last executing test programs:

3.363599366s ago: executing program 1 (id=7186):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x14, 0x14, 0x1, 0x0, 0x0, {0x2}}, 0x14}}, 0x0)

3.076268095s ago: executing program 1 (id=7190):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x2c}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2107, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

2.80499283s ago: executing program 1 (id=7197):
r0 = socket$kcm(0xa, 0x3, 0x87)
sendmsg$kcm(r0, &(0x7f0000000580)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x18000, @remote, 0x0, 0x1000}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000940)="9461", 0x2}, {&(0x7f00000002c0)="95efbcc7", 0x4}], 0x2}, 0x0)

2.572983448s ago: executing program 1 (id=7201):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.564594423s ago: executing program 5 (id=7202):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x6, &(0x7f0000000280)=@framed={{0x18, 0x3}, [@map_fd={0x18, 0x0, 0x1, 0x0, r0}, @alu={0x7, 0x0, 0xd, 0x3, 0x0, 0x0, 0x10}]}, &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)

2.296283079s ago: executing program 5 (id=7205):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000240)={'filter\x00', 0xb001, 0x4, 0x3a8, 0x0, 0x1d0, 0x0, 0x2c0, 0x2c0, 0x2c0, 0x7fffffe, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x2c0}}, {{@uncond, 0xc0, 0xe8, 0x0, {0x0, 0x1e03}}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x46e, 0xfffc}}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x3f8)

2.269758163s ago: executing program 1 (id=7206):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000019800)={0x3a, 'syz2', 0x3a, 'E', 0x3a, 0x1, 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xeahJ\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{\xc5\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xb5\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132\xf9\xbf7K\x8d\x16\xa6\xbf4\v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde\x13\xdf\xc6Z+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x89\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xd3W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\xf9\xa6\x96Ceu}\xf7\"\xbd&-~\xeahJ\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{\xc5\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xb5\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132\xf9\xbf7K\x8d\x16\xa6\xbf4\v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde\x13\xd7 \xdd\xf9<s\x8a\xee\x84\xa0\xe9tF\xdf\xc6Z+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x89\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xd3W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a', 0x3a, './file1'}, 0x244)

1.922540729s ago: executing program 4 (id=7211):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x149802, 0x0)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000000400)=""/221, 0xdd}], 0x1, 0x10000, 0x0, 0x49)

1.90871259s ago: executing program 1 (id=7212):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$eJzs212IXFcBB/BzJ6vZpMl2P9ImafoxSQQXLcumT9X6ENeqjabNh7bVVFlnN9vN6uzMujujBYPUIIiCoARBxQ+qQulLLYiBvtQiFPxAWoVSUbS+iBSq4INBG+jKzNybnXtntneyk7S0/f2gnb3n3nPumf3vPXfOPZNCrHZqYaW4sFIsVYrV2ftXbil+rlquL86FwqvktT4/vbkSOcn+tXPkfR/4yD23hPCHY1/70Orq6mpoGA5dHWj7+fy/T8+2vyYKmTqNdru31vLH+iMv/fwtr3REnhMhhB0d/WrYFEL42C9C2BxCGInLRuPXLSGEbSGEKITw6G/+9ePBfrrQ5uy9Lzx37MzhfWemHn/smQvzR9c9MArhu+XdN88vvrh/023Pv+MynR4AAF7RB48fufvo5IHwZBSGzg10fl7fGb8mn4/vfNun7np4YG3/Kr3Z9CqGCgAAABlr8//h6OUu63XJylqyJPjEAyfufipa229i+/p26K4jt79/8kC8/ht17L81Lvrnezc111Cz677Z9d+RTP3u679r53n4q8/+svLWjfc/6V9y3uEQFSZS24XCxEQIx6Za27uirYVydaX2zvur9crJjZ/3jSKdf3b1fm1Bv9f8RzPV89b/d3/i8z/bMtDPOxgL2b/axnax80+ZLtL5rz+W/+RLUU/5j2Xq5eV/x9Pbz/9qcz/vIHtGLkU6/9aFuK/9gGJrAGjk/82B/Px3ZNrPy//7U+cePbGB7/80xpnhqNHXwdQI8HJcvs5XmMhI598KIjV0xr/I9a7//2XyvybTfl7+d1b/8bu/9XH/X2/8H5/qp803j3T+rSCKqSPWrv+RQv71f22m/bz8f3vqz89+sq97dWf+jf6Pu//3JJ1/fCNOD57N32Sv4//OTPt5+e8au++hhQ30+8Nb4n4ORWGs7Vun5xq3sKG19ermlKaxe2kDJ3kTSOff+q2lLp2h1kvz+h/OH/93ZdrPy/+hPV9/z+m+vv/bffyfNP73JJ3/lmbZpeT/Uib/3Zn28/L/4em//+W+yzz+N7YPyr8n6fy3duxfe/5T6Gn+d12mft7zn32jTz3y1z7m/0n/kvMmz3+S5xDjUev5D92l879q3eN6vf/vydTLu/6/9Z/nn97fz/gfDXoC0Id0/ttahV0mgL3mf32m/bz8v3DPlz/+pw3M/5qf+AaT/Nvm/5tb5UeN/z1J57+9VZj6x1APNv/fvP9Hnbn/N5P/DZn28/K/cGhi4CuX+f7f6P94l0fZdErnP7TucY38f9/D/f/GTL28/L+496cv3tzX5/8QJs31Nyyd/9XrHte8/gfz878pUy8v/+9849dPPNhH/9/eR12y+bfu9anLKf5s3uv8v5hpPy//H42fP7v/Csz/bnX/70k6/9aq+aXkn53/7820n5f/9478YHngCjz/uUP+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzIavw6HqDCR2i4UJiZCGIu3d4Wt0Uzp5PRMuTr7mZUQdsTlxTAazZerM6Xy9EKlenJuulQuV2dDuCbevyMMRivlam16sbR07cW2tkSn5krLtZm5Ui2EsDMuvz5sT9qaWagtlpaaxyZ1ropKn61Xa6WJ+srccth9sXxbUj6/XK0vXXexrasL1eWlU6XK9MmF5XdPTk5Ohj0X+zwSzT1Qm6vUWr1t7W3USeoOR21vprn7hrbzfbpaX66Uys3yG9vqlKuzpXJbnZvazldbrldmS7W56XJ1Pjlfsa1u23tr7t4b7xsPI6n3l9TNOhi/3n7o+EePHz7Qsb8YpfOu1BfnJrd3/5sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4I3rydve9e0QwkBrqxBCOJj8EMX/pZy994Xnjp05vO/M1OOPPXNh/mi3YwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4PztwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYuZ+XKro4DsBnxve+FkgpbYRcBoaI6E7Cgn4RSeU1smWb1kGtEjIoCgwjWhYEQVC7qCBoFVT+BVELl62qTS1aGERQMTqTlzvCDS90zHkeGM4Mc++ZLwzcO3M+hwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB+nN2x2JW1l3ZtXtq6+0PozM/9H0IYTZb3P+/tCD0hhK9fZk6HVdpCT1P/bybnxstXTX7v7R9/eH00WXv9xXeL63aHJB1qON6ZpOnQ0Nr736juDD6bHkxCSGMXQhQLY0/O1EIIHbELIYqfH+cvZr/v/8UuhCj6P9ztyu5/LXYhRLF196e+Wv6MR/Wcr18YbPzvb/UI3sYjOuvQ25NX3qVuauW9zN//k3zzPlgNsyeOvH8euwiimZ2bOhq7BgAA4O861yL/D1uW9+9fTkJPdzn3/9aU//c29b96/r/i3vYbYzNthRDbSmOT2fHwvnb63PhODVy9/bpmvKeq5P/VJv+vNvl/tcn/q03+X23yfzKv5P+V9PjmnsUXsYsgGvk/AABUz6HjE1P14ZHs5X/Tj85yXt+Xt/U8T39wa3rgUcO4kfzw33b42MSBg8Mj+X0vDwiurP+QLp39ns/3aG4Lk03zLlqt/9D7dGH+Wmf5E/U/nL9R1Fdc1/oPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAvdueehkEwCsPod1sRtdGqaMLCT4IPNDAiACnMaEAHEwZgIAQUMJBzlnuTZ3kBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA5/tXeV18f2mM9Foj0lR22bV/jqfZz9y3w/I+e9y4FQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADZ24EAGAAAAQJi/dR7tBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4KkAAAD//8Oayzs=")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000240)=@loop={'/dev/loop', 0x0}, 0xee00, &(0x7f0000000f00)={0x7, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x200000000009, 0xbe6})

1.836166825s ago: executing program 5 (id=7213):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0xffffff5e}, 0x50)

1.600217568s ago: executing program 3 (id=7216):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r0, 0x802c550a, 0x0)

1.586830468s ago: executing program 5 (id=7217):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_MIDI_INFO(r0, 0xc074510c, &(0x7f00000001c0)={"52132d40e30fa5bc48908d6be946d994dcf2c61144ab9d2057b2a681fab7", 0x80000001})

1.568713713s ago: executing program 4 (id=7218):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@ipv4_newrule={0x24, 0x20, 0x301, 0x70bd27, 0x0, {0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, [@FRA_FLOW={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)

1.505782291s ago: executing program 2 (id=7219):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {0xffffffffffffffff, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x0, @empty}, @in={0x106, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}}}}, 0x118)

1.412230412s ago: executing program 0 (id=7220):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="04230d00c90001"], 0x10)

1.354942074s ago: executing program 3 (id=7221):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000009c0)={0xe0, 0x30, 0x107, 0x70bd2a, 0x25dfdbfd, {0x3, 0x7c}, [@nested={0xbd, 0x136, 0x0, 0x1, [@generic="f3a830d6f6018390d28caad5a500fa272eccfdbc07fda8af7bd71e3980223dcadceacc2e52a844eb1b016ae40b90581b9ac8464bd6fda6a8efdfc2a84afc89f2d341c421570a4be93a6ff598910b0fd30685db50aa62722032a0f9b5ad3f2d179d185db74c751256852903a9f5bd3bd9f702950830d363686525ae305850de3cf5709f65ea5a7397b8393455ccf08f8ebfff70ffe6ebce43c134bd768b255f635a55368922e9ce943288a2cbdd6e72344c0dc79b10d0bc1f1b"]}, @nested={0xc, 0x1}]}, 0xe0}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

1.247092234s ago: executing program 5 (id=7222):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x6004, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./bus\x00', 0x0, &(0x7f0000000180)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './file0'}}, {@bsdgroups}, {@debug}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$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")

1.220808313s ago: executing program 4 (id=7223):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001a008100feff7fff0000000002008000000200000028000005001f"], 0x24}}, 0x20008880)

1.217010958s ago: executing program 0 (id=7224):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="500000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="a5fda98800000000280012800a00010063616e"], 0x50}, 0x1, 0x0, 0x0, 0x24000011}, 0x4000008)

1.210589926s ago: executing program 2 (id=7225):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x80801)
ioctl$USBDEVFS_RELEASEINTERFACE(r0, 0x8004550f, 0xffffffffffffffff)

1.063595016s ago: executing program 3 (id=7226):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x10a7, 0x80)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05640, &(0x7f0000000340)={0x9, @pix_mp={0x7, 0x3781e4b9, 0x33565348, 0x5, 0x2, [{0x8, 0xc81}, {0xfffffff8, 0x5}, {0x1, 0x5}, {0x40, 0x7}, {0x0, 0xd}, {0xfffffffc, 0x4}, {0xdad1, 0x6}, {0x10, 0x7}], 0x2, 0x0, 0x2, 0x1, 0x2}})

963.612465ms ago: executing program 4 (id=7227):
r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x1, @pix={0x0, 0x0, 0x50424752, 0x0, 0x0, 0x0, 0x1, 0xfeedcafe, 0x3, 0x0, 0x0, 0x6}})

962.894586ms ago: executing program 2 (id=7228):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000048000000030a01020000000000000005010000000900030073797a320000000014000480080002400000000408000140000000000900010073797a300000000008000a400000000228000000060a010400000000000000000100000008000b40000000000900010073797a30"], 0xb8}}, 0x0)

893.988948ms ago: executing program 0 (id=7229):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x66)
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000005600)='./file0\x00', 0x1, &(0x7f0000000040)={[{@noautodefrag}, {@ssd}]}, 0x0, 0x559e, &(0x7f0000005680)="$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")

738.463138ms ago: executing program 2 (id=7230):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='auxv\x00')
preadv(r0, &(0x7f00000005c0)=[{&(0x7f0000000300)=""/110, 0x6e}, {0x0, 0x34}], 0x2, 0x0, 0x0)

707.907217ms ago: executing program 3 (id=7231):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x7, 0x0, 0x0)

671.952884ms ago: executing program 4 (id=7232):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000080)={0x5, 0x209, 0x81000, 0xe474}, 0x10)

637.2324ms ago: executing program 0 (id=7233):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/slabinfo\x00', 0x0, 0x0)
preadv(r0, &(0x7f00000015c0)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1, 0xf0, 0x67)

473.995467ms ago: executing program 5 (id=7234):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x801, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x42004}, [@IFLA_XDP={0x1c, 0x2b, 0x0, 0x1, [@IFLA_XDP_FLAGS={0x8, 0x3, 0x19}, @IFLA_XDP_FD={0x8}, @IFLA_XDP_EXPECTED_FD={0x8, 0x8, r0}]}, @IFLA_GROUP={0x8}]}, 0x44}}, 0x0)

454.152574ms ago: executing program 2 (id=7235):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x8, 0x0, 0x7)

404.570056ms ago: executing program 4 (id=7236):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=@newtaction={0x80, 0x1c, 0x1, 0x0, 0x1000, {0x0, 0x0, 0x1300}, [{0x6c, 0x1, [@m_tunnel_key={0x38, 0x17, 0x0, 0x0, {{0xf}, {0x4}, {0x6, 0x6, "1388"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_vlan={0x30, 0x16, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x6}}}}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40004}, 0x810)

369.827617ms ago: executing program 3 (id=7237):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xc, &(0x7f0000000080)=0x9, 0x4)

329.925207ms ago: executing program 0 (id=7238):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f000000a6c0)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x3, @mcast2, 0xe}, 0x1c, 0x0, 0x0, &(0x7f00000043c0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x7b}}, @dontfrag={{0x18, 0x29, 0x3e, 0x55}}], 0x30}}], 0x1, 0x4040040)

120.701951ms ago: executing program 2 (id=7239):
r0 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x10, &(0x7f0000000000)={[{@grpquota}]}, 0x0, 0x793, &(0x7f0000001700)="$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")
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000000c0)=0x80000001)

43.98259ms ago: executing program 3 (id=7240):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000001080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x2, 0x1, 0x0, {0xa, 0x4e22, 0x1000, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x7}}}, 0x32)

