last executing test programs:

1m48.975082157s ago: executing program 3 (id=404):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000001940)=""/4095, 0xfff}, {&(0x7f0000000040)=""/190, 0xbe}, {&(0x7f0000000300)=""/90, 0x5a}, {&(0x7f0000000780)=""/4095, 0xfff}, {&(0x7f0000000240)=""/53, 0x35}, {&(0x7f0000000280)=""/53, 0x35}], 0x6}, 0x15e}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x1}], 0x3, 0x0, 0x0)

1m47.621682305s ago: executing program 3 (id=419):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000004, 0x3b071, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x11, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x93, 0x0, 0x0, 0x0, 0x41da}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0x86}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x480}}, [@map_fd={0x18, 0x2, 0x1, 0x0, r0}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0xb, 0xff1, &(0x7f0000000cc0)=""/4081, 0x41000, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffefffd}, 0x94)

1m46.275750561s ago: executing program 3 (id=431):
syz_mount_image$cramfs(&(0x7f00000001c0), &(0x7f00000003c0)='./file2\x00', 0x2a00880, &(0x7f0000000180)=ANY=[], 0x2, 0x159, &(0x7f0000000400)="$eJzsz09LwmAcB/DvNnWWhoMMrENFHRqKOSd2i8ooErJB0KVDBLko0BSF8FYW3Tr0AjyUQifxJUTZyVIIo/fQRejQ3XiebW+g8+9z2fb9fff82VjuqVAACcxXeL2QL5bMctnMzu4amQAcMhR4+Vu+WGLlrJU/rwEn7OkCBlUrfh0Djk9z5uJRIZcFfKyn4uk75WO5CA1WdxRAKmh1BTtT54H2hJtnOmQMqqKdsV7Z65xnygWkAiyT+ffwAVgAIMJaLw7gF3N2e6fbSUfDjwcSbtKRmXEBqNQireabxPNp81bfnGz4Q9fs/zrfo1L7jHWiH7FWs9/rZraNjNFL6PpSQotrWrJvvHfTycs7uLb858C+td6IvVnY4wGwB1wJQE0Amnw+eBGGF0D7vu7c4edMAQQ+WXWygBx0JuwchyF3YyWoiJBUCCCEEEIIIYQQQv7pLwAA//+qKVe6")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x32000, 0x8)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

1m46.011026976s ago: executing program 3 (id=432):
syz_mount_image$udf(&(0x7f00000001c0), &(0x7f0000000100)='./file1\x00', 0x1004000, &(0x7f0000000580)={[{@gid}, {@undelete}, {@anchor={'anchor', 0x3d, 0x7}}, {@longad}, {@uid_forget}, {@unhide}, {@undelete}, {@iocharset={'iocharset', 0x3d, 'utf8'}}, {@uid_forget}, {@volume={'volume', 0x3d, 0xbe5}}, {@gid_forget}, {@nostrict}, {@session}, {@gid_forget}]}, 0x1, 0xc34, &(0x7f0000001bc0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x1b1c463, &(0x7f00000000c0)={[{}], [{@permit_directio}, {@subj_type={'subj_type', 0x3d, '^'}}]})

1m45.547510333s ago: executing program 3 (id=436):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x18, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24004800}, 0x0)

1m45.047508301s ago: executing program 3 (id=440):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x48, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}}, 0x0)

1m44.701672741s ago: executing program 32 (id=440):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x48, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}}, 0x0)

1m41.934148548s ago: executing program 0 (id=458):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x1)
open_tree(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x89801)

1m40.536573177s ago: executing program 0 (id=470):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x0)
setsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, &(0x7f0000000080)=0x7, 0x4)

1m40.404081405s ago: executing program 0 (id=464):
syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800002, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6c733d63703933362c63726561746f723d762ae76f2c6e6f626172726965722c756d61736b3d303030303030303030303030303030303030303030302c00907b99c243555fdaa0fa82f76c7040e292995ad97add6fa99378b851e65fe4d778ac499b31b2675243e5ea2f1840cdf32686d7a44ea9a49acf89647d4da2267bfe88c9df34b3c06356bb7ea2c23196a9e84f73ae08b1725a8c11a363e846e9b1e32cf9d3b5ba96f7ee318325e2bf96a15d2cf49576e5cdd0d5f841afcffab8699de74d466901f310d66e8706ba6ccddf"], 0x1, 0x6b3, &(0x7f0000000780)="$eJzs3U9sHFcdB/DvbDbrbJBSt03TgJBiNVIFjUjsrEqChNSAEMohQhFcerUSp7HipJXjorRCZAMUJE6cUA8cilA49IQQQionRDkjIXHhlHskbhxyAIzmz9pre+PYieN1289Hmp03+96895tf5s/ubKwJ8Jl1/vXs76fI+RMXbpXL9+72Fu7d7V0flJNMJGkl7XqWopsUHyfnUk/5fPlm013xsHFevf9R0X7/w1691G6mqn1rs/U2GNmynxxYWdiXZKou/mcLHbZG91dNVT+XVvt7TMVK3GXCjg8SB+O2vEF/tXLUobHW1o9bYM+6XV83N5hMDqa+upafA9KcHR59Zhi/Tc9N/d2LAwAAAJ6Wkd/lhz3zIA9yK4d2JxwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4dCjqZwYWzdQalKdSDJ7/3xl6pn5nzOE+ofeuVLPvPjPuQAAAAAAAAADgiRx7kAe5lUOD5eWi+s3/pWrhcPX6ubydm5nLYk7mVmazlKUsZibJ5FBHnVuzS0uLMxvX/GXKNZeXl283a54euebptXH11wc66n8abGgEAAAAAAAAAJ9ZP8r51d//AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgLyiSffWsmg4PypNptZMcSNIpplaad8Ya7A7487gDAAAAgKev28wPFf+rC8tF9Z3/SPW9/0Dezo0sZT5LWchcLlf3Aupv/a2/93sL9+72rpfTxo6/8a9txVH1mPrew+iRp6sWL6yscT7fzvdyIlO5mMXM5/uZzVLmMpVvVaXZFJls7l5M3rvbzSDWjfGeW7N0cX1sx4bKZXxHq0i6uZL5KraTudQZhN5q2h0dGu2PnWTdiHfK7BSvNbaYo8vNvNyiXzTzvWGy2vL9KxmZbnJfZuPZ4bxvzP0295P1I82ktXIP6vDqKOXi+pEeK+cHm3mZ658+3Zxv81ba2kz0f14uDfa+I5vnPPnyP/5y8WrrxrWrV26e2Du70WNav0/0hjLx4pYysVBmov8EmTjwJPHvnE6Tjfosur2z5UvVuocyn+/kzVzOXM5kOjM5m+l8LafTy+mhvL6weV6rY621vWPt+JeaQnlN+tnQtWnXTDysoszrs0N5HT7TTVZ1w++sZum5LWSp6GR0lv45MpT2F5pCOcaPh64447c+EzNDmXh+80z8+r/LSW4u3Li2eHX2rS2O93IzLw/b99aem3+zIxu0fc3mlvvLc+U/VurLxvDeUdY9P6hbl69O84tLu+lsTV0n1fFc1z3qSC17OnJnVE913YsjR+lVdUeH6tZ8ysmbWVj5FNLY9YMUgC04+MrBTvd+92/dD7o/6V7tXjjwzYmzE1/sZP9f23/a97vWb1tfL17JB/lhDo07UgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+DS4+c6712YXFuYW92AhrR3u8M7IqkEq6nc6I9ocyx7IxiejMLHZHvX71I9resjqnXHE3M1D49ndQtq7MNZERlRdWHmnm7RW4klybY884A54Gk4tXX/r1M133v3K/PXZN+bemLtx+uyZ1870vjpz+9SV+YW56fq1adwec7DAjlr9GDDuSAAAAAAAAAAAAICt2o0/bxgxbNEfw7YCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAn0znX8/+forMTJ+cLpfv3e0tlNOgvNqynaSVpPhBUnycnEs9ZXKou+Jh47x6/6Nfvfz+h73VvtqD9q116/3h38vL29yKfjNlKsm+Zv5oE1vq79JQf/1tBlYrVrawTNjxQeJg3P4fAAD//+/HBYc=")
setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB='osx.:'], 0x0, 0x0, 0x0)
llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

1m40.053277825s ago: executing program 0 (id=465):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0xc02, &(0x7f0000000100)={[{@iocharset={'iocharset', 0x3d, 'macturkish'}}, {}, {@errors_continue}, {@fmask={'fmask', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@keep_last_dots}, {@keep_last_dots}, {@namecase}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {}]}, 0x1, 0x151e, &(0x7f0000007640)="$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")
mount$nfs(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x201008, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x400, 0x0)

1m39.662498898s ago: executing program 0 (id=466):
r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0)
setreuid(0x0, 0xee00)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000002c0)={0x0, 0x5, 0xaa})

1m36.725860934s ago: executing program 0 (id=481):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000980)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x10}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x70}, 0x1, 0x0, 0x0, 0x6040850}, 0x20000040)

1m36.195025105s ago: executing program 33 (id=481):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000980)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x10}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x70}, 0x1, 0x0, 0x0, 0x6040850}, 0x20000040)

2.967653831s ago: executing program 5 (id=1240):
r0 = memfd_secret(0x0)
fcntl$setlease(r0, 0x400, 0x0)
fcntl$setlease(r0, 0x400, 0x1)

2.81794748s ago: executing program 5 (id=1243):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000540)={0x2, @win={{0x2, 0x1, 0x80000000, 0xcb81}, 0x1, 0x9, 0x0, 0x7f, 0x0, 0x6}})

2.6378184s ago: executing program 5 (id=1245):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x5}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xc993}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x7}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0x0, 0x200, 0x2, 0x0, 0x9, 0x2, 0x1}}, {0x6, 0x2, [0x9]}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x8d0}, 0x4000000)

2.63753303s ago: executing program 4 (id=1246):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(r0, &(0x7f00000001c0)=[{&(0x7f0000002400)=""/4096, 0x1000}, {0x0}], 0x2, 0x0, 0x5, 0x0)

2.531172346s ago: executing program 4 (id=1250):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000000a00)={0xf, {"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", 0xfffffffffffffd6a}}, 0x1006)

2.393083344s ago: executing program 5 (id=1252):
set_mempolicy(0x4005, &(0x7f0000000080)=0x4, 0x8)
r0 = syz_open_dev$sg(&(0x7f0000000440), 0xa, 0x241)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000001480)={0x0, 0xd, 0xffb8})

2.267702911s ago: executing program 4 (id=1254):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x2, 0x2)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000000)=0x2)
read$FUSE(r0, &(0x7f0000002400)={0x2020}, 0xff43)

2.165953046s ago: executing program 5 (id=1256):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000006c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000000)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f0000001580)={0x0, @in={{0x2, 0x4e24, @private=0xa010100}}, 0x2000, 0x1}, &(0x7f0000001640)=0x90)

2.060755633s ago: executing program 4 (id=1259):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x25, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @private2}}}, 0x90)

1.618297437s ago: executing program 2 (id=1261):
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xd, 0x1c, &(0x7f0000000340)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca900000000000035090100000000009500000000000000b7020000000000007b2af8ff00000000b509000000000000c38af8ff50000000bf8600000000000007080000f8ffffffbfa400000000000007040000f0ffffffc70200000800000018220000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c000000210001803a000008004000000a000040000000000002000005001600001b0000080017"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80c0)

1.518363224s ago: executing program 2 (id=1264):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x1, 0x8, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0xfffffffc}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c3a00000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000080000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.390418431s ago: executing program 2 (id=1265):
r0 = syz_io_uring_setup(0x339e, &(0x7f0000000300)={0x0, 0x0, 0x800}, &(0x7f0000002480), &(0x7f00000024c0))
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000002380)={0x1, 0x0, 0x0, &(0x7f00000022c0)=[{0x0}], 0x0}, 0x20)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000004f40)={0x0, 0x0, &(0x7f0000004f00)=[{0x0}], 0xfffffffffffffffe, 0x1}, 0x20)

1.349387193s ago: executing program 2 (id=1266):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0x3000000, &(0x7f00000003c0)=ANY=[], 0x19, 0x2f1, &(0x7f0000000a80)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

1.344051934s ago: executing program 1 (id=1267):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendfile(0xffffffffffffffff, r0, 0x0, 0x8000000000000001)

1.253741088s ago: executing program 5 (id=1268):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0xfffffffb)

1.116554266s ago: executing program 2 (id=1269):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x1008400, &(0x7f0000000e80)=ANY=[], 0x84, 0x6a5, &(0x7f0000000cc0)="$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")
llistxattr(&(0x7f0000000040)='./file1\x00', 0x0, 0x22)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

1.082850168s ago: executing program 4 (id=1270):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a00000004000000060000008000000042"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340), &(0x7f0000000340), 0x619, r0}, 0x38)

956.014035ms ago: executing program 1 (id=1271):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$unix(0x1, 0x1, 0x0)
fstat(r0, &(0x7f0000000340))

855.149231ms ago: executing program 1 (id=1272):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x1c, 0x52, 0x1, 0x0, 0x0, {0xa}, [@typed={0x8, 0x8, 0x0, 0x0, @fd}]}, 0x1c}}, 0x0)

847.061152ms ago: executing program 4 (id=1273):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000000c0)=ANY=[@ANYBLOB='intr,heartbeat=none,dir_resv_level=000000000,resv_level=00000000000000000006,coherency=full,localflocks,coherency=full,commit=00000000001613114240,\x00'], 0x3, 0x4459, &(0x7f000000c3c0)="$eJzs3T9sY3cdAPDvewnkcrRHUjoUCQlLVAIBipJOQCqRy+XumvTCoQMqxOJzEvcu4MSnxEEMHdKtEhMSA2KoQGLLVGVgpOwsLIxlPgkGFiSkiiA/Pyd+L7Ziin0hp89nyM/v9z/+vvfz7w32S9M0jcPIVLb3K7XdSnPz7f3XKj9tNg526pE+I63H2/uXOT4FU4Pe+HHESewvz/1bd7731msRf9z6y9OTk5OTbCGYjL4Wel7/8x/vbPamXWmpTbvfzquj/p3+z34UES+fm1fbRET88PcRSUTczPOW83Q6Im5Ep+ytd37+sDKi2XzwUf316sfr7x0vvrp29P7x04EVk4hfNz7/9Uc7f/vSxOJfvzqi4QEAAAAAAAAAAAAAAAAAuOLuPrj/g+/OL8SHSUweJb3f183L83TQ92NPRuaL4/9nAQAAAAAAAAAAAAAAAAAA4P/U2ff/K8lLfb7/v5KnSwPan3x7/HNkfFa/c3/l9vxC/vz35Fz5N/Ksv9+ciNnSc9/f7fP895ul9uXzqe3o2ujm351fd9yZSNK5wnGazs1F/DZ/8PsryfW00dxvfe3t5sHu1ujmcVUV4995en/hLMgf6N8v/tEn/sul/vvFf7Q+F+Wztn388PypXPSpMU7pCinGf2Jgvd+9mwwV/1ulds8i/nxyxfhPZnnTvRWWOgtAO/6/mLw4/iul/scV/xsRUUnac60UVoD2HqadP2i/QlEx/p1FsbB05m9kn+t/qp3+qxT/26X+L2v9Pyx/ENFXMf6fzvKK27Oz6382vfj6v1Pq/zLi357/4UWf/2SK8Z/qZE4WqmTv5LDr/91S/2OIf/cH4zrzvJEUzoCjpDP/Qb9XR1Ex/udvzM7u/9Kh9n9vlNr3j//oLs7u/Lrjdu//usv/V5LO/R/9FeM/PbDesNf/aqnduNf/pWz/xydVjP/1LK+4d57J/g4b/7VS/+OKf7YrudaNf7YItG8J4t9Tnfzf2P8NpRj/z3Qy094ah9nfbP+XnI97ef//Zqn/S9v/p+Md9XlRjP8LA+u14//nIT7/75XajT/+EfP5CfCncQ/0HCrG/8WB9bLr/9rF8V8/e/mHeAbx//I4OwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4ApbzdCaSdK5wnKZzcxG38uNX4nqyUduqbjSamz/Zj1jJ8yvxUvKo0dyoNarbu82terXWaDQ3I27n5S/HtWS/0WxVd2pP7pz2NZ08rtf2Whv1Wisi7ub5X4gXu31tbLd2ak8i4o3Tss+mzb0nj2u71a3tvW/Nz8/Px+rpHGaT+s9a9d1WZ/ROacTaaduZpGdyWfGbp3N5Iflx82Bvt9bI8u/1tGk0N2uNnjbredkvYzZp7R3sbtZa9Wqj+ag73lAmho/Nf2MpT1dWH3z/wb2Fc+UPk066PJ7hAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABiRDxe/+auImOwcpRFRSfIX7XSqXP+Dj+qvVz9ef+948dW1o/ePn+b1AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/7ADBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFXTpGiRgKwgA8eSkUK49hFZLONqKIFkYET6DH8DB6lFzCO1hYbLvFsuxuUuxLYGEh3fc1AzO8N1P8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHCmx7fu/bVuIoq43FxE9OXx/Hmo33fz78vFL2RJTy/d/UPdRP/5+7cLQe52aP23aT9dr74+YqaOfrKcHP7NTffkZvN2NW2N9417r6NIVUS0w/ymSKmqTq4DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAtO3AgAAAAAADk/9oIVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVdiBYwEAAAAAYf7WWXRtAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADApAAAAP//B8EmyA==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
fadvise64(r0, 0x9, 0x5, 0x3)

