last executing test programs:

2.875270605s ago: executing program 1 (id=7285):
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0x0, 0x4ea, &(0x7f0000000380)="$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")
fchmod(r0, 0x100)

2.152471285s ago: executing program 1 (id=7300):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
process_vm_readv(0x0, &(0x7f00000000c0)=[{&(0x7f00000002c0)=""/108, 0x6c}], 0x10000000000002a3, &(0x7f0000000b40)=[{&(0x7f0000000500)=""/173, 0xad}], 0x1, 0x0)

1.828054961s ago: executing program 1 (id=7307):
r0 = syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x41)
fallocate(r0, 0x10, 0x7, 0x3ff)

1.774683766s ago: executing program 2 (id=7309):
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)

1.683250226s ago: executing program 1 (id=7311):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000100))

1.62881162s ago: executing program 2 (id=7313):
r0 = socket$inet(0x2, 0x3, 0xa)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000480)=@raw={'raw\x00', 0x8, 0x3, 0x338, 0x0, 0xe138, 0x198, 0x1c0, 0x198, 0x2a0, 0x358, 0x358, 0x2a0, 0x358, 0x3, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, '\x00', 'veth0_to_bond\x00', {}, {}, 0x21}, 0x0, 0x158, 0x1c0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'fsm\x00', "0d00040000000d000e000004fff0cf81dfd28c89544e14cd3e01dd24289831867846c88621039b284c3ff45c42995560a99952bed40cf5a8c1df6cdbdb7e2378d5afd35f4c16827f55b3af494e39e8fb330200000000000032b6a99a8d87298e88a94cb519f5c17631af916a0002000000000000000000000000000000000049", 0x8}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x4, 0x0, 0x0, 0x0, 'snmp_trap\x00', 'syz0\x00', {0xfffffffffffffffc}}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x398)

1.59566988s ago: executing program 1 (id=7314):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f00000035c0)='./file0\x00', 0x800, &(0x7f0000003680)={[{@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@keep_last_dots}, {@namecase}, {@keep_last_dots}, {@errors_continue}, {@utf8}, {@sys_tz}, {@zero_size_dir}, {@errors_continue}, {@sys_tz}, {@dmask={'dmask', 0x3d, 0xc}}]}, 0x1, 0x152a, &(0x7f0000001f80)="$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")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\xdd\x98\xb8\rQh#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15A\xb5\xbbG\xa0\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file0\x00', 0x0, 0x201008, 0x0)

1.491072844s ago: executing program 4 (id=7317):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000e80)=@nat={'nat\x00', 0x8, 0x5, 0x628, 0x0, 0x208, 0xffffffff, 0x2f8, 0x0, 0x558, 0x558, 0xffffffff, 0x558, 0x558, 0x5, 0x0, {[{{@uncond, 0xb7030000, 0xa8, 0xf0}, @NETMAP={0x48, 'NETMAP\x00', 0x0, {0x1d, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv6=@private0, @port, @gre_key}}}, {{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, [0x80000000, 0xffffffff, 0x0, 0xff000000], [0xff, 0x0, 0xffffff00, 0xffffffff], 'veth0_to_hsr\x00', 'nr0\x00', {}, {0xff}, 0x33, 0x4, 0x4, 0x42}, 0x0, 0xd0, 0x118, 0x0, {}, [@common=@unspec=@connlabel={{0x28}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv4=@loopback, @ipv6=@dev, @icmp_id, @icmp_id}}}, {{@ipv6={@mcast1, @local, [], [], 'wg1\x00', 'virt_wifi0\x00'}, 0x0, 0xa8, 0xf0}, @unspec=@SNAT1={0x48, 'SNAT\x00', 0x1, {0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @ipv4, @icmp_id, @icmp_id}}}, {{@ipv6={@rand_addr=' \x01\x00', @ipv4={'\x00', '\xff\xff', @empty}, [], [], 'dummy0\x00', 'syzkaller0\x00', {}, {}, 0x0, 0x0, 0x7}, 0x0, 0x218, 0x260, 0x0, {}, [@common=@inet=@sctp={{0x148}}, @common=@mh={{0x28}, {"0c06"}}]}, @REDIRECT={0x48, 'REDIRECT\x00', 0x0, {0x0, @ipv4=@multicast1, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}, @icmp_id, @icmp_id}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x688)

1.426366625s ago: executing program 1 (id=7318):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x0, 0x4703, &(0x7f0000004800)="$eJzs212IXFcBB/BzJ6vZpMl2P9ImafoxSQQXLcumT9X6ENeqjabNh7bVVFlnN9vN6uzMujujBYPUIIiCoARBxQ+qQulLLYiBvtQiFPxAWoVSUbS+iBSq4INBG+jKzNybnXtntneyk7S0/f2gnb3n3nPumf3vPXfOPZNCrHZqYaW4sFIsVYrV2ftXbil+rlquL86FwqvktT4/vbkSOcn+tXPkfR/4yD23hPCHY1/70Orq6mpoGA5dHWj7+fy/T8+2vyYKmTqNdru31vLH+iMv/fwtr3REnhMhhB0d/WrYFEL42C9C2BxCGInLRuPXLSGEbSGEKITw6G/+9ePBfrrQ5uy9Lzx37MzhfWemHn/smQvzR9c9MArhu+XdN88vvrh/023Pv+MynR4AAF7RB48fufvo5IHwZBSGzg10fl7fGb8mn4/vfNun7np4YG3/Kr3Z9CqGCgAAABlr8//h6OUu63XJylqyJPjEAyfufipa229i+/p26K4jt79/8kC8/ht17L81Lvrnezc111Cz677Z9d+RTP3u679r53n4q8/+svLWjfc/6V9y3uEQFSZS24XCxEQIx6Za27uirYVydaX2zvur9crJjZ/3jSKdf3b1fm1Bv9f8RzPV89b/d3/i8z/bMtDPOxgL2b/axnax80+ZLtL5rz+W/+RLUU/5j2Xq5eV/x9Pbz/9qcz/vIHtGLkU6/9aFuK/9gGJrAGjk/82B/Px3ZNrPy//7U+cePbGB7/80xpnhqNHXwdQI8HJcvs5XmMhI598KIjV0xr/I9a7//2XyvybTfl7+d1b/8bu/9XH/X2/8H5/qp803j3T+rSCKqSPWrv+RQv71f22m/bz8f3vqz89+sq97dWf+jf6Pu//3JJ1/fCNOD57N32Sv4//OTPt5+e8au++hhQ30+8Nb4n4ORWGs7Vun5xq3sKG19ermlKaxe2kDJ3kTSOff+q2lLp2h1kvz+h/OH/93ZdrPy/+hPV9/z+m+vv/bffyfNP73JJ3/lmbZpeT/Uib/3Zn28/L/4em//+W+yzz+N7YPyr8n6fy3duxfe/5T6Gn+d12mft7zn32jTz3y1z7m/0n/kvMmz3+S5xDjUev5D92l879q3eN6vf/vydTLu/6/9Z/nn97fz/gfDXoC0Id0/ttahV0mgL3mf32m/bz8v3DPlz/+pw3M/5qf+AaT/Nvm/5tb5UeN/z1J57+9VZj6x1APNv/fvP9Hnbn/N5P/DZn28/K/cGhi4CuX+f7f6P94l0fZdErnP7TucY38f9/D/f/GTL28/L+496cv3tzX5/8QJs31Nyyd/9XrHte8/gfz878pUy8v/+9849dPPNhH/9/eR12y+bfu9anLKf5s3uv8v5hpPy//H42fP7v/Csz/bnX/70k6/9aq+aXkn53/7820n5f/9478YHngCjz/uUP+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzIavw6HqDCR2i4UJiZCGIu3d4Wt0Uzp5PRMuTr7mZUQdsTlxTAazZerM6Xy9EKlenJuulQuV2dDuCbevyMMRivlam16sbR07cW2tkSn5krLtZm5Ui2EsDMuvz5sT9qaWagtlpaaxyZ1ropKn61Xa6WJ+srccth9sXxbUj6/XK0vXXexrasL1eWlU6XK9MmF5XdPTk5Ohj0X+zwSzT1Qm6vUWr1t7W3USeoOR21vprn7hrbzfbpaX66Uys3yG9vqlKuzpXJbnZvazldbrldmS7W56XJ1Pjlfsa1u23tr7t4b7xsPI6n3l9TNOhi/3n7o+EePHz7Qsb8YpfOu1BfnJrd3/5sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4I3rydve9e0QwkBrqxBCOJj8EMX/pZy994Xnjp05vO/M1OOPPXNh/mi3YwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4PztwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYuZ+XKro4DsBnxve+FkgpbYRcBoaI6E7Cgn4RSeU1smWb1kGtEjIoCgwjWhYEQVC7qCBoFVT+BVELl62qTS1aGERQMTqTlzvCDS90zHkeGM4Mc++ZLwzcO3M+hwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB+nN2x2JW1l3ZtXtq6+0PozM/9H0IYTZb3P+/tCD0hhK9fZk6HVdpCT1P/bybnxstXTX7v7R9/eH00WXv9xXeL63aHJB1qON6ZpOnQ0Nr736juDD6bHkxCSGMXQhQLY0/O1EIIHbELIYqfH+cvZr/v/8UuhCj6P9ztyu5/LXYhRLF196e+Wv6MR/Wcr18YbPzvb/UI3sYjOuvQ25NX3qVuauW9zN//k3zzPlgNsyeOvH8euwiimZ2bOhq7BgAA4O861yL/D1uW9+9fTkJPdzn3/9aU//c29b96/r/i3vYbYzNthRDbSmOT2fHwvnb63PhODVy9/bpmvKeq5P/VJv+vNvl/tcn/q03+X23yfzKv5P+V9PjmnsUXsYsgGvk/AABUz6HjE1P14ZHs5X/Tj85yXt+Xt/U8T39wa3rgUcO4kfzw33b42MSBg8Mj+X0vDwiurP+QLp39ns/3aG4Lk03zLlqt/9D7dGH+Wmf5E/U/nL9R1Fdc1/oPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAvdueehkEwCsPod1sRtdGqaMLCT4IPNDAiACnMaEAHEwZgIAQUMJBzlnuTZ3kBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA5/tXeV18f2mM9Foj0lR22bV/jqfZz9y3w/I+e9y4FQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADZ24EAGAAAAQJi/dR7tBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4KkAAAD//8Oayzs=")
lsetxattr$security_ima(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), &(0x7f0000000500)=ANY=[], 0xe01, 0x1)

1.385238538s ago: executing program 2 (id=7320):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
ioctl$EVIOCGKEYCODE_V2(r0, 0x400445a0, &(0x7f0000000040)=""/255)

1.307279736s ago: executing program 0 (id=7322):
r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2)
ioctl$FE_GET_PROPERTY(r0, 0x80106f53, &(0x7f0000000200)={0x2d, 0x0})

1.301631208s ago: executing program 4 (id=7323):
creat(&(0x7f00000000c0)='./file0\x00', 0xd4)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)

1.235901727s ago: executing program 2 (id=7324):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f00000000c0)="240000001e005f0214fffffffffffff807000000a600000000000000080008001d000000", 0x24)

1.150553879s ago: executing program 0 (id=7326):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000c00), &(0x7f0000002000)=0x2)

1.074035225s ago: executing program 2 (id=7327):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x2, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000005c0)={0x2, @win={{0x80000001, 0xe, 0x5, 0x80000000}, 0x0, 0x71f4, 0x0, 0x5, 0x0}})

1.06939213s ago: executing program 4 (id=7328):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r0, 0xc01064c1, &(0x7f00000002c0))

979.524575ms ago: executing program 0 (id=7329):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_ENCODER_CMD(r0, 0xc028564d, &(0x7f0000000180)={0x0, 0x1, [0x7, 0x6, 0x4, 0x1, 0x8, 0xfffffffe, 0x400, 0x2]})

875.886449ms ago: executing program 2 (id=7331):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[], 0xfa, 0x62a2, &(0x7f000001c2c0)="$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")
mount(&(0x7f0000000240)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='.\x00', &(0x7f0000000080)='qnx4\x00', 0x280c002, 0x0)

875.214464ms ago: executing program 4 (id=7332):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x808003, &(0x7f0000000000), 0x3, 0x519, &(0x7f0000000f80)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x820f8, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

849.381719ms ago: executing program 3 (id=7333):
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x5ff, 0x2000)

803.407126ms ago: executing program 0 (id=7334):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newlink={0x38, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x8}, [@IFLA_GROUP={0x8}, @IFLA_TXQLEN={0x8, 0xd, 0x1}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0xdd0e}]}, 0x38}}, 0x0)

663.038258ms ago: executing program 3 (id=7335):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'wlan0\x00', &(0x7f0000000040)=@ethtool_cmd={0x23, 0x6, 0x1fb, 0x400, 0x7, 0x4, 0x4, 0xa5, 0x1, 0x1, 0x5d37e6f8, 0xda, 0x9, 0x1, 0x4, 0x4, [0x8, 0x10]}})

509.845274ms ago: executing program 3 (id=7336):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000100)={&(0x7f0000000480)={0xa, 0x1, 0x80000, @mcast1, 0xf}, 0x1c, 0x0}, 0x40048d0)

430.663182ms ago: executing program 4 (id=7337):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x1, 0x1, 0x3, 0x0, 0x0, {0x2, 0x0, 0x9}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x4, 0x1, 0x1}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @loopback}}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4000)

416.983228ms ago: executing program 3 (id=7338):
r0 = io_uring_setup(0xadc, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x0, 0x257})
io_uring_enter(r0, 0x2000000, 0x2, 0xf, &(0x7f0000000000)={[0x100000]}, 0x18)

373.938401ms ago: executing program 0 (id=7339):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, 0x0)

167.464146ms ago: executing program 4 (id=7340):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d8000000140081044e81f782db44b9040a1d080211000000040000a1180002000202000100000e1208000f0100810401a80016ea1f000840032e5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc00400040fad95667e0060000000000000080bb9ad809d5e1cace81b341139fe3cd4032e8edb12d1d2eb0c0ed0bff", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

136.787583ms ago: executing program 3 (id=7341):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0)

104.597596ms ago: executing program 0 (id=7342):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xffff, 0x5, @empty, 0xa098}, {0xa, 0x4ea5, 0x9, @remote, 0x8}, 0xffffffffffffffff, 0x8001}}, 0x48)