0s ago: executing program 0 (id=7241):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000040)=@multiplanar_fd={0x252, 0x2, 0x4, 0x4000, 0x77, {}, {0x4, 0x1, 0x8, 0x4, 0x4, 0x0, "154ef4d2"}, 0x2, 0x4, {0x0}, 0xb})

kernel console output (not intermixed with test programs):

ptor??
[  634.354939][   T24] radio-si470x 1-1:0.35: could not find interrupt in endpoint
[  634.390649][   T24] radio-si470x 1-1:0.35: probe with driver radio-si470x failed with error -5
[  634.531489][   T24] radio-raremono 1-1:0.35: this is not Thanko's Raremono.
[  634.539168][   T24] usbhid 1-1:0.35: couldn't find an input interrupt endpoint
[  634.638472][T19550] (unnamed net_device) (uninitialized): up delay (15) is not a multiple of miimon (100), value rounded to 0 ms
[  634.773220][   T24] usb 1-1: USB disconnect, device number 98
[  634.837052][T19550] bond2: entered promiscuous mode
[  634.946498][ T6210] usb 6-1: new high-speed USB device number 88 using dummy_hcd
[  635.109997][ T6210] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  635.150477][ T6210] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  635.195428][ T6210] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  635.213667][ T6210] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  635.214341][T19623] netlink: 'syz.2.5439': attribute type 4 has an invalid length.
[  635.232729][ T6210] usb 6-1: SerialNumber: syz
[  635.490000][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  635.497844][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  635.513353][ T6210] usb 6-1: 0:2 : does not exist
[  635.554494][ T6210] usb 6-1: USB disconnect, device number 88
[  635.665456][T19639] loop0: detected capacity change from 0 to 2048
[  635.699788][ T6176] udevd[6176]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  635.775391][T19639] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  636.189525][T19685] loop2: detected capacity change from 0 to 512
[  636.276498][T19685] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  636.299620][T19685] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[  636.315000][T19685] EXT4-fs (loop2): orphan cleanup on readonly fs
[  636.323004][T19689] libceph: resolve '.
[  636.323004][T19689] #)|.زf͹Ç�²a×ïÅ2sˆoÖw¿úÕ?£'Ê%Ð�KAq‰f»�CÖê¨Âz¿e­Sb3L)Hyúo¤¶ÿÿÿÿÿÿÿ÷ǤÜYšM�¤¨ìó¤h‡E$
[  636.323004][T19689] ' (ret=-3): failed
[  636.432490][T19685] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #13: comm syz.2.5452: iget: bad i_size value: 12154761577498
[  636.489806][T19685] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.5452: couldn't read orphan inode 13 (err -117)
[  636.545236][T19703] binder: 19702:19703 ioctl c018620b 0 returned -14
[  636.557832][T19685] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  636.621728][T19706] netlink: 'syz.5.5458': attribute type 1 has an invalid length.
[  636.685794][T19685] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.5452: dx entry: limit 65535 != root limit 120
[  636.753067][T19685] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.5452: Corrupt directory, running e2fsck is recommended
[  636.970669][ T6130] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.047984][T19726] xt_recent: Unsupported userspace flags (000000de)
[  637.132526][T19668] loop4: detected capacity change from 0 to 32768
[  637.226504][T19739] loop2: detected capacity change from 0 to 128
[  637.276162][T19739] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  637.424675][T19757] loop0: detected capacity change from 0 to 256
[  637.433056][T19739] ext4 filesystem being mounted at /865/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  637.517956][T19757] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  637.745259][ T6130] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  638.036619][    T9] usb 4-1: new high-speed USB device number 94 using dummy_hcd
[  638.180047][T19792] loop0: detected capacity change from 0 to 256
[  638.237725][    T9] usb 4-1: config 0 has an invalid interface number: 197 but max is 0
[  638.257796][T19792] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  638.271000][    T9] usb 4-1: config 0 has no interface number 0
[  638.277730][T19795] netlink: 45 bytes leftover after parsing attributes in process `syz.1.5481'.
[  638.292513][    T9] usb 4-1: config 0 interface 197 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 8
[  638.346293][    T9] usb 4-1: config 0 interface 197 altsetting 0 endpoint 0xC has invalid maxpacket 1023, setting to 64
[  638.399464][    T9] usb 4-1: config 0 interface 197 altsetting 0 bulk endpoint 0x87 has invalid maxpacket 1024
[  638.448270][    T9] usb 4-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=bb.42
[  638.468249][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.512827][    T9] usb 4-1: Product: syz
[  638.520011][    T9] usb 4-1: Manufacturer: syz
[  638.579530][    T9] usb 4-1: SerialNumber: syz
[  638.603626][    T9] usb 4-1: config 0 descriptor??
[  638.630903][T19768] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  638.640496][T19768] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  638.710810][T19824] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5489'.
[  638.910340][T19768] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  638.940615][T19768] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  638.954004][    T9] qmi_wwan 4-1:0.197: probe with driver qmi_wwan failed with error -22
[  639.235539][ T6210] usb 4-1: USB disconnect, device number 94
[  639.329821][T19859] loop1: detected capacity change from 0 to 16
[  639.364189][T19859] erofs (device loop1): mounted with root inode @ nid 36.
[  639.972720][T19901] loop0: detected capacity change from 0 to 128
[  640.024058][T19901] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  640.044787][T19908] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  640.131029][T19901] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  640.589815][T19921] loop3: detected capacity change from 0 to 4096
[  640.619963][T19921] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  640.636113][T19939] loop5: detected capacity change from 0 to 256
[  640.669889][T19939] exfat: Deprecated parameter 'namecase'
[  640.736259][T19939] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  641.141411][T19965] loop0: detected capacity change from 0 to 256
[  641.244051][T19965] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  641.972629][T20012] netlink: ct family unspecified
[  641.977652][T20012] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  642.112680][T20023] : entered promiscuous mode
[  642.514643][T20043] loop4: detected capacity change from 0 to 1024
[  642.597403][T20050] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5556'.
[  642.869399][ T1026] hfsplus: b-tree write err: -5, ino 4
[  643.091529][T20003] loop1: detected capacity change from 0 to 32768
[  643.214460][T20074] loop5: detected capacity change from 0 to 512
[  643.235201][T20003] ERROR: (device loop1): dbFindCtl: Corrupt dmapctl page
[  643.235201][T20003] 
[  643.282978][T20074] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  643.285649][T20003] ERROR: (device loop1): remounting filesystem as read-only
[  643.336435][T20074] ext4 filesystem being mounted at /921/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  643.413635][T20003] ialloc: diAlloc returned -5!
[  643.506907][T20084] netlink: 'syz.4.5564': attribute type 13 has an invalid length.
[  643.591717][T20074] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #15: comm syz.5.5562: corrupted xattr block 33: invalid ea_ino
[  643.651818][T20074] EXT4-fs (loop5): Remounting filesystem read-only
[  643.674488][T20074] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  643.875348][ T6136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  643.900300][   T12] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  643.941983][   T12] Quota error (device loop5): write_blk: dquota write failed
[  643.972303][   T12] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries
[  644.022347][   T12] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  644.077266][   T12] Quota error (device loop5): write_blk: dquota write failed
[  644.084711][   T12] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list
[  644.101451][T20097] xt_CT: You must specify a L4 protocol and not use inversions on it
[  644.143534][   T12] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started
[  644.177991][   T12] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  644.296399][T20055] loop3: detected capacity change from 0 to 40427
[  644.360802][T20055] F2FS-fs (loop3): build fault injection rate: 690
[  644.450286][T20055] F2FS-fs (loop3): invalid crc value
[  644.702630][T20125] loop5: detected capacity change from 0 to 164
[  644.769956][T20130] openvswitch: netlink: Unexpected mask (mask=1040, allowed=10048)
[  644.792377][T20125] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  644.868992][T20125] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  644.914007][T20055] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  645.053863][T20085] loop2: detected capacity change from 0 to 32768
[  645.231568][T20085] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  645.445501][T20168] 9pnet_fd: Insufficient options for proto=fd
[  645.498522][T20085] XFS (loop2): Ending clean mount
[  645.704807][ T6130] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  645.832640][T20185] loop1: detected capacity change from 0 to 64
[  646.071338][T20197] netlink: 'syz.5.5594': attribute type 1 has an invalid length.
[  646.421648][T20213] loop4: detected capacity change from 0 to 64
[  646.453402][T20215] loop2: detected capacity change from 0 to 736
[  646.544953][T20218] loop5: detected capacity change from 0 to 2048
[  646.657494][T20218] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=27485, location=27485
[  646.673341][T20215] rock: directory entry would overflow storage
[  646.695457][T20215] rock: sig=0x3b10, size=4, remaining=3
[  646.728545][T20218] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  647.187773][ T6210] usb 5-1: new high-speed USB device number 97 using dummy_hcd
[  647.346950][T20269] netlink: 'syz.0.5610': attribute type 6 has an invalid length.
[  647.383929][ T6210] usb 5-1: unable to get BOS descriptor or descriptor too short
[  647.399308][ T6210] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  647.422476][ T6210] usb 5-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  647.468048][ T6210] usb 5-1: config 1 interface 0 has no altsetting 0
[  647.474672][ T6210] usb 5-1: config 1 interface 0 has no altsetting 1
[  647.537383][ T6210] usb 5-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[  647.558042][ T6210] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  647.561285][    T9] usb 2-1: new high-speed USB device number 105 using dummy_hcd
[  647.579499][ T6210] usb 5-1: Product: syz
[  647.595188][ T6210] usb 5-1: Manufacturer: syz
[  647.625653][ T6210] usb 5-1: SerialNumber: syz
[  647.641936][T20283] netlink: 'syz.0.5614': attribute type 7 has an invalid length.
[  647.668392][T20283] netlink: 'syz.0.5614': attribute type 8 has an invalid length.
[  647.778448][    T9] usb 2-1: Using ep0 maxpacket: 8
[  647.810995][    T9] usb 2-1: config 0 has an invalid interface number: 150 but max is 0
[  647.838516][    T9] usb 2-1: config 0 has an invalid interface number: 112 but max is 0
[  647.877586][    T9] usb 2-1: config 0 has an invalid interface number: 3 but max is 0
[  647.895702][ T6210] smsusb:smsusb_probe: board id=8, interface number 0
[  647.897231][    T9] usb 2-1: config 0 has 3 interfaces, different from the descriptor's value: 1
[  647.902485][ T6210] usb 5-1: selecting invalid altsetting 0
[  647.902511][ T6210] smsusb:smsusb_probe: usb_set_interface failed, rc -22
[  647.902543][ T6210] smsusb 5-1:1.0: probe with driver smsusb failed with error -22
[  647.932383][    T9] usb 2-1: config 0 has no interface number 0
[  647.985595][    T9] usb 2-1: config 0 has no interface number 1
[  648.010793][    T9] usb 2-1: config 0 has no interface number 2
[  648.021332][    T9] usb 2-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  648.073416][ T6210] usb 5-1: USB disconnect, device number 97
[  648.094760][    T9] usb 2-1: too many endpoints for config 0 interface 112 altsetting 233: 104, using maximum allowed: 30
[  648.145224][    T9] usb 2-1: config 0 interface 112 altsetting 233 has 1 endpoint descriptor, different from the interface descriptor's value: 104
[  648.202432][    T9] usb 2-1: config 0 interface 150 has no altsetting 0
[  648.242383][    T9] usb 2-1: config 0 interface 112 has no altsetting 0
[  648.267985][    T9] usb 2-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[  648.310785][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  648.341210][    T9] usb 2-1: config 0 descriptor??
[  648.348394][T20323] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5626'.
[  648.812104][    T9] usb 2-1: string descriptor 0 read error: -71
[  648.876977][T20350] loop4: detected capacity change from 0 to 2048
[  648.889126][    T9] usb 2-1: USB disconnect, device number 105
[  648.929494][T20350] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  649.095200][T20385] netlink: 'syz.5.5638': attribute type 3 has an invalid length.
[  649.147737][T20385] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5638'.
[  649.539875][T20396] loop0: detected capacity change from 0 to 4096
[  649.648202][T20410] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  650.281267][T20360] loop3: detected capacity change from 0 to 32768
[  650.287401][   T43] usb 3-1: new high-speed USB device number 105 using dummy_hcd
[  650.317930][T20360] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.5635 (20360)
[  650.352718][T20449] netlink: 160 bytes leftover after parsing attributes in process `syz.0.5656'.
[  650.383843][T20449] netlink: 'syz.0.5656': attribute type 1 has an invalid length.
[  650.426426][T20449] netlink: 'syz.0.5656': attribute type 2 has an invalid length.
[  650.434213][T20449] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5656'.
[  650.501397][   T43] usb 3-1: Using ep0 maxpacket: 8
[  650.507908][T20360] BTRFS info (device loop3 state S): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  650.524825][   T43] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  650.554693][   T43] usb 3-1: config 179 has no interface number 0
[  650.572437][T20360] BTRFS info (device loop3 state S): using blake2b (blake2b-256-generic) checksum algorithm
[  650.594306][T20458] binfmt_misc: register: failed to install interpreter file ./file1
[  650.604036][   T43] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  650.636789][T20360] BTRFS info (device loop3 state S): using free-space-tree
[  650.647572][   T43] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  650.704465][   T43] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  650.736509][   T43] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  650.758946][   T43] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  650.849183][T20483] delete_channel: no stack
[  650.853790][   T43] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  650.874391][   T43] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  650.926142][T20429] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  651.114829][ T6129] BTRFS info (device loop3 state CS): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  651.196530][T20501] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5667'.
[  651.346303][T20429] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  651.352869][T20429] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  651.460792][T20429] vhci_hcd vhci_hcd.0: Device attached
[  651.532214][T20505] vhci_hcd: connection closed
[  651.544925][ T6234] usb 3-1: USB disconnect, device number 105
[  651.544936][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  651.544984][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  651.572390][    C1] vkms_vblank_simulate: vblank timer overrun
[  651.582865][ T1337] vhci_hcd: stop threads
[  651.587136][ T1337] vhci_hcd: release socket
[  651.650123][ T1337] vhci_hcd: disconnect device
[  652.310717][T20555] netlink: 'syz.3.5680': attribute type 1 has an invalid length.
[  652.345213][T20555] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5680'.
[  652.742801][T20584] loop4: detected capacity change from 0 to 64
[  652.842938][T20584] Bad inode number on dev loop4: 6 is out of range
[  652.896508][ T6234] usb 1-1: new high-speed USB device number 99 using dummy_hcd
[  653.099230][ T6234] usb 1-1: Using ep0 maxpacket: 8
[  653.125337][ T6234] usb 1-1: config 0 has an invalid interface number: 58 but max is 0
[  653.163104][ T6234] usb 1-1: config 0 has no interface number 0
[  653.169235][ T6234] usb 1-1: config 0 interface 58 altsetting 0 endpoint 0x6 has invalid maxpacket 56166, setting to 64
[  653.241839][ T6234] usb 1-1: config 0 interface 58 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  653.245771][T20606] program syz.5.5696 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  653.300389][ T6234] usb 1-1: config 0 interface 58 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0
[  653.354787][ T6234] usb 1-1: config 0 interface 58 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  653.437182][ T6234] usb 1-1: New USB device found, idVendor=05ac, idProduct=021c, bcdDevice=5c.24
[  653.473129][ T6234] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  653.481162][ T6234] usb 1-1: Product: syz
[  653.508084][ T6234] usb 1-1: Manufacturer: syz
[  653.512705][ T6234] usb 1-1: SerialNumber: syz
[  653.537315][ T6210] usb 3-1: new high-speed USB device number 106 using dummy_hcd
[  653.562540][ T6234] usb 1-1: config 0 descriptor??
[  653.745567][ T6210] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  653.769397][ T6210] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  653.798992][ T6234] appletouch 1-1:0.58: Could not find int-in endpoint
[  653.808660][ T6210] usb 3-1: Product: syz
[  653.815377][ T6210] usb 3-1: SerialNumber: syz
[  653.833253][ T6234] appletouch 1-1:0.58: probe with driver appletouch failed with error -5
[  653.843251][ T6210] usb 3-1: config 0 descriptor??
[  653.897015][ T6234] usbhid 1-1:0.58: couldn't find an input interrupt endpoint
[  653.955183][ T6234] usb 1-1: USB disconnect, device number 99
[  654.114276][ T6210] hso 3-1:0.0: Failed to find BULK IN ep
[  654.360778][ T6210] usb 3-1: USB disconnect, device number 106
[  654.467518][   T43] usb 6-1: new high-speed USB device number 89 using dummy_hcd
[  654.635385][T20684] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5712'.
[  654.648044][T20684] tc_dump_action: action bad kind