799.974864ms ago: executing program 2 (id=1274):
r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000000)={0x84, &(0x7f0000001300)=ANY=[@ANYBLOB="0015f700000004"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000540)={0x34, &(0x7f0000000340)={0x20, 0xa, 0xe, "1675ace33eceaa440d71d86b5033"}, 0x0, 0x0, 0x0, 0x0, 0x0})

675.058022ms ago: executing program 1 (id=1275):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000002c0)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x8c, 0x8c, 0x2, [@enum64={0x8, 0x5, 0x0, 0x13, 0x0, 0x4, [{0xb, 0xc, 0x1}, {0x10, 0x80000001, 0x3}, {0xa, 0x4, 0x101}, {0xa, 0xac, 0x1}, {0x4, 0x5, 0x4}]}, @enum={0x5, 0x7, 0x0, 0x6, 0x4, [{0xb, 0xd62}, {0x9, 0x5}, {0x3, 0x2}, {0x5, 0x7}, {0x0, 0x8}, {0x8, 0x6}, {0xb, 0x1}]}]}}, 0x0, 0xa6, 0x0, 0x0, 0x8}, 0x28)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2204806, &(0x7f0000000540)=ANY=[@ANYBLOB="636865636b3d7374726963742c636865636b3d72656c61786564006d6f64653d307830303030303030303030303030303047438c70703d6f66662c73657373696f6e3d3078303030303030303030303030303036322c696f636861727365743d6d6163677265656b416d61703d61636f726e2c696f636861727365743d69736f383835392d322c73657373696f6e3d3078303030303030303030303030303035382c73686f776173736f632c6d6f64653d3078666666666666666666666666666666656ebe6865636b3d7374726963742c6673636f6e746578743d73797374656d5f752c7065726d69745f646972656374696f2c00"], 0xfa, 0x69f, &(0x7f0000000f00)="$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")
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000180)=ANY=[@ANYBLOB="20000000020000001d"], 0x0)

262.808355ms ago: executing program 1 (id=1276):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x35, &(0x7f00000003c0)=0x1, 0x4)

0s ago: executing program 1 (id=1277):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xc, 0x19, &(0x7f00000007c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@call={0x85, 0x0, 0x0, 0x7}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

kernel console output (not intermixed with test programs):