0s ago: executing program 3 (id=7343):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtaction={0x78, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x64, 0x1, [@m_tunnel_key={0x60, 0x1, 0x0, 0x0, {{0xf}, {0x30, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0xd, @empty=0x1000000}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @loopback}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4008800}, 0x0)

kernel console output (not intermixed with test programs):

th.
[  543.479034][T19242] loop4: detected capacity change from 0 to 512
[  543.500487][T19242] EXT4-fs: Ignoring removed orlov option
[  543.506163][T19242] EXT4-fs: Ignoring removed i_version option
[  543.555967][T19242] EXT4-fs: Ignoring removed nomblk_io_submit option
[  543.573401][T19242] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  543.584341][T19242] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[  543.607055][T19249] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5909'.
[  543.645086][T19242] EXT4-fs (loop4): orphan cleanup on readonly fs
[  543.652010][T19242] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  543.662506][T19242] EXT4-fs warning (device loop4): ext4_enable_quotas:7238: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  543.677443][T19242] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  543.731775][T19242] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5906: bg 0: block 40: padding at end of block bitmap is not set
[  543.764248][T19249] bridge1: entered allmulticast mode
[  543.764393][T19254] loop1: detected capacity change from 0 to 256
[  543.785241][T19242] loop4: lost filesystem error report for type 5 error -117
[  543.793704][T19242] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6687: Corrupt filesystem
[  543.801063][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  543.801081][    C1] EXT4-fs (loop4): initial error at time 1771847588: ext4_validate_block_bitmap:441
[  543.801105][    C1] EXT4-fs (loop4): last error at time 1771847588: ext4_validate_block_bitmap:441
[  543.846605][T19242] loop4: lost filesystem error report for type 5 error -117
[  543.866606][T19242] EXT4-fs (loop4): 1 truncate cleaned up
[  543.917161][T19254] FAT-fs (loop1): Directory bread(block 64) failed
[  543.923712][T19254] FAT-fs (loop1): Directory bread(block 65) failed
[  543.934988][T19254] FAT-fs (loop1): Directory bread(block 66) failed
[  543.943266][T19242] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  543.962132][T19254] FAT-fs (loop1): Directory bread(block 67) failed
[  543.977701][T19254] FAT-fs (loop1): Directory bread(block 68) failed
[  543.985678][T19254] FAT-fs (loop1): Directory bread(block 69) failed
[  543.992767][T19254] FAT-fs (loop1): Directory bread(block 70) failed
[  544.003123][T19254] FAT-fs (loop1): Directory bread(block 71) failed
[  544.009832][T19254] FAT-fs (loop1): Directory bread(block 72) failed
[  544.014679][T19263] IPVS: set_ctl: invalid protocol: 60 0.0.0.0:20000
[  544.016407][T19254] FAT-fs (loop1): Directory bread(block 73) failed
[  544.041600][T19242] EXT4-fs error (device loop4): ext4_encrypted_get_link:46: inode #16: comm syz.4.5906: bad symlink.
[  544.106606][ T6275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.264690][T19269] loop2: detected capacity change from 0 to 1764
[  544.340570][T19277] xt_TCPMSS: Only works on TCP SYN packets
[  544.517135][T19288] tmpfs: Bad value for 'mpol'
[  544.680878][T19294] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5930'.
[  545.120261][T19324] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.5945'.
[  545.132345][T19324] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.5945'.
[  545.400621][T19341] x_tables: unsorted underflow at hook 3
[  545.428714][T19343] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5955'.
[  545.472681][T19340] loop3: detected capacity change from 0 to 2048
[  545.496169][T19340] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  545.797168][T19359] loop0: detected capacity change from 0 to 2048
[  545.850110][T19359] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  545.896527][T19359] EXT4-fs error (device loop0): ext4_iget_extra_inode:5025: inode #15: comm syz.0.5962: corrupted in-inode xattr: invalid ea_ino
[  545.962527][ T6262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  546.117950][T19380] loop2: detected capacity change from 0 to 64
[  546.155054][   T30] audit: type=1326 audit(1771847590.365:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19381 comm="syz.4.5974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f329059c629 code=0x7ffc0000
[  546.314551][   T30] audit: type=1326 audit(1771847590.365:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19381 comm="syz.4.5974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f329059c629 code=0x7ffc0000
[  546.414044][   T30] audit: type=1326 audit(1771847590.402:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19381 comm="syz.4.5974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=468 compat=0 ip=0x7f329059c629 code=0x7ffc0000
[  546.457686][T19393] tmpfs: Bad value for 'nr_inodes'
[  546.490724][   T30] audit: type=1326 audit(1771847590.402:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19381 comm="syz.4.5974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f329059c629 code=0x7ffc0000
[  546.629178][T19403] loop1: detected capacity change from 0 to 256
[  546.717618][T19403] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  546.734985][T19409] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5986'.
[  547.066301][T19421] netlink: 128124 bytes leftover after parsing attributes in process `syz.3.5991'.
[  547.225390][T19433] netlink: 'syz.3.5997': attribute type 2 has an invalid length.
[  547.364827][T19443] net_ratelimit: 2 callbacks suppressed
[  547.364847][T19443] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048)
[  547.409596][T18336] usb 3-1: new full-speed USB device number 124 using dummy_hcd
[  547.480323][T19449] netlink: 'syz.4.6004': attribute type 29 has an invalid length.
[  547.594311][T19456] loop0: detected capacity change from 0 to 1024
[  547.597724][T19455] netlink: 'syz.1.6009': attribute type 3 has an invalid length.
[  547.618404][T18336] usb 3-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  547.633141][T19455] netlink: 'syz.1.6009': attribute type 3 has an invalid length.
[  547.634431][T18336] usb 3-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3
[  547.667301][T19455] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6009'.
[  547.667403][T18336] usb 3-1: Product: syz
[  547.688751][T19456] hfsplus: bad catalog entry used to create inode
[  547.732988][T18336] usb 3-1: Manufacturer: syz
[  547.737605][T18336] usb 3-1: SerialNumber: syz
[  547.784995][T18336] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state.
[  547.806047][T19462] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6012'.
[  547.826619][ T1105] hfsplus: b-tree write err: -5, ino 25
[  547.840519][ T1105] hfsplus: b-tree write err: -5, ino 4
[  547.846069][ T1105] hfsplus: b-tree write err: -5, ino 2
[  548.215385][T18336] vp7045: USB control message 'in' went wrong.
[  548.232437][T18336] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  548.269564][T18336] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19)
[  548.295929][T18336] usb 3-1: USB disconnect, device number 124
[  548.311785][ T6433] udevd[6433]: setting mode of /dev/bus/usb/003/124 to 020664 failed: No such file or directory
[  548.335644][T19482] loop3: detected capacity change from 0 to 4096
[  548.352180][ T6433] udevd[6433]: setting owner of /dev/bus/usb/003/124 to uid=0, gid=0 failed: No such file or directory
[  548.724579][T19508] openvswitch: netlink: nsh attr 0 has unexpected len 1 expected 0
[  549.068025][T19527] loop4: detected capacity change from 0 to 1024
[  549.081834][T19527] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  549.130157][T19532] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6045'.
[  549.140432][T19527] EXT4-fs error (device loop4): ext4_map_blocks:818: inode #3: block 1: comm syz.4.6042: lblock 1 mapped to illegal pblock 1 (length 1)
[  549.186284][T19527] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  549.194593][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  549.210104][    C1] EXT4-fs (loop4): initial error at time 1771847593: ext4_map_blocks:818: inode 3: block 1
[  549.220154][    C1] EXT4-fs (loop4): last error at time 1771847593: ext4_map_blocks:818: inode 3: block 1
[  549.246946][T19527] __quota_error: 5 callbacks suppressed
[  549.246962][T19527] Quota error (device loop4): write_blk: dquota write failed
[  549.302937][T19527] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  549.314240][T19527] EXT4-fs error (device loop4): ext4_acquire_dquot:7003: comm syz.4.6042: Failed to acquire dquot type 0
[  549.328412][T19527] loop4: lost filesystem error report for type 5 error -117
[  549.333845][T19527] EXT4-fs error (device loop4): ext4_free_blocks:6726: comm syz.4.6042: Freeing blocks not in datazone - block = 0, count = 4096
[  549.359581][T19527] loop4: lost filesystem error report for type 5 error -117
[  549.362034][T19527] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.6042: Invalid inode bitmap blk 0 in block_group 0
[  549.369740][ T1158] EXT4-fs error (device loop4): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  549.369773][ T1158] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  549.373129][ T1158] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  549.383290][ T6324] usb 2-1: new full-speed USB device number 122 using dummy_hcd
[  549.415179][T19527] loop4: lost filesystem error report for type 5 error -117
[  549.423010][ T1158] EXT4-fs error (device loop4): ext4_release_dquot:7039: comm kworker/u8:9: Failed to release dquot type 0
[  549.442378][ T1158] loop4: lost filesystem error report for type 5 error -117
[  549.443708][T19527] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  549.461633][T19527] loop4: lost filesystem error report for type 5 error -117
[  549.462005][T19527] EXT4-fs (loop4): 1 orphan inode deleted
[  549.491134][T19527] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  549.520683][T19527] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000.
[  549.563486][ T6275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.604565][ T6324] usb 2-1: not running at top speed; connect to a high speed hub
[  549.613609][ T6324] usb 2-1: config 3 has an invalid interface number: 47 but max is 1
[  549.626538][ T6324] usb 2-1: config 3 has no interface number 0
[  549.655481][ T6324] usb 2-1: config 3 interface 1 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  549.692010][T19551] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6054'.
[  549.701426][ T6324] usb 2-1: config 3 interface 1 has no altsetting 0
[  549.701450][ T6324] usb 2-1: config 3 interface 47 has no altsetting 0
[  549.703774][ T6324] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=43.bd
[  549.765055][ T6324] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  549.798515][ T6324] usb 2-1: Product: syz
[  549.802717][ T6324] usb 2-1: Manufacturer: syz
[  549.855399][T19557] loop2: detected capacity change from 0 to 2048
[  549.861832][ T6324] usb 2-1: SerialNumber: syz
[  549.918605][T19557] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  549.930900][T19557] ext4 filesystem being mounted at /1148/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  549.955294][T19557] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.6056: corrupted xattr block 128: overlapping e_value 
[  550.063432][ T6273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.116416][ T6324] usb 2-1: selecting invalid altsetting 0
[  550.149582][T19571] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6063'.
[  550.189294][ T6345] usb 1-1: new high-speed USB device number 77 using dummy_hcd
[  550.200708][T19574] loop2: detected capacity change from 0 to 1024
[  550.219843][T19574] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  550.251992][T19574] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  550.284054][T19574] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  550.290045][ T6324] usb 2-1: USB disconnect, device number 122
[  550.315536][T19574] EXT4-fs (loop2): orphan cleanup on readonly fs
[  550.323642][T19574] EXT4-fs error (device loop2): ext4_read_inode_bitmap:167: comm syz.2.6062: Inode bitmap for bg 0 marked uninitialized
[  550.337412][T19574] loop2: lost filesystem error report for type 5 error -117
[  550.338503][    C0] EXT4-fs (loop2): error count since last fsck: 1
[  550.352261][    C0] EXT4-fs (loop2): initial error at time 1771847594: ext4_read_inode_bitmap:167
[  550.361322][    C0] EXT4-fs (loop2): last error at time 1771847594: ext4_read_inode_bitmap:167
[  550.378283][T19574] EXT4-fs (loop2): Remounting filesystem read-only
[  550.393214][ T6345] usb 1-1: Using ep0 maxpacket: 16
[  550.409565][ T6345] usb 1-1: config 0 has an invalid interface number: 8 but max is 0
[  550.419977][T19574] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  550.432360][ T6345] usb 1-1: config 0 has no interface number 0
[  550.432405][ T6345] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  550.457056][ T6345] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  550.466333][ T6345] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  550.488184][ T6345] usb 1-1: Product: syz
[  550.492368][ T6345] usb 1-1: SerialNumber: syz
[  550.509360][ T6345] usb 1-1: config 0 descriptor??
[  550.545819][ T6345] cm109 1-1:0.8: invalid payload size 208, expected 4
[  550.572686][ T6345] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input49
[  550.596423][ T6273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  551.046828][    C0] cm109 1-1:0.8: cm109_urb_irq_callback: urb status -71
[  551.054270][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.061428][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.068642][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.075809][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.082944][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.090360][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.097501][    C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71
[  551.104448][    C0] cm109 1-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  551.113936][T18336] usb 1-1: USB disconnect, device number 77
[  551.132132][T19597] bond2: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  551.146081][T18336] cm109 1-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  551.166412][T19597] bond2 (unregistering): Released all slaves
[  551.263161][T19604] loop4: detected capacity change from 0 to 1764
[  551.302458][T19604] afs: Unexpected value for 'dyn'
[  551.409873][T19608] : renamed from veth0_to_bond
[  551.728097][T19622] netlink: 'syz.4.6086': attribute type 1 has an invalid length.
[  551.777868][T19622] netlink: 'syz.4.6086': attribute type 2 has an invalid length.
[  552.195203][T19649] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6098'.
[  552.244503][   T30] audit: type=1326 audit(1771847596.070:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.291017][   T30] audit: type=1326 audit(1771847596.070:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.323159][   T30] audit: type=1326 audit(1771847596.070:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.406594][T19663] loop2: detected capacity change from 0 to 16
[  552.419028][   T30] audit: type=1326 audit(1771847596.089:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.445688][T19663] erofs (device loop2): mounted with root inode @ nid 36.
[  552.498048][   T30] audit: type=1326 audit(1771847596.089:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.525105][ T6274] erofs (device loop2): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 9000
[  552.542364][   T30] audit: type=1326 audit(1771847596.089:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.564935][   T30] audit: type=1326 audit(1771847596.089:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19651 comm="syz.0.6101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f155ed9c629 code=0x7ffc0000
[  552.569880][T19663] erofs (device loop2): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 8192
[  552.633796][T19663] erofs (device loop2): read error -117 @ 1 of nid 89
[  553.123972][T19697] loop2: detected capacity change from 0 to 512
[  553.248340][T19697] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  553.324285][T19697] ext4 filesystem being mounted at /1158/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  553.406592][T19697] EXT4-fs error (device loop2): ext4_acquire_dquot:7003: comm syz.2.6124: Failed to acquire dquot type 0
[  553.427996][T19718] comedi comedi2: ni_at_a2150: I/O port conflict (0xafff,28)
[  553.509178][ T6273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  553.524323][ T6345] usb 1-1: new high-speed USB device number 78 using dummy_hcd
[  553.708231][ T6345] usb 1-1: Using ep0 maxpacket: 16