[  654.655592][   T43] usb 6-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  654.683035][   T43] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.743236][   T43] usb 6-1: config 0 descriptor??
[  654.821166][T20694] netlink: 'syz.0.5715': attribute type 1 has an invalid length.
[  654.862254][T20694] netlink: 224 bytes leftover after parsing attributes in process `syz.0.5715'.
[  654.989193][   T43] usb 6-1: Cannot read MAC address
[  655.008298][   T43] MOSCHIP usb-ethernet driver 6-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  655.092572][   T43] usb 6-1: USB disconnect, device number 89
[  655.175394][T20719] netlink: 'syz.4.5721': attribute type 5 has an invalid length.
[  655.183872][T20715] loop2: detected capacity change from 0 to 16
[  655.277714][T20715] erofs (device loop2): mounted with root inode @ nid 36.
[  655.386049][    C1] sd 0:0:1:0: [sda] tag#6730 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[  655.396559][    C1] sd 0:0:1:0: [sda] tag#6730 CDB: Read(6) 08 00 9f d1 fe de
[  655.635360][T20738] xt_TPROXY: Can be used only with -p tcp or -p udp
[  655.980833][T20693] loop1: detected capacity change from 0 to 32768
[  656.034916][T20693] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5714 (20693)
[  656.062832][T20693] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  656.089744][T20693] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  656.154602][T20693] BTRFS info (device loop1): using free-space-tree
[  656.443411][T20776] loop2: detected capacity change from 0 to 2048
[  656.634749][T20802] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  656.746851][T20776] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #12: rec_len is smaller than minimal - offset=1024, inode=0, rec_len=0, name_len=0
[  656.825394][ T6125] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  656.865372][T20776] Remounting filesystem read-only
[  656.965434][T20812] loop0: detected capacity change from 0 to 1024
[  657.108958][T20812] hfsplus: xattr searching failed
[  657.960948][T20865] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5760'.
[  658.311782][T20880] program syz.1.5765 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  658.360552][T20880] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  658.731073][T20902] loop1: detected capacity change from 0 to 4096
[  659.538150][T20939] loop5: detected capacity change from 0 to 128
[  659.592775][T20939] EXT4-fs: Ignoring removed bh option
[  659.613822][T20881] loop3: detected capacity change from 0 to 32768
[  659.617627][T20945] SET target dimension over the limit!
[  659.660752][T20939] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  659.680514][T20881] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.5764 (20881)
[  659.803224][T20939] ext4 filesystem being mounted at /962/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  659.880814][T20881] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  659.913239][T20881] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  659.986778][T20881] BTRFS info (device loop3): using free-space-tree
[  660.000015][T20966] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5791'.
[  660.043301][T20970] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5792'.
[  660.101711][T20966] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5791'.
[  660.157361][ T6136] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  660.359320][T20999] loop1: detected capacity change from 0 to 16
[  660.384313][T20999] erofs (device loop1): mounted with root inode @ nid 36.
[  660.667206][ T6129] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  661.173038][T21041] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5803'.
[  661.861146][T21074] loop1: detected capacity change from 0 to 256
[  661.954152][T21074] FAT-fs (loop1): Directory bread(block 64) failed
[  661.971777][T21074] FAT-fs (loop1): Directory bread(block 65) failed
[  662.009292][T21074] FAT-fs (loop1): Directory bread(block 66) failed
[  662.063707][T21074] FAT-fs (loop1): Directory bread(block 67) failed
[  662.090060][T21074] FAT-fs (loop1): Directory bread(block 68) failed
[  662.096599][T21074] FAT-fs (loop1): Directory bread(block 69) failed
[  662.129582][T21074] FAT-fs (loop1): Directory bread(block 70) failed
[  662.138606][T21074] FAT-fs (loop1): Directory bread(block 71) failed
[  662.150168][T21074] FAT-fs (loop1): Directory bread(block 72) failed
[  662.165876][   T43] usb 6-1: new high-speed USB device number 90 using dummy_hcd
[  662.200186][T21074] FAT-fs (loop1): Directory bread(block 73) failed
[  662.240736][T21099] netlink: 260 bytes leftover after parsing attributes in process `syz.3.5825'.
[  662.379098][   T43] usb 6-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[  662.441983][   T43] usb 6-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[  662.494047][   T43] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  662.537917][   T43] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 4
[  662.571686][T21114] netlink: 'syz.0.5830': attribute type 15 has an invalid length.
[  662.603594][   T43] usb 6-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  662.630902][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  662.644888][   T43] usb 6-1: Product: syz
[  662.649357][   T43] usb 6-1: Manufacturer: syz
[  662.654153][   T43] usb 6-1: SerialNumber: syz
[  662.713294][   T43] usb 6-1: config 0 descriptor??
[  662.760755][   T43] usb-storage 6-1:0.0: USB Mass Storage device detected
[  662.828415][   T43] usb-storage 6-1:0.0: Quirks match for vid 1908 pid 1315: 20000
[  662.982066][   T43] usb 6-1: USB disconnect, device number 90
[  663.178018][T21151] netlink: 248 bytes leftover after parsing attributes in process `syz.0.5838'.
[  664.111218][T21198] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5849'.
[  664.519302][T21217] loop4: detected capacity change from 0 to 512
[  664.547107][T21217] EXT4-fs: Ignoring removed nomblk_io_submit option
[  664.646570][T21217] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.4.5854: corrupted xattr block 95: invalid header
[  664.697887][T21217] EXT4-fs (loop4): Remounting filesystem read-only
[  664.704899][T21217] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  664.715555][T21217] EXT4-fs (loop4): 1 orphan inode deleted
[  664.721572][   T43] usb 1-1: new high-speed USB device number 100 using dummy_hcd
[  664.739724][T21217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  664.929099][   T43] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  664.961416][   T43] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.023158][ T6127] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.056181][   T43] usb 1-1: config 0 descriptor??
[  665.098767][T21175] loop2: detected capacity change from 0 to 32768
[  665.154795][T21175] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.5843 (21175)
[  665.267758][T21175] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  665.307804][   T43] udl 1-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  665.341565][T21175] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  665.439055][T21175] BTRFS info (device loop2): using free-space-tree
[  665.526256][   T43] [drm:udl_init] *ERROR* Selecting channel failed
[  665.627933][   T43] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2
[  665.659732][   T43] [drm] Initialized udl on minor 2
[  665.673521][   T43] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  665.719781][   T43] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  665.791290][ T6082] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  665.845101][   T43] usb 1-1: USB disconnect, device number 100
[  665.878774][ T6082] udl 1-1:0.0: [drm] Cannot find any crtc or sizes
[  666.104965][ T6130] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  666.566012][T21343] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5878'.
[  666.826478][T21359] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5881'.
[  666.835479][T21359] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  667.513362][T21397] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5893'.
[  668.373131][T21447] loop0: detected capacity change from 0 to 256
[  668.478681][T21447] FAT-fs (loop0): Directory bread(block 64) failed
[  668.516123][T21447] FAT-fs (loop0): Directory bread(block 65) failed
[  668.548381][T21447] FAT-fs (loop0): Directory bread(block 66) failed
[  668.604750][T21447] FAT-fs (loop0): Directory bread(block 67) failed
[  668.639165][T21447] FAT-fs (loop0): Directory bread(block 68) failed
[  668.670633][T21447] FAT-fs (loop0): Directory bread(block 69) failed
[  668.728910][T21447] FAT-fs (loop0): Directory bread(block 70) failed
[  668.757274][T21447] FAT-fs (loop0): Directory bread(block 71) failed
[  668.803824][T21447] FAT-fs (loop0): Directory bread(block 72) failed
[  668.810437][T21447] FAT-fs (loop0): Directory bread(block 73) failed
[  669.012187][T21480] loop2: detected capacity change from 0 to 1024
[  669.205087][T21480] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  669.514404][ T6130] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  669.577830][T21514] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5927'.
[  669.720281][   T30] audit: type=1326 audit(1751616689.614:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21521 comm="syz.0.5930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f893af8e929 code=0x7ffc0000
[  669.742567][    C0] vkms_vblank_simulate: vblank timer overrun
[  669.837080][   T30] audit: type=1326 audit(1751616689.614:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21521 comm="syz.0.5930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f893af8e929 code=0x7ffc0000
[  669.917576][   T30] audit: type=1326 audit(1751616689.652:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21521 comm="syz.0.5930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f893af8e929 code=0x7ffc0000
[  669.939764][    C0] vkms_vblank_simulate: vblank timer overrun
[  669.970055][ T6291] usb 2-1: new high-speed USB device number 106 using dummy_hcd
[  670.041901][   T30] audit: type=1326 audit(1751616689.652:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21521 comm="syz.0.5930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f893af8e929 code=0x7ffc0000
[  670.048497][T21535] loop2: detected capacity change from 0 to 256
[  670.064203][    C0] vkms_vblank_simulate: vblank timer overrun
[  670.137828][   T30] audit: type=1326 audit(1751616689.652:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21521 comm="syz.0.5930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f893af8e929 code=0x7ffc0000
[  670.160436][ T6291] usb 2-1: Using ep0 maxpacket: 16
[  670.220731][ T6291] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  670.247499][ T6291] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  670.255524][ T6291] usb 2-1: Product: syz
[  670.311377][ T6291] usb 2-1: Manufacturer: syz
[  670.322143][ T6291] usb 2-1: SerialNumber: syz
[  670.366721][ T6291] r8152-cfgselector 2-1: Unknown version 0x0000
[  670.385088][ T6291] r8152-cfgselector 2-1: config 0 descriptor??
[  670.730349][T21574] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5944'.
[  670.875147][ T6291] r8152-cfgselector 2-1: USB disconnect, device number 106
[  671.498600][T21623] loop3: detected capacity change from 0 to 1024
[  671.934666][T21649] binder: 21648:21649 ioctl 400c620e 0 returned -14
[  672.029735][T21652] loop1: detected capacity change from 0 to 2048
[  672.102923][T21652] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  672.626201][T21691] netlink: 'syz.0.5979': attribute type 32 has an invalid length.
[  672.634453][T21688] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5978'.
[  672.651784][T21693] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5981'.
[  672.705815][T21693] netlink: 208 bytes leftover after parsing attributes in process `syz.2.5981'.
[  672.984721][T21713] loop0: detected capacity change from 0 to 1024
[  673.112322][ T6291] usb 5-1: new high-speed USB device number 98 using dummy_hcd
[  673.184532][   T61] hfsplus: b-tree write err: -5, ino 4
[  673.294408][ T6291] usb 5-1: Using ep0 maxpacket: 32
[  673.326451][ T6291] usb 5-1: config 8 has an invalid interface number: 203 but max is 0
[  673.334650][ T6291] usb 5-1: config 8 has no interface number 0
[  673.355195][T21733] loop1: detected capacity change from 0 to 1024
[  673.393033][ T6291] usb 5-1: config 8 interface 203 has no altsetting 0
[  673.455184][ T6291] usb 5-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a
[  673.464275][ T6291] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  673.518024][ T6291] usb 5-1: Product: syz
[  673.522227][ T6291] usb 5-1: Manufacturer: syz
[  673.563635][ T6291] usb 5-1: SerialNumber: syz
[  673.878323][ T6291] port100 5-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint
[  673.940640][ T6291] usb 5-1: USB disconnect, device number 98
[  674.143259][T21781] netlink: 'syz.2.6001': attribute type 10 has an invalid length.
[  674.207403][T21781] team0: Cannot enslave team device to itself
[  674.269805][T21716] loop5: detected capacity change from 0 to 32768
[  674.362367][T21716] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  674.441227][T21716] (syz.5.5987,21716,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=0, inode=65, rec_len=16, name_len=8
[  674.459219][T21716] (syz.5.5987,21716,0):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -2
[  674.468318][T21716] (syz.5.5987,21716,0):ocfs2_mknod:298 ERROR: status = -2
[  674.477191][T21716] (syz.5.5987,21716,0):ocfs2_mknod:502 ERROR: status = -2
[  674.484815][T21716] (syz.5.5987,21716,0):ocfs2_mkdir:658 ERROR: status = -2
[  674.658107][ T6136] ocfs2: Unmounting device (7,5) on (node local)
[  674.668245][T21804] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6008'.
[  674.742794][T21807] netlink: 'syz.3.6009': attribute type 1 has an invalid length.
[  674.759943][T21811] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6013'.
[  674.822476][T21811] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6013'.
[  674.862234][T21811] netlink: 332 bytes leftover after parsing attributes in process `syz.2.6013'.
[  675.493370][T21854] loop2: detected capacity change from 0 to 16
[  675.548607][T21854] erofs (device loop2): mounted with root inode @ nid 36.
[  675.736864][T21870] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6027'.
[  676.306199][T21899] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6042'.
[  676.341023][T21899] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6042'.
[  676.539460][T21915] netlink: 'syz.3.6044': attribute type 1 has an invalid length.
[  676.890204][T21930] loop2: detected capacity change from 0 to 1024
[  677.018281][T21930] hfsplus: request for non-existent node 128 in B*Tree
[  677.106063][T21930] hfsplus: request for non-existent node 128 in B*Tree
[  677.557859][T21975] sock: sock_timestamping_bind_phc: sock not bind to device
[  677.594321][T21963] loop5: detected capacity change from 0 to 4096
[  677.635476][T21963] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  677.702495][T21963] ntfs3(loop5): ino=19, mi_enum_attr
[  677.738019][T21963] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  677.796743][T21963] ntfs3(loop5): failed to convert "c46c" to cp932
[  677.832509][T21963] ntfs3(loop5): ino=20, mi_enum_attr
[  678.096704][T22005] __nla_validate_parse: 2 callbacks suppressed
[  678.096725][T22005] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6074'.
[  678.179206][T22005] netlink: 60 bytes leftover after parsing attributes in process `syz.4.6074'.
[  678.455513][T22027] netlink: 456 bytes leftover after parsing attributes in process `syz.0.6079'.
[  678.611642][T22034] loop4: detected capacity change from 0 to 64
[  678.717717][T22038] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6084'.
[  679.149121][T22061] loop1: detected capacity change from 0 to 1024
[  679.529053][T22088] erofs (device nullb0): cannot find valid erofs superblock
[  680.570060][T22144] loop2: detected capacity change from 0 to 4096
[  680.595560][T22144] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  680.700461][T22166] netlink: 'syz.1.6125': attribute type 1 has an invalid length.
[  680.896896][T22174] loop0: detected capacity change from 0 to 512
[  680.925442][T22174] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'
[  680.954134][   T30] audit: type=1326 audit(1751616700.109:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22176 comm="syz.3.6129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  680.954300][T22144] ntfs3(loop2): ino=3, ntfs_set_state failed, -22.
[  681.037606][T22174] EXT4-fs: error: could not find journal device path
[  681.055724][   T30] audit: type=1326 audit(1751616700.128:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22176 comm="syz.3.6129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  681.153842][T22187] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6130'.
[  681.183545][   T30] audit: type=1326 audit(1751616700.128:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22176 comm="syz.3.6129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  681.301311][   T30] audit: type=1326 audit(1751616700.128:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22176 comm="syz.3.6129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  681.382563][   T30] audit: type=1326 audit(1751616700.128:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22176 comm="syz.3.6129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  681.416451][ T1337] ntfs3(loop2): ino=3, ntfs3_write_inode failed, -22.
[  681.442229][T22201] netlink: 'syz.0.6134': attribute type 1 has an invalid length.
[  681.473752][ T6130] ntfs3(loop2): ino=3, ntfs_set_state failed, -22.
[  681.480291][ T6130] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  681.498542][T22201] netlink: 56 bytes leftover after parsing attributes in process `syz.0.6134'.
[  681.536123][ T6130] ntfs3(loop2): ino=3, ntfs_set_state failed, -22.
[  681.556096][ T1337] ntfs3(loop2): ino=3, ntfs3_write_inode failed, -22.
[  681.607332][T22209] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6138'.
[  681.999558][T22230] sctp: [Deprecated]: syz.1.6143 (pid 22230) Use of int in maxseg socket option.
[  681.999558][T22230] Use struct sctp_assoc_value instead
[  682.044059][T22236] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6144'.
[  682.509517][T22262] kAFS: No cell specified
[  683.013891][T22288] loop5: detected capacity change from 0 to 764
[  683.135477][T22288] Symlink component flag not implemented
[  683.156069][T22299] netlink: 'syz.4.6165': attribute type 1 has an invalid length.