al params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  120.982501][ T7062] REISERFS (device loop0): checking transaction log (loop0)
[  121.010841][ T7062] REISERFS (device loop0): Using tea hash to sort names
[  121.023543][ T7030] chnl_net:caif_netlink_parms(): no params data found
[  121.046856][ T7062] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  121.172229][ T7052] loop2: detected capacity change from 0 to 32768
[  121.265732][ T7052] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  121.396514][ T7052] XFS (loop2): Ending clean mount
[  121.454673][ T7069] loop1: detected capacity change from 0 to 32768
[  121.531751][ T7083] loop0: detected capacity change from 0 to 512
[  121.559652][ T5764] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  121.601575][ T7083] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.623521][ T7083] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  121.658181][ T5775] Bluetooth: hci0: command tx timeout
[  121.769860][ T7069] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  122.070542][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.137693][ T5832] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  122.204520][ T5763] ocfs2: Unmounting device (7,1) on (node local)
[  122.265839][ T7030] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.308255][ T7030] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.327898][ T7030] bridge_slave_0: entered allmulticast mode
[  122.347603][ T7030] bridge_slave_0: entered promiscuous mode
[  122.349307][ T5832] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.380711][ T5832] usb 3-1: New USB device found, idVendor=11ff, idProduct=3331, bcdDevice= 0.00
[  122.406862][ T5832] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.450322][ T5832] usb 3-1: config 0 descriptor??
[  122.465853][ T7030] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.482315][ T7030] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.503330][ T7030] bridge_slave_1: entered allmulticast mode
[  122.528190][ T7030] bridge_slave_1: entered promiscuous mode
[  122.645027][ T1138] hsr_slave_0: left promiscuous mode
[  122.692859][ T1138] hsr_slave_1: left promiscuous mode
[  122.715078][ T1138] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.741784][ T1138] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.764712][ T1138] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.788245][ T1138] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.801305][ T1138] bridge_slave_1: left allmulticast mode
[  122.806994][ T1138] bridge_slave_1: left promiscuous mode
[  122.829791][ T1138] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.885676][ T5832] gembird 0003:11FF:3331.0007: unknown main item tag 0x0
[  122.893906][ T1138] bridge_slave_0: left allmulticast mode
[  122.910580][ T1138] bridge_slave_0: left promiscuous mode
[  122.917320][ T1138] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.917492][ T5832] gembird 0003:11FF:3331.0007: unknown main item tag 0x0
[  122.957556][ T5832] gembird 0003:11FF:3331.0007: unknown main item tag 0x0
[  122.962811][ T7118] loop0: detected capacity change from 0 to 1024
[  122.971135][ T5832] gembird 0003:11FF:3331.0007: unknown main item tag 0x0
[  122.994575][ T5832] gembird 0003:11FF:3331.0007: unknown main item tag 0x0
[  123.047014][ T5832] gembird 0003:11FF:3331.0007: hidraw0: USB HID v0.00 Device [HID 11ff:3331] on usb-dummy_hcd.2-1/input0
[  123.075024][ T1138] batadv_slave_1: left promiscuous mode
[  123.110777][ T5832] usb 3-1: USB disconnect, device number 6
[  123.180418][ T1138] veth1_macvtap: left promiscuous mode
[  123.186338][ T1138] veth0_macvtap: left promiscuous mode
[  123.187551][ T1085] hfsplus: b-tree write err: -5, ino 4
[  123.204496][ T1138] veth1_vlan: left promiscuous mode
[  123.214882][ T1138] veth0_vlan: left promiscuous mode
[  123.259499][ T7119] fido_id[7119]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  123.323366][ T7121] loop0: detected capacity change from 0 to 256
[  123.349406][ T7121] exfat: Deprecated parameter 'namecase'
[  123.397912][ T7121] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  123.583002][ T7112] loop1: detected capacity change from 0 to 32768
[  123.692112][ T7112] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  123.740738][ T5775] Bluetooth: hci0: command tx timeout
[  123.852503][ T7112] XFS (loop1): Ending clean mount
[  124.265858][ T5763] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  124.713863][ T7145] netlink: 'syz.2.474': attribute type 29 has an invalid length.
[  125.039057][ T1138] team0 (unregistering): Port device team_slave_1 removed
[  125.110660][ T1138] team0 (unregistering): Port device team_slave_0 removed
[  125.185699][ T1138] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  125.262510][ T1138] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  125.346927][ T7152] loop1: detected capacity change from 0 to 32768
[  125.357804][ T7152] XFS: noikeep mount option is deprecated.
[  125.363725][ T7152] XFS: attr2 mount option is deprecated.
[  125.383394][ T7152] XFS: noikeep mount option is deprecated.
[  125.440506][ T7152] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  125.534217][ T7152] XFS (loop1): Ending clean mount
[  125.561486][ T7152] XFS (loop1): Quotacheck needed: Please wait.
[  125.699109][ T7152] XFS (loop1): Quotacheck: Done.
[  125.777663][ T5763] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  125.818110][ T5775] Bluetooth: hci0: command tx timeout
[  125.941536][ T1138] bond0 (unregistering): Released all slaves
[  126.124346][ T7030] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  126.255805][ T7145] netlink: 'syz.2.474': attribute type 29 has an invalid length.
[  126.271477][ T7030] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  126.394503][ T7030] team0: Port device team_slave_0 added
[  126.441335][ T7030] team0: Port device team_slave_1 added
[  126.541631][ T7030] batman_adv: batadv0: Adding interface: batadv_slave_0
[  126.580411][ T7030] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.662916][ T7030] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  126.696155][ T7030] batman_adv: batadv0: Adding interface: batadv_slave_1
[  126.728169][ T7030] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.817489][ T7030] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  126.972943][ T7030] hsr_slave_0: entered promiscuous mode
[  126.998591][ T7030] hsr_slave_1: entered promiscuous mode
[  127.004969][ T7030] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  127.037550][ T7030] Cannot create hsr debugfs directory
[  127.383267][ T7169] loop2: detected capacity change from 0 to 32768
[  127.495819][ T7169] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  127.548046][ T7200] vivid-002: disconnect
[  127.609646][ T7169] XFS (loop2): Ending clean mount
[  127.618233][ T5771] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  127.633142][ T5771] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  127.644752][ T5771] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  127.661816][ T5771] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  127.677622][ T5771] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  127.685105][ T5771] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  127.758643][   T49] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.898538][ T5771] Bluetooth: hci0: command tx timeout
[  127.957306][ T5764] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  127.959126][   T49] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.042601][   T49] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.080323][ T7030] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  128.105971][ T7030] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  128.136542][   T49] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.160098][ T7030] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  128.179448][ T7030] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  128.306663][ T7196] vivid-002: reconnect
[  128.540777][ T7201] chnl_net:caif_netlink_parms(): no params data found
[  128.975529][ T7030] 8021q: adding VLAN 0 to HW filter on device bond0
[  129.041278][ T7201] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.064333][ T7201] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.072253][ T7201] bridge_slave_0: entered allmulticast mode
[  129.079766][ T7201] bridge_slave_0: entered promiscuous mode
[  129.156004][ T7201] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.172961][ T7201] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.197706][ T7201] bridge_slave_1: entered allmulticast mode
[  129.222244][ T7201] bridge_slave_1: entered promiscuous mode
[  129.283457][ T7030] 8021q: adding VLAN 0 to HW filter on device team0
[  129.426303][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  129.433647][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  129.493296][ T7201] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  129.521317][ T7201] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  129.680592][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.687902][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.748864][ T5771] Bluetooth: hci1: command tx timeout
[  129.775451][ T7201] team0: Port device team_slave_0 added
[  129.906429][ T7201] team0: Port device team_slave_1 added
[  130.102031][ T7201] batman_adv: batadv0: Adding interface: batadv_slave_0
[  130.127924][ T7201] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.181768][ T7201] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.274079][ T7201] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.286127][ T7257] kAFS: unable to lookup cell '(0.Â|dÒùyx²LTrwˆž0	Æâœí\Ø[È ó¬]V'
[  130.302288][ T7201] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  130.328558][    C0] vkms_vblank_simulate: vblank timer overrun
[  130.390205][ T7201] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.511277][ T7261] loop1: detected capacity change from 0 to 512
[  130.531109][ T7261] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  130.678068][ T7201] hsr_slave_0: entered promiscuous mode
[  130.696689][ T7201] hsr_slave_1: entered promiscuous mode
[  130.741555][ T7201] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  130.755333][ T7201] Cannot create hsr debugfs directory
[  130.989915][   T49] hsr_slave_0: left promiscuous mode
[  131.047778][   T49] hsr_slave_1: left promiscuous mode
[  131.058107][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.077689][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.111675][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.127819][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.148283][   T49] bridge_slave_1: left allmulticast mode
[  131.154018][   T49] bridge_slave_1: left promiscuous mode
[  131.175731][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.208038][   T49] bridge_slave_0: left allmulticast mode
[  131.242964][   T49] bridge_slave_0: left promiscuous mode
[  131.258493][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.310699][   T49] veth1_macvtap: left promiscuous mode
[  131.316923][   T49] veth0_macvtap: left promiscuous mode
[  131.337711][   T49] veth1_vlan: left promiscuous mode
[  131.343144][   T49] veth0_vlan: left promiscuous mode
[  131.561901][ T7266] loop1: detected capacity change from 0 to 32768
[  131.670179][ T7266] ERROR: (device loop1): diWrite: ixpxd invalid
[  131.670179][ T7266] 
[  131.701860][ T7266] ERROR: (device loop1): remounting filesystem as read-only
[  131.717701][ T7266] ERROR: (device loop1): txCommit: 
[  131.717701][ T7266] 
[  131.818658][ T5771] Bluetooth: hci1: command tx timeout
[  131.845625][ T7278] loop2: detected capacity change from 0 to 128
[  131.928457][ T7278] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  131.979743][ T7278] hpfs: filesystem error: improperly stopped
[  131.985793][ T7278] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  132.028678][ T7278] hpfs: You really don't want any checks? You are crazy...
[  132.045906][ T7278] hpfs: hpfs_map_sector(): read error
[  132.048310][ T7282] loop1: detected capacity change from 0 to 1024
[  132.052516][ T7278] hpfs: code page support is disabled
[  132.093546][ T7278] hpfs: hpfs_map_4sectors(): unaligned read
[  132.102019][ T7278] hpfs: hpfs_map_4sectors(): unaligned read
[  132.121231][ T7278] hpfs: filesystem error: unable to find root dir
[  132.414143][ T7286] program syz.1.504 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  133.038002][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  133.044496][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  133.195132][   T49] team0 (unregistering): Port device team_slave_1 removed
[  133.274128][   T49] team0 (unregistering): Port device team_slave_0 removed
[  133.290510][ T7308] sctp: [Deprecated]: syz.2.515 (pid 7308) Use of int in max_burst socket option.
[  133.290510][ T7308] Use struct sctp_assoc_value instead
[  133.385383][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  133.476039][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  133.898121][ T5771] Bluetooth: hci1: command tx timeout
[  133.908357][ T7312] loop2: detected capacity change from 0 to 32768
[  134.397143][   T49] bond0 (unregistering): Released all slaves
[  134.896160][ T7334] loop1: detected capacity change from 0 to 64
[  134.984587][ T7030] 8021q: adding VLAN 0 to HW filter on device batadv0
[  135.093619][ T7322] loop2: detected capacity change from 0 to 32768
[  135.188698][ T7322] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  135.328751][ T7322] XFS (loop2): Ending clean mount
[  135.370019][ T7201] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  135.410233][ T7201] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  135.442971][ T7201] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  135.473521][ T7322] xfs: Unexpected value for 'quota'
[  135.496565][ T7201] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  135.588277][ T5764] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  135.906634][ T7201] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.978008][ T5771] Bluetooth: hci1: command tx timeout
[  136.012786][ T7030] veth0_vlan: entered promiscuous mode
[  136.034682][ T7201] 8021q: adding VLAN 0 to HW filter on device team0
[  136.076252][ T4977] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.083514][ T4977] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.113312][ T7030] veth1_vlan: entered promiscuous mode
[  136.156772][ T4977] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.163992][ T4977] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.330221][ T7030] veth0_macvtap: entered promiscuous mode
[  136.356732][ T7030] veth1_macvtap: entered promiscuous mode
[  136.414766][ T7030] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.431621][ T7030] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.443497][ T7030] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.463229][ T7030] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.509884][ T7030] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.532820][ T7030] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.559577][   T28] audit: type=1326 audit(1770425399.204:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  136.568028][ T7030] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.621333][ T7030] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.646522][   T28] audit: type=1326 audit(1770425399.234:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  136.677630][ T7030] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.705622][ T7030] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.729616][   T28] audit: type=1326 audit(1770425399.244:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  136.756641][ T7030] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.770998][ T7384] netlink: 16 bytes leftover after parsing attributes in process `syz.2.533'.
[  136.786565][ T7030] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.807599][   T28] audit: type=1326 audit(1770425399.244:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  136.833552][ T7030] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.867137][ T7030] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.899453][   T28] audit: type=1326 audit(1770425399.244:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  136.979149][   T28] audit: type=1326 audit(1770425399.244:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  137.090686][   T28] audit: type=1326 audit(1770425399.244:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7379 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  137.163791][ T4977] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.178177][ T4977] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.214437][ T7374] loop1: detected capacity change from 0 to 32768
[  137.297054][ T7201] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.363826][ T1085] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.379210][ T1085] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.954426][ T7390] loop2: detected capacity change from 0 to 32768
[  138.159518][ T7390] JBD2: Ignoring recovery information on journal
[  138.189410][ T7390] jbd2_journal_bmap: journal block not found at offset 32 on loop2-75
[  138.208033][ T7390] JBD2: bad block at offset 32
[  138.249174][ T7390] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  138.379711][ T7390] (syz.2.534,7390,0):ocfs2_get_block:148 get_block on system inode 0xffff88805c706c38 (65)
[  138.394145][ T7201] veth0_vlan: entered promiscuous mode
[  138.451630][ T7201] veth1_vlan: entered promiscuous mode
[  138.499360][ T7390] OCFS2: ERROR (device loop2): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  138.568425][ T7390] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  138.614891][ T7201] veth0_macvtap: entered promiscuous mode
[  138.628141][ T7390] OCFS2: File system is now read-only.
[  138.633648][ T7390] (syz.2.534,7390,0):ocfs2_find_leaf:1941 ERROR: status = -30
[  138.666627][ T7201] veth1_macvtap: entered promiscuous mode
[  138.678582][ T7390] (syz.2.534,7390,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  138.687079][ T7390] (syz.2.534,7390,0):ocfs2_get_clusters:624 ERROR: status = -30
[  138.764859][ T7390] (syz.2.534,7390,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  138.771109][ T7201] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.817524][ T7201] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.820213][ T7390] (syz.2.534,7390,0):ocfs2_get_block:160 ERROR: get_blocks() failed, inode: 0xffff88805c706c38, block: 0
[  138.843930][ T7409] loop4: detected capacity change from 0 to 40427
[  138.850596][ T7201] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.875634][ T7390] (syz.2.534,7390,0):ocfs2_get_block:148 get_block on system inode 0xffff88805c706c38 (65)
[  138.881788][ T7201] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.906239][ T7409] F2FS-fs (loop4): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  138.937636][ T7201] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.938350][ T7390] OCFS2: ERROR (device loop2): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  138.948314][ T7409] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  138.983068][ T7401] loop1: detected capacity change from 0 to 40427
[  138.991841][ T7401] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x35f7
[  139.006025][ T7201] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.011259][ T7401] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff
[  139.034856][ T7390] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  139.051555][ T7201] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.059175][ T7401] F2FS-fs (loop1): Image doesn't support compression