[  553.726096][ T6345] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  553.756059][ T6345] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  553.769767][T19732] loop4: detected capacity change from 0 to 1764
[  553.783342][ T6345] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  553.796203][ T6345] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  553.806039][ T6345] usb 1-1: Product: syz
[  553.830759][ T6345] usb 1-1: Manufacturer: syz
[  553.836299][ T6345] usb 1-1: SerialNumber: syz
[  554.016929][ T6325] usb 2-1: new full-speed USB device number 123 using dummy_hcd
[  554.039132][T19748] netlink: 'syz.2.6147': attribute type 32 has an invalid length.
[  554.092960][ T6345] usb 1-1: 0:2 : does not exist
[  554.113573][ T6345] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  554.199396][ T6325] usb 2-1: config 0 has an invalid interface number: 151 but max is 0
[  554.226711][ T6325] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  554.246491][ T6325] usb 2-1: config 0 has no interface number 0
[  554.247069][ T6345] usb 1-1: USB disconnect, device number 78
[  554.253126][ T6325] usb 2-1: config 0 interface 151 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  554.290726][ T6325] usb 2-1: New USB device found, idVendor=0499, idProduct=6bb7, bcdDevice=68.2f
[  554.313097][ T6325] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.347905][ T6325] usb 2-1: Product: syz
[  554.352084][ T6325] usb 2-1: Manufacturer: syz
[  554.367594][ T6325] usb 2-1: SerialNumber: syz
[  554.408442][ T6325] usb 2-1: config 0 descriptor??
[  554.458194][T19763] loop2: detected capacity change from 0 to 1024
[  554.524446][T19768] netlink: 'syz.3.6158': attribute type 29 has an invalid length.
[  554.532496][T19768] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6158'.
[  554.587621][ T1105] hfsplus: b-tree write err: -5, ino 25
[  554.602653][ T1105] hfsplus: b-tree write err: -5, ino 4
[  554.624607][ T1105] hfsplus: b-tree write err: -5, ino 2
[  554.856862][T19782] loop4: detected capacity change from 0 to 256
[  554.910731][T19776] loop2: detected capacity change from 0 to 4096
[  554.947317][T19782] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  555.049124][ T6325] usb 2-1: USB disconnect, device number 123
[  555.135259][ T6433] udevd[6433]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  555.565944][T19778] loop3: detected capacity change from 0 to 32768
[  555.610571][T19802] loop0: detected capacity change from 0 to 16
[  555.663308][T19778] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  555.695172][T19802] erofs (device loop0): mounted with root inode @ nid 36.
[  555.765336][T19816] deleting an unspecified loop device is not supported.
[  555.843601][T19778] XFS (loop3): Ending clean mount
[  555.880684][T19778] XFS (loop3): Quotacheck needed: Please wait.
[  555.932505][T19822] loop2: detected capacity change from 0 to 512
[  555.945137][T19822] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  555.967765][T19778] XFS (loop3): Quotacheck: Done.
[  556.039519][T19822] EXT4-fs (loop2): 1 truncate cleaned up
[  556.086630][ T6264] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  556.097062][T19822] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  556.170736][ T6273] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  556.865795][T19834] loop1: detected capacity change from 0 to 32768
[  556.924141][T19834] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  556.983714][T19834] XFS (loop1): Ending clean mount
[  557.154791][ T6263] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  557.201658][T19837] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  557.301520][T19837] XFS (loop4): Ending clean mount
[  557.333740][T19837] XFS (loop4): Quotacheck needed: Please wait.
[  557.499047][T19837] XFS (loop4): Quotacheck: Done.
[  557.634259][ T6275] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  557.681709][T19849] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6192 (19849)
[  557.720081][T19849] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  557.759560][T19849] BTRFS info (device loop3): using sha256 checksum algorithm
[  558.002207][T19849] BTRFS info (device loop3): enabling ssd optimizations
[  558.037775][T19849] BTRFS info (device loop3): turning on async discard
[  558.044577][T19849] BTRFS info (device loop3): enabling free space tree
[  558.156679][T19914] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6211'.
[  558.324193][ T6264] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  558.662069][T19937] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 2
[  558.752688][T19939] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  558.837638][T19943] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6223'.
[  559.168320][T19922] set_capacity_and_notify: 2 callbacks suppressed
[  559.168339][T19922] loop2: detected capacity change from 0 to 32768
[  559.210621][T19951] loop4: detected capacity change from 0 to 4096
[  559.243856][T18336] usb 4-1: new high-speed USB device number 118 using dummy_hcd
[  559.259574][T19922] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6213 (19922)
[  559.291809][T19922] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  559.318743][T19922] BTRFS info (device loop2): using xxhash64 checksum algorithm
[  559.326339][T19922] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  559.336869][T19951] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[  559.436794][T18336] usb 4-1: Using ep0 maxpacket: 16
[  559.448160][T18336] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  559.480943][T18336] usb 4-1: config 0 has no interface number 0
[  559.494163][T18336] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  559.509584][T18336] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  559.541021][T18336] usb 4-1: Product: syz
[  559.550669][T18336] usb 4-1: Manufacturer: syz
[  559.555962][T18336] usb 4-1: SerialNumber: syz
[  559.584469][T18336] usb 4-1: config 0 descriptor??
[  559.604098][T18336] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  559.613286][T19922] BTRFS info (device loop2): rebuilding free space tree
[  559.683176][T19922] BTRFS info (device loop2): disabling free space tree
[  559.722527][T19922] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  559.771183][T19984] xt_CT: You must specify a L4 protocol and not use inversions on it
[  559.773173][T19922] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  559.852625][T19922] BTRFS info (device loop2): setting nodatasum
[  559.880847][T19922] BTRFS info (device loop2): allowing degraded mounts
[  559.902118][T19922] BTRFS info (device loop2): turning on async discard
[  559.928988][T19922] BTRFS info (device loop2): enabling disk space caching
[  559.948054][T19990] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6239'.
[  559.949869][T19922] BTRFS info (device loop2): force clearing of disk cache
[  559.974688][T19992] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[  559.981468][T19922] BTRFS info (device loop2): force zlib compression, level 3
[  559.992384][T19990] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6239'.
[  560.064025][T18336] gspca_spca1528: reg_w err -71
[  560.093300][T18336] spca1528 4-1:0.1: probe with driver spca1528 failed with error -71
[  560.134582][T19990] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6239'.
[  560.135270][T18336] usb 4-1: USB disconnect, device number 118
[  560.174939][T19990] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6239'.
[  560.217685][ T6273] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  560.437997][T19990] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6239'.
[  560.463923][T19990] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6239'.
[  560.497134][T20006] loop1: detected capacity change from 0 to 2048
[  560.561105][T20009] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  560.601640][T20006] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12
[  560.647471][T20006] Remounting filesystem read-only
[  560.697898][T20013] netlink: 'syz.2.6248': attribute type 1 has an invalid length.
[  560.885897][T20021] netlink: 'syz.3.6252': attribute type 10 has an invalid length.
[  560.942118][T20025] loop1: detected capacity change from 0 to 256
[  561.004871][T20025] exfat: Deprecated parameter 'namecase'
[  561.022555][T20021] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  561.061551][T20025] exfat: Deprecated parameter 'utf8'
[  561.121123][T20025] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  561.589550][T20041] bond2: Removing last ns target with arp_interval on
[  561.614717][T20050] netlink: 'syz.0.6265': attribute type 1 has an invalid length.
[  561.890751][T20056] loop0: detected capacity change from 0 to 64
[  561.931035][T20030] loop2: detected capacity change from 0 to 32768
[  561.938079][T20056] syz.0.6269: attempt to access beyond end of device
[  561.938079][T20056] loop0: rw=8388608, sector=16777216, nr_sectors = 2 limit=64
[  562.009058][T20056] Buffer I/O error on dev loop0, logical block 8388608, async page read
[  562.011351][T20030] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  562.028973][T20060] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6270'.
[  562.061961][T20056] syz.0.6269: attempt to access beyond end of device
[  562.061961][T20056] loop0: rw=8388608, sector=16777216, nr_sectors = 2 limit=64
[  562.076337][T20056] Buffer I/O error on dev loop0, logical block 8388608, async page read
[  562.092392][T20060] netlink: 'syz.1.6270': attribute type 1 has an invalid length.
[  562.198148][T20049] loop3: detected capacity change from 0 to 32768
[  562.240949][T20030] XFS (loop2): Ending clean mount
[  562.253209][T20049] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6266 (20049)
[  562.305629][T20030] XFS (loop2): Quotacheck needed: Please wait.
[  562.312570][T20049] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  562.361859][T20035] loop4: detected capacity change from 0 to 40427
[  562.365697][T20049] BTRFS info (device loop3): using sha256 checksum algorithm
[  562.379286][T20049] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  562.405292][T20035] F2FS-fs (loop4): Image doesn't support compression
[  562.456008][T20030] XFS (loop2): Quotacheck: Done.
[  562.461400][T20035] F2FS-fs (loop4): build fault injection rate: 684
[  562.484174][T20035] F2FS-fs (loop4): build fault injection type: 0x35f7
[  562.494139][T20035] F2FS-fs (loop4): invalid crc value
[  562.686918][T20049] BTRFS info (device loop3): rebuilding free space tree
[  562.736544][T20096] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6277'.
[  562.760040][T20049] BTRFS info (device loop3): disabling free space tree
[  562.792945][T20049] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  562.803176][T20098] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[  562.810052][ T6273] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  562.820781][T20049] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  562.872183][T20035] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  562.888688][T20049] BTRFS info (device loop3): checking UUID tree
[  562.891258][T20035] F2FS-fs (loop4): Start checkpoint disabled!
[  562.906181][T20049] BTRFS info (device loop3): setting nodatasum
[  562.916964][T20049] BTRFS info (device loop3): setting nodatacow
[  562.943954][T20035] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[  562.953571][T20049] BTRFS info (device loop3): enabling ssd optimizations
[  562.960529][T20049] BTRFS info (device loop3): enabling disk space caching
[  562.988678][T20035] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  563.004471][T20049] BTRFS info (device loop3): force clearing of disk cache
[  563.018488][T20049] BTRFS info (device loop3): enabling auto defrag
[  563.189099][T20035] F2FS-fs (loop4): Image doesn't support compression
[  563.211575][T20035] F2FS-fs (loop4): build fault injection rate: 684
[  563.221014][T20035] F2FS-fs (loop4): build fault injection type: 0x35f7
[  563.255465][ T6264] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  563.754293][T20129] trusted_key: encrypted_key: master key parameter 'user:' is invalid
[  564.300463][T18336] usb 1-1: new full-speed USB device number 79 using dummy_hcd
[  564.333377][T20157] xt_ipcomp: unknown flags 1D
[  564.462782][T18336] usb 1-1: config 0 has an invalid interface number: 29 but max is 0
[  564.479327][T20162] netlink: 'syz.4.6309': attribute type 19 has an invalid length.
[  564.483017][T18336] usb 1-1: config 0 has no interface number 0
[  564.492826][T20162] netlink: 'syz.4.6309': attribute type 28 has an invalid length.
[  564.506030][T18336] usb 1-1: config 0 interface 29 has no altsetting 0
[  564.522689][T20162] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6309'.
[  564.523789][T18336] usb 1-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  564.556348][T18336] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  564.574530][T18336] usb 1-1: Product: syz
[  564.583583][T18336] usb 1-1: Manufacturer: syz
[  564.592834][T18336] usb 1-1: SerialNumber: syz
[  564.624016][T18336] usb 1-1: config 0 descriptor??
[  564.810647][T20155] loop1: detected capacity change from 0 to 32768
[  564.871844][T18336] peak_usb 1-1:0.29: PEAK-System PCAN-USB X6 v184 fw v210.0.0 (2 channels)
[  564.897561][T20155] JBD2: Ignoring recovery information on journal
[  565.064459][T20178] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6316'.
[  565.120209][T20155] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  565.145200][T18336] peak_usb 1-1:0.29 can0: unable to request usb[type=2 value=5] err=-71
[  565.153576][T18336] peak_usb 1-1:0.29: unable to tell PCAN-USB X6 driver is loaded (err -71)
[  565.337151][T20190] netlink: 'syz.4.6321': attribute type 64 has an invalid length.
[  565.362825][T18336] peak_usb 1-1:0.29: probe with driver peak_usb failed with error -71
[  565.383205][T18336] usb 1-1: USB disconnect, device number 79
[  565.435789][ T6263] ocfs2: Unmounting device (7,1) on (node local)
[  565.842165][T20211] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6333'.
[  565.860562][T20212] loop0: detected capacity change from 0 to 512
[  565.871360][T20212] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  565.882131][T20216] netlink: zone id is out of range
[  565.900164][T20212] EXT4-fs (loop0): orphan cleanup on readonly fs
[  565.955087][T20212] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.6332: bad orphan inode 15
[  565.979497][T20212] loop0: lost filesystem error report for type 5 error -117
[  565.979905][T20212] ext4_test_bit(bit=14, block=18) = 1
[  565.993959][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  565.993979][    C0] EXT4-fs (loop0): initial error at time 1771847864: ext4_orphan_get:1417
[  565.994003][    C0] EXT4-fs (loop0): last error at time 1771847864: ext4_orphan_get:1417
[  566.026723][T20212] is_bad_inode(inode)=0
[  566.030985][T20212] NEXT_ORPHAN(inode)=1023
[  566.036212][T20212] max_ino=32
[  566.039428][T20212] i_nlink=0
[  566.047543][T20212] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.6332: bg 0: block 161: padding at end of block bitmap is not set
[  566.062252][T20212] loop0: lost filesystem error report for type 5 error -117
[  566.062736][T20212] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6687: Corrupt filesystem
[  566.079307][T20212] loop0: lost filesystem error report for type 5 error -117
[  566.085101][T20212] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  566.211579][ T6262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.393749][T20236] program syz.0.6340 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  566.484764][T20238] bridge2: entered allmulticast mode
[  566.670790][T20250] loop3: detected capacity change from 0 to 128
[  566.678547][T20249] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  566.696359][T20250] EXT4-fs (loop3): Test dummy encryption mode enabled
[  566.730322][T20250] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  566.748548][T20256] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  566.764086][T20250] ext4 filesystem being mounted at /1260/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  566.844024][T20230] loop1: detected capacity change from 0 to 32768
[  566.858417][T20250] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  566.868967][T20250] EXT4-fs error (device loop3): ext4_validate_block_bitmap:423: comm syz.3.6349: bg 0: bad block bitmap checksum
[  566.884640][T20230] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6341 (20230)
[  566.965358][ T6264] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  567.021584][T20230] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  567.063162][T20230] BTRFS info (device loop1): using sha256 checksum algorithm
[  567.225043][T20230] BTRFS info (device loop1): enabling ssd optimizations
[  567.287086][T20230] BTRFS info (device loop1): turning on async discard
[  567.317820][T20230] BTRFS info (device loop1): enabling free space tree
[  567.370802][T20285] netlink: 'syz.3.6359': attribute type 11 has an invalid length.