[  683.178868][T22288] Symlink component flag not implemented
[  683.198812][T22299] netlink: 'syz.4.6165': attribute type 2 has an invalid length.
[  683.232600][T22288] Symlink component flag not implemented (129)
[  683.251486][T22288] Symlink component flag not implemented (6)
[  683.386039][T22311] vlan0: entered promiscuous mode
[  684.093200][T22360] loop1: detected capacity change from 0 to 64
[  684.134275][    T9] usb 4-1: new high-speed USB device number 95 using dummy_hcd
[  684.348119][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  684.390414][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  684.443929][    T9] usb 4-1: too many endpoints for config 1 interface 1 altsetting 145: 217, using maximum allowed: 30
[  684.460325][    T9] usb 4-1: config 1 interface 1 altsetting 145 has 0 endpoint descriptors, different from the interface descriptor's value: 217
[  684.549761][    T9] usb 4-1: config 1 interface 1 has no altsetting 0
[  684.591060][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  684.624393][T22394] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6188'.
[  684.624802][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  684.699579][    T9] usb 4-1: Product: syz
[  684.716675][    T9] usb 4-1: Manufacturer: syz
[  684.732647][    T9] usb 4-1: SerialNumber: syz
[  684.783105][    T9] cdc_acm 4-1:1.0: probe with driver cdc_acm failed with error -22
[  685.126654][T16442] usb 4-1: USB disconnect, device number 95
[  685.134915][T22420] netlink: 'syz.4.6194': attribute type 21 has an invalid length.
[  685.243905][T22415] veth3: entered allmulticast mode
[  685.257345][T22420] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6194'.
[  685.481152][T22449] program syz.0.6197 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  685.890174][T22474] loop4: detected capacity change from 0 to 128
[  686.270110][T22494] loop2: detected capacity change from 0 to 256
[  686.302412][   T30] audit: type=1400 audit(1751616705.128:50): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=22493 comm="syz.5.6210"
[  686.413934][T22494] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  687.027423][T22542] loop2: detected capacity change from 0 to 1024
[  687.176055][T22542] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  687.263942][T22555] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6227'.
[  687.652038][   T30] audit: type=1326 audit(1751616706.400:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22578 comm="syz.4.6233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  687.760173][   T30] audit: type=1326 audit(1751616706.400:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22578 comm="syz.4.6233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  687.880331][   T30] audit: type=1326 audit(1751616706.428:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22578 comm="syz.4.6233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  687.991354][   T30] audit: type=1326 audit(1751616706.428:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22578 comm="syz.4.6233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  688.052758][T22596] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6236'.
[  688.103528][   T30] audit: type=1326 audit(1751616706.428:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22578 comm="syz.4.6233" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  688.516976][   T30] audit: type=1326 audit(1751616707.176:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22611 comm="syz.1.6243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908518e929 code=0x7ffc0000
[  688.592142][   T30] audit: type=1326 audit(1751616707.176:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22611 comm="syz.1.6243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908518e929 code=0x7ffc0000
[  688.698999][   T30] audit: type=1326 audit(1751616707.186:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22611 comm="syz.1.6243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f908518e929 code=0x7ffc0000
[  688.699061][   T30] audit: type=1326 audit(1751616707.186:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22611 comm="syz.1.6243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908518e929 code=0x7ffc0000
[  688.699125][   T30] audit: type=1326 audit(1751616707.186:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22611 comm="syz.1.6243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f908518e929 code=0x7ffc0000
[  688.846035][T22567] loop0: detected capacity change from 0 to 32768
[  688.849047][T22567] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6228 (22567)
[  688.895472][T22567] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  688.895571][T22567] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm
[  688.895609][T22567] BTRFS info (device loop0): disk space caching is enabled
[  688.895631][T22567] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  688.903065][ T5144] Bluetooth: hci5: unexpected event for opcode 0x0c14
[  689.086439][T22567] BTRFS info (device loop0): rebuilding free space tree
[  689.119574][T22592] loop2: detected capacity change from 0 to 32768
[  689.197584][T22567] BTRFS info (device loop0): disabling free space tree
[  689.245953][T22567] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  689.246746][T22592] JBD2: Ignoring recovery information on journal
[  689.256479][T22567] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  689.400616][T22659] loop5: detected capacity change from 0 to 256
[  689.441092][T22567] BTRFS info (device loop0 state M): max_inline set to 4096
[  689.497013][T22592] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  689.620776][ T6123] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  689.737269][T22592] grow_buffers: requested out-of-range block 7380380968984735596 for device loop2
[  689.832081][T22592] (syz.2.6238,22592,0):ocfs2_read_blocks_sync:112 ERROR: status = -12
[  689.850893][T22667] netlink: 'syz.5.6252': attribute type 1 has an invalid length.
[  689.878334][T22592] (syz.2.6238,22592,1):ocfs2_get_suballoc_slot_bit:2812 ERROR: read block 7380380968984735596 failed -12
[  689.914246][T22667] netlink: 'syz.5.6252': attribute type 11 has an invalid length.
[  689.978346][T22667] netlink: 224 bytes leftover after parsing attributes in process `syz.5.6252'.
[  689.983554][T22592] (syz.2.6238,22592,1):ocfs2_get_suballoc_slot_bit:2844 ERROR: status = -12
[  690.044312][T22592] (syz.2.6238,22592,1):ocfs2_test_inode_bit:2926 ERROR: get alloc slot and bit failed -12
[  690.074990][T22674] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6251'.
[  690.096502][T22592] (syz.2.6238,22592,1):ocfs2_test_inode_bit:2967 ERROR: status = -12
[  690.121299][T22674] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  690.134179][T22620] loop4: detected capacity change from 0 to 32768
[  690.147274][T22592] (syz.2.6238,22592,1):ocfs2_get_dentry:78 ERROR: test inode bit failed -12
[  690.187863][T22620] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.6245 (22620)
[  690.238008][T22620] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  690.351343][T22620] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  690.420262][T22620] BTRFS info (device loop4): using free-space-tree
[  690.517040][ T6130] ocfs2: Unmounting device (7,2) on (node local)
[  690.553633][T22628] loop1: detected capacity change from 0 to 32768
[  690.653417][T22628] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6247 (22628)
[  690.856630][T22628] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  690.932815][T22628] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm
[  690.954792][T22719] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6257'.
[  691.005722][T22628] BTRFS info (device loop1): using free-space-tree
[  691.187701][ T6127] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  691.791153][ T6125] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  692.208543][T16442] usb 1-1: new full-speed USB device number 101 using dummy_hcd
[  692.459896][T16442] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[  692.490759][T16442] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  692.514203][T16442] usb 1-1: config 0 has no interface number 0
[  692.546077][T16442] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  692.569985][T22797] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  692.588805][T16442] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  692.654746][T16442] usb 1-1: config 0 interface 52 has no altsetting 0
[  692.680222][T16442] usb 1-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  692.739779][T16442] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  692.747945][T16442] usb 1-1: SerialNumber: syz
[  692.840239][T16442] usb 1-1: config 0 descriptor??
[  693.049928][   T43] usb 4-1: new high-speed USB device number 96 using dummy_hcd
[  693.247017][   T43] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  693.306486][   T43] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  693.314855][T16442] usb 1-1: USB disconnect, device number 101
[  693.358162][   T43] usb 4-1: config 0 descriptor??
[  693.471135][T22842] netlink: 'syz.4.6284': attribute type 21 has an invalid length.
[  693.503895][T22842] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6284'.
[  693.623123][   T43] udl 4-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  693.760344][T22854] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6288'.
[  693.838663][   T43] [drm:udl_init] *ERROR* Selecting channel failed
[  693.900570][   T43] [drm] Initialized udl 0.0.1 for 4-1:0.0 on minor 2
[  693.955421][   T43] [drm] Initialized udl on minor 2
[  694.002798][   T43] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  694.021459][   T43] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  694.046941][ T6082] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  694.053101][T22871] netlink: 964 bytes leftover after parsing attributes in process `syz.5.6292'.
[  694.077004][   T43] usb 4-1: USB disconnect, device number 96
[  694.086947][ T6082] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  694.204229][T22885] netlink: 'syz.0.6293': attribute type 6 has an invalid length.
[  694.694914][T22845] loop2: detected capacity change from 0 to 32768
[  694.781878][T22845] 
[  694.781878][T22845]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  694.781878][T22845] 
[  694.863798][T22845] read_mapping_page failed!
[  694.904204][T22845] ERROR: (device loop2): txCommit: 
[  694.904204][T22845] 
[  695.148110][T22935] netlink: 'syz.4.6308': attribute type 2 has an invalid length.
[  695.157606][   T36] ERROR: (device loop2): diWrite: ixpxd invalid
[  695.157606][   T36] 
[  695.198890][   T36] ERROR: (device loop2): txCommit: 
[  695.198890][   T36] 
[  695.206208][T22935] : entered promiscuous mode
[  695.206315][   T36] jfs_write_inode: jfs_commit_inode failed!
[  695.249363][T22941] loop5: detected capacity change from 0 to 512
[  695.251194][ T6130] 
[  695.251194][ T6130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  695.251194][ T6130] 
[  695.285767][T22941] EXT4-fs: Ignoring removed orlov option
[  695.313848][ T6130] 
[  695.313848][ T6130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  695.313848][ T6130] 
[  695.362518][T22941] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  695.498090][T22941] ext4 filesystem being mounted at /1053/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  695.901224][ T6136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  696.439243][T23008] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  696.877153][T23029] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6335'.
[  696.921552][T23029] netlink: 72 bytes leftover after parsing attributes in process `syz.1.6335'.
[  696.955303][   T30] audit: type=1326 audit(1751616715.099:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23035 comm="syz.5.6338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  697.056169][   T30] audit: type=1326 audit(1751616715.099:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23035 comm="syz.5.6338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  697.092121][   T30] audit: type=1326 audit(1751616715.127:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23035 comm="syz.5.6338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  697.114856][   T30] audit: type=1326 audit(1751616715.127:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23035 comm="syz.5.6338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  697.137572][   T30] audit: type=1326 audit(1751616715.127:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23035 comm="syz.5.6338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  697.328979][T23046] loop1: detected capacity change from 0 to 256
[  697.379144][T23046] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  697.566270][T22991] loop2: detected capacity change from 0 to 32768
[  697.601650][T22999] loop4: detected capacity change from 0 to 32768
[  697.629972][T22991] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  697.773634][   T30] audit: type=1800 audit(1751616715.857:66): pid=22999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6327" name="file1" dev="loop4" ino=4 res=0 errno=0
[  698.100425][T22991] XFS (loop2): Ending clean mount
[  698.357640][ T6130] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  699.389391][    T9] usb 5-1: new high-speed USB device number 99 using dummy_hcd
[  699.439643][T23154] loop5: detected capacity change from 0 to 256
[  699.490964][T23162] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6373'.
[  699.545450][T23154] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  699.597537][    T9] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[  699.608296][T23154] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  699.639491][    T9] usb 5-1: config 0 has no interface number 0
[  699.682103][    T9] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  699.708822][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  699.759031][    T9] usb 5-1: Product: syz
[  699.775623][    T9] usb 5-1: Manufacturer: syz
[  699.792062][    T9] usb 5-1: SerialNumber: syz
[  699.813171][    T9] usb 5-1: config 0 descriptor??
[  699.846080][T23175] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  699.853345][T23175] IPv6: NLM_F_CREATE should be set when creating new route
[  700.053934][    T9] usb 5-1: Found UVC 0.08 device syz (046d:0823)
[  700.078222][    T9] usb 5-1: No valid video chain found.
[  700.119693][    T9] usb 5-1: USB disconnect, device number 99
[  700.254277][T23208] binder: 23207:23208 ioctl 40046205 0 returned -22
[  700.304812][T23202] ip6gretap2: entered promiscuous mode
[  700.664486][T23228] loop1: detected capacity change from 0 to 256
[  700.686264][T23228] MINIX-fs: mounting file system with errors, running fsck is recommended
[  700.695321][T23234] loop0: detected capacity change from 0 to 64
[  700.875698][ T6210] usb 4-1: new high-speed USB device number 97 using dummy_hcd
[  701.067865][ T6210] usb 4-1: Using ep0 maxpacket: 8
[  701.099998][ T6210] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  701.145863][ T6210] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  701.171072][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  701.177806][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  701.184704][ T6210] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  701.255306][ T6210] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  701.323924][ T6210] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  701.389156][ T6210] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  701.458150][ T6210] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  701.534455][ T6210] usb 4-1: config 0 descriptor??
[  701.563996][T23224] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  701.942504][T23317] tmpfs: Bad value for 'mpol'
[  702.019435][T16442] usb 1-1: new high-speed USB device number 102 using dummy_hcd
[  702.112347][   T43] usb 4-1: USB disconnect, device number 97
[  702.118601][ T5144] Bluetooth: hci6: Opcode 0x0c03 failed: -71
[  702.287019][T16442] usb 1-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7
[  702.315263][T16442] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  702.356153][T16442] usb 1-1: Product: syz
[  702.371985][T16442] usb 1-1: Manufacturer: syz
[  702.376611][T16442] usb 1-1: SerialNumber: syz
[  702.400113][T16442] usb 1-1: config 0 descriptor??
[  702.516847][T23358] loop2: detected capacity change from 0 to 8
[  702.518487][T23356] loop1: detected capacity change from 0 to 128
[  702.530169][T23357] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6415'.
[  702.530615][T23355] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6414'.
[  702.618396][T23356] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  702.675445][T23356] ext4 filesystem being mounted at /1009/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  702.885600][T16442] usb 1-1: f81604_write: reg: 105 data: 0 failed: -EPROTO
[  702.902083][T16442] f81604 1-1:0.0: Setting termination of CH#0 failed: -EPROTO
[  702.935672][T16442] f81604 1-1:0.0: probe with driver f81604 failed with error -71
[  702.965798][ T6125] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  703.006329][T23383] loop2: detected capacity change from 0 to 764
[  703.021390][T16442] usb 1-1: USB disconnect, device number 102
[  703.081674][T23383] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  703.708476][ T6291] usb 3-1: new high-speed USB device number 107 using dummy_hcd
[  703.725969][T23434] netlink: 'syz.1.6432': attribute type 13 has an invalid length.
[  703.763745][T23434] netlink: 'syz.1.6432': attribute type 27 has an invalid length.
[  703.901021][ T6291] usb 3-1: Using ep0 maxpacket: 32
[  703.913151][ T6291] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD8, changing to 0x88
[  703.962730][ T6291] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  704.021234][ T6291] usb 3-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  704.050077][ T6291] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  704.103861][ T6291] usb 3-1: Product: syz
[  704.108093][ T6291] usb 3-1: Manufacturer: syz
[  704.157624][ T6291] usb 3-1: SerialNumber: syz
[  704.192352][ T6291] usb 3-1: config 0 descriptor??
[  704.235261][ T6291] usb 3-1: no audio or video endpoints found
[  704.421468][ T6291] usb 3-1: USB disconnect, device number 107
[  704.926526][T23515] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6455'.
[  704.955243][T23506] loop1: detected capacity change from 0 to 4096
[  704.977119][   T43] usb 5-1: new high-speed USB device number 100 using dummy_hcd
[  705.162255][   T43] usb 5-1: Using ep0 maxpacket: 32