[  139.069760][ T7409] F2FS-fs (loop4): invalid crc value
[  139.088758][ T7401] F2FS-fs (loop1): invalid crc value
[  139.104641][ T7201] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.106082][ T7390] (syz.2.534,7390,0):ocfs2_find_leaf:1941 ERROR: status = -30
[  139.132342][ T7401] F2FS-fs (loop1): Found nat_bits in checkpoint
[  139.142082][ T7409] F2FS-fs (loop4): Found nat_bits in checkpoint
[  139.157538][ T7201] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.189620][ T7390] (syz.2.534,7390,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  139.201503][ T7201] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.217669][ T7390] (syz.2.534,7390,0):ocfs2_get_clusters:624 ERROR: status = -30
[  139.257567][ T7390] (syz.2.534,7390,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  139.257681][ T7201] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.296551][ T7390] (syz.2.534,7390,0):ocfs2_get_block:160 ERROR: get_blocks() failed, inode: 0xffff88805c706c38, block: 0
[  139.334445][ T7201] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.372072][ T7401] F2FS-fs (loop1): Start checkpoint disabled!
[  139.377562][ T7201] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.398486][ T7409] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  139.405964][ T7409] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  139.425250][ T7401] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  139.429046][ T7201] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.503340][ T7201] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.544715][ T7422] f2fs_ckpt-7:4: attempt to access beyond end of device
[  139.544715][ T7422] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  139.549674][ T7201] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.599968][ T7422] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  139.625216][ T7201] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.636335][ T7201] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.645898][ T5764] ocfs2: Unmounting device (7,2) on (node local)
[  139.889350][ T1085] kworker/u4:5: attempt to access beyond end of device
[  139.889350][ T1085] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  139.924176][ T1138] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.932299][ T1085] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  139.957993][ T1085] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  139.974991][ T1138] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.086522][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.126475][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.024867][ T7461] loop1: detected capacity change from 0 to 512
[  141.069650][ T7463] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  141.076645][ T7463] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  141.104308][ T7463] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  141.110905][ T7463] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  141.117796][ T7461] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  141.166594][ T7463] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  141.173144][ T7463] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  141.225362][ T7463] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  141.231879][ T7463] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  141.269179][ T7463] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  141.275685][ T7463] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  141.516270][ T7477] loop2: detected capacity change from 0 to 512
[  141.610307][ T7477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.626634][ T7485] netlink: 'syz.4.553': attribute type 2 has an invalid length.
[  141.635338][ T7477] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.762353][ T7477] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #12: comm syz.2.551: corrupted xattr block 6: invalid header
[  141.936678][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.127924][ T5832] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  142.236600][ T7506] loop4: detected capacity change from 0 to 128
[  142.340727][ T5832] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  142.359432][ T5832] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.361828][ T5852] IPVS: starting estimator thread 0...
[  142.389941][ T5832] usb 6-1: config 0 descriptor??
[  142.424117][ T5832] cp210x 6-1:0.0: cp210x converter detected
[  142.484255][ T7512] IPVS: using max 21 ests per chain, 50400 per kthread
[  142.632143][ T7517] loop1: detected capacity change from 0 to 2048
[  142.685366][ T7517] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.807586][ T5852] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  142.857165][ T5832] usb 6-1: cp210x converter now attached to ttyUSB0
[  142.877967][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.009192][ T5852] usb 5-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.037924][ T5852] usb 5-1: config 0 interface 0 has no altsetting 0
[  143.044607][ T5852] usb 5-1: New USB device found, idVendor=05ac, idProduct=027a, bcdDevice= 0.00
[  143.087501][ T5852] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.098993][ T6727] usb 6-1: USB disconnect, device number 2
[  143.114938][ T5852] usb 5-1: config 0 descriptor??
[  143.141370][ T6727] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  143.162294][ T6727] cp210x 6-1:0.0: device disconnected
[  143.413715][ T7510] loop2: detected capacity change from 0 to 40427
[  143.442553][ T7510] F2FS-fs (loop2): Small segment_count (9 < 1 * 24)
[  143.454997][ T7510] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  143.486241][ T7510] F2FS-fs (loop2): Found nat_bits in checkpoint
[  143.610535][ T5852] apple 0003:05AC:027A.0008: hidraw0: USB HID v8.00 Device [HID 05ac:027a] on usb-dummy_hcd.4-1/input0
[  143.626098][ T7510] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  143.644890][ T7510] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  143.795082][ T5766] usb 5-1: USB disconnect, device number 2
[  143.840607][   T28] audit: type=1800 audit(1770425406.484:18): pid=7510 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.563" name="file1" dev="loop2" ino=10 res=0 errno=0
[  143.915234][ T7547] netlink: 68 bytes leftover after parsing attributes in process `syz.5.571'.
[  143.959530][ T7547] netlink: 16 bytes leftover after parsing attributes in process `syz.5.571'.
[  143.994125][ T5764] syz-executor: attempt to access beyond end of device
[  143.994125][ T5764] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  143.998114][ T7550] loop1: detected capacity change from 0 to 2048
[  144.047319][ T7550] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.056906][ T5764] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  144.139257][   T28] audit: type=1800 audit(1770425406.784:19): pid=7550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.572" name="file1" dev="loop1" ino=1415 res=0 errno=0
[  144.896801][ T7574] loop1: detected capacity change from 0 to 1024
[  145.240278][ T7580] mkiss: ax0: crc mode is auto.
[  145.374903][ T7558] loop5: detected capacity change from 0 to 32768
[  145.463168][ T7558] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  145.761876][ T7558] XFS (loop5): Ending clean mount
[  145.787668][ T7558] XFS (loop5): Quotacheck needed: Please wait.
[  145.890728][ T7558] XFS (loop5): Quotacheck: Done.
[  146.013386][ T7607] netlink: 20 bytes leftover after parsing attributes in process `syz.4.587'.
[  146.021146][ T7583] loop1: detected capacity change from 0 to 32768
[  146.096483][ T7583] JBD2: Ignoring recovery information on journal
[  146.223066][ T7201] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  146.236543][ T7583] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  146.487010][ T7583] (syz.1.582,7583,0):ocfs2_verify_group_and_input:422 ERROR: input chain exceeds the limit.
[  146.537690][ T7583] (syz.1.582,7583,0):ocfs2_group_add:503 ERROR: status = -22
[  146.726301][ T7626] loop2: detected capacity change from 0 to 512
[  146.800594][ T7626] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  146.802567][ T5763] ocfs2: Unmounting device (7,1) on (node local)
[  146.857690][ T7626] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  146.919145][ T7626] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  147.028148][ T7626] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  147.036123][ T7626] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=e040e01c, mo2=0000]
[  147.077708][ T7626] EXT4-fs (loop2): failed to initialize system zone (-117)
[  147.096522][ T7626] EXT4-fs (loop2): mount failed
[  147.110201][ T7635] loop4: detected capacity change from 0 to 16
[  147.155225][ T7635] erofs: (device loop4): mounted with root inode @ nid 36.
[  147.206268][ T7635] erofs: (device loop4): erofs_init_inode_xattrs: xattr_isize 12 of nid 46 is not supported yet
[  147.775076][   T28] audit: type=1326 audit(1770425410.414:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7654 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  147.849946][   T28] audit: type=1326 audit(1770425410.444:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7654 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  147.934133][   T28] audit: type=1326 audit(1770425410.444:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7654 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  148.018544][   T28] audit: type=1326 audit(1770425410.444:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7654 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  148.449285][ T7685] netlink: 16 bytes leftover after parsing attributes in process `syz.4.613'.
[  148.863784][ T7697] loop2: detected capacity change from 0 to 1024
[  148.902342][ T7702] loop4: detected capacity change from 0 to 256
[  148.963112][ T5753] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  149.085938][ T4354] hfsplus: b-tree write err: -5, ino 4
[  149.295613][ T7714] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  149.481284][ T7718] loop2: detected capacity change from 0 to 512
[  149.482304][ T7720] loop4: detected capacity change from 0 to 128
[  149.533586][ T7718] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  149.635865][ T7718] EXT4-fs (loop2): 1 truncate cleaned up
[  149.677522][ T7718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.873523][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.185614][ T7705] loop1: detected capacity change from 0 to 40427
[  150.241818][ T7705] F2FS-fs (loop1): invalid crc value
[  150.288574][ T7740] netlink: 104 bytes leftover after parsing attributes in process `syz.5.630'.
[  150.306533][ T7705] F2FS-fs (loop1): Found nat_bits in checkpoint
[  150.351579][ T7743] loop4: detected capacity change from 0 to 64
[  150.519423][ T7705] F2FS-fs (loop1): Start checkpoint disabled!
[  150.580517][ T7705] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  150.784615][ T7751] loop4: detected capacity change from 0 to 164
[  150.822548][ T7751] rock: directory entry would overflow storage
[  150.848199][ T7751] rock: sig=0x4d4e, size=5, remaining=4
[  152.255262][ T7769] loop2: detected capacity change from 0 to 32768
[  152.278988][ T7769] (syz.2.638,7769,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  152.309686][ T7769] (syz.2.638,7769,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  152.366223][ T7769] (syz.2.638,7769,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  152.387830][ T7769] (syz.2.638,7769,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  152.496411][ T7769] JBD2: Ignoring recovery information on journal
[  152.567026][ T7784] loop1: detected capacity change from 0 to 32768
[  152.636240][ T7784] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  152.647064][ T7809] loop4: detected capacity change from 0 to 512
[  152.651046][ T7769] (syz.2.638,7769,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  152.683628][ T7769] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  152.716363][ T7769] (syz.2.638,7769,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  152.756609][ T7769] (syz.2.638,7769,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  152.757844][ T7784] XFS (loop1): Ending clean mount
[  152.822515][ T7809] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.853626][ T7784] XFS (loop1): Quotacheck needed: Please wait.
[  152.862259][ T7809] ext4 filesystem being mounted at /41/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  152.964173][ T7784] XFS (loop1): Quotacheck: Done.
[  152.992953][ T7809] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #2: comm syz.4.650: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  153.100234][ T5764] ocfs2: Unmounting device (7,2) on (node local)
[  153.149290][ T7030] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.154553][ T5763] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  153.715967][ T7838] loop5: detected capacity change from 0 to 128
[  153.754540][   T28] audit: type=1326 audit(1770425416.394:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  153.795636][   T28] audit: type=1326 audit(1770425416.394:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  153.857607][   T28] audit: type=1326 audit(1770425416.424:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  153.923959][   T28] audit: type=1326 audit(1770425416.424:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  153.970438][ T7847] loop4: detected capacity change from 0 to 512
[  153.978464][ T7838] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  154.012657][ T7847] EXT4-fs (loop4): orphan cleanup on readonly fs
[  154.018761][   T28] audit: type=1326 audit(1770425416.424:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  154.031741][ T7847] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #4: comm syz.4.659: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  154.058710][ T7838] ext4 filesystem being mounted at /26/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  154.079324][ T7847] EXT4-fs error (device loop4): ext4_quota_enable:7143: comm syz.4.659: Bad quota inode: 4, type: 1
[  154.091346][   T28] audit: type=1326 audit(1770425416.424:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  154.127633][ T7847] EXT4-fs warning (device loop4): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  154.155320][   T28] audit: type=1326 audit(1770425416.424:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  154.187933][ T7847] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  154.196828][ T7847] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  154.243019][   T28] audit: type=1326 audit(1770425416.434:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7837 comm="syz.1.653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  154.335899][ T7201] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  154.378640][ T7847] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  154.470919][ T7847] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #4: comm syz.4.659: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  154.582503][ T7847] EXT4-fs error (device loop4): ext4_quota_enable:7143: comm syz.4.659: Bad quota inode: 4, type: 1
[  154.648325][ T7847] EXT4-fs warning (device loop4): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  154.788883][ T7030] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.924008][ T7867] set_capacity_and_notify: 1 callbacks suppressed
[  154.924021][ T7867] loop5: detected capacity change from 0 to 2048
[  155.056698][ T7867] Alternate GPT is invalid, using primary GPT.
[  155.087914][ T7867]  loop5: p2 p3 p7
[  155.175339][ T7878] netlink: 16 bytes leftover after parsing attributes in process `syz.4.669'.
[  155.601584][ T5755] udevd[5755]: inotify_add_watch(7, /dev/loop5p7, 10) failed: No such file or directory
[  155.616411][ T5753] udevd[5753]: inotify_add_watch(7, /dev/loop5p3, 10) failed: No such file or directory
[  155.650872][ T6157] udevd[6157]: inotify_add_watch(7, /dev/loop5p2, 10) failed: No such file or directory
[  155.881073][ T7897] loop5: detected capacity change from 0 to 1024
[  155.908553][ T7897] EXT4-fs: Ignoring removed mblk_io_submit option
[  155.934002][ T7897] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.960200][ T7897] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  155.992908][ T7897] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #11: comm syz.5.675: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  156.048020][ T7897] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.675: couldn't read orphan inode 11 (err -117)
[  156.100692][ T7897] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.335350][ T7914] loop1: detected capacity change from 0 to 128
[  156.379661][ T7201] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.877593][   T27] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  157.079870][   T27] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.107624][   T27] usb 3-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  157.108946][ T7939] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  157.116689][   T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.134648][ T7939] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  157.135633][   T27] usb 3-1: config 0 descriptor??
[  157.153678][ T7939] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  157.167595][    T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  157.175382][ T7939] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  157.184228][ T7939] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  157.191102][ T7939] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  157.198066][ T7939] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  157.204793][ T7939] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  157.211887][ T7939] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  157.218962][ T7939] comedi comedi3: 8255: I/O port conflict (0x8,4)
[  157.226769][ T7939] comedi comedi3: 8255: I/O port conflict (0xd4,4)
[  157.234050][ T7939] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  157.347027][ T7942] loop1: detected capacity change from 0 to 512
[  157.357551][    T9] usb 5-1: Using ep0 maxpacket: 32
[  157.375413][    T9] usb 5-1: unable to get BOS descriptor or descriptor too short
[  157.400953][    T9] usb 5-1: config 6 has an invalid interface number: 3 but max is 2
[  157.432486][ T7942] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.457273][    T9] usb 5-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  157.514446][    T9] usb 5-1: config 6 has no interface number 1
[  157.545520][    T9] usb 5-1: too many endpoints for config 6 interface 0 altsetting 128: 255, using maximum allowed: 30
[  157.602268][   T27] logitech-djreceiver 0003:046D:C71F.0009: hidraw0: USB HID v0.00 Device [HID 046d:c71f] on usb-dummy_hcd.2-1/input0
[  157.614737][ T7942] EXT4-fs error (device loop1): ext4_get_first_dir_block:3584: inode #12: comm syz.1.691: Directory block failed checksum
[  157.621243][    T9] usb 5-1: config 6 interface 0 altsetting 128 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  157.689913][    T9] usb 5-1: config 6 interface 2 has no altsetting 0
[  157.696725][    T9] usb 5-1: config 6 interface 0 has no altsetting 0
[  157.709789][    T9] usb 5-1: New USB device found, idVendor=1410, idProduct=a001, bcdDevice=ec.5b
[  157.720965][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.745345][    T9] usb 5-1: Product: syz
[  157.755484][    T9] usb 5-1: Manufacturer: syz
[  157.765615][    T9] usb 5-1: SerialNumber: syz
[  157.805837][   T27] usb 3-1: USB disconnect, device number 7
[  157.885719][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.969411][ T7953] netlink: 8 bytes leftover after parsing attributes in process `syz.5.692'.