[  567.378652][T20285] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6359'.
[  567.545359][ T6263] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  567.646696][T20295] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6363'.
[  567.715862][T20297] loop3: detected capacity change from 0 to 512
[  567.778298][T20297] EXT4-fs: Ignoring removed i_version option
[  567.784343][T20297] EXT4-fs: Ignoring removed bh option
[  567.801167][T20301] openvswitch: netlink: VXLAN extension message has 12 unknown bytes.
[  567.945846][T20297] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  568.040242][T20297] ext4 filesystem being mounted at /1264/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  568.144481][T20317] tmpfs: Bad value for 'mpol'
[  568.326113][ T6264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  568.369214][T20327] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6379'.
[  568.652611][T20336] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  568.659162][T20336] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  568.719880][T20336] vhci_hcd vhci_hcd.0: Device attached
[  568.752622][T20339] vhci_hcd: connection closed
[  568.753015][  T138] vhci_hcd vhci_hcd.0: stop threads
[  568.773300][  T138] vhci_hcd vhci_hcd.0: release socket
[  568.779847][  T138] vhci_hcd vhci_hcd.0: disconnect device
[  568.810005][T20346] loop1: detected capacity change from 0 to 256
[  569.003141][T20350] bond2: entered allmulticast mode
[  569.434197][T20377] xt_ecn: cannot match TCP bits for non-tcp packets
[  569.476754][T20380] loop1: detected capacity change from 0 to 512
[  569.499012][T20380] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  569.554410][T20380] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.587958][T20380] ext4 filesystem being mounted at /1280/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  569.692241][T20391] loop3: detected capacity change from 0 to 128
[  569.725026][T20395] !
: renamed from dummy0 (while UP)
[  569.758043][ T6263] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.787882][T20391] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  569.859213][T20391] ext4 filesystem being mounted at /1273/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  569.877516][T20402] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  569.893830][T18336] usb 3-1: new high-speed USB device number 125 using dummy_hcd
[  570.047230][ T6264] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  570.102159][T18336] usb 3-1: config 0 has an invalid interface number: 120 but max is 0
[  570.117489][T20410] dlm: non-version read from control device 90
[  570.117487][T18336] usb 3-1: config 0 has no interface number 0
[  570.117529][T18336] usb 3-1: config 0 interface 120 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  570.191530][T18336] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0x8F has an invalid bInterval 102, changing to 10
[  570.232337][T18336] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0x8F has invalid maxpacket 24624, setting to 1024
[  570.255052][T18336] usb 3-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58
[  570.324447][T18336] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.357865][T18336] usb 3-1: config 0 descriptor??
[  570.405611][T18336] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.120/input/input51
[  570.602410][T20406] loop0: detected capacity change from 0 to 32768
[  570.657601][T18336] usb 3-1: USB disconnect, device number 125
[  570.681419][T20406] JBD2: Ignoring recovery information on journal
[  570.856148][T20406] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  571.028896][ T6262] ocfs2: Unmounting device (7,0) on (node local)
[  571.100728][T20421] loop1: detected capacity change from 0 to 32768
[  571.130160][T20421] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.6421 (20421)
[  571.187259][T20418] loop4: detected capacity change from 0 to 32768
[  571.195141][T20421] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  571.249766][T20421] BTRFS info (device loop1): using sha256 checksum algorithm
[  571.295535][T20418] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  571.419426][T20418] XFS (loop4): Ending clean mount
[  571.479148][T20421] BTRFS info (device loop1): enabling ssd optimizations
[  571.495221][T20418] XFS (loop4): Quotacheck needed: Please wait.
[  571.532516][T20421] BTRFS info (device loop1): turning on async discard
[  571.570920][T20421] BTRFS info (device loop1): enabling free space tree
[  571.583311][T20418] XFS (loop4): Quotacheck: Done.
[  571.601333][T20471] netlink: 'syz.2.6434': attribute type 89 has an invalid length.
[  571.636643][T20473] netlink: 'syz.0.6435': attribute type 1 has an invalid length.
[  571.702740][ T6275] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  571.785521][ T6263] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  572.177457][T20434] loop3: detected capacity change from 0 to 32768
[  572.220336][T20434] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6428 (20434)
[  572.337712][T20434] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  572.404424][T20434] BTRFS info (device loop3): using sha256 checksum algorithm
[  572.533877][T20434] BTRFS info (device loop3): enabling ssd optimizations
[  572.582563][T20434] BTRFS info (device loop3): turning on async discard
[  572.592331][T20509] netlink: 'syz.2.6446': attribute type 1 has an invalid length.
[  572.612141][T20434] BTRFS info (device loop3): enabling free space tree
[  572.616534][T20475] loop0: detected capacity change from 0 to 32768
[  572.627375][ T6325] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  572.640478][T20509] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6446'.
[  572.774093][ T6264] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  572.788370][ T6325] usb 5-1: Using ep0 maxpacket: 32
[  572.829741][ T6325] usb 5-1: config 0 has an invalid interface number: 119 but max is 0
[  572.849964][ T6325] usb 5-1: config 0 has no interface number 0
[  572.873314][ T6325] usb 5-1: config 0 interface 119 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  572.904620][ T6325] usb 5-1: config 0 interface 119 altsetting 0 has an endpoint descriptor with address 0xD3, changing to 0x83
[  572.925424][ T6325] usb 5-1: config 0 interface 119 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  572.937290][ T6325] usb 5-1: config 0 interface 119 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 0
[  572.974351][ T6325] usb 5-1: config 0 interface 119 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  573.056679][ T6325] usb 5-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73
[  573.090711][ T6325] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  573.120811][ T6325] usb 5-1: Product: syz
[  573.125196][T18336] usb 2-1: new high-speed USB device number 124 using dummy_hcd
[  573.142393][ T6325] usb 5-1: Manufacturer: syz
[  573.155171][ T6325] usb 5-1: SerialNumber: syz
[  573.174953][ T6325] usb 5-1: config 0 descriptor??
[  573.229017][ T6325] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.119/input/input52
[  573.345777][T18336] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  573.378905][T18336] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  573.409118][T18336] usb 2-1: Product: syz
[  573.423055][T18336] usb 2-1: Manufacturer: syz
[  573.432685][T18336] usb 2-1: SerialNumber: syz
[  573.445853][ T6325] usb 5-1: USB disconnect, device number 3
[  573.468278][T18336] r8152-cfgselector 2-1: Unknown version 0x0000
[  573.482423][T18336] r8152-cfgselector 2-1: config 0 descriptor??
[  573.552418][T20533] netlink: 'syz.0.6457': attribute type 3 has an invalid length.
[  573.744282][T20541] loop2: detected capacity change from 0 to 1024
[  573.833986][T20546] loop3: detected capacity change from 0 to 1024
[  573.876513][T20546] hfsplus: Filesystem is marked locked, mounting read-only.
[  573.920381][T20546] hfsplus: filesystem is marked locked, leaving read-only.
[  573.952309][T18336] r8152-cfgselector 2-1: USB disconnect, device number 124
[  573.955325][T20550] loop0: detected capacity change from 0 to 2048
[  574.007083][T20550] EXT4-fs: Ignoring removed nobh option
[  574.012671][T20550] EXT4-fs: quotafile must be on filesystem root
[  574.133013][T20556] loop4: detected capacity change from 0 to 512
[  574.186066][T20556] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  574.279237][T20556] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  574.324292][T18336] usb 1-1: new high-speed USB device number 80 using dummy_hcd
[  574.345464][T20568] tmpfs: Bad value for 'nr_blocks'
[  574.349979][T20556] ext4 filesystem being mounted at /1175/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  574.390742][T20569] openvswitch: netlink: ufid size 24 bytes exceeds the range (1, 16)
[  574.423072][T20556] EXT4-fs error (device loop4): __ext4_remount:6806: comm syz.4.6469: Abort forced by user
[  574.466525][T20556] EXT4-fs (loop4): Remounting filesystem read-only
[  574.519457][T18336] usb 1-1: Using ep0 maxpacket: 32
[  574.529364][T20556] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  574.549301][T18336] usb 1-1: config 1 has too many interfaces: 223, using maximum allowed: 32
[  574.561799][T18336] usb 1-1: config 1 has an invalid interface number: 236 but max is 222
[  574.597289][T18336] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 223
[  574.626311][ T6275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  574.635478][T18336] usb 1-1: config 1 has no interface number 0
[  574.651055][T18336] usb 1-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[  574.682960][T18336] usb 1-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[  574.719747][T18336] usb 1-1: config 1 interface 236 has no altsetting 0
[  574.735375][T18336] usb 1-1: config 1 has too many interfaces: 223, using maximum allowed: 32
[  574.762857][T18336] usb 1-1: config 1 has an invalid interface number: 236 but max is 222
[  574.778534][T20589] loop4: detected capacity change from 0 to 128
[  574.780649][T18336] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 223
[  574.816171][T18336] usb 1-1: config 1 has no interface number 0
[  574.817164][T20589] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  574.823142][T18336] usb 1-1: config 1 interface 236 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[  574.842066][T18336] usb 1-1: config 1 interface 236 altsetting 2 bulk endpoint 0x5 has invalid maxpacket 0
[  574.852172][T18336] usb 1-1: config 1 interface 236 has no altsetting 0
[  574.860457][T20589] System zones: 1-3, 19-19, 35-36
[  574.870016][T18336] usb 1-1: New USB device found, idVendor=0451, idProduct=5152, bcdDevice=aa.6a
[  574.880154][T18336] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  574.885445][T20589] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  574.888746][T18336] usb 1-1: Product: syz
[  574.904438][ T6345] usb 4-1: new full-speed USB device number 119 using dummy_hcd
[  574.912832][T18336] usb 1-1: Manufacturer: syz
[  574.917632][T18336] usb 1-1: SerialNumber: syz
[  574.925605][    T9] usb 2-1: new high-speed USB device number 125 using dummy_hcd
[  574.935308][T20589] ext4 filesystem being mounted at /1177/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  574.980022][T20589] EXT4-fs warning (device loop4): verify_group_input:156: Last group not full
[  574.980620][T20594] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  575.032420][ T6275] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  575.067916][ T6345] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  575.088306][    T9] usb 2-1: Using ep0 maxpacket: 32
[  575.093648][ T6345] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64
[  575.116519][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  575.126322][ T6345] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  575.149107][ T6345] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  575.159853][    T9] usb 2-1: config 128 has an invalid interface number: 127 but max is 3
[  575.175370][T18336] ti_usb_3410_5052 1-1:1.236: TI USB 5052 2 port adapter converter detected
[  575.184188][    T9] usb 2-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  575.198737][    T9] usb 2-1: config 128 has 1 interface, different from the descriptor's value: 4
[  575.212867][T18336] usb 1-1: USB disconnect, device number 80
[  575.219304][    T9] usb 2-1: config 128 has no interface number 0
[  575.229558][    T9] usb 2-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  575.244232][    T9] usb 2-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  575.258566][T20582] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  575.266100][T20582] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  575.273646][    T9] usb 2-1: config 128 interface 127 has no altsetting 0
[  575.292108][ T6345] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  575.320265][    T9] usb 2-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  575.361964][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  575.381872][    T9] usb 2-1: Product: syz
[  575.392039][    T9] usb 2-1: Manufacturer: syz
[  575.425546][    T9] usb 2-1: SerialNumber: syz
[  575.625593][ T6324] usb 4-1: USB disconnect, device number 119
[  575.810445][    T9] usb 2-1: USB disconnect, device number 125
[  575.854378][ T9678] udevd[9678]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  575.886432][T20622] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6500'.
[  575.931053][T20622] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6500'.
[  576.172347][T20632] bond2: option primary_reselect: invalid value (13)
[  576.188975][T20632] bond2 (unregistering): Released all slaves
[  576.295227][T20641] batadv0: entered promiscuous mode
[  576.318373][T20641] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  576.334401][T20643] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  576.628172][T20649] bond4: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[  576.686283][T20649] bond4 (unregistering): Released all slaves
[  577.334977][T20696] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  577.376643][T20693] loop0: detected capacity change from 0 to 4096
[  577.395152][T20693] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  577.454332][T18335] usb 3-1: new high-speed USB device number 126 using dummy_hcd
[  577.498668][T20693] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  577.592947][T20693] ntfs3(loop0): ino=1f, "file2" failed to open parent directory r=5 to update
[  577.632565][T18335] usb 3-1: Using ep0 maxpacket: 32
[  577.653792][T18335] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  577.690250][T18335] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  577.718196][ T1338] ntfs3(loop0): ino=1f, failed to open parent directory r=5 to update
[  577.730099][T18335] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  577.762298][T18335] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  577.793494][T18335] usb 3-1: config 0 descriptor??
[  577.852941][T18335] hub 3-1:0.0: USB hub found
[  577.892050][T20715] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[  577.923290][T20715] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  578.011970][T20723] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  578.026505][T18335] hub 3-1:0.0: config failed, hub has too many ports! (err -19)
[  578.207213][T20732] xt_hashlimit: size too large, truncated to 1048576
[  578.214146][T20732] xt_hashlimit: invalid rate
[  578.248027][T18335] usbhid 3-1:0.0: can't add hid device: -71
[  578.265102][T18335] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  578.305596][T18335] usb 3-1: USB disconnect, device number 126
[  578.625579][    T9] usb 1-1: new high-speed USB device number 81 using dummy_hcd
[  578.671413][T20751] openvswitch: netlink: Flow key attr not present in new flow.
[  578.803509][    T9] usb 1-1: Using ep0 maxpacket: 32
[  578.807503][T20761] veth0_to_bridge: entered allmulticast mode
[  578.815436][T20761] A link change request failed with some changes committed already. Interface veth0_to_bridge may have been left with an inconsistent configuration, please check.
[  578.832971][    T9] usb 1-1: config 4 has an invalid interface number: 128 but max is 0
[  578.857026][    T9] usb 1-1: config 4 has no interface number 0
[  578.865933][    T9] usb 1-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  578.884163][T20760] netlink: 100 bytes leftover after parsing attributes in process `syz.1.6568'.
[  578.893997][    T9] usb 1-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  578.900125][T20763] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6569'.
[  578.904351][    T9] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  578.923765][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  578.972648][    T9] hub 1-1:4.128: USB hub found
[  579.087392][T20769] loop4: detected capacity change from 0 to 1024
[  579.114055][T20769] hfsplus: failed to extend attributes file
[  579.211977][    T9] hub 1-1:4.128: 6 ports detected
[  579.217084][    T9] hub 1-1:4.128: Using single TT (err -22)