[  705.187409][   T30] audit: type=1326 audit(1751616722.788:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.3.6458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  705.202479][   T43] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[  705.262631][   T30] audit: type=1326 audit(1751616722.816:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.3.6458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  705.284957][    C0] vkms_vblank_simulate: vblank timer overrun
[  705.302943][   T43] usb 5-1: config 0 has no interface number 0
[  705.319938][   T43] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  705.386791][   T43] usb 5-1: config 0 interface 85 has no altsetting 0
[  705.424860][   T30] audit: type=1326 audit(1751616722.835:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.3.6458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  705.462144][   T43] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  705.471227][   T43] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  705.530130][   T30] audit: type=1326 audit(1751616722.835:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.3.6458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  705.536574][   T43] usb 5-1: Product: syz
[  705.552415][    C0] vkms_vblank_simulate: vblank timer overrun
[  705.630438][   T43] usb 5-1: Manufacturer: syz
[  705.637725][   T43] usb 5-1: SerialNumber: syz
[  705.664855][   T43] usb 5-1: config 0 descriptor??
[  705.679928][   T30] audit: type=1326 audit(1751616722.835:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.3.6458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  706.139774][   T43] appletouch 5-1:0.85: Failed to request geyser raw mode
[  706.173702][   T43] appletouch 5-1:0.85: probe with driver appletouch failed with error -5
[  706.184124][   T30] audit: type=1326 audit(1751616723.733:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23576 comm="syz.3.6472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  706.242027][   T43] usb 5-1: USB disconnect, device number 100
[  706.262588][   T30] audit: type=1326 audit(1751616723.733:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23576 comm="syz.3.6472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  706.427806][   T30] audit: type=1326 audit(1751616723.751:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23576 comm="syz.3.6472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  706.517911][   T30] audit: type=1326 audit(1751616723.751:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23576 comm="syz.3.6472" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1510b8e929 code=0x7ffc0000
[  706.628323][T23600] loop1: detected capacity change from 0 to 16
[  706.660758][T23600] erofs (device loop1): mounted with root inode @ nid 36.
[  707.734671][T23652] netlink: 'syz.0.6494': attribute type 2 has an invalid length.
[  707.761064][T23581] loop2: detected capacity change from 0 to 32768
[  707.768492][T23652] netlink: 'syz.0.6494': attribute type 1 has an invalid length.
[  707.803292][T23652] netlink: 152 bytes leftover after parsing attributes in process `syz.0.6494'.
[  707.858204][T23581] ERROR: (device loop2): dbAlloc: the hint is outside the map
[  707.858204][T23581] 
[  707.968329][T23654] loop1: detected capacity change from 0 to 4096
[  708.031558][T23654] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  708.087813][   T12] read_mapping_page failed!
[  708.097848][T23667] loop5: detected capacity change from 0 to 1024
[  708.108679][   T12] ERROR: (device loop2): txCommit: 
[  708.108679][   T12] 
[  708.138889][   T12] jfs_write_inode: jfs_commit_inode failed!
[  708.214479][T23667] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  708.312791][T23667] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  708.418651][T23654] ntfs3(loop1): ino=19, mi_enum_attr
[  708.427654][T23654] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  708.438112][T23667] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  708.462165][T23667] EXT4-fs (loop5): orphan cleanup on readonly fs
[  708.480907][T23605] loop3: detected capacity change from 0 to 40427
[  708.494306][T23667] EXT4-fs error (device loop5): ext4_read_inode_bitmap:167: comm syz.5.6498: Inode bitmap for bg 0 marked uninitialized
[  708.600599][T23605] F2FS-fs (loop3): build fault injection rate: 691
[  708.610852][T23654] ntfs3(loop1): failed to convert "c46c" to cp775
[  708.636877][T23605] F2FS-fs (loop3): Image doesn't support compression
[  708.645356][T23667] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  708.658329][T23654] ntfs3(loop1): ino=20, mi_enum_attr
[  708.691228][T23605] F2FS-fs (loop3): invalid crc value
[  708.771687][T23692] loop4: detected capacity change from 0 to 512
[  708.775993][T23667] EXT4-fs (loop5): ext4_remount: Checksum for group 0 failed (32298!=35945)
[  708.948934][T23692] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  709.046399][T23692] ext4 filesystem being mounted at /1083/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  709.068097][ T6136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.138310][T23605] F2FS-fs (loop3): Start checkpoint disabled!
[  709.177010][T23605] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  709.320772][ T6127] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  709.485427][ T1337] kworker/u8:8: attempt to access beyond end of device
[  709.485427][ T1337] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  709.511352][ T1337] CPU: 0 UID: 0 PID: 1337 Comm: kworker/u8:8 Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(full) 
[  709.511392][ T1337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  709.511410][ T1337] Workqueue: writeback wb_workfn (flush-7:3)
[  709.511453][ T1337] Call Trace:
[  709.511463][ T1337]  <TASK>
[  709.511475][ T1337]  dump_stack_lvl+0x189/0x250
[  709.511522][ T1337]  ? __pfx_dump_stack_lvl+0x10/0x10
[  709.511561][ T1337]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  709.511597][ T1337]  ? __pfx_queue_work_on+0x10/0x10
[  709.511623][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.511653][ T1337]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  709.511687][ T1337]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  709.511730][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.511759][ T1337]  ? f2fs_hw_is_readonly+0x39b/0x470
[  709.511796][ T1337]  f2fs_handle_critical_error+0x37c/0x540
[  709.511835][ T1337]  f2fs_write_end_io+0x495/0x810
[  709.511868][ T1337]  ? blkg_put+0x22/0x240
[  709.511913][ T1337]  __submit_merged_bio+0x27a/0x6a0
[  709.511950][ T1337]  __submit_merged_write_cond+0x255/0x530
[  709.511989][ T1337]  f2fs_write_data_pages+0x261d/0x3000
[  709.512064][ T1337]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  709.512095][ T1337]  ? __local_bh_enable_ip+0x12d/0x1c0
[  709.512150][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512179][ T1337]  ? rcu_is_watching+0x15/0xb0
[  709.512254][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512283][ T1337]  ? __lock_acquire+0xab9/0xd20
[  709.512327][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512372][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512400][ T1337]  ? __lock_acquire+0xab9/0xd20
[  709.512444][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512473][ T1337]  ? __lock_acquire+0xab9/0xd20
[  709.512529][ T1337]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  709.512564][ T1337]  do_writepages+0x32e/0x550
[  709.512610][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512639][ T1337]  ? reacquire_held_locks+0x127/0x1d0
[  709.512662][ T1337]  ? writeback_sb_inodes+0x372/0x1000
[  709.512719][ T1337]  __writeback_single_inode+0x145/0xff0
[  709.512759][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512789][ T1337]  ? do_raw_spin_unlock+0x122/0x240
[  709.512824][ T1337]  writeback_sb_inodes+0x6b5/0x1000
[  709.512881][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.512925][ T1337]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  709.513014][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.513043][ T1337]  ? rcu_is_watching+0x15/0xb0
[  709.513082][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.513126][ T1337]  wb_writeback+0x43b/0xaf0
[  709.513176][ T1337]  ? queue_io+0x351/0x590
[  709.513218][ T1337]  ? __pfx_wb_writeback+0x10/0x10
[  709.513267][ T1337]  ? _raw_spin_unlock_irq+0x23/0x50
[  709.513307][ T1337]  wb_workfn+0x409/0xef0
[  709.513359][ T1337]  ? __pfx_wb_workfn+0x10/0x10
[  709.513397][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.513427][ T1337]  ? __lock_acquire+0xab9/0xd20
[  709.513475][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.513508][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.513542][ T1337]  ? _raw_spin_unlock_irq+0x23/0x50
[  709.513574][ T1337]  ? process_scheduled_works+0x9ef/0x17b0
[  709.513612][ T1337]  ? process_scheduled_works+0x9ef/0x17b0
[  709.513654][ T1337]  process_scheduled_works+0xae1/0x17b0
[  709.513735][ T1337]  ? __pfx_process_scheduled_works+0x10/0x10
[  709.513783][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.513822][ T1337]  worker_thread+0x8a0/0xda0
[  709.513866][ T1337]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  709.513910][ T1337]  ? __kthread_parkme+0x7b/0x200
[  709.513946][ T1337]  kthread+0x711/0x8a0
[  709.513980][ T1337]  ? __pfx_worker_thread+0x10/0x10
[  709.514018][ T1337]  ? __pfx_kthread+0x10/0x10
[  709.514043][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.514077][ T1337]  ? _raw_spin_unlock_irq+0x23/0x50
[  709.514109][ T1337]  ? srso_alias_return_thunk+0x5/0xfbef5
[  709.514137][ T1337]  ? lockdep_hardirqs_on+0x9c/0x150
[  709.514171][ T1337]  ? __pfx_kthread+0x10/0x10
[  709.514201][ T1337]  ret_from_fork+0x3fc/0x770
[  709.514242][ T1337]  ? __pfx_ret_from_fork+0x10/0x10
[  709.514286][ T1337]  ? __switch_to_asm+0x39/0x70
[  709.514313][ T1337]  ? __switch_to_asm+0x33/0x70
[  709.514338][ T1337]  ? __pfx_kthread+0x10/0x10
[  709.514368][ T1337]  ret_from_fork_asm+0x1a/0x30
[  709.514415][ T1337]  </TASK>
[  709.933951][    C0] vkms_vblank_simulate: vblank timer overrun
[  710.014762][ T1337] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  710.324455][T23739] netlink: 'syz.4.6517': attribute type 1 has an invalid length.
[  710.332532][T23739] netlink: 5624 bytes leftover after parsing attributes in process `syz.4.6517'.
[  710.438236][T23694] loop0: detected capacity change from 0 to 32768
[  710.475560][T23694] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6505 (23694)
[  710.635887][T23694] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  710.646111][T23694] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  710.668103][T23757] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6522'.
[  710.721527][T23694] BTRFS info (device loop0): using free-space-tree
[  710.979038][T23779] loop5: detected capacity change from 0 to 1024
[  711.091952][ T5144] Bluetooth: hci4: Unable to find connection with handle 0x0000
[  711.430935][ T6123] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  711.729975][T23808] loop3: detected capacity change from 0 to 4096
[  711.788171][T23808] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  711.878059][   T30] audit: type=1326 audit(1751616729.055:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23819 comm="syz.4.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  711.957503][T23808] ntfs3(loop3): ino=1a, mi_enum_attr
[  712.004239][T23808] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  712.016801][   T30] audit: type=1326 audit(1751616729.083:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23819 comm="syz.4.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  712.078768][T23808] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  712.136798][   T30] audit: type=1326 audit(1751616729.083:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23819 comm="syz.4.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  712.200000][T23808] ntfs3(loop3): ino=5, "/" indx_read
[  712.307077][   T30] audit: type=1326 audit(1751616729.083:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23819 comm="syz.4.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  712.427507][   T30] audit: type=1326 audit(1751616729.083:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23819 comm="syz.4.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  712.593789][T23844] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  713.363979][T23817] loop1: detected capacity change from 0 to 32768
[  713.798123][T23896] loop2: detected capacity change from 0 to 4096
[  713.864904][ T6210] usb 6-1: new full-speed USB device number 91 using dummy_hcd
[  713.889047][T23896] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  714.069816][T23896] ntfs3(loop2): ino=19, mi_enum_attr
[  714.085540][T23923] loop4: detected capacity change from 0 to 256
[  714.092298][ T6210] usb 6-1: unable to get BOS descriptor or descriptor too short
[  714.116169][T23896] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  714.129209][ T6210] usb 6-1: not running at top speed; connect to a high speed hub
[  714.185468][ T6210] usb 6-1: config 1 interface 0 altsetting 222 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  714.206649][T23896] ntfs3(loop2): failed to convert "076c" to cp949
[  714.236265][ T6210] usb 6-1: config 1 interface 0 has no altsetting 0
[  714.247469][T23896] ntfs3(loop2): ino=20, mi_enum_attr
[  714.272942][ T6210] usb 6-1: New USB device found, idVendor=0c45, idProduct=5112, bcdDevice= 0.40
[  714.302720][ T6210] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  714.360222][ T6210] usb 6-1: Product: syz
[  714.399243][ T6210] usb 6-1: Manufacturer: syz
[  714.403914][ T6210] usb 6-1: SerialNumber: syz
[  714.451632][T23894] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  714.759740][ T6210] usbhid 6-1:1.0: can't add hid device: -71
[  714.774711][ T6210] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  714.823391][ T6210] usb 6-1: USB disconnect, device number 91
[  715.025000][T23969] cifs: Unknown parameter 'ÿÿITäŒ&¬æ:ÅèÙ"‚Õë�ï1:ºÃÃÓ­'Ä4,�Zz-#FÇ<æõ]%gCžÊ
[  715.025000][T23969] SÃȘØÈžZ§6ŸÂ'
[  715.312677][T23977] loop2: detected capacity change from 0 to 2048
[  715.421768][T23977] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  715.520759][T23995] ip6t_REJECT: ECHOREPLY is not supported
[  715.596006][T23931] loop3: detected capacity change from 0 to 32768
[  715.709973][T23931] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6568 (23931)
[  715.716145][   T30] audit: type=1400 audit(1751616732.638:81): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=24002 comm="syz.4.6586"
[  715.825290][T23931] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  715.888351][T23931] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm
[  715.953959][T23931] BTRFS info (device loop3): disk space caching is enabled
[  715.992146][T23931] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  716.090808][T24029] loop2: detected capacity change from 0 to 128
[  716.225733][T24029] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  716.332015][T23931] BTRFS info (device loop3): rebuilding free space tree
[  716.344973][T24029] ext4 filesystem being mounted at /1028/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  716.352670][T24055] CIFS: VFS: Malformed UNC in devname
[  716.362482][T24053] loop0: detected capacity change from 0 to 256
[  716.419714][T23931] BTRFS info (device loop3): disabling free space tree
[  716.460264][T23931] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  716.497451][T23931] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  716.653304][ T6130] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  717.084541][T24080] netlink: 'syz.5.6602': attribute type 8 has an invalid length.
[  717.138793][ T6129] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  717.999022][T24110] loop1: detected capacity change from 0 to 4096
[  718.066985][T24110] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  718.275578][T24056] loop4: detected capacity change from 0 to 40427
[  718.308192][T24110] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  718.315569][T24132] netlink: 'syz.5.6618': attribute type 21 has an invalid length.
[  718.354993][T24056] F2FS-fs (loop4): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  718.357914][T24132] IPv6: NLM_F_CREATE should be specified when creating new route
[  718.364176][T24056] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  718.421369][T24132] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  718.428648][T24132] IPv6: NLM_F_CREATE should be set when creating new route
[  718.436133][T24132] IPv6: NLM_F_CREATE should be set when creating new route
[  718.443435][T24132] IPv6: NLM_F_CREATE should be set when creating new route
[  718.474950][T24056] F2FS-fs (loop4): Unrecognized mount option "whint_mode=user-based" or missing value
[  718.493266][T24110] ntfs3(loop1): ino=1f, "file2" failed to open parent directory r=5 to update
[  718.750176][   T36] ntfs3(loop1): ino=1f, failed to open parent directory r=5 to update
[  718.952544][T24162] netlink: 'syz.2.6626': attribute type 10 has an invalid length.
[  719.005021][T24162] 8021q: adding VLAN 0 to HW filter on device team0
[  719.113810][T24162] bond0: (slave team0): Enslaving as an active interface with an up link
[  719.223233][T24169] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.6628'.
[  719.530656][    T9] usb 6-1: new high-speed USB device number 92 using dummy_hcd
[  719.584400][T24186] cgroup: name respecified
[  719.756867][    T9] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  719.815663][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  719.849575][    T9] usb 6-1: Product: syz
[  719.860340][T24197] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[  719.881124][    T9] usb 6-1: Manufacturer: syz
[  719.901637][    T9] usb 6-1: SerialNumber: syz
[  719.946984][    T9] usb 6-1: config 0 descriptor??
[  719.994167][    T9] ch341 6-1:0.0: ch341-uart converter detected
[  720.058425][T24207] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  720.065752][T24211] netlink: 88 bytes leftover after parsing attributes in process `syz.0.6640'.
[  720.126707][T24214] tmpfs: Bad value for 'mpol'
[  720.173184][T24148] loop3: detected capacity change from 0 to 32768
[  720.204068][T24148] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6622 (24148)
[  720.268625][T24148] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  720.284864][T24148] BTRFS info (device loop3): using sha256 (sha256-x86_64) checksum algorithm
[  720.293845][T24148] BTRFS info (device loop3): using free-space-tree
