1/0x1100
[  400.007051][ T7371]  ? __ia32_sys_link+0x90/0x90
[  400.011868][ T7371]  ? bpf_lsm_path_rename+0x5/0x10
[  400.017029][ T7371]  ? security_path_rename+0x178/0x200
[  400.022462][ T7371]  do_renameat2+0x8e5/0xce0
[  400.027026][ T7371]  ? __lock_acquire+0x7d10/0x7d10
[  400.032121][ T7371]  ? fsnotify_move+0x4e0/0x4e0
[  400.036947][ T7371]  ? __check_object_size+0x500/0xa40
[  400.042378][ T7371]  ? strncpy_from_user+0x1e3/0x350
[  400.047558][ T7371]  ? getname_flags+0x206/0x500
[  400.052376][ T7371]  __x64_sys_rename+0x82/0x90
[  400.057111][ T7371]  do_syscall_64+0x4c/0xa0
[  400.061603][ T7371]  ? clear_bhb_loop+0x60/0xb0
[  400.066342][ T7371]  ? clear_bhb_loop+0x60/0xb0
[  400.071249][ T7371]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  400.077187][ T7371] RIP: 0033:0x7f9f3a99c819
[  400.081741][ T7371] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  400.101399][ T7371] RSP: 002b:00007f9f3b7e2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  400.109846][ T7371] RAX: ffffffffffffffda RBX: 00007f9f3ac15fa0 RCX: 00007f9f3a99c819
[  400.117857][ T7371] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000200000000280
[  400.125868][ T7371] RBP: 00007f9f3aa32c91 R08: 0000000000000000 R09: 0000000000000000
[  400.134334][ T7371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  400.142344][ T7371] R13: 00007f9f3ac16038 R14: 00007f9f3ac15fa0 R15: 00007ffc28d051f8
[  400.150376][ T7371]  </TASK>
[  400.167766][ T4275] ocfs2: Unmounting device (7,3) on (node local)
[  400.332961][ T4273] ocfs2: Unmounting device (7,4) on (node local)
[  400.912323][ T4274] EXT4-fs (loop1): unmounting filesystem.