[  579.258312][    T9] hub 1-1:4.128: insufficient power available to use all downstream ports
[  579.436665][    T9] hub 1-1:4.128: hub_hub_status failed (err = -71)
[  579.461393][    T9] hub 1-1:4.128: config failed, can't get hub status (err -71)
[  579.514237][T20789] program syz.3.6582 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  579.527441][    T9] usb 1-1: USB disconnect, device number 81
[  579.604642][T20795] loop4: detected capacity change from 0 to 64
[  579.628736][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  579.628754][   T30] audit: type=1326 audit(1771847877.677:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20796 comm="syz.2.6586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  579.717049][   T30] audit: type=1326 audit(1771847877.677:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20796 comm="syz.2.6586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  579.803513][   T30] audit: type=1326 audit(1771847877.733:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20796 comm="syz.2.6586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  579.874943][   T30] audit: type=1326 audit(1771847877.733:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20796 comm="syz.2.6586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  579.920649][   T30] audit: type=1800 audit(1771847877.742:101): pid=20795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6585" name="file1" dev="loop4" ino=22 res=0 errno=0
[  580.186245][T20821] netlink: 'syz.1.6599': attribute type 21 has an invalid length.
[  580.334203][T20827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6601'.
[  580.343248][T20827] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6601'.
[  580.371362][T20833] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6604'.
[  580.384709][T20833] openvswitch: netlink: Invalid VLAN frame
[  580.385609][T20827] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  580.600608][T20845] netlink: 5 bytes leftover after parsing attributes in process `syz.3.6610'.
[  580.682083][   T30] audit: type=1326 audit(1771847878.668:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20849 comm="syz.1.6612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69d299c629 code=0x7ffc0000
[  580.740459][   T30] audit: type=1326 audit(1771847878.668:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20849 comm="syz.1.6612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f69d299c629 code=0x7ffc0000
[  580.825535][   T30] audit: type=1326 audit(1771847878.668:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20849 comm="syz.1.6612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69d299c629 code=0x7ffc0000
[  580.900969][   T30] audit: type=1326 audit(1771847878.668:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20849 comm="syz.1.6612" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69d299c629 code=0x7ffc0000
[  580.927243][T20863] netlink: 'syz.3.6618': attribute type 1 has an invalid length.
[  581.221467][T18336] usb 3-1: new high-speed USB device number 127 using dummy_hcd
[  581.360506][T20889] loop4: detected capacity change from 0 to 164
[  581.387209][T20889] Unable to read rock-ridge attributes
[  581.397783][T20889] Unable to read rock-ridge attributes
[  581.404181][T20891] misc userio: The device must be registered before sending interrupts
[  581.428978][T20889] iso9660: Corrupted directory entry in block 4 of inode 1792
[  581.437109][T18336] usb 3-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xCB, changing to 0x8B
[  581.456699][T18336] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 53407, setting to 1024
[  581.488810][T18336] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  581.503684][T18336] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  581.562765][T18336] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  581.582048][T18336] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  581.607211][T18336] usb 3-1: SerialNumber: syz
[  581.632102][T20866] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  581.744499][T20898] xt_recent: Unsupported userspace flags (000000b1)
[  581.863396][T20884] loop1: detected capacity change from 0 to 32768
[  581.886837][T18336] usbtest 3-1:1.0: couldn't get endpoints, -22
[  581.893087][T18336] usbtest 3-1:1.0: probe with driver usbtest failed with error -22
[  581.907622][T20884] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  581.920712][T18336] usb 3-1: USB disconnect, device number 127
[  581.969197][T20884] XFS (loop1): Ending clean mount
[  581.993057][    T9] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  581.993652][T20884] XFS (loop1): Quotacheck needed: Please wait.
[  582.070841][T20884] XFS (loop1): Quotacheck: Done.
[  582.076587][T18335] usb 1-1: new high-speed USB device number 82 using dummy_hcd
[  582.154506][ T6263] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  582.185672][    T9] usb 5-1: config 0 has an invalid interface number: 168 but max is 0
[  582.207290][    T9] usb 5-1: config 0 has no interface number 0
[  582.213504][    T9] usb 5-1: New USB device found, idVendor=05ab, idProduct=0060, bcdDevice=11.06
[  582.224000][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  582.237378][T18335] usb 1-1: Using ep0 maxpacket: 32
[  582.242720][    T9] usb 5-1: config 0 descriptor??
[  582.257034][T18335] usb 1-1: config 6 has an invalid interface number: 250 but max is 0
[  582.265543][T18335] usb 1-1: config 6 has no interface number 0
[  582.271793][T18335] usb 1-1: config 6 interface 250 has no altsetting 0
[  582.291434][T18335] usb 1-1: New USB device found, idVendor=17cc, idProduct=1000, bcdDevice=a9.d1
[  582.301602][T18335] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=9
[  582.309620][T18335] usb 1-1: Product: syz
[  582.324126][T18335] usb 1-1: Manufacturer: syz
[  582.339716][T18335] usb 1-1: SerialNumber: syz
[  582.467525][T20907] loop3: detected capacity change from 0 to 40427
[  582.480077][ T6274] Bluetooth: hci4: Malformed LE Event: 0x0d
[  582.486832][T20907] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  582.488493][    T9] usb 5-1: string descriptor 0 read error: -71
[  582.504427][T20907] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  582.514286][    T9] usb-storage 5-1:0.168: USB Mass Storage device detected
[  582.531393][    T9] usb-storage 5-1:0.168: Quirks match for vid 05ab pid 0060: 2
[  582.557669][T20907] F2FS-fs (loop3): invalid crc value
[  582.590972][T18335] snd-usb-audio 1-1:6.250: probe with driver snd-usb-audio failed with error -71
[  582.641297][T18335] usb 1-1: USB disconnect, device number 82
[  582.683373][    T9] usb 5-1: USB disconnect, device number 4
[  582.787937][T20931] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6645'.
[  582.801793][T20907] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  582.833983][T20907] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  582.841238][T20907] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  582.885217][T20936] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6647'.
[  583.190904][T20947] netlink: 'syz.4.6654': attribute type 46 has an invalid length.
[  583.891416][T20984] netlink: 'syz.4.6671': attribute type 1 has an invalid length.
[  583.920880][T20984] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6671'.
[  583.944129][T20985] loop2: detected capacity change from 0 to 256
[  583.953756][T20984] netlink: 'syz.4.6671': attribute type 1 has an invalid length.
[  583.989295][T20985] exfat: Deprecated parameter 'namecase'
[  584.053527][T20960] loop1: detected capacity change from 0 to 32768
[  584.070542][T20985] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d)
[  584.124222][T20960] 
[  584.124222][T20960]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  584.124222][T20960] 
[  584.256846][T20974] loop3: detected capacity change from 0 to 32768
[  584.313274][ T6263] 
[  584.313274][ T6263]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  584.313274][ T6263] 
[  584.366115][ T6263] 
[  584.366115][ T6263]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  584.366115][ T6263] 
[  584.402326][T20974] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  584.451198][T21005] netlink: 'syz.4.6680': attribute type 1 has an invalid length.
[  584.459112][T21005] netlink: 224 bytes leftover after parsing attributes in process `syz.4.6680'.
[  584.626929][T20974] XFS (loop3): Ending clean mount
[  584.781012][ T6325] usb 1-1: new high-speed USB device number 83 using dummy_hcd
[  584.793955][ T6264] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  584.966709][ T6325] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  585.004646][ T6325] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  585.060900][ T6325] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  585.089996][ T6325] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  585.120054][T21033] sock: sock_timestamping_bind_phc: sock not bind to device
[  585.150717][ T6325] usb 1-1: config 0 descriptor??
[  585.218788][T21029] loop1: detected capacity change from 0 to 4096
[  585.236067][T21038] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  585.267570][T21029] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  585.356909][T21044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6695'.
[  585.462041][T21046] tmpfs: Bad value for 'mpol'
[  585.609482][ T6325] ath6kl: Failed to read usb control message: -71
[  585.635555][ T6325] ath6kl: Unable to read the bmi data from the device: -71
[  585.663888][ T6325] ath6kl: Unable to recv target info: -71
[  585.690246][ T6325] ath6kl: Failed to init ath6kl core: -71
[  585.697150][ T6325] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -71
[  585.745515][ T6325] usb 1-1: USB disconnect, device number 83
[  585.920342][T21065] loop1: detected capacity change from 0 to 256
[  585.928742][T21068] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6707'.
[  585.957645][T21068] openvswitch: netlink: Duplicate key (type 32).
[  585.981798][T21065] FAT-fs (loop1): Directory bread(block 64) failed
[  586.002433][T21065] FAT-fs (loop1): Directory bread(block 65) failed
[  586.009038][T21065] FAT-fs (loop1): Directory bread(block 66) failed
[  586.037668][T21065] FAT-fs (loop1): Directory bread(block 67) failed
[  586.044379][T21065] FAT-fs (loop1): Directory bread(block 68) failed
[  586.051874][T21065] FAT-fs (loop1): Directory bread(block 69) failed
[  586.070555][T21065] FAT-fs (loop1): Directory bread(block 70) failed
[  586.087996][T21065] FAT-fs (loop1): Directory bread(block 71) failed
[  586.105433][T21065] FAT-fs (loop1): Directory bread(block 72) failed
[  586.119361][T21065] FAT-fs (loop1): Directory bread(block 73) failed
[  586.320238][ T6317] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  586.503721][ T6317] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  586.527818][ T6317] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  586.581841][ T6317] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  586.602158][ T6317] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  586.629649][ T6317] usb 5-1: Product: syz
[  586.636183][ T6317] usb 5-1: Manufacturer: syz
[  586.667889][T21102] netlink: 'syz.0.6724': attribute type 10 has an invalid length.
[  586.686095][ T6317] hub 5-1:4.0: USB hub found
[  586.707397][T21102] hsr0: entered promiscuous mode
[  586.736647][T21102] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  586.752860][T21102] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  586.767095][T21102] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  586.873413][T21110] loop1: detected capacity change from 0 to 2048
[  586.916831][ T6317] hub 5-1:4.0: 2 ports detected
[  586.923330][ T6317] hub 5-1:4.0: insufficient power available to use all downstream ports
[  586.965961][T21110] UDF-fs: warning (device loop1): udf_fill_super: No fileset found
[  587.015695][T21110] qnx4: unable to read the superblock
[  587.132128][ T6317] hub 5-1:4.0: hub_hub_status failed (err = -71)
[  587.149572][ T6317] hub 5-1:4.0: config failed, can't get hub status (err -71)
[  587.204136][ T6317] usb 5-1: USB disconnect, device number 5
[  587.457634][T21106] loop3: detected capacity change from 0 to 32768
[  587.495269][T21106] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6726 (21106)
[  587.506842][T21130] loop2: detected capacity change from 0 to 128
[  587.532909][T21130] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  587.567848][T21106] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  587.574413][T21130] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  587.592185][T21106] BTRFS info (device loop3): using xxhash64 checksum algorithm
[  587.610667][T21106] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  587.829434][T21120] loop1: detected capacity change from 0 to 40427
[  587.850673][T21106] BTRFS info (device loop3): rebuilding free space tree
[  587.860762][T21120] F2FS-fs (loop1): Wrong SSA boundary, start(3584) end(4096) blocks(0)
[  587.869036][T21120] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  587.913381][T21120] F2FS-fs (loop1): build fault injection type: 0x6
[  587.938662][T21120] F2FS-fs (loop1): invalid crc value
[  587.943598][T21106] BTRFS info (device loop3): disabling free space tree
[  587.987783][T21106] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  588.018886][T21106] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  588.058513][T21106] BTRFS info (device loop3): allowing degraded mounts
[  588.101710][T21106] BTRFS info (device loop3): enabling ssd optimizations
[  588.129912][T21106] BTRFS info (device loop3): turning on async discard
[  588.136717][T21106] BTRFS info (device loop3): enabling disk space caching
[  588.178641][T21106] BTRFS info (device loop3): force clearing of disk cache
[  588.198261][T21106] BTRFS info (device loop3): use zlib compression, level 3
[  588.216939][T21164] netlink: 'syz.2.6746': attribute type 11 has an invalid length.
[  588.263484][T21164] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6746'.
[  588.298410][T21120] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  588.326504][T21120] F2FS-fs (loop1): Start checkpoint disabled!
[  588.354851][T21120] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  588.384808][T21120] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  588.391860][T21120] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  588.444414][T21106] BTRFS info (device loop3): balance: start 
[  588.476549][T21169] loop0: detected capacity change from 0 to 4096
[  588.483926][T21106] BTRFS info (device loop3): balance: ended with status: 0
[  588.535899][T21120] syz.1.6733: attempt to access beyond end of device
[  588.535899][T21120] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  588.535978][T21169] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.691580][ T6264] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  588.704397][   T49] kworker/u8:3: attempt to access beyond end of device
[  588.704397][   T49] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  588.763236][   T49] CPU: 1 UID: 0 PID: 49 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[  588.763260][   T49] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  588.763271][   T49] Workqueue: writeback wb_workfn (flush-7:1)
[  588.763300][   T49] Call Trace:
[  588.763309][   T49]  <TASK>
[  588.763317][   T49]  dump_stack_lvl+0xe8/0x150
[  588.763345][   T49]  f2fs_handle_critical_error+0x37c/0x540
[  588.763376][   T49]  f2fs_write_end_io+0xcdb/0xff0
[  588.763412][   T49]  __submit_merged_bio+0x256/0x700
[  588.763444][   T49]  __submit_merged_write_cond+0x3c9/0x4e0
[  588.763479][   T49]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  588.763530][   T49]  f2fs_write_data_pages+0x2975/0x35e0
[  588.763587][   T49]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  588.763618][   T49]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  588.763675][   T49]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  588.763722][   T49]  ? __lock_acquire+0x6b5/0x2cf0
[  588.763763][   T49]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  588.763782][   T49]  do_writepages+0x32e/0x550
[  588.763815][   T49]  ? reacquire_held_locks+0x104/0x190
[  588.763838][   T49]  ? writeback_sb_inodes+0x477/0x1a20
[  588.763868][   T49]  __writeback_single_inode+0x133/0x11a0
[  588.763894][   T49]  ? do_raw_spin_unlock+0xf5/0x210
[  588.763919][   T49]  writeback_sb_inodes+0x992/0x1a20
[  588.763951][   T49]  ? sched_clock+0x3f/0x60
[  588.763993][   T49]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  588.764013][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[  588.764082][   T49]  ? rcu_is_watching+0x15/0xb0
[  588.764114][   T49]  wb_writeback+0x456/0xb70
[  588.764138][   T49]  ? queue_io+0x231/0x4a0
[  588.764167][   T49]  ? __pfx_wb_writeback+0x10/0x10
[  588.764185][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[  588.764220][   T49]  wb_workfn+0x414/0xf50
[  588.764242][   T49]  ? look_up_lock_class+0x57/0x110
[  588.764279][   T49]  ? __pfx_wb_workfn+0x10/0x10