[  720.402376][   T30] audit: type=1326 audit(1751616737.025:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24230 comm="syz.4.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  720.442969][   T30] audit: type=1326 audit(1751616737.053:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24230 comm="syz.4.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  720.465756][    T9] usb 6-1: failed to send control message: -71
[  720.472113][    T9] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  720.480678][   T30] audit: type=1326 audit(1751616737.053:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24230 comm="syz.4.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  720.516961][   T30] audit: type=1326 audit(1751616737.053:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24230 comm="syz.4.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  720.540543][    T9] usb 6-1: USB disconnect, device number 92
[  720.558133][    T9] ch341 6-1:0.0: device disconnected
[  720.590611][   T30] audit: type=1326 audit(1751616737.053:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24230 comm="syz.4.6644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fbf8e929 code=0x7ffc0000
[  720.771077][ T6129] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  720.789956][T24265] netlink: 128 bytes leftover after parsing attributes in process `syz.1.6649'.
[  720.825282][T24265] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6649'.
[  721.207303][T24283] loop1: detected capacity change from 0 to 256
[  721.441088][T24297] netlink: 'syz.4.6657': attribute type 4 has an invalid length.
[  721.472430][T24299] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  721.550959][   T43] usb 1-1: new high-speed USB device number 103 using dummy_hcd
[  721.665955][T24310] overlayfs: missing 'lowerdir'
[  721.735051][   T43] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  721.765651][   T43] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  721.821323][   T43] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  721.848137][T24317] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6662'.
[  721.882534][   T43] usb 1-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  721.934958][   T43] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  722.020901][   T43] usb 1-1: config 0 descriptor??
[  722.309059][ T6291] usb 1-1: USB disconnect, device number 103
[  722.471983][T24358] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[  722.870298][T24382] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[  722.984914][T24385] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6681'.
[  723.113653][T24396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6684'.
[  723.370123][T24408] loop3: detected capacity change from 0 to 8
[  723.432041][T24408] SQUASHFS error: Failed to read block 0x4de: -5
[  723.440027][T24411] netlink: 'syz.0.6689': attribute type 303 has an invalid length.
[  723.485677][T24408] SQUASHFS error: Failed to read block 0x4de: -5
[  723.518379][T24408] SQUASHFS error: Failed to read block 0x4de: -5
[  723.551427][T24408] SQUASHFS error: Failed to read block 0x4de: -5
[  723.578034][T24408] SQUASHFS error: Failed to read block 0x4de: -5
[  723.603073][   T30] audit: type=1800 audit(1751616740.018:87): pid=24408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6688" name="file1" dev="loop3" ino=5 res=0 errno=0
[  723.777074][T24434] netlink: 'syz.2.6696': attribute type 10 has an invalid length.
[  723.784945][T24434] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6696'.
[  723.864755][T24434] batadv0: entered promiscuous mode
[  723.899509][T24434] batadv0: entered allmulticast mode
[  723.922063][T24434] bridge0: port 3(batadv0) entered blocking state
[  723.965258][T24434] bridge0: port 3(batadv0) entered disabled state
[  724.007802][T24434] bridge0: port 3(batadv0) entered blocking state
[  724.014780][T24434] bridge0: port 3(batadv0) entered forwarding state
[  724.394162][T24479] loop3: detected capacity change from 0 to 1024
[  724.453314][   T12] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  724.463671][   T12] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  724.645303][   T12] hfsplus: b-tree write err: -5, ino 4
[  724.803647][T24496] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6714'.
[  725.125735][T24516] loop1: detected capacity change from 0 to 256
[  725.126732][T24516] exfat: Deprecated parameter 'utf8'
[  725.126756][T24516] exfat: Deprecated parameter 'utf8'
[  725.126864][T24516] exfat: Deprecated parameter 'utf8'
[  725.194193][T24522] lo speed is unknown, defaulting to 1000
[  725.194327][T24522] lo speed is unknown, defaulting to 1000
[  725.200865][T24516] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  725.223596][T24522] lo speed is unknown, defaulting to 1000
[  725.254535][T24522] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  725.288262][T24522] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  725.583211][T24522] lo speed is unknown, defaulting to 1000
[  725.619410][T24522] lo speed is unknown, defaulting to 1000
[  725.659919][T24522] lo speed is unknown, defaulting to 1000
[  725.682624][T24522] lo speed is unknown, defaulting to 1000
[  725.711737][T24522] lo speed is unknown, defaulting to 1000
[  725.733126][T24522] lo speed is unknown, defaulting to 1000
[  725.820557][T24545] tmpfs: Bad value for 'mpol'
[  726.237661][T24493] loop0: detected capacity change from 0 to 32768
[  726.334786][T24493] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  726.522175][T16442] usb 6-1: new full-speed USB device number 93 using dummy_hcd
[  726.530340][T24493] XFS (loop0): Ending clean mount
[  726.725806][T16442] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[  726.736453][T16442] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  726.783203][ T6123] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  726.805141][T16442] usb 6-1: config 0 has no interface number 0
[  726.822130][T16442] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  726.859201][T16442] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[  726.885548][T16442] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  726.904473][T16442] usb 6-1: config 0 interface 52 has no altsetting 0
[  727.018990][T16442] usb 6-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  727.038919][T24618] loop4: detected capacity change from 0 to 256
[  727.075283][T16442] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  727.137499][T16442] usb 6-1: SerialNumber: syz
[  727.162402][T24618] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d)
[  727.189608][T16442] usb 6-1: config 0 descriptor??
[  727.333400][T24635] loop2: detected capacity change from 0 to 256
[  727.431217][T24635] exfat: Deprecated parameter 'utf8'
[  727.436625][T24635] exfat: Deprecated parameter 'namecase'
[  727.465738][T16442] synaptics_usb 6-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[  727.501031][T24635] exfat: Deprecated parameter 'namecase'
[  727.537969][T16442] synaptics_usb 6-1:0.52: probe with driver synaptics_usb failed with error -5
[  727.552213][T24635] exfat: Deprecated parameter 'utf8'
[  727.706967][T24635] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[  727.727203][   T43] usb 6-1: USB disconnect, device number 93
[  728.540293][T24682] loop0: detected capacity change from 0 to 4096
[  728.570000][T24682] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  728.588965][T24687] loop1: detected capacity change from 0 to 4096
[  728.627331][T24687] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  728.716399][T24682] ntfs3(loop0): ino=19, mi_enum_attr
[  728.768394][T24682] ntfs3(loop0): failed to convert "c46c" to macinuit
[  728.798836][T24687] ntfs3(loop1): ino=19, mi_enum_attr
[  728.809671][T24682] ntfs3(loop0): ino=20, mi_enum_attr
[  728.820835][T24687] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  728.933816][T24687] ntfs3(loop1): failed to convert "c46c" to iso8859-2
[  729.002436][T24687] ntfs3(loop1): ino=20, mi_enum_attr
[  729.130092][T24717] loop2: detected capacity change from 0 to 128
[  729.155355][T24717] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  729.217525][T24717] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  729.838347][T24752] loop4: detected capacity change from 0 to 64
[  729.909714][T24752] syz.4.6781: attempt to access beyond end of device
[  729.909714][T24752] loop4: rw=0, sector=268435468, nr_sectors = 2 limit=64
[  730.009247][T24752] Buffer I/O error on dev loop4, logical block 134217734, async page read
[  730.097269][T24752] syz.4.6781: attempt to access beyond end of device
[  730.097269][T24752] loop4: rw=0, sector=268435468, nr_sectors = 2 limit=64
[  730.165612][T24752] Buffer I/O error on dev loop4, logical block 134217734, async page read
[  730.407768][T24818] loop5: detected capacity change from 0 to 256
[  730.481657][T24818] FAT-fs (loop5): Directory bread(block 64) failed
[  730.509896][T24818] FAT-fs (loop5): Directory bread(block 65) failed
[  730.516529][T24818] FAT-fs (loop5): Directory bread(block 66) failed
[  730.534400][T24818] FAT-fs (loop5): Directory bread(block 67) failed
[  730.585591][T24818] FAT-fs (loop5): Directory bread(block 68) failed
[  730.658097][T24818] FAT-fs (loop5): Directory bread(block 69) failed
[  730.699666][T24818] FAT-fs (loop5): Directory bread(block 70) failed
[  730.728361][T24818] FAT-fs (loop5): Directory bread(block 71) failed
[  730.752099][T24818] FAT-fs (loop5): Directory bread(block 72) failed
[  730.809074][T24818] FAT-fs (loop5): Directory bread(block 73) failed
[  730.894783][ T6291] usb 5-1: new full-speed USB device number 101 using dummy_hcd
[  730.961408][T24850] loop1: detected capacity change from 0 to 8
[  730.989003][T24850] SQUASHFS error: lzo decompression failed, data probably corrupt
[  731.037401][T24850] SQUASHFS error: Failed to read block 0x91: -5
[  731.043715][T24850] SQUASHFS error: Unable to read metadata cache entry [8f]
[  731.081229][T24850] SQUASHFS error: Unable to read inode 0x11f
[  731.110574][ T6291] usb 5-1: unable to get BOS descriptor or descriptor too short
[  731.128578][ T6291] usb 5-1: not running at top speed; connect to a high speed hub
[  731.180478][ T6291] usb 5-1: config 5 has an invalid interface number: 101 but max is 0
[  731.226257][ T6291] usb 5-1: config 5 has no interface number 0
[  731.247425][ T6291] usb 5-1: config 5 interface 101 has no altsetting 0
[  731.289483][ T6291] usb 5-1: New USB device found, idVendor=0403, idProduct=e0f7, bcdDevice=78.34
[  731.310517][ T6291] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  731.340219][ T6291] usb 5-1: Product: syz
[  731.366256][ T6291] usb 5-1: Manufacturer: syz
[  731.376056][ T6291] usb 5-1: SerialNumber: syz
[  731.392257][T24873] loop3: detected capacity change from 0 to 1024
[  731.415299][T24878] loop1: detected capacity change from 0 to 64
[  731.437978][T24873] EXT4-fs: Ignoring removed bh option
[  731.461191][T24873] EXT4-fs: inline encryption not supported
[  731.503644][T24873] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  731.554387][T24873] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c842e018, mo2=0000]
[  731.621763][T24873] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.6805: bad orphan inode 11
[  731.644249][T24873] ext4_test_bit(bit=10, block=4) = 1
[  731.653143][T24873] is_bad_inode(inode)=0
[  731.664142][T24873] NEXT_ORPHAN(inode)=3254779904
[  731.675035][T24873] max_ino=32
[  731.698752][ T6291] ftdi_sio 5-1:5.101: FTDI USB Serial Device converter detected
[  731.711071][T24873] i_nlink=0
[  731.727119][T24873] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.6805: lblock 2 mapped to illegal pblock 2 (length 1)
[  731.753351][ T6291] ftdi_sio ttyUSB0: unknown device type: 0x7834
[  731.770514][T24873] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  731.801271][T24873] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.6805: lblock 0 mapped to illegal pblock 48 (length 1)
[  731.806559][T24892] loop2: detected capacity change from 0 to 2048
[  731.823181][ T6291] usb 5-1: USB disconnect, device number 101
[  731.861318][ T6291] ftdi_sio 5-1:5.101: device disconnected
[  731.897208][T24892] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  731.917973][T24873] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  731.991295][T24873] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.6805: Failed to acquire dquot type 0
[  732.043536][T24873] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  732.105753][T24873] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.6805: mark_inode_dirty error
[  732.145165][T24873] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  732.208377][T24873] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  732.522512][ T6129] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  732.557166][ T6129] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[  732.629426][ T6129] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  732.770604][ T6129] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[  732.919032][T24964] loop2: detected capacity change from 0 to 256
[  732.926492][T24963] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[  732.962059][T24963] exFAT-fs (nullb0): invalid boot record signature
[  732.971445][T24963] exFAT-fs (nullb0): failed to read boot sector
[  732.977836][T24963] exFAT-fs (nullb0): failed to recognize exfat type
[  733.500448][T24920] loop5: detected capacity change from 0 to 32768
[  733.620429][T24996] netlink: 'syz.2.6835': attribute type 1 has an invalid length.
[  733.620850][T24920] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  733.689645][T24996] netlink: 228 bytes leftover after parsing attributes in process `syz.2.6835'.
[  733.804559][T25010] loop1: detected capacity change from 0 to 2048
[  733.845948][T25016] netlink: 1 bytes leftover after parsing attributes in process `syz.3.6838'.
[  733.860595][T25010] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  733.883562][T24920] XFS (loop5): Ending clean mount
[  733.898969][T25016] netlink: 1 bytes leftover after parsing attributes in process `syz.3.6838'.
[  734.124595][T25026] netlink: 'syz.4.6841': attribute type 2 has an invalid length.
[  734.175595][T25026] netlink: 'syz.4.6841': attribute type 1 has an invalid length.
[  734.224302][ T6136] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  734.246688][ T6125] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  734.815923][T25055] loop4: detected capacity change from 0 to 512
[  734.828912][T25053] netlink: 'syz.3.6850': attribute type 1 has an invalid length.
[  734.938072][T25055] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  734.978686][T25055] ext4 filesystem being mounted at /1150/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  735.076663][T25055] Quota error (device loop4): do_check_range: Getting block 134217728 out of range 0-5
[  735.197336][T25014] loop0: detected capacity change from 0 to 32768
[  735.235454][ T6127] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  735.259133][T25014] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6839 (25014)
[  735.363256][T25014] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  735.373439][T25014] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  735.436647][T25014] BTRFS info (device loop0): using free-space-tree
[  735.620353][T25082] loop5: detected capacity change from 0 to 4096
[  735.708659][T25014] BTRFS info (device loop0): rebuilding free space tree
[  735.782496][T25082] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  736.160101][ T6123] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  736.540274][T25151] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6873'.
[  736.558243][T25152] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  736.617507][T25151] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6873'.
[  736.661352][T25151] netlink: 'syz.3.6873': attribute type 6 has an invalid length.
[  736.887905][T25165] netlink: 4268 bytes leftover after parsing attributes in process `syz.5.6877'.
[  736.930570][T25165] netlink: 4268 bytes leftover after parsing attributes in process `syz.5.6877'.
[  736.991924][T25169] xt_time: invalid argument - start or stop time greater than 23:59:59
[  737.207498][T25176] netlink: 64 bytes leftover after parsing attributes in process `syz.4.6881'.
[  737.348456][T25122] loop2: detected capacity change from 0 to 32768
[  737.474032][T25122] ERROR: (device loop2): diAllocAG: numfree > numinos
[  737.474032][T25122] 
[  737.548480][T25122] ERROR: (device loop2): remounting filesystem as read-only
[  737.573209][T25195] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6888'.
[  737.589976][T25122] ialloc: diAlloc returned -5!
[  737.641300][T25195] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6888'.
[  737.869541][T25204] loop3: detected capacity change from 0 to 2048
[  737.957803][T25204] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  738.030844][T25217] openvswitch: netlink: Key type 30 is not supported
[  738.067156][T25221] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  738.107428][T25204] NILFS error (device loop3): nilfs_check_folio: size of directory #2 is not a multiple of chunk size
[  738.191400][T25204] Remounting filesystem read-only
[  738.574503][T25241] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  738.575423][T25241] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  738.725450][T25252] loop0: detected capacity change from 0 to 256
[  738.819649][T25252] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  738.977074][   T30] audit: type=1326 audit(1751616754.395:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25260 comm="syz.5.6906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  739.084022][   T30] audit: type=1326 audit(1751616754.395:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25260 comm="syz.5.6906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  739.158560][   T30] audit: type=1326 audit(1751616754.405:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25260 comm="syz.5.6906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  739.190941][   T30] audit: type=1326 audit(1751616754.405:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25260 comm="syz.5.6906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  739.262378][   T30] audit: type=1326 audit(1751616754.405:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25260 comm="syz.5.6906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f93cf18e929 code=0x7ffc0000
[  739.749349][T25307] __nla_validate_parse: 2 callbacks suppressed
[  739.749372][T25307] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6921'.
[  739.818724][T25310] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6922'.