[  158.029436][    T9] usb 5-1: selecting invalid altsetting 0
[  158.047486][    T9] usb 5-1: Could not set interface, error -22
[  158.060510][    T9] usb 5-1: selecting invalid altsetting 1
[  158.067227][    T9] usb 5-1: Could not set interface, error -22
[  158.113243][    T9] usb 5-1: USB disconnect, device number 3
[  158.184868][ T7959] loop1: detected capacity change from 0 to 1024
[  158.198494][ T7959] EXT4-fs: Ignoring removed oldalloc option
[  158.218027][ T7959] EXT4-fs: Ignoring removed bh option
[  158.224650][ T7959] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  158.274495][ T7959] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.445264][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.307270][ T7972] loop2: detected capacity change from 0 to 32768
[  159.396105][ T8003] loop5: detected capacity change from 0 to 512
[  159.446987][ T7972] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  159.447223][ T8003] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  159.475811][ T8003] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2
[  159.525296][ T8009] loop4: detected capacity change from 0 to 512
[  159.617938][ T8003] EXT4-fs (loop5): 1 truncate cleaned up
[  159.624826][ T8003] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.703882][ T8003] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #2: block 4: comm syz.5.706: lblock 0 mapped to illegal pblock 4 (length 1)
[  159.719886][ T8009] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.743055][ T7972] syz.2.697 (7972) used greatest stack depth: 17296 bytes left
[  159.767974][ T8009] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.819566][ T8003] EXT4-fs (loop5): Remounting filesystem read-only
[  159.928647][ T5764] ocfs2: Unmounting device (7,2) on (node local)
[  159.999573][ T7201] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.095260][ T7030] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.773022][ T8054] loop1: detected capacity change from 0 to 512
[  160.909929][ T8054] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.967758][ T8054] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.315372][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.433506][ T8067] loop5: detected capacity change from 0 to 1024
[  161.478218][ T8045] loop4: detected capacity change from 0 to 32768
[  161.538452][ T8045] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 scanned by syz.4.717 (8045)
[  161.621045][ T4354] hfsplus: b-tree write err: -5, ino 4
[  161.645104][ T8045] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  161.681505][ T8049] loop2: detected capacity change from 0 to 32768
[  161.685356][ T8045] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  161.710062][ T8049] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.718 (8049)
[  161.737643][ T8045] BTRFS info (device loop4): using free space tree
[  161.783714][ T5753] I/O error, dev loop2, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  161.967750][   T27] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  162.022067][ T8045] BTRFS info (device loop4): enabling ssd optimizations
[  162.067868][ T8045] BTRFS info (device loop4): auto enabling async discard
[  162.197521][   T27] usb 2-1: Using ep0 maxpacket: 32
[  162.204608][   T27] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[  162.217836][   T27] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  162.268824][   T27] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  162.306283][   T27] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  162.341806][   T27] usb 2-1: config 0 interface 0 has no altsetting 0
[  162.352224][ T7030] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  162.375401][   T27] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  162.406387][   T27] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  162.438646][   T27] usb 2-1: Product: syz
[  162.442867][   T27] usb 2-1: Manufacturer: syz
[  162.451720][   T27] usb 2-1: SerialNumber: syz
[  162.499551][   T27] usb 2-1: config 0 descriptor??
[  162.516761][   T27] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  162.601778][   T27] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  162.753992][   T27] usb 2-1: USB disconnect, device number 6
[  162.788792][   T27] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[  162.953383][ T8116] capability: warning: `syz.4.734' uses 32-bit capabilities (legacy support in use)
[  163.037645][ T5774] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  163.189273][ T8108] loop5: detected capacity change from 0 to 32768
[  163.237160][ T8108] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.247836][ T5774] usb 3-1: Using ep0 maxpacket: 32
[  163.258134][ T5774] usb 3-1: config 0 has an invalid interface number: 29 but max is 0
[  163.287630][ T5774] usb 3-1: config 0 has no interface number 0
[  163.297926][ T5774] usb 3-1: config 0 interface 29 has no altsetting 0
[  163.312360][ T5774] usb 3-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  163.322296][ T5774] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.330709][ T5774] usb 3-1: Product: syz
[  163.335003][ T5774] usb 3-1: Manufacturer: syz
[  163.340105][ T5774] usb 3-1: SerialNumber: syz
[  163.347194][ T5774] usb 3-1: config 0 descriptor??
[  163.493977][ T8108] XFS (loop5): Ending clean mount
[  163.587582][ T5774] peak_usb 3-1:0.29: PEAK-System PCAN-USB X6 v0 fw v0.0.0 (2 channels)
[  163.635541][ T7201] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.782251][ T5774] peak_usb 3-1:0.29 can0: sending command failure: -22
[  163.799116][ T5774] peak_usb 3-1:0.29 can0: sending command failure: -22
[  163.808401][ T5774] peak_usb 3-1:0.29 can0: sending command failure: -22
[  163.988642][ T5774] peak_usb: probe of 3-1:0.29 failed with error -22
[  164.020203][ T5774] usb 3-1: USB disconnect, device number 8
[  164.347908][ T6727] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  164.547572][ T6727] usb 2-1: Using ep0 maxpacket: 32
[  164.579251][ T6727] usb 2-1: config 0 has an invalid interface number: 35 but max is 0
[  164.592823][ T6727] usb 2-1: config 0 has no interface number 0
[  164.635783][ T6727] usb 2-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f
[  164.645721][ T6727] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.662264][ T6727] usb 2-1: Product: syz
[  164.675162][ T6727] usb 2-1: Manufacturer: syz
[  164.680277][ T6727] usb 2-1: SerialNumber: syz
[  164.708336][ T6727] usb 2-1: config 0 descriptor??
[  164.716755][ T8168] sp0: Synchronizing with TNC
[  164.849173][ T8173] netlink: 68 bytes leftover after parsing attributes in process `syz.5.755'.
[  164.926391][ T6727] radio-si470x 2-1:0.35: this is not a si470x device.
[  164.988282][ T6727] radio-raremono 2-1:0.35: Thanko's Raremono connected: (10C4:818A)
[  165.227596][ T6727] radio-raremono 2-1:0.35: raremono_cmd_main failed (-71)
[  165.266123][ T6727] radio-raremono 2-1:0.35: V4L2 device registered as radio48
[  165.298617][ T6727] usb 2-1: USB disconnect, device number 7
[  165.305470][ T6727] radio-raremono 2-1:0.35: Thanko's Raremono disconnected
[  165.453820][ T8191] loop2: detected capacity change from 0 to 4096
[  165.482979][ T8191] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  165.491996][ T8198] loop5: detected capacity change from 0 to 64
[  165.504740][ T8198] hfs: unable to locate alternate MDB
[  165.535613][ T8198] hfs: continuing without an alternate MDB
[  165.592030][ T8191] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  165.700559][ T8191] ntfs3: loop2: ino=1e, "file1" failed to parse mft record
[  165.713296][ T8191] ntfs3: loop2: ino=1e, "file1" attr_set_size
[  165.916973][ T8203] mkiss: ax0: crc mode is auto.
[  166.316621][ T8219] loop4: detected capacity change from 0 to 512
[  166.571833][ T8219] EXT4-fs (loop4): Test dummy encryption mode enabled
[  166.594548][ T8219] EXT4-fs error (device loop4): __ext4_iget:5071: inode #11: block 1: comm syz.4.768: invalid block
[  166.625073][ T8219] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.768: couldn't read orphan inode 11 (err -117)
[  166.687266][ T5766] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  166.696396][ T8219] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.891444][ T7030] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.932632][ T5766] usb 6-1: config 0 has an invalid interface number: 37 but max is 1
[  166.947520][ T5766] usb 6-1: config 0 has an invalid interface number: 255 but max is 1
[  166.962551][ T5766] usb 6-1: config 0 has no interface number 0
[  166.966874][ T8242] loop1: detected capacity change from 0 to 4096
[  166.976792][ T5766] usb 6-1: config 0 has no interface number 1
[  166.999736][ T8242] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  167.031500][ T5766] usb 6-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  167.043318][ T8249] usb usb8: usbfs: process 8249 (syz.2.778) did not claim interface 0 before use
[  167.071131][ T5766] usb 6-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  167.114806][ T5766] usb 6-1: config 0 interface 255 has no altsetting 0
[  167.140147][ T8242] ntfs: volume version 3.1.
[  167.180074][ T5766] usb 6-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3
[  167.217359][ T5766] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.235074][ T5766] usb 6-1: Product: syz
[  167.241072][ T5766] usb 6-1: Manufacturer: syz
[  167.258467][ T5766] usb 6-1: SerialNumber: syz
[  167.288734][ T5766] usb 6-1: config 0 descriptor??
[  167.322020][ T5766] usb 6-1: selecting invalid altsetting 0
[  167.348305][ T5766] usb 6-1: Could not set interface, error -22
[  167.383861][ T8259] netlink: 'syz.4.780': attribute type 30 has an invalid length.
[  167.500351][ T5774] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  167.555465][ T5832] usb 6-1: USB disconnect, device number 3
[  167.697668][ T5774] usb 3-1: Using ep0 maxpacket: 16
[  167.717670][ T5774] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  167.726420][ T5774] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  167.774888][ T5774] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  167.794045][ T5774] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  167.812031][ T5774] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.815666][ T8272] loop1: detected capacity change from 0 to 1764
[  167.821451][ T5774] usb 3-1: Product: syz
[  167.835293][ T5774] usb 3-1: Manufacturer: syz
[  167.867574][ T5774] usb 3-1: SerialNumber: syz
[  168.302662][ T5774] usb 3-1: 0:2 : does not exist
[  168.517324][ T5774] usb 3-1: USB disconnect, device number 9
[  168.528033][ T8290] xt_l2tp: unknown flags: 10
[  168.569936][ T8266] loop4: detected capacity change from 0 to 32768
[  168.603822][ T8266] XFS: noikeep mount option is deprecated.
[  168.705993][ T8266] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  168.749185][ T8266] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  168.809093][ T8303] tipc: Started in network mode
[  168.814040][ T8303] tipc: Node identity f6925b911d69, cluster identity 4711
[  168.840782][ T8303] tipc: Enabled bearer <eth:hsr0>, priority 15
[  168.907810][ T8266] XFS (loop4): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  169.021763][ T8266] XFS (loop4): Starting recovery (logdev: internal)
[  169.105263][ T8266] XFS (loop4): Ending recovery (logdev: internal)
[  169.254430][ T6727] XFS (loop4): Metadata corruption detected at xfs_btree_lookup_get_block+0x44b/0x650, xfs_bnobt block 0x8
[  169.281539][ T8321] loop1: detected capacity change from 0 to 256
[  169.316276][ T6727] XFS (loop4): Unmount and run xfs_repair
[  169.323280][ T8321] exfat: Deprecated parameter 'namecase'
[  169.342110][ T8323] loop5: detected capacity change from 0 to 256
[  169.354241][ T6727] XFS (loop4): xfs_inactive_ifree: xfs_ifree returned error -117
[  169.409428][ T6727] XFS (loop4): Metadata I/O Error (0x1) detected at xfs_inactive_ifree+0x1d7/0x390 (fs/xfs/xfs_inode.c:1633).  Shutting down filesystem.
[  169.413680][ T7030] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  169.451488][ T8321] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  169.491055][ T8323] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  169.506638][ T6727] XFS (loop4): Please unmount the filesystem and rectify the problem(s)
[  169.960408][ T6727] tipc: Node number set to 3959118737
[  170.495587][ T8349] loop5: detected capacity change from 0 to 4096
[  170.644432][ T8363] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  170.865169][ T8369] loop1: detected capacity change from 0 to 512
[  170.937099][ T8369] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  170.963979][ T8369] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  170.980240][ T8369] System zones: 1-12
[  171.011630][ T8369] EXT4-fs error (device loop1): ext4_iget_extra_inode:4732: inode #15: comm syz.1.813: corrupted in-inode xattr: e_value size too large
[  171.033517][ T8369] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.813: couldn't read orphan inode 15 (err -117)
[  171.078920][ T8369] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.147521][   T27] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  171.239180][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.349376][   T27] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  171.374863][   T27] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  171.392622][   T27] usb 3-1: config 1 has no interface number 0
[  171.423895][   T27] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  171.465135][   T27] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  171.484669][   T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.506997][   T27] usb 3-1: Product: syz
[  171.511621][   T27] usb 3-1: Manufacturer: syz
[  171.516337][   T27] usb 3-1: SerialNumber: syz
[  171.535983][   T27] usb 3-1: selecting invalid altsetting 1
[  172.171049][   T27] cdc_ncm 3-1:1.1: SET_NTB_FORMAT failed
[  172.197640][   T27] usb 3-1: selecting invalid altsetting 1
[  172.234864][   T27] cdc_ncm 3-1:1.1: bind() failure
[  172.255676][ T8386] loop4: detected capacity change from 0 to 32768
[  172.268836][   T27] usb 3-1: USB disconnect, device number 10
[  172.338633][ T8386] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  172.588688][ T8386] XFS (loop4): Ending clean mount
[  172.648207][ T8386] XFS (loop4): Quotacheck needed: Please wait.
[  172.807220][ T8386] XFS (loop4): Quotacheck: Done.
[  172.985759][ T7030] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  173.737029][ T8476] loop2: detected capacity change from 0 to 4096
[  173.773362][ T8476] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  173.803878][ T8481] loop1: detected capacity change from 0 to 4096
[  173.967254][ T8476] ntfs3: loop2: ino=1e, "file1" ntfs_sync_inode failed, -22.
[  174.000614][ T8476] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  174.073894][ T8489] ntfs3: loop2: ino=1e, "file1" ntfs_sync_inode failed, -22.
[  174.097863][ T8492] process 'syz.5.850' launched '/dev/fd/3' with NULL argv: empty string added
[  174.281591][ T4977] ntfs3: loop2: ino=1e, ntfs3_write_inode failed, -22.
[  174.495457][ T8495] loop1: detected capacity change from 0 to 4096
[  174.555662][ T8495] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  175.187590][    T9] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  175.330447][ T8497] loop5: detected capacity change from 0 to 32768
[  175.388349][ T8501] loop2: detected capacity change from 0 to 32768
[  175.407597][    T9] usb 5-1: Using ep0 maxpacket: 32
[  175.417817][ T8497] (syz.5.852,8497,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  175.439100][    T9] usb 5-1: config 36 has an invalid interface number: 228 but max is 0
[  175.447741][    T9] usb 5-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  175.471772][ T8497] (syz.5.852,8497,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  175.499000][    T9] usb 5-1: config 36 has no interface number 0
[  175.514388][    T9] usb 5-1: config 36 interface 228 altsetting 68 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  175.528724][    T9] usb 5-1: config 36 interface 228 has no altsetting 0
[  175.541294][    T9] usb 5-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[  175.554493][    T9] usb 5-1: New USB device strings: Mfr=1, Product=25, SerialNumber=3
[  175.590674][ T8497] JBD2: Ignoring recovery information on journal
[  175.633811][    T9] usb 5-1: Product: syz
[  175.659994][ T8497] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  175.674293][    T9] usb 5-1: Manufacturer: syz
[  175.701821][    T9] usb 5-1: SerialNumber: syz
[  175.982543][ T7201] ocfs2: Unmounting device (7,5) on (node local)
[  176.102608][    T9] usb 5-1: USB disconnect, device number 4
[  176.154074][ T8151] udevd[8151]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:36.228/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  176.219728][   T28] audit: type=1326 audit(1770425438.844:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.327744][   T28] audit: type=1326 audit(1770425438.844:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.445282][   T28] audit: type=1326 audit(1770425438.844:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.510013][ T8548] loop5: detected capacity change from 0 to 1024
[  176.537496][   T28] audit: type=1326 audit(1770425438.844:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.603867][   T28] audit: type=1326 audit(1770425438.844:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.711581][   T28] audit: type=1326 audit(1770425438.844:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.827683][   T28] audit: type=1326 audit(1770425438.844:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.918161][   T28] audit: type=1326 audit(1770425438.844:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  176.972084][   T28] audit: type=1326 audit(1770425438.844:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  177.003318][   T28] audit: type=1326 audit(1770425438.844:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8538 comm="syz.1.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2ba99aeb9 code=0x7ffc0000
[  177.135687][ T8549] syz.1.862 (8549): drop_caches: 2
[  177.296454][ T8566] nbd: socks must be embedded in a SOCK_ITEM attr
[  177.405108][ T8567] loop5: detected capacity change from 0 to 4096
[  177.537092][ T8549] syz.1.862 (8549): drop_caches: 2
[  177.537819][ T8567] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512).
[  177.567716][ T6727] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  177.721517][ T8572] loop4: detected capacity change from 0 to 8192
[  177.767687][ T6727] usb 3-1: Using ep0 maxpacket: 16
[  177.784179][ T6727] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  177.848527][ T6727] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  177.871591][ T6727] usb 3-1: New USB device found, idVendor=0853, idProduct=0148, bcdDevice= 0.00
[  177.906740][ T6727] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.932058][ T6727] usb 3-1: config 0 descriptor??
[  178.404699][ T6727] topre 0003:0853:0148.000A: unknown main item tag 0x1
[  178.442190][ T6727] topre 0003:0853:0148.000A: item fetching failed at offset 8/164
[  178.473309][ T6727] topre: probe of 0003:0853:0148.000A failed with error -22
[  178.608128][ T5774] usb 3-1: USB disconnect, device number 11
[  178.628214][ T5766] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  178.769948][ T8607] loop4: detected capacity change from 0 to 512
[  178.811102][ T8611] loop1: detected capacity change from 0 to 16
[  178.847557][ T5766] usb 6-1: Using ep0 maxpacket: 32
[  178.853098][ T8611] erofs: (device loop1): mounted with root inode @ nid 36.
[  178.865270][ T5766] usb 6-1: config 36 has an invalid interface number: 228 but max is 0