[  588.764301][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[  588.764323][   T49]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  588.764367][   T49]  ? process_one_work+0x87c/0x1650
[  588.764388][   T49]  process_one_work+0x949/0x1650
[  588.764433][   T49]  ? __pfx_process_one_work+0x10/0x10
[  588.764453][   T49]  ? do_raw_spin_lock+0x12b/0x2f0
[  588.764491][   T49]  worker_thread+0xb46/0x1140
[  588.764525][   T49]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  588.764564][   T49]  kthread+0x388/0x470
[  588.764584][   T49]  ? __pfx_worker_thread+0x10/0x10
[  588.764605][   T49]  ? __pfx_kthread+0x10/0x10
[  588.764626][   T49]  ret_from_fork+0x51e/0xb90
[  588.764653][   T49]  ? __pfx_ret_from_fork+0x10/0x10
[  588.764675][   T49]  ? __switch_to+0xc7d/0x1450
[  588.764702][   T49]  ? __pfx_kthread+0x10/0x10
[  588.764722][   T49]  ret_from_fork_asm+0x1a/0x30
[  588.764757][   T49]  </TASK>
[  588.764766][   T49] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  589.058300][ T6262] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.756607][T21207] loop0: detected capacity change from 0 to 1024
[  589.780305][T21209] CIFS: VFS: Malformed UNC in devname
[  589.787547][T21207] hfsplus: Filesystem is marked locked, mounting read-only.
[  589.802080][T21184] loop4: detected capacity change from 0 to 32768
[  589.841692][T21207] hfsplus: invalid catalog entry type in lookup
[  590.050740][T18335] usb 2-1: new high-speed USB device number 126 using dummy_hcd
[  590.232548][T18335] usb 2-1: Using ep0 maxpacket: 8
[  590.244779][T18335] usb 2-1: unable to get BOS descriptor or descriptor too short
[  590.253568][T18335] usb 2-1: config 0 has an invalid interface number: 88 but max is 0
[  590.264477][T18335] usb 2-1: config 0 has no interface number 0
[  590.270588][T18335] usb 2-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  590.317930][T18335] usb 2-1: config 0 interface 88 altsetting 8 endpoint 0x86 has invalid wMaxPacketSize 0
[  590.327761][T18335] usb 2-1: config 0 interface 88 has no altsetting 0
[  590.340058][T18335] usb 2-1: language id specifier not provided by device, defaulting to English
[  590.369436][T18335] usb 2-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  590.396374][T21215] loop0: detected capacity change from 0 to 32768
[  590.400210][T18335] usb 2-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  590.425694][T21215] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6770 (21215)
[  590.435516][T18335] usb 2-1: Product: syz
[  590.442619][T18335] usb 2-1: SerialNumber: syz
[  590.471592][T18335] usb 2-1: config 0 descriptor??
[  590.527024][T21215] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  590.557724][T21215] BTRFS info (device loop0): using sha256 checksum algorithm
[  590.726735][T21210] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  590.750090][T21215] BTRFS info (device loop0): enabling ssd optimizations
[  590.787314][T21215] BTRFS info (device loop0): turning on async discard
[  590.825609][T21215] BTRFS info (device loop0): enabling free space tree
[  590.828581][T18335] input: syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.88/input/input54
[  591.032432][T18335] usb 2-1: USB disconnect, device number 126
[  591.039058][ T6262] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  591.611439][T21274] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6792'.
[  591.832303][T21283] loop2: detected capacity change from 0 to 1764
[  591.875857][T21289] openvswitch: netlink: Flow key attribute not present in set flow.
[  592.076119][T21297] bridge0: adding interface bridge_slave_0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  592.386691][T21311] netdevsim netdevsim3 netdevsim0: left allmulticast mode
[  592.446209][T21311] bond0: (slave netdevsim0): Releasing backup interface
[  592.471243][T21311] netdevsim netdevsim3 netdevsim0: refused to change device tx_queue_len
[  592.487742][T21319] netlink: 4472 bytes leftover after parsing attributes in process `syz.4.6811'.
[  592.506246][ T1307] ieee802154 phy0 wpan0: encryption failed: -22
[  592.512237][T21319] netlink: 4472 bytes leftover after parsing attributes in process `syz.4.6811'.
[  592.520230][ T1307] ieee802154 phy1 wpan1: encryption failed: -22
[  592.534792][T21311] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  592.672592][T21324] loop0: detected capacity change from 0 to 64
[  592.864925][T21334] loop2: detected capacity change from 0 to 2048
[  592.930927][T21334] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  592.947784][    T9] usb 4-1: new high-speed USB device number 120 using dummy_hcd
[  592.990827][T21334] UDF-fs: error (device loop2): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376)
[  593.029665][T21341] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  593.058606][T21337] loop0: detected capacity change from 0 to 4096
[  593.129452][    T9] usb 4-1: Using ep0 maxpacket: 8
[  593.145159][    T9] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  593.170682][T21344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6826'.
[  593.175556][    T9] usb 4-1: config 0 has no interface number 0
[  593.213073][    T9] usb 4-1: config 0 interface 1 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  593.257541][    T9] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  593.291171][    T9] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  593.321776][T21348] dlm: Unknown command passed to DLM device : 0
[  593.321776][T21348] 
[  593.340119][    T9] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  593.365341][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  593.397737][    T9] usb 4-1: config 0 descriptor??
[  593.416962][    T9] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  593.541319][T21335] loop4: detected capacity change from 0 to 32768
[  593.571457][T21335] (syz.4.6822,21335,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  593.587758][T21335] (syz.4.6822,21335,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  593.714927][T21335] JBD2: Ignoring recovery information on journal
[  593.799792][T21327] iowarrior 4-1:0.1: Error -90 while submitting URB
[  593.861016][    T9] usb 4-1: USB disconnect, device number 120
[  593.885188][T21335] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  593.993717][T21373] netlink: 'syz.1.6838': attribute type 1 has an invalid length.
[  594.114246][ T6275] ocfs2: Unmounting device (7,4) on (node local)
[  594.308508][T21383] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  594.436484][T21391] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6848'.
[  594.475186][T21387] loop2: detected capacity change from 0 to 4096
[  594.615860][T21387] ntfs3(loop2): ino=5, "/" indx_read_ra
[  595.026814][T21417] netlink: 40 bytes leftover after parsing attributes in process `syz.0.6861'.
[  595.138911][ T6325] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  595.192383][T21429] loop3: detected capacity change from 0 to 1024
[  595.215010][T21429] EXT4-fs: Ignoring removed orlov option
[  595.275248][T21429] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  595.309834][ T6325] usb 3-1: Using ep0 maxpacket: 8
[  595.332200][ T6325] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid wMaxPacketSize 0
[  595.343725][T21438] dlm: no local IP address has been set
[  595.352567][ T6325] usb 3-1: config 0 interface 0 has no altsetting 0
[  595.376780][T21438] dlm: cannot start dlm midcomms -107
[  595.384701][ T6325] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  595.395352][ T6325] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  595.403377][ T6325] usb 3-1: Product: syz
[  595.407712][ T6325] usb 3-1: Manufacturer: syz
[  595.409384][T21429] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.6868: missing EA_INODE flag
[  595.412308][ T6325] usb 3-1: SerialNumber: syz
[  595.431773][ T6325] usb 3-1: config 0 descriptor??
[  595.452443][ T6325] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found
[  595.461188][T21440] loop1: detected capacity change from 0 to 2048
[  595.480446][T21440] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  595.489653][T21429] EXT4-fs (loop3): Remounting filesystem read-only
[  595.646627][ T6264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.693769][ T6325] snd_usb_toneport 3-1:0.0: cannot get proper max packet size
[  595.726958][ T6325] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected
[  595.737063][ T6325] snd_usb_toneport 3-1:0.0: probe with driver snd_usb_toneport failed with error -22
[  595.831607][T21456] loop1: detected capacity change from 0 to 256
[  595.853316][T21458] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  595.915950][T21456] FAT-fs (loop1): Directory bread(block 64) failed
[  595.916463][ T6325] usb 3-1: USB disconnect, device number 2
[  595.960881][T21456] FAT-fs (loop1): Directory bread(block 65) failed
[  596.006806][T21456] FAT-fs (loop1): Directory bread(block 66) failed
[  596.013361][T21456] FAT-fs (loop1): Directory bread(block 67) failed
[  596.063758][T21456] FAT-fs (loop1): Directory bread(block 68) failed
[  596.074762][T21456] FAT-fs (loop1): Directory bread(block 69) failed
[  596.084675][T21456] FAT-fs (loop1): Directory bread(block 70) failed
[  596.111082][T21468] loop3: detected capacity change from 0 to 512
[  596.118511][T21456] FAT-fs (loop1): Directory bread(block 71) failed
[  596.154789][T21456] FAT-fs (loop1): Directory bread(block 72) failed
[  596.161671][T21456] FAT-fs (loop1): Directory bread(block 73) failed
[  596.173954][T21468] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.230398][T21468] ext4 filesystem being mounted at /1364/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  596.306792][T21468] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.6885: corrupted xattr block 33: overlapping e_value 
[  596.462065][ T6264] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.473392][T21466] loop0: detected capacity change from 0 to 32768
[  596.500201][T21466] (syz.0.6883,21466,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  596.517387][T21478] loop4: detected capacity change from 0 to 164
[  596.571694][T21478] iso9660: Bad value for 'check'
[  596.572782][T21466] (syz.0.6883,21466,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  596.655916][T21482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6891'.
[  596.684243][T21466] JBD2: Ignoring recovery information on journal
[  596.797349][T21466] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  596.859790][T18335] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  597.044280][T18335] usb 5-1: unable to get BOS descriptor or descriptor too short
[  597.070259][T18335] usb 5-1: not running at top speed; connect to a high speed hub
[  597.106489][T18335] usb 5-1: config 17 has an invalid interface number: 8 but max is 1
[  597.118965][T18335] usb 5-1: config 17 has 1 interface, different from the descriptor's value: 2
[  597.140986][T18335] usb 5-1: config 17 has no interface number 0
[  597.141684][T21504] loop3: detected capacity change from 0 to 256
[  597.147188][T18335] usb 5-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 200, changing to 4
[  597.161580][T21466] syz.0.6883 (21466) used greatest stack depth: 18080 bytes left
[  597.167459][T18335] usb 5-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 33981, setting to 1023
[  597.185356][T18335] usb 5-1: config 17 interface 8 has no altsetting 0
[  597.193944][T21504] exfat: Deprecated parameter 'utf8'
[  597.199706][T21504] exfat: Deprecated parameter 'namecase'
[  597.207900][T21504] exfat: Deprecated parameter 'namecase'
[  597.253969][T21504] exfat: Deprecated parameter 'utf8'
[  597.263007][T18335] usb 5-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[  597.265464][ T6262] ocfs2: Unmounting device (7,0) on (node local)
[  597.275890][T18335] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  597.291405][T18335] usb 5-1: Product: syz
[  597.306442][T21504] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[  597.314402][T18335] usb 5-1: Manufacturer: syz
[  597.334998][T18335] usb 5-1: SerialNumber: syz
[  597.343499][T21504] exFAT-fs (loop3): failed to test first cluster bit of root dir(5)
[  597.416410][   T30] audit: type=1800 audit(1771847894.320:106): pid=21504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.6901" name="file2" dev="loop3" ino=1048673 res=0 errno=0
[  597.643280][T18335] usb 5-1: selecting invalid altsetting 0
[  597.666601][T18335] usb 5-1: 8:6 : no UAC_FORMAT_TYPE desc
[  597.683171][T18335] usb 5-1: selecting invalid altsetting 0
[  597.776401][T18335] usb 5-1: USB disconnect, device number 6
[  597.950351][T21528] openvswitch: netlink: Flow actions attr not present in new flow.
[  598.393031][T21556] loop0: detected capacity change from 0 to 256
[  598.423299][T21546] loop3: detected capacity change from 0 to 8192
[  598.430535][T21546] msdos: Unknown parameter 'time_offseu'
[  598.556380][T21556] FAT-fs (loop0): Directory bread(block 64) failed
[  598.612170][T21556] FAT-fs (loop0): Directory bread(block 65) failed
[  598.646313][T21556] FAT-fs (loop0): Directory bread(block 66) failed
[  598.652885][T21556] FAT-fs (loop0): Directory bread(block 67) failed
[  598.668351][T21556] FAT-fs (loop0): Directory bread(block 68) failed
[  598.695621][T21568] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  598.718264][T21556] FAT-fs (loop0): Directory bread(block 69) failed
[  598.753984][T21556] FAT-fs (loop0): Directory bread(block 70) failed
[  598.776111][T21556] FAT-fs (loop0): Directory bread(block 71) failed
[  598.816077][T21556] FAT-fs (loop0): Directory bread(block 72) failed
[  598.822652][T21556] FAT-fs (loop0): Directory bread(block 73) failed
[  599.040603][T21584] binder: BC_ACQUIRE_RESULT not supported
[  599.047321][T21584] binder: 21583:21584 ioctl c0306201 200000004a40 returned -22
[  599.167076][T21592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6944'.
[  599.194563][T21592] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6944'.
[  599.471661][T21608] netlink: 'syz.3.6951': attribute type 11 has an invalid length.
[  599.562455][T21608] netlink: 140 bytes leftover after parsing attributes in process `syz.3.6951'.
[  599.864000][T18335] usb 1-1: new high-speed USB device number 84 using dummy_hcd
[  599.981273][  T987] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  600.049474][T21638] loop1: detected capacity change from 0 to 4096
[  600.049893][T18335] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  600.070859][T21638] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  600.105748][T18335] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  600.136762][T18335] usb 1-1: New USB device found, idVendor=08b7, idProduct=8000, bcdDevice= 0.00
[  600.137263][T21645] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  600.147832][T18335] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  600.187131][T21638] ntfs3(loop1): ino=19, mi_enum_attr
[  600.195238][T21638] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  600.209084][T18335] usb 1-1: SerialNumber: syz
[  600.214148][  T987] usb 5-1: unable to get BOS descriptor or descriptor too short
[  600.227494][  T987] usb 5-1: not running at top speed; connect to a high speed hub
[  600.243538][  T987] usb 5-1: config 3 has an invalid interface number: 106 but max is 0
[  600.267917][  T987] usb 5-1: config 3 has no interface number 0
[  600.290098][  T987] usb 5-1: config 3 interface 106 altsetting 10 endpoint 0xD has invalid maxpacket 512, setting to 64
[  600.332850][  T987] usb 5-1: config 3 interface 106 altsetting 10 endpoint 0xF has invalid maxpacket 1024, setting to 64
[  600.344211][T21638] ntfs3(loop1): failed to convert "c46c" to cp437
[  600.351929][T21638] ntfs3(loop1): ino=20, mi_enum_attr
[  600.366746][  T987] usb 5-1: config 3 interface 106 has no altsetting 0
[  600.389562][  T987] usb 5-1: New USB device found, idVendor=0d46, idProduct=2011, bcdDevice=e8.8a
[  600.406383][  T987] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  600.414898][  T987] usb 5-1: Product: syz
[  600.448714][  T987] usb 5-1: Manufacturer: syz
[  600.470744][  T987] usb 5-1: SerialNumber: syz
[  600.486467][T18335] usb 1-1: 0:2 : does not exist
[  600.515749][T21624] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  600.523372][T21652] SET target dimension over the limit!
[  600.540601][T21624] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  600.620851][T18335] usb 1-1: USB disconnect, device number 84
[  600.827074][  T987] kobil_sct 5-1:3.106: KOBIL USB smart card terminal converter detected
[  600.870037][  T987] usb 5-1: KOBIL USB smart card terminal converter now attached to ttyUSB0
[  600.878820][T21661] usb usb8: usbfs: process 21661 (syz.2.6978) did not claim interface 0 before use
[  600.935809][  T987] usb 5-1: USB disconnect, device number 7
[  600.952125][  T987] kobil ttyUSB0: KOBIL USB smart card terminal converter now disconnected from ttyUSB0
[  600.977307][  T987] kobil_sct 5-1:3.106: device disconnected
[  601.100117][T21653] set_capacity_and_notify: 1 callbacks suppressed