[  739.888559][T25307] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  740.063546][T25318] netlink: 140 bytes leftover after parsing attributes in process `syz.2.6924'.
[  740.244508][T25333] loop0: detected capacity change from 0 to 64
[  740.409797][ T6291] usb 6-1: new high-speed USB device number 94 using dummy_hcd
[  740.539074][T25347] loop1: detected capacity change from 0 to 512
[  740.611494][ T6291] usb 6-1: config 0 has an invalid interface number: 241 but max is 1
[  740.633895][ T6291] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  740.649290][T25354] xt_CT: You must specify a L4 protocol and not use inversions on it
[  740.655952][ T6291] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  740.675984][ T6291] usb 6-1: config 0 has no interface number 0
[  740.683354][ T6291] usb 6-1: config 0 interface 241 altsetting 5 endpoint 0xD has an invalid bInterval 22, changing to 8
[  740.684074][T25347] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  740.695317][ T6291] usb 6-1: config 0 interface 241 has no altsetting 0
[  740.714115][ T6291] usb 6-1: New USB device found, idVendor=2c42, idProduct=1608, bcdDevice=bd.4b
[  740.723257][ T6291] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  740.752695][ T6291] usb 6-1: config 0 descriptor??
[  740.772824][T25347] ext4 filesystem being mounted at /1101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  740.898992][T25347] EXT4-fs error (device loop1): ext4_empty_dir:3075: inode #12: comm syz.1.6932: invalid size
[  740.988202][ T6291] usb 6-1: string descriptor 0 read error: -71
[  741.012690][ T6291] f81232 6-1:0.241: f81534a converter detected
[  741.050778][ T6291] f81534a ttyUSB0: f81232_set_register failed status: -71
[  741.059358][T25298] loop4: detected capacity change from 0 to 32768
[  741.093538][ T6291] f81534a ttyUSB0: probe with driver f81534a failed with error -5
[  741.113493][T25298] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.6918 (25298)
[  741.175643][ T6125] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  741.191614][ T6291] usb 6-1: USB disconnect, device number 94
[  741.209553][ T6291] f81232 6-1:0.241: device disconnected
[  741.260594][T25298] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  741.311146][T25298] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  741.363047][T25298] BTRFS info (device loop4): disk space caching is enabled
[  741.402863][T25298] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  741.745135][T25298] BTRFS info (device loop4): rebuilding free space tree
[  741.849365][T25298] BTRFS info (device loop4): disabling free space tree
[  741.865665][T25298] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  741.914428][T25298] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  742.187108][T25298] BTRFS info (device loop4): balance: start -sconvert=raid0,devid=0,limit=65537,limit=65537..0,stripes=4294967292..32763
[  742.269689][T25298] BTRFS info (device loop4): balance: ended with status: 0
[  742.273988][T25452] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6954'.
[  742.312251][T25452] netlink: 'syz.2.6954': attribute type 6 has an invalid length.
[  742.320025][T25452] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6954'.
[  742.397769][T25456] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6955'.
[  742.532491][ T6127] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  742.986370][T25404] loop3: detected capacity change from 0 to 32768
[  743.447578][T25502] netlink: 'syz.4.6969': attribute type 5 has an invalid length.
[  743.455358][T25502] netlink: 3657 bytes leftover after parsing attributes in process `syz.4.6969'.
[  744.781945][ T6234] usb 5-1: new high-speed USB device number 102 using dummy_hcd
[  744.906672][T25510] loop1: detected capacity change from 0 to 32768
[  744.941041][T25510] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6973 (25510)
[  744.984768][ T6234] usb 5-1: Using ep0 maxpacket: 32
[  745.005554][ T6234] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  745.024554][ T6234] usb 5-1: config 0 has no interface number 0
[  745.041993][T25510] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  745.077858][T25510] BTRFS info (device loop1): using sha256 (sha256-x86_64) checksum algorithm
[  745.083022][ T6234] usb 5-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  745.128276][ T6234] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  745.136795][T25510] BTRFS info (device loop1): disk space caching is enabled
[  745.161063][T25510] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  745.193630][ T6234] usb 5-1: Product: syz
[  745.197913][ T6234] usb 5-1: Manufacturer: syz
[  745.219671][T25590] netlink: 'syz.2.6995': attribute type 1 has an invalid length.
[  745.226720][T25588] loop5: detected capacity change from 0 to 1024
[  745.241355][ T6234] usb 5-1: SerialNumber: syz
[  745.261863][T25588] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  745.270178][T25590] netlink: 'syz.2.6995': attribute type 1 has an invalid length.
[  745.313886][ T6234] usb 5-1: config 0 descriptor??
[  745.344782][ T6234] usb 5-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  745.434063][ T6234] usb 5-1: selecting invalid altsetting 1
[  745.439850][ T6234] usb 5-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  745.472291][T25588] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  745.506601][T25616] loop0: detected capacity change from 0 to 1024
[  745.517885][T25510] BTRFS info (device loop1): rebuilding free space tree
[  745.547743][ T6234] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  745.570731][T25588] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: inode #11: comm syz.5.6994: missing EA_INODE flag
[  745.605298][T25510] BTRFS info (device loop1): disabling free space tree
[  745.634013][T25510] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  745.637903][ T6234] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  745.664701][   T61] hfsplus: b-tree write err: -5, ino 4
[  745.677739][T25588] EXT4-fs (loop5): Remounting filesystem read-only
[  745.698926][ T6234] usb 5-1: media controller created
[  745.712256][T25510] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  745.816181][ T6234] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  745.921673][ T6136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  746.053531][ T6125] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  746.095370][T25562] loop3: detected capacity change from 0 to 32768
[  746.198056][ T6234] usb 5-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  746.344358][T25562] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  746.451008][T25562] (syz.3.6987,25562,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=0, inode=3298534883393, rec_len=0, name_len=1
[  746.553340][ T6234] usb 5-1: USB disconnect, device number 102
[  746.556274][T25562] (syz.3.6987,25562,1):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -2
[  746.667552][T25562] (syz.3.6987,25562,0):ocfs2_mknod:298 ERROR: status = -2
[  746.695514][T25562] (syz.3.6987,25562,0):ocfs2_mknod:502 ERROR: status = -2
[  747.025320][ T6129] ocfs2: Unmounting device (7,3) on (node local)
[  747.907883][T25729] loop2: detected capacity change from 0 to 256
[  747.968676][T25729] vfat: Deprecated parameter 'posix'
[  747.974155][T25729] FAT-fs: "posix" option is obsolete, not supported now
[  748.018203][T25736] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7028'.
[  748.083777][T25739] xt_l2tp: v2 doesn't support IP mode
[  748.089633][T25736] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7028'.
[  748.450807][T25745] loop1: detected capacity change from 0 to 4096
[  748.764558][T25745] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  748.778227][T25745] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  748.877235][T25745] ntfs3(loop1): ino=1e, "file1" attr_set_size
[  748.955741][T25778] loop5: detected capacity change from 0 to 1764
[  749.341478][T25804] netlink: 'syz.0.7047': attribute type 4 has an invalid length.
[  749.364601][T25804] netlink: 152 bytes leftover after parsing attributes in process `syz.0.7047'.
[  749.452836][T25804] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  749.793774][T25820] loop3: detected capacity change from 0 to 2048
[  749.929946][T25827] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  750.020329][T25820] NILFS (loop3): bad btree node (ino=16, blocknr=12): level = 0, flags = 0x0, nchildren = 0
[  750.068283][T25820] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  750.168271][T25820] Remounting filesystem read-only
[  750.216645][T25820] NILFS (loop3): bad btree node (ino=16, blocknr=12): level = 0, flags = 0x0, nchildren = 0
[  750.252408][T25820] NILFS error (device loop3): nilfs_bmap_last_key: broken bmap (inode number=16)
[  750.280493][T25820] NILFS (loop3): error -5 truncating bmap (ino=16)
[  750.549350][ T6129] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[  751.163194][T25877] netlink: 328 bytes leftover after parsing attributes in process `syz.5.7071'.
[  751.409146][T25814] loop1: detected capacity change from 0 to 32768
[  751.450515][T25889] loop4: detected capacity change from 0 to 256
[  751.474998][T25814] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.7052 (25814)
[  751.576754][T25814] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  751.603656][T25889] FAT-fs (loop4): Directory bread(block 64) failed
[  751.611389][T25889] FAT-fs (loop4): Directory bread(block 65) failed
[  751.631031][T25814] BTRFS info (device loop1): using sha256 (sha256-x86_64) checksum algorithm
[  751.642397][T25814] BTRFS info (device loop1): using free-space-tree
[  751.649340][T25889] FAT-fs (loop4): Directory bread(block 66) failed
[  751.680889][T25889] FAT-fs (loop4): Directory bread(block 67) failed
[  751.701240][T25889] FAT-fs (loop4): Directory bread(block 68) failed
[  751.707857][T25889] FAT-fs (loop4): Directory bread(block 69) failed
[  751.735246][T25889] FAT-fs (loop4): Directory bread(block 70) failed
[  751.743643][T25889] FAT-fs (loop4): Directory bread(block 71) failed
[  751.750342][T25889] FAT-fs (loop4): Directory bread(block 72) failed
[  751.758279][T25889] FAT-fs (loop4): Directory bread(block 73) failed
[  751.837059][T25908] loop2: detected capacity change from 0 to 4096
[  751.912343][T25908] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  752.100930][T25908] ntfs3(loop2): ino=19, mi_enum_attr
[  752.136295][ T6125] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  752.152920][T25908] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  752.182562][T25941] loop3: detected capacity change from 0 to 512
[  752.423349][T25941] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  752.489979][T25941] ext4 filesystem being mounted at /1131/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  752.826663][ T6129] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  753.206196][T25990] xt_TCPMSS: Only works on TCP SYN packets
[  753.619465][T26010] netlink: 'syz.0.7103': attribute type 11 has an invalid length.
[  753.886668][T26033] loop0: detected capacity change from 0 to 128
[  753.959270][T26033] ext4: Unknown parameter 'fsname'
[  754.047301][T26033] Invalid option length (1047378) for dns_resolver key
[  754.125708][ T6291] usb 6-1: new high-speed USB device number 95 using dummy_hcd
[  754.376381][ T6291] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  754.403458][ T6291] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  754.443698][ T6291] usb 6-1: Product: syz
[  754.452347][ T6291] usb 6-1: Manufacturer: syz
[  754.459104][T26062] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  754.473685][ T6291] usb 6-1: SerialNumber: syz
[  754.495633][ T6291] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  754.550145][T16442] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  754.716450][   T30] audit: type=1326 audit(1751616769.128:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26073 comm="syz.2.7119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f071a38e929 code=0x7ffc0000
[  754.816660][   T30] audit: type=1326 audit(1751616769.128:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26073 comm="syz.2.7119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f071a38e929 code=0x7ffc0000
[  754.931045][   T30] audit: type=1326 audit(1751616769.137:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26073 comm="syz.2.7119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7f071a38e929 code=0x7ffc0000
[  755.016815][   T30] audit: type=1326 audit(1751616769.137:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26073 comm="syz.2.7119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f071a38e929 code=0x7ffc0000
[  755.056649][   T43] usb 6-1: USB disconnect, device number 95
[  755.099359][   T30] audit: type=1326 audit(1751616769.137:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26073 comm="syz.2.7119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f071a38e929 code=0x7ffc0000
[  755.303808][T26102] loop2: detected capacity change from 0 to 64
[  755.333956][T26108] loop3: detected capacity change from 0 to 8
[  755.342990][T26102] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  755.363457][T26108] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  755.405482][T26108] cramfs: bad data blocksize 4291821208
[  755.427189][ T6176] udevd[6176]: incorrect cramfs checksum on /dev/loop3
[  755.448757][T26108] cramfs: bad data blocksize 4291821208
[  755.483702][   T30] audit: type=1800 audit(1751616769.848:98): pid=26108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.7129" name="file2" dev="loop3" ino=3146076 res=0 errno=0
[  755.602278][ T6176] udevd[6176]: incorrect cramfs checksum on /dev/loop3
[  755.732278][T16442] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  755.767319][T16442] ath9k_htc: Failed to initialize the device
[  755.801454][   T43] usb 6-1: ath9k_htc: USB layer deinitialized
[  756.095539][T26145] loop5: detected capacity change from 0 to 8
[  756.169576][T26145] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  756.229504][ T6176] udevd[6176]: incorrect cramfs checksum on /dev/loop5
[  756.279057][T26145] cramfs: Error -3 while decompressing!
[  756.319240][T26145] cramfs: ffffffff99bbab88(1306)->ffff88804ae5d000(4096)
[  756.349182][T26145] cramfs: bad data blocksize 3221485966
[  756.366698][T26160] netlink: 'syz.0.7142': attribute type 21 has an invalid length.
[  756.373909][T26162] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  756.392083][T26145] cramfs: Error -3 while decompressing!
[  756.405892][T26145] cramfs: ffffffff99bbab88(1306)->ffff88804ae5d000(4096)
[  756.467484][ T6176] udevd[6176]: incorrect cramfs checksum on /dev/loop5
[  756.725935][T26178] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7147'.
[  756.765933][T26178] netlink: 'syz.0.7147': attribute type 5 has an invalid length.
[  756.809019][T26178] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7147'.
[  756.875590][T26178] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  756.887815][T26189] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  756.916635][T26178] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  756.958300][T26178] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  756.995619][T26178] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  756.998273][T26195] loop1: detected capacity change from 0 to 512
[  757.033664][T26178] geneve2: entered promiscuous mode
[  757.052994][T26178] geneve2: entered allmulticast mode
[  757.111828][T26190] loop4: detected capacity change from 0 to 4096
[  757.130066][T26195] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  757.133996][T26190] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  757.225810][T26195] ext4 filesystem being mounted at /1130/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  757.352255][T26195] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  757.420993][T26195] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 64512
[  757.431513][T26190] ntfs3(loop4): ino=19, mi_enum_attr
[  757.460796][T26190] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  757.483659][T26195] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.7153: Failed to acquire dquot type 0
[  757.603920][T26190] ntfs3(loop4): failed to convert "c46c" to cp737
[  757.636059][T26190] ntfs3(loop4): ino=20, mi_enum_attr
[  757.793877][ T6125] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  758.002076][T26272] loop3: detected capacity change from 0 to 8
[  758.075763][T26276] netlink: 14 bytes leftover after parsing attributes in process `syz.1.7162'.
[  758.332440][T26295] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7171'.
[  758.393696][T26301] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7173'.
[  758.417437][T26304] netlink: 'syz.5.7174': attribute type 3 has an invalid length.
[  758.435914][T26304] netlink: 'syz.5.7174': attribute type 1 has an invalid length.
[  758.478774][T26304] netlink: 216 bytes leftover after parsing attributes in process `syz.5.7174'.
[  758.753907][T26320] netlink: 256 bytes leftover after parsing attributes in process `syz.1.7178'.
[  758.831158][T26320] unsupported nlmsg_type 40
[  759.397333][T26351] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7189'.
[  759.928439][T26382] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  760.029850][T26385] loop4: detected capacity change from 0 to 2048
[  760.164907][T26400] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  760.246520][T26403] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[  760.258480][T26400] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  760.303713][T26400] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4)
[  760.361017][T26400] Remounting filesystem read-only
[  760.492313][ T6127] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer
[  760.763783][T26433] netlink: 5404 bytes leftover after parsing attributes in process `syz.0.7215'.
[  761.178443][T26451] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7221'.
[  761.304078][T26455] loop5: detected capacity change from 0 to 512
[  761.354747][T26455] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  761.447944][T26455] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c11c, mo2=0002]
[  761.509945][T26455] System zones: 1-12
[  761.562329][T26455] EXT4-fs (loop5): 1 truncate cleaned up
[  761.633327][T26455] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  761.696193][T26426] loop1: detected capacity change from 0 to 32768
[  761.733235][T26426] (syz.1.7212,26426,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  761.828221][T26426] (syz.1.7212,26426,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  761.935596][ T6136] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  761.938575][T26426] JBD2: Ignoring recovery information on journal