[  178.869343][ T8607] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  178.886659][ T5766] usb 6-1: config 36 has an invalid descriptor of length 0, skipping remainder of the config
[  178.899639][ T5766] usb 6-1: config 36 has no interface number 0
[  178.905868][ T5766] usb 6-1: config 36 interface 228 altsetting 68 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  178.920867][ T5766] usb 6-1: config 36 interface 228 has no altsetting 0
[  178.922096][ T8611] erofs: (device loop1): z_erofs_readahead: readahead error at folio 2 @ nid 89
[  178.929240][ T8607] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.950868][ T5766] usb 6-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[  178.960816][ T5766] usb 6-1: New USB device strings: Mfr=1, Product=25, SerialNumber=3
[  178.977485][ T5766] usb 6-1: Product: syz
[  178.981861][ T5766] usb 6-1: Manufacturer: syz
[  178.986480][ T5766] usb 6-1: SerialNumber: syz
[  178.996530][ T8611] erofs: (device loop1): z_erofs_extent_lookback: bogus lookback distance 0 @ lcn 1 of nid 89
[  179.012311][ T8611] erofs: (device loop1): z_erofs_readahead: readahead error at folio 1 @ nid 89
[  179.033160][ T8611] erofs: (device loop1): z_erofs_readahead: readahead error at folio 0 @ nid 89
[  179.044851][ T8611] erofs: (device loop1): z_erofs_read_folio: read error -117 @ 0 of nid 89
[  179.114218][ T7030] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.331858][ T5766] usb 6-1: USB disconnect, device number 4
[  179.403033][ T5753] udevd[5753]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:36.228/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  179.617647][    T9] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  179.827525][    T9] usb 5-1: Using ep0 maxpacket: 16
[  179.839833][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.877558][    T9] usb 5-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00
[  179.897538][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.939701][    T9] usb 5-1: config 0 descriptor??
[  180.075192][ T8623] loop2: detected capacity change from 0 to 32768
[  180.081617][ T8646] netlink: 'syz.5.889': attribute type 2 has an invalid length.
[  180.081666][ T8646] netlink: 44 bytes leftover after parsing attributes in process `syz.5.889'.
[  180.241820][ T8623] JBD2: Ignoring recovery information on journal
[  180.371714][    T9] lenovo 0003:17EF:60A3.000B: hidraw0: USB HID v0.00 Device [HID 17ef:60a3] on usb-dummy_hcd.4-1/input0
[  180.395982][ T8623] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  180.574740][    T9] usb 5-1: USB disconnect, device number 5
[  180.662069][ T5764] ocfs2: Unmounting device (7,2) on (node local)
[  180.760914][ T8641] loop1: detected capacity change from 0 to 32768
[  180.870524][ T8662] IPVS: sync thread started: state = BACKUP, mcast_ifn = vxcan1, syncid = 3, id = 0
[  181.049650][ T8668] netlink: 4 bytes leftover after parsing attributes in process `syz.5.895'.
[  181.341944][ T8678] loop2: detected capacity change from 0 to 256
[  181.396132][ T8678] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  181.609310][ T8683] pim6reg: entered allmulticast mode
[  181.658105][ T8683] pim6reg: left allmulticast mode
[  181.959760][ T8690] loop4: detected capacity change from 0 to 8192
[  181.990231][ T8690] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  182.015284][ T8690] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[  182.035828][ T8690] REISERFS (device loop4): using ordered data mode
[  182.048965][ T8690] reiserfs: using flush barriers
[  182.067667][ T8690] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  182.134344][ T8690] REISERFS (device loop4): checking transaction log (loop4)
[  182.183949][ T8690] REISERFS (device loop4): Using r5 hash to sort names
[  182.211193][ T8690] REISERFS (device loop4): using 3.5.x disk format
[  182.238477][ T8690] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  182.478239][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  182.478265][   T28] audit: type=1326 audit(1770425445.114:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.549256][   T28] audit: type=1326 audit(1770425445.154:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.584759][   T28] audit: type=1326 audit(1770425445.154:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.620632][   T28] audit: type=1326 audit(1770425445.164:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.627680][ T8717] loop1: detected capacity change from 0 to 512
[  182.687582][   T28] audit: type=1326 audit(1770425445.164:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.771002][   T28] audit: type=1326 audit(1770425445.164:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.805847][ T8717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.819415][ T8717] ext4 filesystem being mounted at /264/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  182.844075][   T28] audit: type=1326 audit(1770425445.164:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.867839][   T28] audit: type=1326 audit(1770425445.164:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  182.890096][   T28] audit: type=1326 audit(1770425445.164:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8713 comm="syz.5.910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  183.065218][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.382692][ T8742] netlink: 12 bytes leftover after parsing attributes in process `syz.1.918'.
[  183.837188][ T8731] loop5: detected capacity change from 0 to 32768
[  183.857685][ T8726] comedi comedi0: reset error (fatal)
[  183.878976][ T8731] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.914 (8731)
[  183.922598][ T8731] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  183.936462][ T8731] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  183.982314][ T8731] BTRFS info (device loop5): force zlib compression, level 3
[  184.000438][ T8731] BTRFS info (device loop5): force clearing of disk cache
[  184.008929][ T8731] BTRFS info (device loop5): setting nodatasum
[  184.027792][ T8731] BTRFS info (device loop5): allowing degraded mounts
[  184.044347][ T8731] BTRFS info (device loop5): enabling disk space caching
[  184.071248][ T8731] BTRFS info (device loop5): disk space caching is enabled
[  184.244290][ T8731] BTRFS info (device loop5): auto enabling async discard
[  184.296793][ T8731] BTRFS info (device loop5): rebuilding free space tree
[  184.311243][ T8784] loop2: detected capacity change from 0 to 512
[  184.431422][ T8731] BTRFS info (device loop5): disabling free space tree
[  184.482130][ T8784] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.497274][ T8731] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  184.545109][ T8792] loop1: detected capacity change from 0 to 512
[  184.547596][ T8731] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  184.562047][ T8784] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  184.638163][ T8792] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  184.646456][ T8792] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  184.725843][ T8792] System zones: 0-1, 15-15, 18-18, 34-34
[  184.733270][ T8792] EXT4-fs (loop1): orphan cleanup on readonly fs
[  184.744815][ T8792] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[  184.778043][ T8792] EXT4-fs warning (device loop1): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  184.837553][ T8792] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  184.878656][ T8792] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.927: bg 0: block 40: padding at end of block bitmap is not set
[  184.892204][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.917589][ T8792] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  184.937796][ T8792] EXT4-fs (loop1): 1 truncate cleaned up
[  184.966324][ T8792] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  184.988539][ T8731] BTRFS info (device loop5): balance: start -s
[  185.068046][ T8792] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.927: bad symlink.
[  185.072750][ T8731] BTRFS info (device loop5): relocating block group 1048576 flags system
[  185.133936][ T8792] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.927: bad symlink.
[  185.303506][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.381772][ T8731] BTRFS info (device loop5): balance: ended with status: 0
[  185.563192][ T7201] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  185.596858][ T8816] loop2: detected capacity change from 0 to 256
[  186.124546][ T8800] loop4: detected capacity change from 0 to 40427
[  186.191096][ T8800] F2FS-fs (loop4): Found nat_bits in checkpoint
[  186.351098][ T8836] loop1: detected capacity change from 0 to 164
[  186.379512][ T8800] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  186.589543][ T7030] syz-executor: attempt to access beyond end of device
[  186.589543][ T7030] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  186.637561][ T7030] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  186.676241][ T8840] loop2: detected capacity change from 0 to 4096
[  186.780950][ T8845] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  187.247617][ T5774] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  187.459808][ T5774] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  187.471060][ T5774] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  187.481437][ T5774] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  187.491339][ T5774] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.517574][ T8848] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  187.545295][ T8842] loop5: detected capacity change from 0 to 40427
[  187.556310][ T5774] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[  187.583077][ T8842] F2FS-fs (loop5): Corrupted extension count (64 + 1 > 64)
[  187.609278][ T8842] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  187.682250][ T8842] F2FS-fs (loop5): Found nat_bits in checkpoint
[  187.899062][ T8842] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  187.916627][ T8842] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  188.247064][ T5774] usb 2-1: USB disconnect, device number 8
[  189.167577][ T8906] loop1: detected capacity change from 0 to 256
[  189.242950][ T8906] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  189.405343][ T8913] loop4: detected capacity change from 0 to 256
[  189.795786][ T8894] loop2: detected capacity change from 0 to 32768
[  189.838180][ T8894] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.962 (8894)
[  189.929509][ T8894] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  189.969342][ T8894] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  189.994595][ T8923] mkiss: ax0: crc mode is auto.
[  190.028719][ T8894] BTRFS info (device loop2): max_inline at 4096
[  190.056440][ T8894] BTRFS info (device loop2): using free space tree
[  190.187615][ T8894] BTRFS info (device loop2): enabling ssd optimizations
[  190.220012][ T8894] BTRFS info (device loop2): auto enabling async discard
[  190.335263][ T5764] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  190.388133][ T6727] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[  190.420979][ T8953] netlink: 'syz.5.978': attribute type 1 has an invalid length.
[  190.587070][ T6727] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  190.600567][ T6727] usb 2-1: config 0 has no interface number 0
[  190.617067][ T8862] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop2 scanned by udevd (8862)
[  190.617996][ T6727] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  190.708327][ T6727] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.768613][ T6727] usb 2-1: config 0 descriptor??
[  190.789899][ T6727] usb 2-1: selecting invalid altsetting 1
[  190.840978][ T8962] program syz.2.984 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  190.858709][ T6727] dvb_ttusb_budget: ttusb_init_controller: error
[  190.878057][ T6727] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  191.174237][ T6727] DVB: Unable to find symbol cx22700_attach()
[  191.316159][ T6727] DVB: Unable to find symbol tda10046_attach()
[  191.333612][ T8977] loop2: detected capacity change from 0 to 2048
[  191.346073][ T6727] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  191.387108][ T6727] usb 2-1: USB disconnect, device number 9
[  191.417644][ T5775] Bluetooth: hci3: command 0x0406 tx timeout
[  191.427912][ T8977] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  191.631821][ T8957] loop4: detected capacity change from 0 to 32768
[  191.703686][ T8957] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  191.797832][ T5766] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  191.889764][ T8957] XFS (loop4): Ending clean mount
[  192.005566][ T7030] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  192.027593][ T5766] usb 6-1: Using ep0 maxpacket: 16
[  192.052408][ T5766] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  192.071854][ T5766] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  192.100840][ T5766] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  192.121793][ T5766] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  192.152791][ T5766] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  192.228321][ T5766] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  192.238150][ T5766] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  192.277741][ T5766] usb 6-1: Manufacturer: syz
[  192.297863][ T5766] usb 6-1: config 0 descriptor??
[  192.637501][ T5766] rc_core: IR keymap rc-hauppauge not found
[  192.643462][ T5766] Registered IR keymap rc-empty
[  192.657013][ T9013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1000'.
[  192.678582][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  192.689996][ T9013] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1000'.
[  192.737715][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  192.779356][ T5766] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[  192.826315][ T5766] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input12
[  192.873934][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  192.925073][ T9021] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1012'.
[  192.955423][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  192.987885][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.041744][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.050232][ T9027] netlink: 'syz.2.1005': attribute type 1 has an invalid length.
[  193.078389][ T9027] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1005'.
[  193.113023][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.147866][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.208516][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.231376][ T9034] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1008'.
[  193.268060][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.320218][ T9035] loop4: detected capacity change from 0 to 4096
[  193.328912][ T9035] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  193.331072][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.387640][ T5766] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  193.429883][ T5766] mceusb 6-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  193.457645][ T5766] mceusb 6-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  193.501475][ T5766] usb 6-1: USB disconnect, device number 5
[  193.746323][ T9045] loop4: detected capacity change from 0 to 1024
[  193.916622][ T4354] hfsplus: b-tree write err: -5, ino 4
[  194.063007][ T9053] loop1: detected capacity change from 0 to 2048
[  194.081964][ T9053] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  194.111920][ T9053] UDF-fs: unknown compression code (0)
[  194.147990][ T5766] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  194.349431][ T5766] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  194.349466][ T5766] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.349503][ T5766] usb 3-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  194.349526][ T5766] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.351980][ T5766] usb 3-1: config 0 descriptor??
[  194.472465][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  194.472563][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  194.758650][ T6727] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  194.780732][ T5766] isku 0003:1E7D:319C.000C: item fetching failed at offset 5/7
[  194.781433][ T5766] isku 0003:1E7D:319C.000C: parse failed
[  194.781492][ T5766] isku: probe of 0003:1E7D:319C.000C failed with error -22
[  194.948168][ T6727] usb 2-1: config 1 interface 0 has no altsetting 0
[  194.976979][   T23] usb 3-1: USB disconnect, device number 12
[  194.991357][ T6727] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  195.016986][ T6727] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.034676][ T6727] usb 2-1: Product: syz
[  195.047497][ T6727] usb 2-1: Manufacturer: syz
[  195.055824][ T6727] usb 2-1: SerialNumber: syz
[  195.287740][ T5766] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  195.427657][ T5774] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  195.471744][ T5766] usb 6-1: too many endpoints for config 0 interface 0 altsetting 254: 253, using maximum allowed: 30
[  195.482892][ T5766] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.492969][ T5766] usb 6-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  195.506499][ T5766] usb 6-1: config 0 interface 0 has no altsetting 0
[  195.514179][ T5766] usb 6-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00
[  195.530603][ T5766] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.551063][ T5766] usb 6-1: config 0 descriptor??
[  195.621254][ T5774] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  195.633850][ T5774] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.643976][ T5774] usb 5-1: New USB device found, idVendor=5543, idProduct=0047, bcdDevice= 0.00
[  195.653185][ T5774] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.664128][ T5774] usb 5-1: config 0 descriptor??
[  195.755569][ T9086] loop2: detected capacity change from 0 to 512
[  195.764824][ T9086] EXT4-fs: Ignoring removed nobh option
[  195.805025][ T9086] EXT4-fs error (device loop2): ext4_orphan_get:1398: inode #15: comm syz.2.1034: iget: bad i_size value: 38620345925642
[  195.844641][ T9086] EXT4-fs error (device loop2): ext4_orphan_get:1403: comm syz.2.1034: couldn't read orphan inode 15 (err -117)
[  195.868751][ T9086] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.970591][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.016708][ T5766] hid-alps 0003:044E:120C.000D: hidraw0: USB HID v0.04 Device [HID 044e:120c] on usb-dummy_hcd.5-1/input0
[  196.194106][   T23] usb 6-1: USB disconnect, device number 6
[  196.292593][ T5774] usb 5-1: string descriptor 0 read error: -71
[  196.319057][ T5774] uclogic 0003:5543:0047.000E: failed retrieving string descriptor #200: -71
[  196.332053][ T5774] uclogic 0003:5543:0047.000E: failed retrieving pen parameters: -71
[  196.341879][ T5774] uclogic 0003:5543:0047.000E: failed probing pen v2 parameters: -71
[  196.355883][ T5774] uclogic 0003:5543:0047.000E: failed probing parameters: -71
[  196.364136][ T5774] uclogic: probe of 0003:5543:0047.000E failed with error -71
[  196.382584][ T5774] usb 5-1: USB disconnect, device number 6
[  196.595279][ T9094] loop2: detected capacity change from 0 to 32768
[  196.602933][ T9094] XFS: noikeep mount option is deprecated.
[  196.609795][ T9094] XFS: attr2 mount option is deprecated.
[  196.615575][ T9094] XFS: noikeep mount option is deprecated.
[  196.638947][ T9094] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  196.683918][ T9094] XFS (loop2): Ending clean mount