[  601.100135][T21653] loop1: detected capacity change from 0 to 32768
[  601.139655][T21653] JBD2: Ignoring recovery information on journal
[  601.160402][T21669] loop3: detected capacity change from 0 to 4096
[  601.173346][T21669] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  601.289037][T21653] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  601.342687][T21678] netlink: 'syz.0.6986': attribute type 2 has an invalid length.
[  601.361476][T21669] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  601.376832][T21678] netlink: 'syz.0.6986': attribute type 1 has an invalid length.
[  601.386092][T21679] netlink: 'syz.2.6984': attribute type 3 has an invalid length.
[  601.404063][T21669] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[  601.405792][T21679] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6984'.
[  601.533997][T21653] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #20 has bad signature 
[  601.585548][T21683] netlink: 'syz.0.6988': attribute type 10 has an invalid length.
[  601.605850][T21653] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  601.622211][T21683] openvswitch: netlink: EtherType 0 is less than min 600
[  601.629559][T21653] OCFS2: File system is now read-only.
[  601.641824][T21653] (syz.1.6974,21653,0):ocfs2_search_chain:1888 ERROR: status = -30
[  601.684329][T21653] (syz.1.6974,21653,0):ocfs2_search_chain:2011 ERROR: status = -30
[  601.716726][T21653] (syz.1.6974,21653,0):ocfs2_claim_suballoc_bits:2098 ERROR: status = -30
[  601.720511][T21688] xt_CT: You must specify a L4 protocol and not use inversions on it
[  601.753135][T21653] (syz.1.6974,21653,0):ocfs2_claim_suballoc_bits:2151 ERROR: status = -30
[  601.777971][T21653] (syz.1.6974,21653,0):ocfs2_claim_metadata:2176 ERROR: status = -30
[  601.787022][T21653] (syz.1.6974,21653,0):ocfs2_claim_metadata:2189 ERROR: status = -30
[  601.817171][T21653] (syz.1.6974,21653,0):ocfs2_dx_dir_attach_index:2357 ERROR: status = -30
[  601.847607][T21653] (syz.1.6974,21653,0):ocfs2_expand_inline_dir:3050 ERROR: status = -30
[  601.882284][T21653] (syz.1.6974,21653,0):ocfs2_extend_dir:3232 ERROR: status = -30
[  601.929227][T21653] (syz.1.6974,21653,1):ocfs2_prepare_dir_for_insert:4350 ERROR: status = -30
[  601.969247][T21653] (syz.1.6974,21653,1):ocfs2_mknod:302 ERROR: status = -30
[  601.976513][T21653] (syz.1.6974,21653,1):ocfs2_mknod:506 ERROR: status = -30
[  601.986310][T21699] loop4: detected capacity change from 0 to 1024
[  602.017507][T21653] (syz.1.6974,21653,1):ocfs2_mkdir:662 ERROR: status = -30
[  602.041044][T21705] netlink: 'syz.2.6999': attribute type 7 has an invalid length.
[  602.071166][T21705] netlink: 'syz.2.6999': attribute type 8 has an invalid length.
[  602.102897][ T1105] hfsplus: b-tree write err: -5, ino 25
[  602.140017][ T1105] hfsplus: b-tree write err: -5, ino 4
[  602.156570][ T1105] hfsplus: b-tree write err: -5, ino 2
[  602.176962][ T6263] __find_get_block_slow() failed. block=1008806316530991136, b_blocknr=32, b_state=0x00620019, b_size=512, device loop1 blocksize: 512
[  602.221896][ T6263] grow_buffers: requested out-of-range block 1008806316530991136 for device loop1
[  602.257463][ T6263] (syz-executor,6263,0):ocfs2_read_blocks:239 ERROR: status = -12
[  602.269457][T21713] xt_policy: input policy not valid in POSTROUTING and OUTPUT
[  602.279091][ T6263] (syz-executor,6263,0):_ocfs2_free_suballoc_bits:2866 ERROR: status = -12
[  602.288075][ T6263] (syz-executor,6263,0):_ocfs2_free_clusters:2977 ERROR: status = -12
[  602.326680][T21715] loop3: detected capacity change from 0 to 1024
[  602.344583][ T6263] (syz-executor,6263,0):ocfs2_sync_local_to_main:994 ERROR: status = -12
[  602.359943][T21717] loop0: detected capacity change from 0 to 256
[  602.375015][ T6263] (syz-executor,6263,0):ocfs2_sync_local_to_main:1007 ERROR: status = -12
[  602.407176][T21717] FAT-fs (loop0): Directory bread(block 64) failed
[  602.417606][ T6263] (syz-executor,6263,0):ocfs2_shutdown_local_alloc:450 ERROR: status = -12
[  602.437523][T21717] FAT-fs (loop0): Directory bread(block 65) failed
[  602.463960][T21717] FAT-fs (loop0): Directory bread(block 66) failed
[  602.470527][T21717] FAT-fs (loop0): Directory bread(block 67) failed
[  602.485112][ T6263] ocfs2: Unmounting device (7,1) on (node local)
[  602.493471][ T1338] hfsplus: b-tree write err: -5, ino 25
[  602.499139][ T1338] hfsplus: b-tree write err: -5, ino 4
[  602.507783][T21717] FAT-fs (loop0): Directory bread(block 68) failed
[  602.534182][ T1338] hfsplus: b-tree write err: -5, ino 2
[  602.540742][T21717] FAT-fs (loop0): Directory bread(block 69) failed
[  602.578633][T21717] FAT-fs (loop0): Directory bread(block 70) failed
[  602.585620][T21717] FAT-fs (loop0): Directory bread(block 71) failed
[  602.605967][T21717] FAT-fs (loop0): Directory bread(block 72) failed
[  602.630541][T21717] FAT-fs (loop0): Directory bread(block 73) failed
[  602.999941][T21711] loop2: detected capacity change from 0 to 32768
[  603.063687][T21711] JBD2: Ignoring recovery information on journal
[  603.250745][T21711] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  603.547125][ T6273] ocfs2: Unmounting device (7,2) on (node local)
[  603.739804][T21763] netlink: 3 bytes leftover after parsing attributes in process `syz.3.7027'.
[  603.949345][T21771] vivid-000: =================  START STATUS  =================
[  603.968725][T21771] vivid-000: Generate PTS: true
[  603.995127][T21771] vivid-000: Generate SCR: true
[  604.000657][T21771] tpg source WxH: 720x576 (R'G'B)
[  604.007844][T21773] ipt_REJECT: ECHOREPLY no longer supported.
[  604.014023][T21771] tpg field: 8
[  604.024601][T21771] tpg crop: (0,0)/64x64
[  604.038915][T21771] tpg compose: (0,0)/16x16
[  604.044282][T21771] tpg colorspace: 1
[  604.048301][T21771] tpg transfer function: 1/2
[  604.063752][T21771] tpg quantization: 0/1
[  604.069811][T21771] tpg RGB range: 0/2
[  604.073723][T21771] vivid-000: ==================  END STATUS  ==================
[  604.163640][  T987] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  604.333351][  T987] usb 5-1: config 0 has an invalid interface number: 50 but max is 0
[  604.352688][  T987] usb 5-1: config 0 has no interface number 0
[  604.367138][  T987] usb 5-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  604.378867][ T6324] usb 1-1: new high-speed USB device number 85 using dummy_hcd
[  604.390732][  T987] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[  604.411626][  T987] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  604.431388][  T987] usb 5-1: Product: syz
[  604.432184][T21757] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  604.442165][  T987] usb 5-1: Manufacturer: syz
[  604.453132][  T987] usb 5-1: SerialNumber: syz
[  604.466491][  T987] usb 5-1: config 0 descriptor??
[  604.486531][  T987] yurex 5-1:0.50: USB YUREX device now attached to Yurex #0
[  604.566748][ T6324] usb 1-1: Using ep0 maxpacket: 32
[  604.582008][ T6324] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  604.609547][ T6324] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  604.643060][ T6324] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  604.652403][ T6324] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  604.661183][ T6324] usb 1-1: Product: syz
[  604.683596][ T6324] usb 1-1: Manufacturer: syz
[  604.707769][    C1] yurex 5-1:0.50: yurex_interrupt - overflow with length 8, actual length is 8
[  604.718063][ T6324] hub 1-1:4.0: USB hub found
[  604.724139][T21783] loop3: detected capacity change from 0 to 40427
[  604.737133][T21783] F2FS-fs: heap/no_heap options were deprecated
[  604.748583][T21783] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  604.766495][T21783] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  604.795862][T21783] F2FS-fs (loop3): invalid crc value
[  604.857118][  T987] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  604.919330][ T6324] hub 1-1:4.0: 2 ports detected
[  604.930704][T21783] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  604.940356][T21783] F2FS-fs (loop3): Start checkpoint disabled!
[  604.947898][ T6325] usb 5-1: USB disconnect, device number 8
[  604.965448][T21783] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[  604.975297][ T6325] yurex 5-1:0.50: USB YUREX #0 now disconnected
[  604.988768][T21783] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  604.996525][T21783] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  605.059617][ T1158] kworker/u8:9: attempt to access beyond end of device
[  605.059617][ T1158] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  605.075691][  T987] usb 3-1: unable to get BOS descriptor or descriptor too short
[  605.084159][ T1158] CPU: 0 UID: 0 PID: 1158 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(full) 
[  605.084195][ T1158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  605.084207][ T1158] Workqueue: writeback wb_workfn (flush-7:3)
[  605.084236][ T1158] Call Trace:
[  605.084244][ T1158]  <TASK>
[  605.084253][ T1158]  dump_stack_lvl+0xe8/0x150
[  605.084280][ T1158]  f2fs_handle_critical_error+0x37c/0x540
[  605.084313][ T1158]  f2fs_write_end_io+0xcdb/0xff0
[  605.084351][ T1158]  __submit_merged_bio+0x256/0x700
[  605.084384][ T1158]  __submit_merged_write_cond+0x3c9/0x4e0
[  605.084419][ T1158]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  605.084468][ T1158]  f2fs_write_data_pages+0x2975/0x35e0
[  605.084526][ T1158]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  605.084559][ T1158]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  605.084614][ T1158]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  605.084662][ T1158]  ? __lock_acquire+0x6b5/0x2cf0
[  605.084700][ T1158]  ? __pfx_f2fs_inode_chksum_set+0x10/0x10
[  605.084724][ T1158]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  605.084743][ T1158]  do_writepages+0x32e/0x550
[  605.084776][ T1158]  ? reacquire_held_locks+0x104/0x190
[  605.084800][ T1158]  ? writeback_sb_inodes+0x477/0x1a20
[  605.084830][ T1158]  __writeback_single_inode+0x133/0x11a0
[  605.084855][ T1158]  ? do_raw_spin_unlock+0xf5/0x210
[  605.084879][ T1158]  writeback_sb_inodes+0x992/0x1a20
[  605.084923][ T1158]  ? __lock_acquire+0x6b5/0x2cf0
[  605.084952][ T1158]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  605.084973][ T1158]  ? do_raw_spin_lock+0x12b/0x2f0
[  605.085032][ T1158]  ? rcu_is_watching+0x15/0xb0
[  605.085067][ T1158]  wb_writeback+0x456/0xb70
[  605.085093][ T1158]  ? queue_io+0x231/0x4a0
[  605.085123][ T1158]  ? __pfx_wb_writeback+0x10/0x10
[  605.085142][ T1158]  ? do_raw_spin_lock+0x12b/0x2f0
[  605.085176][ T1158]  wb_workfn+0x414/0xf50
[  605.085205][ T1158]  ? look_up_lock_class+0x57/0x110
[  605.085241][ T1158]  ? __pfx_wb_workfn+0x10/0x10
[  605.085264][ T1158]  ? do_raw_spin_lock+0x12b/0x2f0
[  605.085286][ T1158]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  605.085326][ T1158]  ? process_one_work+0x87c/0x1650
[  605.085348][ T1158]  process_one_work+0x949/0x1650
[  605.085381][ T1158]  ? irqentry_exit+0x59e/0x620
[  605.085413][ T1158]  ? __pfx_process_one_work+0x10/0x10
[  605.085434][ T1158]  ? do_raw_spin_lock+0x12b/0x2f0
[  605.085470][ T1158]  worker_thread+0xb46/0x1140
[  605.085501][ T1158]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  605.085537][ T1158]  kthread+0x388/0x470
[  605.085556][ T1158]  ? __pfx_worker_thread+0x10/0x10
[  605.085578][ T1158]  ? __pfx_kthread+0x10/0x10
[  605.085598][ T1158]  ret_from_fork+0x51e/0xb90
[  605.085624][ T1158]  ? __pfx_ret_from_fork+0x10/0x10
[  605.085647][ T1158]  ? __switch_to+0xc7d/0x1450
[  605.085672][ T1158]  ? __pfx_kthread+0x10/0x10
[  605.085693][ T1158]  ret_from_fork_asm+0x1a/0x30
[  605.085729][ T1158]  </TASK>
[  605.085737][ T1158] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  605.091691][  T987] usb 3-1: config 129 has an invalid interface number: 135 but max is 0
[  605.379126][ T6324] hub 1-1:4.0: hub_hub_status failed (err = -71)
[  605.385479][ T6324] hub 1-1:4.0: config failed, can't get hub status (err -71)
[  605.398182][  T987] usb 3-1: config 129 has an invalid interface number: 5 but max is 0
[  605.406417][  T987] usb 3-1: config 129 has 2 interfaces, different from the descriptor's value: 1
[  605.416919][ T6324] usb 1-1: USB disconnect, device number 85
[  605.425991][  T987] usb 3-1: config 129 has no interface number 0
[  605.434759][  T987] usb 3-1: config 129 has no interface number 1
[  605.441058][  T987] usb 3-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  605.457486][  T987] usb 3-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30
[  605.476107][  T987] usb 3-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37
[  605.490057][  T987] usb 3-1: config 129 interface 135 has no altsetting 0
[  605.506317][  T987] usb 3-1: config 129 interface 5 has no altsetting 0
[  605.516493][  T987] usb 3-1: string descriptor 0 read error: -22
[  605.528805][  T987] usb 3-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.00
[  605.551785][  T987] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  605.608785][  T987] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  605.619698][  T987] usb 3-1: MIDIStreaming interface descriptor not found
[  605.666673][T21814] loop4: detected capacity change from 0 to 8
[  605.675431][T21814] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  605.745967][ T9678] udevd[9678]: incorrect cramfs checksum on /dev/loop4
[  605.849632][  T987] usb 3-1: USB disconnect, device number 3
[  605.892918][ T9678] udevd[9678]: incorrect cramfs checksum on /dev/loop4
[  605.981042][T21826] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  606.227759][T21840] loop0: detected capacity change from 0 to 256
[  606.276784][T21840] exfat: Deprecated parameter 'namecase'
[  606.336505][T21840] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d)
[  606.380764][T21847] netlink: 'syz.1.7067': attribute type 61 has an invalid length.
[  606.439281][T21840] exFAT-fs (loop0): error, in sector 160, dentry 5 should be unused, but 0xc1
[  606.477760][T21849] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  606.949589][T21874] netlink: 28 bytes leftover after parsing attributes in process `syz.1.7080'.
[  606.994818][T21874] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7080'.
[  607.006650][T21874] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  607.476114][ T6317] usb 1-1: new full-speed USB device number 86 using dummy_hcd
[  607.673244][ T6317] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  607.698653][ T6317] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  607.717312][T21921] netlink: 'syz.4.7104': attribute type 2 has an invalid length.
[  607.730842][ T6317] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  607.763825][ T6317] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  607.778995][ T6317] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  607.790317][ T6317] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  607.827109][ T6317] usb 1-1: Manufacturer: syz
[  607.837219][ T6317] usb 1-1: config 0 descriptor??
[  607.921366][T21931] netlink: 'syz.1.7109': attribute type 21 has an invalid length.
[  608.126896][ T6317] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  608.153229][    T9] usb 1-1: USB disconnect, device number 86
[  608.244638][T21947] loop3: detected capacity change from 0 to 256
[  608.340848][ T6317] usb 5-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  608.351768][ T6317] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  608.376412][ T6317] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  608.411398][ T6317] usb 5-1: config 1 has no interface number 1
[  608.424714][ T6317] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  608.448194][ T6317] usb 5-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  608.481132][ T6317] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  608.493285][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  608.500355][ T6317] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  608.513425][ T6317] usb 5-1: Product: syz
[  608.517777][ T6317] usb 5-1: Manufacturer: syz
[  608.548957][ T6317] usb 5-1: SerialNumber: syz
[  608.610608][T21959] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  608.816570][ T6317] usb 5-1: No endpoint at altset 1, falling back to MIDI 1.0
[  608.835019][ T6317] usb 5-1: MIDIStreaming interface descriptor not found
[  608.918330][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  608.979415][ T6317] usb 5-1: USB disconnect, device number 9
[  608.986996][T21976] sctp: [Deprecated]: syz.2.7131 (pid 21976) Use of int in maxseg socket option.
[  608.986996][T21976] Use struct sctp_assoc_value instead
[  609.320139][T21990] loop3: detected capacity change from 0 to 2048
[  609.349343][T21990] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  609.431545][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  609.627910][T22005] loop1: detected capacity change from 0 to 256
[  609.714147][T22005] FAT-fs (loop1): Directory bread(block 64) failed
[  609.740107][T22005] FAT-fs (loop1): Directory bread(block 65) failed