[  762.212724][T26426] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  762.213834][T26504] netlink: 'syz.4.7236': attribute type 7 has an invalid length.
[  762.305802][T26504] netlink: 'syz.4.7236': attribute type 8 has an invalid length.
[  762.350230][T26506] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  762.397819][T26426] 
[  762.400194][T26426] ======================================================
[  762.407213][T26426] WARNING: possible circular locking dependency detected
[  762.414227][T26426] 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 Not tainted
[  762.421337][T26426] ------------------------------------------------------
[  762.428358][T26426] syz.1.7212/26426 is trying to acquire lock:
[  762.434421][T26426] ffff888061f6a640 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  762.448050][T26426] 
[  762.448050][T26426] but task is already holding lock:
[  762.455414][T26426] ffff888050e64da0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270
[  762.466343][T26426] 
[  762.466343][T26426] which lock already depends on the new lock.
[  762.466343][T26426] 
[  762.476758][T26426] 
[  762.476758][T26426] the existing dependency chain (in reverse order) is:
[  762.485766][T26426] 
[  762.485766][T26426] -> #8 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}:
[  762.494640][T26426]        lock_acquire+0x120/0x360
[  762.499674][T26426]        down_write+0x96/0x1f0
[  762.504436][T26426]        ocfs2_lock_global_qf+0x1e8/0x270
[  762.510156][T26426]        ocfs2_acquire_dquot+0x2b0/0xb30
[  762.515791][T26426]        dqget+0x7b1/0xf10
[  762.520206][T26426]        dquot_set_dqblk+0x2b/0xfa0
[  762.525492][T26426]        quota_setquota+0x4b7/0x540
[  762.530702][T26426]        __se_sys_quotactl+0x279/0x950
[  762.536168][T26426]        do_syscall_64+0xfa/0x3b0
[  762.541202][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.547611][T26426] 
[  762.547611][T26426] -> #7 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{4:4}:
[  762.558158][T26426]        lock_acquire+0x120/0x360
[  762.563190][T26426]        down_write+0x96/0x1f0
[  762.567944][T26426]        ocfs2_lock_global_qf+0x1ca/0x270
[  762.573663][T26426]        ocfs2_acquire_dquot+0x2b0/0xb30
[  762.579296][T26426]        dqget+0x7b1/0xf10
[  762.583707][T26426]        dquot_set_dqblk+0x2b/0xfa0
[  762.588907][T26426]        quota_setquota+0x4b7/0x540
[  762.594116][T26426]        __se_sys_quotactl+0x279/0x950
[  762.599580][T26426]        do_syscall_64+0xfa/0x3b0
[  762.604609][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.611024][T26426] 
[  762.611024][T26426] -> #6 (&dquot->dq_lock){+.+.}-{4:4}:
[  762.618680][T26426]        lock_acquire+0x120/0x360
[  762.623707][T26426]        __mutex_lock+0x182/0xe80
[  762.628745][T26426]        dqget+0x72a/0xf10
[  762.633154][T26426]        __dquot_initialize+0x3b3/0xcb0
[  762.638694][T26426]        __ext4_new_inode+0x7db/0x3c50
[  762.644142][T26426]        ext4_xattr_inode_lookup_create+0xa3a/0x1c20
[  762.650827][T26426]        ext4_xattr_block_set+0x223/0x2ac0
[  762.656641][T26426]        ext4_xattr_set_handle+0x1350/0x1590
[  762.662625][T26426]        ext4_xattr_set+0x230/0x320
[  762.667850][T26426]        __vfs_setxattr+0x43c/0x480
[  762.673046][T26426]        __vfs_setxattr_noperm+0x12d/0x660
[  762.678849][T26426]        vfs_setxattr+0x16b/0x2f0
[  762.683868][T26426]        filename_setxattr+0x274/0x600
[  762.689323][T26426]        path_setxattrat+0x364/0x3a0
[  762.694607][T26426]        __x64_sys_setxattr+0xbc/0xe0
[  762.699976][T26426]        do_syscall_64+0xfa/0x3b0
[  762.705008][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.711418][T26426] 
[  762.711418][T26426] -> #5 (&ei->xattr_sem){++++}-{4:4}:
[  762.719074][T26426]        lock_acquire+0x120/0x360
[  762.724104][T26426]        down_read+0x46/0x2e0
[  762.728776][T26426]        ext4_setattr+0x855/0x1bc0
[  762.733880][T26426]        notify_change+0xb36/0xe40
[  762.738998][T26426]        chown_common+0x40c/0x5c0
[  762.744021][T26426]        do_fchownat+0x161/0x270
[  762.748960][T26426]        __x64_sys_chown+0x82/0xa0
[  762.754074][T26426]        do_syscall_64+0xfa/0x3b0
[  762.759108][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.765536][T26426] 
[  762.765536][T26426] -> #4 (jbd2_handle){++++}-{0:0}:
[  762.772930][T26426]        lock_acquire+0x120/0x360
[  762.777962][T26426]        start_this_handle+0x1fa7/0x21c0
[  762.783599][T26426]        jbd2__journal_start+0x2c1/0x5b0
[  762.789235][T26426]        jbd2_journal_start+0x2a/0x40
[  762.794607][T26426]        ocfs2_start_trans+0x376/0x6d0
[  762.800068][T26426]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  762.806319][T26426]        ocfs2_dismount_volume+0x201/0x8d0
[  762.812130][T26426]        generic_shutdown_super+0x135/0x2c0
[  762.818030][T26426]        kill_block_super+0x44/0x90
[  762.823221][T26426]        deactivate_locked_super+0xbc/0x130
[  762.829120][T26426]        cleanup_mnt+0x425/0x4c0
[  762.834057][T26426]        task_work_run+0x1d4/0x260
[  762.839171][T26426]        exit_to_user_mode_loop+0xec/0x110
[  762.844985][T26426]        do_syscall_64+0x2bd/0x3b0
[  762.850104][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.856513][T26426] 
[  762.856513][T26426] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  762.865035][T26426]        lock_acquire+0x120/0x360
[  762.870065][T26426]        down_read+0x46/0x2e0
[  762.874744][T26426]        ocfs2_start_trans+0x36a/0x6d0
[  762.880202][T26426]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  762.886455][T26426]        ocfs2_dismount_volume+0x201/0x8d0
[  762.892273][T26426]        generic_shutdown_super+0x135/0x2c0
[  762.898257][T26426]        kill_block_super+0x44/0x90
[  762.903472][T26426]        deactivate_locked_super+0xbc/0x130
[  762.909395][T26426]        cleanup_mnt+0x425/0x4c0
[  762.914360][T26426]        task_work_run+0x1d4/0x260
[  762.919481][T26426]        exit_to_user_mode_loop+0xec/0x110
[  762.925300][T26426]        do_syscall_64+0x2bd/0x3b0
[  762.930422][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  762.936835][T26426] 
[  762.936835][T26426] -> #2 (sb_internal#2){.+.+}-{0:0}:
[  762.944330][T26426]        lock_acquire+0x120/0x360
[  762.949362][T26426]        ocfs2_start_trans+0x26b/0x6d0
[  762.954828][T26426]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  762.961090][T26426]        ocfs2_dismount_volume+0x201/0x8d0
[  762.966909][T26426]        generic_shutdown_super+0x135/0x2c0
[  762.972808][T26426]        kill_block_super+0x44/0x90
[  762.978002][T26426]        deactivate_locked_super+0xbc/0x130
[  762.983903][T26426]        cleanup_mnt+0x425/0x4c0
[  762.988844][T26426]        task_work_run+0x1d4/0x260
[  762.993962][T26426]        exit_to_user_mode_loop+0xec/0x110
[  762.999784][T26426]        do_syscall_64+0x2bd/0x3b0
[  763.004905][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.011317][T26426] 
[  763.011317][T26426] -> #1 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#3){+.+.}-{4:4}:
[  763.021855][T26426]        lock_acquire+0x120/0x360
[  763.026887][T26426]        down_write+0x96/0x1f0
[  763.031646][T26426]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  763.038100][T26426]        ocfs2_reserve_cluster_bitmap_bits+0xc4/0x1c0
[  763.044863][T26426]        ocfs2_reserve_local_alloc_bits+0x88f/0x24e0
[  763.051533][T26426]        ocfs2_reserve_clusters_with_limit+0x1be/0xba0
[  763.058381][T26426]        ocfs2_symlink+0xf78/0x23e0
[  763.063579][T26426]        vfs_symlink+0x143/0x2f0
[  763.068510][T26426]        do_symlinkat+0x1b1/0x3f0
[  763.073528][T26426]        __x64_sys_symlinkat+0x95/0xb0
[  763.078984][T26426]        do_syscall_64+0xfa/0x3b0
[  763.084022][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.090436][T26426] 
[  763.090436][T26426] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6){+.+.}-{4:4}:
[  763.100974][T26426]        validate_chain+0xb9b/0x2140
[  763.106262][T26426]        __lock_acquire+0xab9/0xd20
[  763.111468][T26426]        lock_acquire+0x120/0x360
[  763.116499][T26426]        down_write+0x96/0x1f0
[  763.121256][T26426]        ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  763.127930][T26426]        ocfs2_reserve_clusters_with_limit+0x1be/0xba0
[  763.134783][T26426]        ocfs2_lock_allocators+0x2fa/0x5c0
[  763.140591][T26426]        ocfs2_extend_allocation+0x39b/0x17a0
[  763.146672][T26426]        ocfs2_extend_no_holes+0x20e/0x4a0
[  763.152496][T26426]        ocfs2_acquire_dquot+0x6c6/0xb30
[  763.158136][T26426]        dqget+0x7b1/0xf10
[  763.162552][T26426]        dquot_set_dqblk+0x2b/0xfa0
[  763.167751][T26426]        quota_setquota+0x4b7/0x540
[  763.172956][T26426]        __se_sys_quotactl+0x279/0x950
[  763.178422][T26426]        do_syscall_64+0xfa/0x3b0
[  763.183455][T26426]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.189866][T26426] 
[  763.189866][T26426] other info that might help us debug this:
[  763.189866][T26426] 
[  763.200082][T26426] Chain exists of:
[  763.200082][T26426]   &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6 --> &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7 --> &ocfs2_quota_ip_alloc_sem_key
[  763.200082][T26426] 
[  763.220113][T26426]  Possible unsafe locking scenario:
[  763.220113][T26426] 
[  763.227556][T26426]        CPU0                    CPU1
[  763.232908][T26426]        ----                    ----
[  763.238263][T26426]   lock(&ocfs2_quota_ip_alloc_sem_key);
[  763.243900][T26426]                                lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7);
[  763.253718][T26426]                                lock(&ocfs2_quota_ip_alloc_sem_key);
[  763.261879][T26426]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#6);
[  763.269174][T26426] 
[  763.269174][T26426]  *** DEADLOCK ***
[  763.269174][T26426] 
[  763.277309][T26426] 4 locks held by syz.1.7212/26426:
[  763.282499][T26426]  #0: ffff88807847c0e0 (&type->s_umount_key#102){++++}-{4:4}, at: super_lock+0x2a9/0x3b0
[  763.292471][T26426]  #1: ffff88804752c0a8 (&dquot->dq_lock){+.+.}-{4:4}, at: ocfs2_acquire_dquot+0x2a3/0xb30
[  763.302508][T26426]  #2: ffff888050e65100 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{4:4}, at: ocfs2_lock_global_qf+0x1ca/0x270
[  763.315598][T26426]  #3: ffff888050e64da0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270
[  763.326944][T26426] 
[  763.326944][T26426] stack backtrace:
[  763.332828][T26426] CPU: 0 UID: 0 PID: 26426 Comm: syz.1.7212 Not tainted 6.16.0-rc3-syzkaller-00306-gaaf724ed6926 #0 PREEMPT(full) 
[  763.332858][T26426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  763.332873][T26426] Call Trace:
[  763.332883][T26426]  <TASK>
[  763.332892][T26426]  dump_stack_lvl+0x189/0x250
[  763.332933][T26426]  ? __pfx_dump_stack_lvl+0x10/0x10
[  763.332970][T26426]  ? __pfx__printk+0x10/0x10
[  763.332996][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333024][T26426]  ? print_lock_name+0xde/0x100
[  763.333049][T26426]  print_circular_bug+0x2ee/0x310
[  763.333075][T26426]  check_noncircular+0x134/0x160
[  763.333101][T26426]  validate_chain+0xb9b/0x2140
[  763.333124][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333151][T26426]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  763.333190][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333216][T26426]  ? look_up_lock_class+0x74/0x170
[  763.333251][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333277][T26426]  ? register_lock_class+0x51/0x320
[  763.333312][T26426]  __lock_acquire+0xab9/0xd20
[  763.333348][T26426]  ? ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  763.333371][T26426]  lock_acquire+0x120/0x360
[  763.333402][T26426]  ? ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  763.333426][T26426]  ? do_raw_spin_lock+0x121/0x290
[  763.333457][T26426]  down_write+0x96/0x1f0
[  763.333478][T26426]  ? ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  763.333500][T26426]  ? __pfx_down_write+0x10/0x10
[  763.333522][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333548][T26426]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  763.333579][T26426]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  763.333613][T26426]  ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  763.333638][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333664][T26426]  ? stack_depot_save_flags+0x429/0x900
[  763.333697][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.333728][T26426]  ? kasan_save_track+0x4f/0x80
[  763.333763][T26426]  ? __kasan_kmalloc+0x93/0xb0
[  763.333783][T26426]  ? ocfs2_reserve_clusters_with_limit+0xea/0xba0
[  763.333812][T26426]  ? ocfs2_lock_allocators+0x2fa/0x5c0
[  763.333840][T26426]  ? ocfs2_extend_no_holes+0x20e/0x4a0
[  763.333878][T26426]  ? __pfx_ocfs2_reserve_local_alloc_bits+0x10/0x10
[  763.333900][T26426]  ? __se_sys_quotactl+0x279/0x950
[  763.333933][T26426]  ? do_syscall_64+0xfa/0x3b0
[  763.333968][T26426]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.334000][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334027][T26426]  ? __lock_acquire+0xab9/0xd20
[  763.334063][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334093][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334122][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334148][T26426]  ? do_raw_spin_unlock+0x122/0x240
[  763.334176][T26426]  ? _raw_spin_unlock+0x28/0x50
[  763.334204][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334230][T26426]  ? ocfs2_alloc_should_use_local+0x152/0x310
[  763.334266][T26426]  ? ocfs2_reserve_clusters_with_limit+0x16b/0xba0
[  763.334297][T26426]  ocfs2_reserve_clusters_with_limit+0x1be/0xba0
[  763.334327][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334357][T26426]  ? __pfx_ocfs2_reserve_clusters_with_limit+0x10/0x10
[  763.334388][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334415][T26426]  ? rcu_is_watching+0x15/0xb0
[  763.334450][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334477][T26426]  ? ocfs2_num_free_extents+0x347/0x620
[  763.334506][T26426]  ? __pfx_ocfs2_num_free_extents+0x10/0x10
[  763.334534][T26426]  ? __pfx_ocfs2_read_blocks+0x10/0x10
[  763.334564][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334591][T26426]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  763.334623][T26426]  ocfs2_lock_allocators+0x2fa/0x5c0
[  763.334653][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334683][T26426]  ? __pfx_ocfs2_lock_allocators+0x10/0x10
[  763.334716][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.334746][T26426]  ? ocfs2_read_inode_block+0x11d/0x190
[  763.334773][T26426]  ? __pfx_ocfs2_read_inode_block+0x10/0x10
[  763.334806][T26426]  ocfs2_extend_allocation+0x39b/0x17a0
[  763.334842][T26426]  ? __se_sys_quotactl+0x279/0x950
[  763.334875][T26426]  ? do_syscall_64+0xfa/0x3b0
[  763.334909][T26426]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.334942][T26426]  ? __pfx_ocfs2_extend_allocation+0x10/0x10
[  763.334987][T26426]  ? kasan_quarantine_put+0xdd/0x220
[  763.335021][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335052][T26426]  ? __pfx_ocfs2_journal_access_di+0x10/0x10
[  763.335087][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335114][T26426]  ? find_tree_dqentry+0xc6c/0x1070
[  763.335150][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335177][T26426]  ? __lock_acquire+0xab9/0xd20
[  763.335215][T26426]  ocfs2_extend_no_holes+0x20e/0x4a0
[  763.335254][T26426]  ? __pfx_ocfs2_extend_no_holes+0x10/0x10
[  763.335291][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335317][T26426]  ? do_raw_spin_unlock+0x122/0x240
[  763.335345][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335371][T26426]  ? _raw_spin_unlock+0x28/0x50
[  763.335399][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335426][T26426]  ? ocfs2_qinfo_unlock+0x121/0x150
[  763.335456][T26426]  ocfs2_acquire_dquot+0x6c6/0xb30
[  763.335493][T26426]  ? __pfx_ocfs2_acquire_dquot+0x10/0x10
[  763.335522][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335550][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335577][T26426]  ? percpu_counter_add_batch+0xea/0x1e0
[  763.335605][T26426]  dqget+0x7b1/0xf10
[  763.335634][T26426]  dquot_set_dqblk+0x2b/0xfa0
[  763.335666][T26426]  quota_setquota+0x4b7/0x540
[  763.335702][T26426]  ? __pfx_quota_setquota+0x10/0x10
[  763.335740][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335775][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335806][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335832][T26426]  ? do_quotactl+0x734/0x860
[  763.335870][T26426]  __se_sys_quotactl+0x279/0x950
[  763.335903][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.335930][T26426]  ? __se_sys_futex+0x36f/0x400
[  763.335960][T26426]  ? __pfx___se_sys_quotactl+0x10/0x10
[  763.335994][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.336021][T26426]  ? rcu_is_watching+0x15/0xb0
[  763.336059][T26426]  ? do_syscall_64+0xbe/0x3b0
[  763.336093][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.336123][T26426]  do_syscall_64+0xfa/0x3b0
[  763.336157][T26426]  ? lockdep_hardirqs_on+0x9c/0x150
[  763.336190][T26426]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.336212][T26426]  ? srso_alias_return_thunk+0x5/0xfbef5
[  763.336238][T26426]  ? exc_page_fault+0x9f/0xf0
[  763.336271][T26426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  763.336294][T26426] RIP: 0033:0x7f908518e929
[  763.336314][T26426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  763.336334][T26426] RSP: 002b:00007f908603e038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  763.336357][T26426] RAX: ffffffffffffffda RBX: 00007f90853b5fa0 RCX: 00007f908518e929
[  763.336374][T26426] RDX: 000000000000ee00 RSI: 0000200000000240 RDI: ffffffff80000801
[  763.336391][T26426] RBP: 00007f9085210b39 R08: 0000000000000000 R09: 0000000000000000
[  763.336406][T26426] R10: 0000200000000f00 R11: 0000000000000246 R12: 0000000000000000
[  763.336421][T26426] R13: 0000000000000000 R14: 00007f90853b5fa0 R15: 00007ffe0b2fd328
[  763.336446][T26426]  </TASK>
[  764.044925][    C0] vkms_vblank_simulate: vblank timer overrun
[  764.067540][T26515] loop2: detected capacity change from 0 to 2048
[  764.170821][T26515] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  764.198085][T26515] EXT4-fs (loop2): Online resizing not supported with bigalloc
[  764.201919][ T6125] ocfs2: Unmounting device (7,1) on (node local)
[  764.231649][ T6130] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  766.849804][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  766.856154][ T1295] ieee802154 phy1 wpan1: encryption failed: -22