[  196.697343][ T9094] XFS (loop2): Quotacheck needed: Please wait.
[  196.802506][ T9094] XFS (loop2): Quotacheck: Done.
[  196.930410][ T5764] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  197.205777][ T9108] netlink: 'syz.4.1040': attribute type 2 has an invalid length.
[  197.600378][ T6727] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 10 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[  197.637844][ T6727] usb 2-1: USB disconnect, device number 10
[  197.689623][ T6727] usblp0: removed
[  197.707871][ T8862] udevd[8862]: setting mode of /dev/bus/usb/002/010 to 020664 failed: No such file or directory
[  197.747702][ T8862] udevd[8862]: setting owner of /dev/bus/usb/002/010 to uid=0, gid=7 failed: No such file or directory
[  197.796461][ T9104] loop5: detected capacity change from 0 to 40427
[  197.857504][ T9104] F2FS-fs (loop5): invalid crc value
[  197.884162][ T9104] F2FS-fs (loop5): Found nat_bits in checkpoint
[  198.084130][ T9104] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  198.208078][ T7201] syz-executor: attempt to access beyond end of device
[  198.208078][ T7201] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  198.243958][ T7201] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  198.486701][ T9138] loop1: detected capacity change from 0 to 512
[  198.532874][ T9138] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  198.575233][ T9138] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ce01c, mo2=0002]
[  198.615092][ T9138] System zones: 1-12
[  198.625571][ T9138] EXT4-fs (loop1): orphan cleanup on readonly fs
[  198.663975][ T9138] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1053: invalid indirect mapped block 12 (level 1)
[  198.719830][ T9131] loop4: detected capacity change from 0 to 32768
[  198.738726][ T9131] XFS: noikeep mount option is deprecated.
[  198.744588][ T9131] XFS: attr2 mount option is deprecated.
[  198.770654][ T9131] XFS: noikeep mount option is deprecated.
[  198.796160][ T9138] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1053: invalid indirect mapped block 2 (level 2)
[  198.834825][ T9138] EXT4-fs (loop1): 1 truncate cleaned up
[  198.840773][ T9131] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  198.859109][ T9138] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  198.890608][ T9130] loop2: detected capacity change from 0 to 32768
[  198.924259][ T9130] 
[  198.924259][ T9130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  198.924259][ T9130] 
[  198.986296][ T9131] XFS (loop4): Ending clean mount
[  199.006927][ T9130] 
[  199.006927][ T9130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.006927][ T9130] 
[  199.055309][ T9131] XFS (loop4): Quotacheck needed: Please wait.
[  199.090959][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  199.117825][ T9130] 
[  199.117825][ T9130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.117825][ T9130] 
[  199.161764][ T9130] 
[  199.161764][ T9130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.161764][ T9130] 
[  199.192634][ T9131] XFS (loop4): Quotacheck: Done.
[  199.236741][  T112] 
[  199.236741][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.236741][  T112] 
[  199.315384][ T9154] tipc: Enabled bearer <udp:syz0>, priority 10
[  199.324373][ T5764] 
[  199.324373][ T5764]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.324373][ T5764] 
[  199.363787][ T5764] 
[  199.363787][ T5764]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  199.363787][ T5764] 
[  199.486327][ T7030] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  199.563076][ T9158] loop1: detected capacity change from 0 to 256
[  199.614735][ T9158] exfat: Deprecated parameter 'namecase'
[  199.649354][ T9158] exfat: Deprecated parameter 'utf8'
[  199.799706][ T9158] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d)
[  200.147576][ T5766] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  200.244601][ T9172] sctp: [Deprecated]: syz.4.1062 (pid 9172) Use of int in max_burst socket option.
[  200.244601][ T9172] Use struct sctp_assoc_value instead
[  200.367539][ T5766] usb 6-1: Using ep0 maxpacket: 8
[  200.387302][ T5766] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 7
[  200.421671][ T5766] usb 6-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  200.436789][ T5766] usb 6-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  200.469269][ T9174] loop1: detected capacity change from 0 to 4096
[  200.469738][ T5766] usb 6-1: Product: syz
[  200.518035][ T5766] usb 6-1: Manufacturer: syz
[  200.538354][ T9179] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  200.545655][ T5766] usb 6-1: SerialNumber: syz
[  200.784897][ T5766] usb 6-1: Handspring Visor / Palm OS: port 0, is for Console use
[  200.810236][ T5766] usb 6-1: Handspring Visor / Palm OS: port 0, is for Generic use
[  200.848778][ T5766] usb 6-1: Handspring Visor / Palm OS: Number of ports: 2
[  200.876449][ T9187] loop2: detected capacity change from 0 to 8
[  201.017789][ T5766] usb 6-1: palm_os_3_probe - error -71 getting bytes available request
[  201.026165][ T5766] visor 6-1:1.0: Handspring Visor / Palm OS converter detected
[  201.061506][ T5766] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  201.083388][ T5766] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  201.129946][ T5766] usb 6-1: USB disconnect, device number 7
[  201.180143][ T5766] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  201.231689][ T5766] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  201.253766][ T9196] loop4: detected capacity change from 0 to 512
[  201.270143][ T5766] visor 6-1:1.0: device disconnected
[  201.294784][ T9196] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  201.398197][ T9202] sctp: [Deprecated]: syz.1.1076 (pid 9202) Use of int in max_burst socket option.
[  201.398197][ T9202] Use struct sctp_assoc_value instead
[  201.539636][   T23] usb 3-1: new full-speed USB device number 13 using dummy_hcd
[  201.772095][   T23] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  201.802102][ T9216] sp0: Synchronizing with TNC
[  201.810955][   T23] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  201.839631][   T23] usb 3-1: config 0 interface 0 has no altsetting 0
[  201.852249][   T23] usb 3-1: New USB device found, idVendor=06cb, idProduct=73f5, bcdDevice= 0.00
[  201.884936][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.906130][   T23] usb 3-1: config 0 descriptor??
[  201.922588][ T9200] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  202.055932][ T9225] sctp: [Deprecated]: syz.5.1087 (pid 9225) Use of int in max_burst socket option.
[  202.055932][ T9225] Use struct sctp_assoc_value instead
[  202.165952][ T9229] tipc: Started in network mode
[  202.172336][ T9229] tipc: Node identity e0000001, cluster identity 4711
[  202.185562][ T9229] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  202.417253][   T23] itetech 0003:06CB:73F5.000F: hidraw0: USB HID v0.02 Device [HID 06cb:73f5] on usb-dummy_hcd.2-1/input0
[  202.584767][   T23] usb 3-1: USB disconnect, device number 13
[  202.767181][ T9242] loop4: detected capacity change from 0 to 2048
[  202.840395][ T9242] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 129: 0x32 != 0x7d
[  202.857172][ T9242] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  202.885174][ T9244] loop5: detected capacity change from 0 to 1024
[  202.937639][ T9244] EXT4-fs: Ignoring removed nobh option
[  202.943323][ T9244] EXT4-fs: inline encryption not supported
[  203.017695][ T9244] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  203.095471][ T9244] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.317710][ T7201] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.424577][ T9253] loop4: detected capacity change from 0 to 2048
[  203.556595][ T9255] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  203.647508][   T28] audit: type=1800 audit(1770425466.284:56): pid=9253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1100" name="file2" dev="loop4" ino=16 res=0 errno=0
[  203.697736][ T9253] NILFS (loop4): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[  203.730781][ T9253] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=16)
[  203.779962][ T9253] Remounting filesystem read-only
[  203.882823][ T7030] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer
[  203.897617][ T7030] NILFS (loop4): discard dirty page: offset=0, ino=16
[  203.904426][ T7030] NILFS (loop4): discard dirty block: blocknr=23, size=1024
[  203.962585][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  203.976907][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  203.996120][ T9268] loop1: detected capacity change from 0 to 256
[  204.002545][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.018460][ T7030] NILFS (loop4): discard dirty page: offset=4096, ino=6
[  204.026547][ T7030] NILFS (loop4): discard dirty block: blocknr=39, size=1024
[  204.081131][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.095226][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.113423][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.154757][ T7030] NILFS (loop4): discard dirty page: offset=0, ino=5
[  204.158441][ T9268] FAT-fs (loop1): Directory bread(block 64) failed
[  204.173975][   T28] audit: type=1326 audit(1770425466.814:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.187494][ T9268] FAT-fs (loop1): Directory bread(block 65) failed
[  204.206627][ T7030] NILFS (loop4): discard dirty block: blocknr=41, size=1024
[  204.218321][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.229762][ T9268] FAT-fs (loop1): Directory bread(block 66) failed
[  204.232993][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.236295][ T9268] FAT-fs (loop1): Directory bread(block 67) failed
[  204.245244][   T28] audit: type=1326 audit(1770425466.814:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.283918][ T7030] NILFS (loop4): discard dirty block: blocknr=18446744073709551615, size=1024
[  204.296615][   T28] audit: type=1326 audit(1770425466.844:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.317629][ T9268] FAT-fs (loop1): Directory bread(block 68) failed
[  204.339717][ T9268] FAT-fs (loop1): Directory bread(block 69) failed
[  204.346403][ T9268] FAT-fs (loop1): Directory bread(block 70) failed
[  204.392909][   T28] audit: type=1326 audit(1770425466.844:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.422632][ T9268] FAT-fs (loop1): Directory bread(block 71) failed
[  204.445830][   T28] audit: type=1326 audit(1770425466.844:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.447980][ T9268] FAT-fs (loop1): Directory bread(block 72) failed
[  204.475964][   T28] audit: type=1326 audit(1770425466.844:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.503408][ T9268] FAT-fs (loop1): Directory bread(block 73) failed
[  204.525032][   T28] audit: type=1326 audit(1770425466.844:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9269 comm="syz.2.1108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7419aeb9 code=0x7ffc0000
[  204.866628][ T9267] loop5: detected capacity change from 0 to 32768
[  204.934233][ T9267] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  205.183654][ T9267] XFS (loop5): Ending clean mount
[  205.214099][ T9267] XFS (loop5): Quotacheck needed: Please wait.
[  205.313714][ T9267] XFS (loop5): Quotacheck: Done.
[  205.410261][ T7201] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  205.440958][ T9308] loop4: detected capacity change from 0 to 64
[  205.974254][ T9322] binder: 9321:9322 ioctl c0306201 200000000680 returned -14
[  206.468075][ T5771] Bluetooth: hci0: command tx timeout
[  206.496899][ T9319] loop5: detected capacity change from 0 to 32768
[  206.516602][ T9310] loop2: detected capacity change from 0 to 40427
[  206.534739][ T9319] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 9
[  206.545798][ T9310] F2FS-fs (loop2): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  206.566267][ T9310] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  206.593380][ T9310] F2FS-fs (loop2): invalid crc value
[  206.624255][ T9310] F2FS-fs (loop2): Found nat_bits in checkpoint
[  206.727171][ T9333] netlink: 'syz.1.1132': attribute type 1 has an invalid length.
[  206.776585][ T9310] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  206.798281][ T8862] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 9
[  206.812312][ T9310] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  207.012097][ T9327] f2fs_ckpt-7:2: attempt to access beyond end of device
[  207.012097][ T9327] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  207.038436][ T9324] loop4: detected capacity change from 0 to 40427
[  207.067538][ T9324] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[  207.076164][ T9324] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  207.084551][ T9327] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  207.207731][ T9324] F2FS-fs (loop4): Found nat_bits in checkpoint
[  207.412004][ T9324] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  207.428319][ T9324] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  207.657607][   T28] audit: type=1800 audit(1770425470.294:64): pid=9324 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1128" name="file1" dev="loop4" ino=10 res=0 errno=0
[  207.754566][ T7030] syz-executor: attempt to access beyond end of device
[  207.754566][ T7030] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  207.777626][ T7030] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  208.028790][ T9341] loop1: detected capacity change from 0 to 40427
[  208.083123][ T9341] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  208.131195][ T9341] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  208.157172][ T9341] F2FS-fs (loop1): invalid crc value
[  208.280338][ T9341] F2FS-fs (loop1): Found nat_bits in checkpoint
[  208.454831][ T9341] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  208.477585][ T9341] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  209.154862][ T9363] loop1: detected capacity change from 0 to 512
[  209.186524][ T9366] Bluetooth: MGMT ver 1.22
[  209.202976][ T9363] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  209.223783][ T9363] EXT4-fs (loop1): orphan cleanup on readonly fs
[  209.262555][ T9363] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 19 vs 41 free clusters
[  209.296082][ T9363] Quota error (device loop1): write_blk: dquota write failed
[  209.313100][ T9363] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  209.330162][ T9363] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.1140: Failed to acquire dquot type 0
[  209.381848][ T9363] EXT4-fs (loop1): 1 truncate cleaned up
[  209.401708][ T9363] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  209.559838][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.686988][ T9372] loop5: detected capacity change from 0 to 8192
[  209.735174][ T9359] loop4: detected capacity change from 0 to 32768
[  209.757939][ T9372] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  209.772240][ T9372] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal
[  209.783171][ T9372] REISERFS (device loop5): using ordered data mode
[  209.797536][ T9372] reiserfs: using flush barriers
[  209.804363][ T9372] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  209.848270][ T9372] REISERFS (device loop5): checking transaction log (loop5)
[  209.882627][ T9372] REISERFS (device loop5): Using rupasov hash to sort names
[  209.890199][ T9372] REISERFS (device loop5): using 3.5.x disk format
[  209.896949][ T9372] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  209.944071][ T9372] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  209.982567][ T9372] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  210.015783][ T9372] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  210.113295][ T9367] loop2: detected capacity change from 0 to 32768
[  210.224241][ T9367] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  210.633866][ T9367] XFS (loop2): Ending clean mount
[  210.660924][ T9367] XFS (loop2): Quotacheck needed: Please wait.
[  210.775432][ T9367] XFS (loop2): Quotacheck: Done.
[  211.035134][ T5764] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  211.260143][ T5771] Bluetooth: hci0: command tx timeout
[  211.458256][ T9407] loop5: detected capacity change from 0 to 32768
[  211.544953][ T9407] JBD2: Ignoring recovery information on journal
[  211.600928][ T9415] vcan0: MTU too low for tipc bearer
[  211.606299][ T9415] tipc: Enabling of bearer <eth:vcan0> rejected, failed to enable media
[  211.625565][ T9407] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  211.736542][ T9407] (syz.5.1158,9407,1):ocfs2_verify_group_and_input:422 ERROR: input chain exceeds the limit.
[  211.767042][ T9407] (syz.5.1158,9407,0):ocfs2_group_add:503 ERROR: status = -22
[  211.786999][ T9404] loop4: detected capacity change from 0 to 40427
[  211.850145][ T9404] F2FS-fs (loop4): build fault injection attr: rate: 0, type: 0x35f7
[  211.878224][ T9404] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x7ffff
[  211.901028][ T9404] F2FS-fs (loop4): Image doesn't support compression
[  211.950524][ T7201] ocfs2: Unmounting device (7,5) on (node local)
[  211.953824][ T9404] F2FS-fs (loop4): invalid crc value
[  211.994207][ T9404] F2FS-fs (loop4): Found nat_bits in checkpoint
[  212.217780][ T9404] F2FS-fs (loop4): Start checkpoint disabled!
[  212.275869][ T9404] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  212.602152][   T11] kworker/u4:0: attempt to access beyond end of device
[  212.602152][   T11] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  212.619876][ T9437] loop5: detected capacity change from 0 to 512
[  212.647552][   T11] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  212.657579][   T11] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  212.675633][ T9437] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #2: block 3: comm syz.5.1173: lblock 0 mapped to illegal pblock 3 (length 1)
[  212.759915][ T9437] EXT4-fs (loop5): Remounting filesystem read-only
[  212.766490][ T9437] EXT4-fs warning (device loop5): dx_probe:823: inode #2: lblock 0: comm syz.5.1173: error -117 reading directory block
[  212.827698][ T9437] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  212.837181][ T9437] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.008958][ T7201] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.102761][ T9435] loop1: detected capacity change from 0 to 32768
[  213.176823][ T9435] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  213.275697][ T9433] loop2: detected capacity change from 0 to 32768
[  213.396537][ T9433] ERROR: (device loop2): diWrite: ixpxd invalid
[  213.396537][ T9433] 
[  213.423287][ T9433] ERROR: (device loop2): remounting filesystem as read-only
[  213.430364][ T9435] XFS (loop1): Ending clean mount
[  213.444740][ T9433] ERROR: (device loop2): txCommit: 
[  213.444740][ T9433] 
[  213.458900][ T9435] XFS (loop1): Quotacheck needed: Please wait.
[  213.595344][ T9457] loop5: detected capacity change from 0 to 512
[  213.629930][ T9435] XFS (loop1): Quotacheck: Done.
[  213.677548][ T9457] EXT4-fs (loop5): Test dummy encryption mode enabled
[  213.711141][ T9457] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  213.740289][ T9457] EXT4-fs (loop5): Errors on filesystem, clearing orphan list.
[  213.808436][ T9457] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.907799][ T5763] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  214.019469][ T7201] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.080775][ T9455] loop4: detected capacity change from 0 to 32768
[  214.146466][ T9455] JBD2: Ignoring recovery information on journal
[  214.237066][ T9455] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  214.308248][ T9469] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1178'.
[  214.379337][ T9469] unsupported nlmsg_type 40
[  214.507878][ T9455] (syz.4.1175,9455,1):ocfs2_verify_group_and_input:422 ERROR: input chain exceeds the limit.
[  214.546505][ T9474] loop2: detected capacity change from 0 to 512
[  214.547609][ T9455] (syz.4.1175,9455,1):ocfs2_group_add:503 ERROR: status = -22
[  214.591202][ T9474] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  214.652945][ T9474] EXT4-fs (loop2): 1 truncate cleaned up
[  214.666670][ T9474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.740241][ T9482] loop5: detected capacity change from 0 to 512
[  214.754187][ T9474] EXT4-fs warning (device loop2): ext4_group_add:1742: No reserved GDT blocks, can't resize
[  214.778729][ T9482] FAT-fs (loop5): error, invalid FAT chain (i_pos 51, last_block 64)
[  214.795356][ T7030] ocfs2: Unmounting device (7,4) on (node local)
[  214.826009][ T5764] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.065508][ T9485] syz.2.1189 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  215.498745][ T9501] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1194'.
[  215.506249][   T28] audit: type=1326 audit(1770425478.144:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9502 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  215.561774][   T28] audit: type=1326 audit(1770425478.174:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9502 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  215.629077][   T28] audit: type=1326 audit(1770425478.174:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9502 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  215.670350][   T28] audit: type=1326 audit(1770425478.174:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9502 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3a6b9aeb9 code=0x7ffc0000
[  215.786607][ T9491] loop4: detected capacity change from 0 to 32768
[  215.839034][ T9491] ERROR: (device loop4): diWrite: ixpxd invalid
[  215.839034][ T9491] 
[  215.887898][ T9491] ERROR: (device loop4): remounting filesystem as read-only
[  215.895241][ T9491] ERROR: (device loop4): txCommit: 
[  215.895241][ T9491] 
[  216.116454][ T9519] loop2: detected capacity change from 0 to 256
[  216.163705][ T8151] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  216.537027][ T9522] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  216.571684][ T9522] ntfs3: loop5: Failed to load $Extend (-22).
[  216.585910][ T9522] ntfs3: loop5: Failed to initialize $Extend.
[  216.682959][ T9522] ntfs3: loop5: ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" attr_set_size
[  217.023437][ T5775] Bluetooth: hci2: command 0x0406 tx timeout
[  217.375794][ T9534] set_capacity_and_notify: 1 callbacks suppressed
[  217.375817][ T9534] loop4: detected capacity change from 0 to 32768
[  217.409025][ T9534] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9
[  217.446047][ T9555] loop2: detected capacity change from 0 to 16
[  217.469627][ T9555] erofs: (device loop2): mounted with root inode @ nid 36.
[  217.540054][ T9555] erofs: (device loop2): erofs_init_inode_xattrs: xattr_isize 12 of nid 46 is not supported yet
[  217.612469][ T8862] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9
[  218.021768][ T9553] loop1: detected capacity change from 0 to 40427
[  218.039520][ T9553] F2FS-fs (loop1): Small segment_count (9 < 1 * 24)
[  218.049320][ T9553] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  218.083529][ T9553] F2FS-fs (loop1): Found nat_bits in checkpoint
[  218.138544][ T9550] loop5: detected capacity change from 0 to 40427
[  218.166984][ T9550] F2FS-fs (loop5): build fault injection attr: rate: 14, type: 0x7ffff
[  218.180765][ T9550] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0xe4
[  218.192061][ T9550] F2FS-fs (loop5): invalid crc value
[  218.205002][ T9550] F2FS-fs (loop5): Found nat_bits in checkpoint
[  218.228508][ T9553] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  218.236344][ T9553] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  218.274773][ T9550] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x68b/0x9b0
[  218.307139][ T9550] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  218.332063][ T9550] F2FS-fs (loop5): inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x754/0x1c70
[  218.348906][ T9550] F2FS-fs (loop5): inject no more block in inc_valid_block_count of f2fs_reserve_new_blocks+0x127/0xb50
[  218.387904][ T5763] syz-executor: attempt to access beyond end of device
[  218.387904][ T5763] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  218.426651][ T5763] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  218.684158][ T9571] loop4: detected capacity change from 0 to 1024
[  218.906781][   T12] hfsplus: b-tree write err: -5, ino 4
[  219.795306][ T9598] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1239'.
[  220.326067][ T9603] loop1: detected capacity change from 0 to 16
[  220.343391][ T9603] erofs: (device loop1): mounted with root inode @ nid 36.
[  220.418983][ T9603] syz.1.1241: attempt to access beyond end of device
[  220.418983][ T9603] loop1: rw=524288, sector=48, nr_sectors = 976 limit=16
[  220.471316][ T9603] syz.1.1241: attempt to access beyond end of device
[  220.471316][ T9603] loop1: rw=524288, sector=0, nr_sectors = 1024 limit=16
[  220.500011][ T9603] syz.1.1241: attempt to access beyond end of device
[  220.500011][ T9603] loop1: rw=524288, sector=0, nr_sectors = 560 limit=16
[  220.906832][ T9625] program syz.5.1252 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  221.727190][ T9650] loop1: detected capacity change from 0 to 512
[  221.753099][ T9650] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  221.792263][ T9650] EXT4-fs (loop1): 1 truncate cleaned up
[  221.800757][ T9650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.884893][ T5763] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.941578][ T9658] loop2: detected capacity change from 0 to 64
[  222.016247][ T9658] hfs: keylen 56 too large
[  222.248774][ T9667] loop2: detected capacity change from 0 to 1024
[  222.649549][ T9677] loop1: detected capacity change from 0 to 164
[  222.657141][ T9660] loop5: detected capacity change from 0 to 32768
[  222.682121][ T9660] (syz.5.1268,9660,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  222.699703][ T9660] (syz.5.1268,9660,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  222.772725][ T9660] JBD2: Ignoring recovery information on journal
[  222.815707][ T9677] rock: directory entry would overflow storage
[  222.835603][ T9677] rock: sig=0x4d4e, size=5, remaining=4
[  222.841589][  T787] usb 3-1: new full-speed USB device number 14 using dummy_hcd
[  222.899583][ T9660] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  222.918816][ T9673] loop4: detected capacity change from 0 to 32768
[  222.966027][ T9660] (syz.5.1268,9660,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  222.981556][ T9673] JBD2: Ignoring recovery information on journal
[  223.009417][ T9673] jbd2_journal_bmap: journal block not found at offset 32 on loop4-75
[  223.030292][ T9673] JBD2: bad block at offset 32
[  223.050853][ T9673] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  223.081642][  T787] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  223.093800][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.143402][ T9673] (syz.4.1273,9673,0):ocfs2_get_block:148 get_block on system inode 0xffff8880500b6c38 (65)
[  223.154775][  T787] usb 3-1: config 0 descriptor??
[  223.170954][ T9673] OCFS2: ERROR (device loop4): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  223.185162][  T787] cp210x 3-1:0.0: cp210x converter detected
[  223.194606][ T9673] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  223.215091][ T9673] OCFS2: File system is now read-only.
[  223.221629][ T9673] (syz.4.1273,9673,1):ocfs2_find_leaf:1941 ERROR: status = -30
[  223.250232][ T9660] 
[  223.252603][ T9660] ======================================================
[  223.258875][ T9673] (syz.4.1273,9673,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  223.259608][ T9660] WARNING: possible circular locking dependency detected
[  223.259628][ T9660] syzkaller #0 Not tainted
[  223.279430][ T9660] ------------------------------------------------------
[  223.286437][ T9660] syz.5.1268/9660 is trying to acquire lock:
[  223.292419][ T9660] ffff8880501dce38 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_init_acl+0x30a/0x770
[  223.301745][ T9660] 
[  223.301745][ T9660] but task is already holding lock:
[  223.309104][ T9660] ffff888069fbd8e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3a8/0x6f0
[  223.319367][ T9660] 
[  223.319367][ T9660] which lock already depends on the new lock.
[  223.319367][ T9660] 
[  223.329758][ T9660] 
[  223.329758][ T9660] the existing dependency chain (in reverse order) is:
[  223.338758][ T9660] 
[  223.338758][ T9660] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  223.347262][ T9660]        down_read+0x46/0x2e0
[  223.351945][ T9660]        ocfs2_start_trans+0x3a8/0x6f0
[  223.357392][ T9660]        ocfs2_modify_bh+0xe4/0x4c0
[  223.362586][ T9660]        ocfs2_local_read_info+0x1445/0x1800
[  223.368560][ T9660]        dquot_load_quota_sb+0x757/0xb80
[  223.374194][ T9660]        dquot_load_quota_inode+0x2dc/0x5d0
[  223.380086][ T9660]        ocfs2_enable_quotas+0x1c9/0x490
[  223.385715][ T9660]        ocfs2_fill_super+0x417d/0x5010
[  223.391251][ T9660]        mount_bdev+0x221/0x2d0
[  223.396092][ T9660]        legacy_get_tree+0xea/0x180
[  223.401286][ T9660]        vfs_get_tree+0x8c/0x280
[  223.406213][ T9660]        do_new_mount+0x24b/0xa40
[  223.411227][ T9660]        __se_sys_mount+0x2e7/0x3d0
[  223.416414][ T9660]        do_syscall_64+0x55/0xa0
[  223.421346][ T9660]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.427749][ T9660] 
[  223.427749][ T9660] -> #2 (sb_internal#3){.+.+}-{0:0}:
[  223.435220][ T9660]        ocfs2_start_trans+0x2a9/0x6f0
[  223.440671][ T9660]        ocfs2_xattr_set+0xeb7/0x13e0
[  223.446034][ T9660]        ocfs2_set_acl+0x4e1/0x590
[  223.451139][ T9660]        ocfs2_iop_set_acl+0x1b2/0x2b0
[  223.456592][ T9660]        vfs_set_acl+0x803/0xa60
[  223.461526][ T9660]        do_set_acl+0xf5/0x180
[  223.466285][ T9660]        __se_sys_fsetxattr+0x4ad/0x510
[  223.471828][ T9660]        do_syscall_64+0x55/0xa0
[  223.476759][ T9660]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.483165][ T9660] 
[  223.483165][ T9660] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}:
[  223.493684][ T9660]        down_write+0x97/0x200
[  223.498455][ T9660]        ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  223.504873][ T9660]        ocfs2_reserve_new_metadata_blocks+0x416/0x9a0
[  223.511713][ T9660]        ocfs2_init_xattr_set_ctxt+0x30b/0x710
[  223.517858][ T9660]        ocfs2_xattr_set+0xc3f/0x13e0
[  223.523224][ T9660]        ocfs2_set_acl+0x4e1/0x590
[  223.528331][ T9660]        ocfs2_iop_set_acl+0x1b2/0x2b0
[  223.533791][ T9660]        vfs_set_acl+0x803/0xa60
[  223.538720][ T9660]        do_set_acl+0xf5/0x180
[  223.543564][ T9660]        __se_sys_fsetxattr+0x4ad/0x510
[  223.549100][ T9660]        do_syscall_64+0x55/0xa0
[  223.554030][ T9660]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.560433][ T9660] 
[  223.560433][ T9660] -> #0 (&oi->ip_xattr_sem){++++}-{3:3}:
[  223.568247][ T9660]        __lock_acquire+0x2df1/0x7d40
[  223.573616][ T9660]        lock_acquire+0x19e/0x420
[  223.578645][ T9660]        down_read+0x46/0x2e0
[  223.583323][ T9660]        ocfs2_init_acl+0x30a/0x770
[  223.588518][ T9660]        ocfs2_mknod+0x140f/0x2300
[  223.593704][ T9660]        ocfs2_create+0x196/0x430
[  223.598717][ T9660]        path_openat+0x12a0/0x3230
[  223.603821][ T9660]        do_filp_open+0x1f5/0x430
[  223.608831][ T9660]        do_sys_openat2+0x134/0x1d0
[  223.614028][ T9660]        __x64_sys_openat+0x139/0x160
[  223.619390][ T9660]        do_syscall_64+0x55/0xa0
[  223.624319][ T9660]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  223.630724][ T9660] 
[  223.630724][ T9660] other info that might help us debug this:
[  223.630724][ T9660] 
[  223.640954][ T9660] Chain exists of:
[  223.640954][ T9660]   &oi->ip_xattr_sem --> sb_internal#3 --> &journal->j_trans_barrier
[  223.640954][ T9660] 
[  223.655041][ T9660]  Possible unsafe locking scenario:
[  223.655041][ T9660] 
[  223.662482][ T9660]        CPU0                    CPU1
[  223.667832][ T9660]        ----                    ----
[  223.673183][ T9660]   rlock(&journal->j_trans_barrier);
[  223.678546][ T9660]                                lock(sb_internal#3);
[  223.685305][ T9660]                                lock(&journal->j_trans_barrier);
[  223.693101][ T9660]   rlock(&oi->ip_xattr_sem);
[  223.697769][ T9660] 
[  223.697769][ T9660]  *** DEADLOCK ***
[  223.697769][ T9660] 
[  223.705917][ T9660] 8 locks held by syz.5.1268/9660:
[  223.711024][ T9660]  #0: ffff888027e00418 (sb_writers#22){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  223.720266][ T9660]  #1: ffff8880501dd118 (&type->i_mutex_dir_key#27){+.+.}-{3:3}, at: path_openat+0x7dc/0x3230
[  223.730534][ T9660]  #2: ffff88805027ed98 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#5){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  223.744196][ T9660]  #3: ffff88805027df58 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#4){+.+.}-{3:3}, at: ocfs2_reserve_suballoc_bits+0x16e/0x44c0
[  223.757856][ T9660]  #4: ffff888050279818 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#8){+.+.}-{3:3}, at: ocfs2_reserve_local_alloc_bits+0x120/0x2600
[  223.771776][ T9660]  #5: ffff888027e00608 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_mknod+0xf1d/0x2300
[  223.781007][ T9660]  #6: ffff888069fbd8e8 (&journal->j_trans_barrier){.+.+}-{3:3}, at: ocfs2_start_trans+0x3a8/0x6f0
[  223.791707][ T9660]  #7: ffff888065b2e990 (jbd2_handle#2){++++}-{0:0}, at: start_this_handle+0x1f7a/0x21c0
[  223.802950][ T9660] 
[  223.802950][ T9660] stack backtrace:
[  223.809018][ T9660] CPU: 0 PID: 9660 Comm: syz.5.1268 Not tainted syzkaller #0
[  223.816386][ T9660] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  223.826465][ T9660] Call Trace:
[  223.829918][ T9660]  <TASK>
[  223.832843][ T9660]  dump_stack_lvl+0x18c/0x250
[  223.837526][ T9660]  ? load_image+0x400/0x400
[  223.842047][ T9660]  ? show_regs_print_info+0x20/0x20
[  223.847260][ T9660]  ? print_circular_bug+0x12b/0x1a0
[  223.852464][ T9660]  check_noncircular+0x2fc/0x400
[  223.857425][ T9660]  ? print_deadlock_bug+0x5d0/0x5d0
[  223.862636][ T9660]  ? _find_first_zero_bit+0xd3/0x100
[  223.867919][ T9660]  ? add_lock_to_list+0x191/0x280
[  223.872944][ T9660]  __lock_acquire+0x2df1/0x7d40
[  223.877818][ T9660]  ? verify_lock_unused+0x140/0x140
[  223.883011][ T9660]  ? __lock_acquire+0x7d40/0x7d40
[  223.888031][ T9660]  ? do_raw_spin_lock+0x11f/0x2c0
[  223.893063][ T9660]  lock_acquire+0x19e/0x420
[  223.897558][ T9660]  ? ocfs2_init_acl+0x30a/0x770
[  223.902408][ T9660]  ? __might_sleep+0xe0/0xe0
[  223.906989][ T9660]  ? read_lock_is_recursive+0x20/0x20
[  223.912349][ T9660]  ? trace_ocfs2_claim_new_inode_at_loc+0x1c0/0x1c0
[  223.918943][ T9660]  down_read+0x46/0x2e0
[  223.923098][ T9660]  ? ocfs2_init_acl+0x30a/0x770
[  223.927954][ T9660]  ocfs2_init_acl+0x30a/0x770
[  223.932626][ T9660]  ? ocfs2_mknod_locked+0x159/0x290
[  223.937814][ T9660]  ? ocfs2_acl_chmod+0x330/0x330
[  223.942748][ T9660]  ? dquot_alloc_inode+0x8ac/0xa40
[  223.947856][ T9660]  ? dquot_alloc_inode+0x15e/0xa40
[  223.952960][ T9660]  ? ocfs2_block_signals+0x9b/0xe0
[  223.958074][ T9660]  ? ocfs2_init_security_get+0x139/0x1a0
[  223.963701][ T9660]  ocfs2_mknod+0x140f/0x2300
[  223.968295][ T9660]  ? ocfs2_mkdir+0x430/0x430
[  223.972884][ T9660]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  223.978773][ T9660]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  223.984669][ T9660]  ? ocfs2_inode_unlock+0xa5/0x140
[  223.989773][ T9660]  ? __lock_acquire+0x7d40/0x7d40
[  223.994787][ T9660]  ? __rwlock_init+0x150/0x150
[  223.999546][ T9660]  ? do_raw_spin_unlock+0x121/0x230
[  224.004738][ T9660]  ? rcu_is_watching+0x15/0xb0
[  224.009502][ T9660]  ? ocfs2_lookup+0x494/0x950
[  224.014174][ T9660]  ocfs2_create+0x196/0x430
[  224.018669][ T9660]  ? ocfs2_update_inode_fsync_trans+0x240/0x240
[  224.024903][ T9660]  ? from_kgid+0x16d/0x690
[  224.029316][ T9660]  ? ocfs2_lookup+0x950/0x950
[  224.033980][ T9660]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  224.038913][ T9660]  ? inode_permission+0xf3/0x480
[  224.043847][ T9660]  ? bpf_lsm_inode_create+0x9/0x10
[  224.048949][ T9660]  ? security_inode_create+0xb7/0x100
[  224.054315][ T9660]  ? ocfs2_lookup+0x950/0x950
[  224.058987][ T9660]  path_openat+0x12a0/0x3230
[  224.063577][ T9660]  ? do_filp_open+0x430/0x430
[  224.068248][ T9660]  ? __virt_addr_valid+0x18c/0x540
[  224.073365][ T9660]  do_filp_open+0x1f5/0x430
[  224.077862][ T9660]  ? vfs_tmpfile+0x490/0x490
[  224.082454][ T9660]  ? _raw_spin_unlock+0x28/0x40
[  224.087293][ T9660]  ? alloc_fd+0x58f/0x630
[  224.091619][ T9660]  do_sys_openat2+0x134/0x1d0
[  224.096289][ T9660]  ? do_sys_open+0xe0/0xe0
[  224.100699][ T9660]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  224.106679][ T9660]  ? lock_chain_count+0x20/0x20
[  224.111522][ T9660]  __x64_sys_openat+0x139/0x160
[  224.116367][ T9660]  do_syscall_64+0x55/0xa0
[  224.120776][ T9660]  ? clear_bhb_loop+0x40/0x90
[  224.125442][ T9660]  ? clear_bhb_loop+0x40/0x90
[  224.130110][ T9660]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  224.135993][ T9660] RIP: 0033:0x7fe3a6b9aeb9
[  224.140414][ T9660] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  224.160014][ T9660] RSP: 002b:00007fe3a79a9028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  224.168416][ T9660] RAX: ffffffffffffffda RBX: 00007fe3a6e15fa0 RCX: 00007fe3a6b9aeb9
[  224.176378][ T9660] RDX: 00000000000026e1 RSI: 0000200000000180 RDI: ffffffffffffff9c
[  224.184444][ T9660] RBP: 00007fe3a6c08c1f R08: 0000000000000000 R09: 0000000000000000
[  224.192404][ T9660] R10: 00000000fffffffb R11: 0000000000000246 R12: 0000000000000000
[  224.200369][ T9660] R13: 00007fe3a6e16038 R14: 00007fe3a6e15fa0 R15: 00007ffd6a88c138
[  224.208337][ T9660]  </TASK>
[  224.235843][ T9673] (syz.4.1273,9673,0):ocfs2_get_clusters:624 ERROR: status = -30
[  224.244142][ T9673] (syz.4.1273,9673,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  224.252968][ T9673] (syz.4.1273,9673,0):ocfs2_get_block:160 ERROR: get_blocks() failed, inode: 0xffff8880500b6c38, block: 0
[  224.264726][ T9673] (syz.4.1273,9673,0):ocfs2_get_block:148 get_block on system inode 0xffff8880500b6c38 (65)
[  224.275128][ T9673] OCFS2: ERROR (device loop4): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  224.300608][ T9673] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  224.313777][ T9673] (syz.4.1273,9673,0):ocfs2_find_leaf:1941 ERROR: status = -30
[  224.326613][ T9673] (syz.4.1273,9673,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  224.343596][ T9673] (syz.4.1273,9673,0):ocfs2_get_clusters:624 ERROR: status = -30
[  224.352534][ T9673] (syz.4.1273,9673,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  224.362254][ T9673] (syz.4.1273,9673,0):ocfs2_get_block:160 ERROR: get_blocks() failed, inode: 0xffff8880500b6c38, block: 0
[  224.382724][ T7201] ocfs2: Unmounting device (7,5) on (node local)
[  224.408075][ T7030] ocfs2: Unmounting device (7,4) on (node local)
[  224.501787][  T787] usb 3-1: cp210x converter now attached to ttyUSB0
[  224.712628][  T787] usb 3-1: USB disconnect, device number 14
[  224.722082][  T787] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  224.732786][  T787] cp210x 3-1:0.0: device disconnected