[  609.747790][T22005] FAT-fs (loop1): Directory bread(block 66) failed
[  609.781400][T22005] FAT-fs (loop1): Directory bread(block 67) failed
[  609.808253][T22005] FAT-fs (loop1): Directory bread(block 68) failed
[  609.817853][T22014] loop2: detected capacity change from 0 to 136
[  609.840624][T22005] FAT-fs (loop1): Directory bread(block 69) failed
[  609.859612][T22005] FAT-fs (loop1): Directory bread(block 70) failed
[  609.906082][T22005] FAT-fs (loop1): Directory bread(block 71) failed
[  609.954163][T22005] FAT-fs (loop1): Directory bread(block 72) failed
[  609.969863][T22005] FAT-fs (loop1): Directory bread(block 73) failed
[  610.268566][T22026] m1Ie5nè‹Ò: entered promiscuous mode
[  610.470636][T22032] loop1: detected capacity change from 0 to 4096
[  610.509453][T22032] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  610.623056][T22032] ntfs3(loop1): ino=19, mi_enum_attr
[  610.650448][T22032] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  610.745151][T22032] ntfs3(loop1): failed to convert "c46c" to macinuit
[  610.773547][T22032] ntfs3(loop1): ino=20, mi_enum_attr
[  611.337410][T22072] loop4: detected capacity change from 0 to 8
[  611.355103][  T987] usb 3-1: new full-speed USB device number 4 using dummy_hcd
[  611.363667][T22072] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  611.401605][ T9678] udevd[9678]: incorrect cramfs checksum on /dev/loop4
[  611.417580][T22072] cramfs: bad data blocksize 3221485570
[  611.439117][ T9678] udevd[9678]: incorrect cramfs checksum on /dev/loop4
[  611.441488][T22072] cramfs: bad data blocksize 3221485570
[  611.466183][   T30] audit: type=1800 audit(1771847907.473:107): pid=22072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.7179" name="file2" dev="loop4" ino=348 res=0 errno=0
[  611.565602][  T987] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  611.607603][  T987] usb 3-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  611.629292][  T987] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  611.664212][  T987] usb 3-1: Product: syz
[  611.677091][  T987] usb 3-1: Manufacturer: syz
[  611.687498][  T987] usb 3-1: SerialNumber: syz
[  611.731546][  T987] usb 3-1: config 0 descriptor??
[  611.741716][  T987] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  611.910003][T22094] netlink: 'syz.0.7190': attribute type 13 has an invalid length.
[  612.027638][T22094] gretap0: refused to change device tx_queue_len
[  612.041945][T22094] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  612.053644][T22102] loop1: detected capacity change from 0 to 256
[  612.085851][T22102] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  612.099850][T22102] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  612.144592][T22102] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  612.191349][T22102] exFAT-fs (loop1): failed to load alloc-bitmap
[  612.191762][  T987] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71
[  612.225886][T22102] exFAT-fs (loop1): failed to recognize exfat type
[  612.236809][  T987] gspca_pac7302 3-1:0.0: probe with driver gspca_pac7302 failed with error -71
[  612.296161][  T987] usb 3-1: USB disconnect, device number 4
[  612.479841][T22114] netlink: 'syz.4.7201': attribute type 5 has an invalid length.
[  612.530174][ T6325] usb 2-1: new high-speed USB device number 127 using dummy_hcd
[  612.672104][T22104] loop0: detected capacity change from 0 to 32768
[  612.691307][T22104] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.7196 (22104)
[  612.693121][ T6325] usb 2-1: Using ep0 maxpacket: 8
[  612.724979][T22104] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  612.743179][ T6325] usb 2-1: unable to get BOS descriptor or descriptor too short
[  612.754295][T22104] BTRFS info (device loop0): using xxhash64 checksum algorithm
[  612.759868][ T6325] usb 2-1: config 4 has an invalid interface number: 147 but max is 0
[  612.785609][ T6325] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  612.788400][T22104] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  612.809766][ T6325] usb 2-1: config 4 has no interface number 0
[  612.811844][ T6325] usb 2-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  612.876402][ T6325] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  612.936757][ T6325] usb 2-1: Product: syz
[  612.940985][ T6325] usb 2-1: Manufacturer: syz
[  612.945586][ T6325] usb 2-1: SerialNumber: syz
[  612.967900][T22104] BTRFS info (device loop0): rebuilding free space tree
[  613.045569][T22104] BTRFS info (device loop0): disabling free space tree
[  613.076952][T22147] loop2: detected capacity change from 0 to 1024
[  613.095310][T22104] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  613.119798][T22104] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  613.133403][T22149] loop4: detected capacity change from 0 to 512
[  613.197963][T22104] BTRFS info (device loop0): allowing degraded mounts
[  613.226270][T22149] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  613.253692][T22104] BTRFS info (device loop0): enabling ssd optimizations
[  613.284528][ T6325] uvcvideo 2-1:4.147: Found multiple Units with ID 6
[  613.293621][ T6325] uvcvideo 2-1:4.147: Found UVC 0.00 device syz (04f2:b746)
[  613.301808][ T6325] uvcvideo 2-1:4.147: Entity type for entity Output 33017 was not initialized!
[  613.311073][ T6325] uvcvideo 2-1:4.147: Failed to create links for entity 33017
[  613.318749][ T6325] uvcvideo 2-1:4.147: Failed to register entities (-22).
[  613.321199][T22104] BTRFS info (device loop0): turning on async discard
[  613.327184][T22149] ext4 filesystem being mounted at /1333/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  613.346754][ T6325] usb 2-1: USB disconnect, device number 127
[  613.354548][T22104] BTRFS info (device loop0): enabling disk space caching
[  613.361600][T22104] BTRFS info (device loop0): force clearing of disk cache
[  613.372014][T22104] BTRFS info (device loop0): use zlib compression, level 3
[  613.497305][T22104] BTRFS info (device loop0): balance: start 
[  613.518265][ T6275] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.527767][T22104] BTRFS info (device loop0): balance: ended with status: 0
[  613.664802][ T6262] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  614.542884][T22209] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7237'.
[  614.689835][ T6317] usb 4-1: new high-speed USB device number 121 using dummy_hcd
[  614.769968][T22219] tmpfs: Bad value for 'mpol'
[  614.868376][ T6317] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  614.907742][ T6317] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  614.943274][ T6317] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  614.952491][T18335] usb 1-1: new high-speed USB device number 87 using dummy_hcd
[  614.968082][ T6317] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  614.976643][ T6317] usb 4-1: SerialNumber: syz
[  615.119417][T18335] usb 1-1: config index 0 descriptor too short (expected 133, got 72)
[  615.148405][T18335] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  615.168740][T18335] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  615.177596][T18335] usb 1-1: Product: syz
[  615.182456][T18335] usb 1-1: Manufacturer: syz
[  615.187084][T18335] usb 1-1: SerialNumber: syz
[  615.209784][T22244] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  615.210106][T18335] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  615.250080][ T6317] usb 4-1: 0:2 : does not exist
[  615.265614][    T9] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  615.284024][T22246] kAFS: unable to lookup cell '.S²jË¡8'
[  615.397324][ T6317] usb 4-1: USB disconnect, device number 121
[  615.486738][ T9678] udevd[9678]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  615.808610][ T6324] usb 1-1: USB disconnect, device number 87
[  615.979618][T22275] loop4: detected capacity change from 0 to 1764
[  616.299432][T22292] loop2: detected capacity change from 0 to 128
[  616.312619][T22292] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  616.367364][    T9] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  616.405645][    T9] ath9k_htc: Failed to initialize the device
[  616.431713][ T6324] usb 1-1: ath9k_htc: USB layer deinitialized
[  616.599246][T22306] loop1: detected capacity change from 0 to 512
[  616.657302][T22306] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  616.665527][T22306] EXT4-fs (loop1): orphan cleanup on readonly fs
[  616.715218][T22306] Quota error (device loop1): find_block_dqentry: Quota for id 0 referenced but not present
[  616.742858][T22314] loop0: detected capacity change from 0 to 64
[  616.764324][T22306] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  616.776954][T22306] EXT4-fs error (device loop1): ext4_acquire_dquot:7003: comm syz.1.7285: Failed to acquire dquot type 1
[  616.792690][   T30] audit: type=1326 audit(1771847912.450:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22315 comm="syz.3.7290" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8c5cf9c629 code=0x0
[  616.814741][T22306] loop1: lost filesystem error report for type 5 error -5
[  616.827188][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  616.840755][    C1] EXT4-fs (loop1): initial error at time 1771847912: ext4_acquire_dquot:7003
[  616.849574][    C1] EXT4-fs (loop1): last error at time 1771847912: ext4_acquire_dquot:7003
[  616.858595][T22306] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.7285: bg 0: block 40: padding at end of block bitmap is not set
[  616.875023][T22306] loop1: lost filesystem error report for type 5 error -117
[  616.877575][T22306] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6687: Corrupt filesystem
[  616.907983][T22306] loop1: lost filesystem error report for type 5 error -117
[  616.913043][T22306] EXT4-fs (loop1): 1 truncate cleaned up
[  616.983309][T22306] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  617.069585][T22325] loop0: detected capacity change from 0 to 1024
[  617.128536][   T30] audit: type=1326 audit(1771847912.759:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22328 comm="syz.2.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  617.190378][   T30] audit: type=1326 audit(1771847912.768:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22328 comm="syz.2.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  617.280519][ T6263] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  617.311090][   T30] audit: type=1326 audit(1771847912.778:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22328 comm="syz.2.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  617.370831][T22337] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7299'.
[  617.398720][   T30] audit: type=1326 audit(1771847912.778:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22328 comm="syz.2.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  617.446358][   T30] audit: type=1326 audit(1771847912.778:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22328 comm="syz.2.7296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cb7d9c629 code=0x7ffc0000
[  617.653718][T22354] netlink: 'syz.0.7306': attribute type 1 has an invalid length.
[  617.803936][T22362] loop1: detected capacity change from 0 to 256
[  617.822063][T22362] exfat: Deprecated parameter 'namecase'
[  617.827774][T22362] exfat: Deprecated parameter 'utf8'
[  617.857281][T22362] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  617.969006][T22371] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  618.604230][T22403] loop4: detected capacity change from 0 to 512
[  618.652212][T22403] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  618.757579][T22403] EXT4-fs error (device loop4): ext4_quota_enable:7190: comm syz.4.7332: Bad quota inum: 2, type: 1
[  618.818449][T22403] EXT4-fs warning (device loop4): ext4_enable_quotas:7238: Failed to enable quota tracking (type=1, err=-117, ino=2). Please run e2fsck to fix.
[  618.877590][T22373] loop1: detected capacity change from 0 to 32768
[  618.917594][T22373] (syz.1.7318,22373,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  618.966014][ T6275] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  618.973220][T22373] (syz.1.7318,22373,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  619.098613][T22373] JBD2: Ignoring recovery information on journal
[  619.119927][T22421] netlink: 'syz.4.7337': attribute type 1 has an invalid length.
[  619.230343][T22373] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  619.335265][T22400] loop2: detected capacity change from 0 to 32768
[  619.343168][T22373] 
[  619.345513][T22373] ======================================================
[  619.346894][T22426] netlink: 132 bytes leftover after parsing attributes in process `syz.4.7340'.
[  619.352526][T22373] WARNING: possible circular locking dependency detected
[  619.352546][T22373] syzkaller #0 Not tainted
[  619.352556][T22373] ------------------------------------------------------
[  619.352565][T22373] syz.1.7318/22373 is trying to acquire lock:
[  619.382723][T22429] netlink: 'syz.3.7343': attribute type 13 has an invalid length.
[  619.385998][T22373] ffff88804c0edf40 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x16a/0x4940
[  619.407152][T22373] 
[  619.407152][T22373] but task is already holding lock:
[  619.414522][T22373] ffff88805c079538 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x475/0x13e0
[  619.423999][T22373] 
[  619.423999][T22373] which lock already depends on the new lock.
[  619.423999][T22373] 
[  619.434381][T22373] 
[  619.434381][T22373] the existing dependency chain (in reverse order) is:
[  619.443373][T22373] 
[  619.443373][T22373] -> #4 (&oi->ip_xattr_sem){++++}-{4:4}:
[  619.451185][T22373]        down_read+0x47/0x2e0
[  619.455858][T22373]        ocfs2_init_acl+0x2fd/0x7e0
[  619.461050][T22373]        ocfs2_mknod+0x1679/0x2290
[  619.466150][T22373]        ocfs2_create+0x195/0x490
[  619.471162][T22373]        path_openat+0x1395/0x3860
[  619.476258][T22373]        do_file_open+0x23e/0x4a0
[  619.481276][T22373]        do_sys_openat2+0x113/0x200
[  619.486462][T22373]        __x64_sys_creat+0x8f/0xc0
[  619.491565][T22373]        do_syscall_64+0x14d/0xf80
[  619.496665][T22373]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.503065][T22373] 
[  619.503065][T22373] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  619.511566][T22373]        down_read+0x47/0x2e0
[  619.516235][T22373]        ocfs2_start_trans+0x3ab/0x700
[  619.521694][T22373]        ocfs2_shutdown_local_alloc+0x1f5/0xa40
[  619.527925][T22373]        ocfs2_dismount_volume+0x1ec/0x900
[  619.533720][T22373]        generic_shutdown_super+0x13d/0x2d0
[  619.539604][T22373]        kill_block_super+0x44/0x90
[  619.544786][T22373]        deactivate_locked_super+0xbc/0x130
[  619.550671][T22373]        cleanup_mnt+0x437/0x4d0
[  619.555593][T22373]        task_work_run+0x1d9/0x270
[  619.560689][T22373]        exit_to_user_mode_loop+0xed/0x480
[  619.566481][T22373]        do_syscall_64+0x32d/0xf80
[  619.571582][T22373]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.577980][T22373] 
[  619.577980][T22373] -> #2 (sb_internal#4){.+.+}-{0:0}:
[  619.585450][T22373]        ocfs2_start_trans+0x2ac/0x700
[  619.590918][T22373]        ocfs2_mknod+0x1181/0x2290
[  619.596030][T22373]        ocfs2_create+0x195/0x490
[  619.601046][T22373]        path_openat+0x1395/0x3860
[  619.606150][T22373]        do_file_open+0x23e/0x4a0
[  619.611166][T22373]        do_sys_openat2+0x113/0x200
[  619.616363][T22373]        __x64_sys_open+0x11e/0x150
[  619.621555][T22373]        do_syscall_64+0x14d/0xf80
[  619.626658][T22373]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.633060][T22373] 
[  619.633060][T22373] -> #1 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  619.643645][T22373]        down_write+0x96/0x200
[  619.648401][T22373]        ocfs2_reserve_local_alloc_bits+0x11f/0x26f0
[  619.655063][T22373]        ocfs2_reserve_clusters_with_limit+0x1b9/0xc20
[  619.661910][T22373]        ocfs2_mknod+0x111f/0x2290
[  619.667026][T22373]        ocfs2_create+0x195/0x490
[  619.672044][T22373]        path_openat+0x1395/0x3860
[  619.677148][T22373]        do_file_open+0x23e/0x4a0
[  619.682161][T22373]        do_sys_openat2+0x113/0x200
[  619.687366][T22373]        __x64_sys_open+0x11e/0x150
[  619.692568][T22373]        do_syscall_64+0x14d/0xf80
[  619.697674][T22373]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.704076][T22373] 
[  619.704076][T22373] -> #0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  619.714751][T22373]        __lock_acquire+0x15a5/0x2cf0
[  619.720118][T22373]        lock_acquire+0xf0/0x2e0
[  619.725050][T22373]        down_write+0x96/0x200
[  619.729808][T22373]        ocfs2_reserve_suballoc_bits+0x16a/0x4940
[  619.736216][T22373]        ocfs2_reserve_new_metadata_blocks+0x415/0x9a0
[  619.743061][T22373]        ocfs2_init_xattr_set_ctxt+0x2f5/0x790
[  619.749201][T22373]        ocfs2_xattr_set+0xc42/0x13e0
[  619.754560][T22373]        __vfs_setxattr+0x43c/0x480
[  619.759748][T22373]        __vfs_setxattr_noperm+0x12d/0x660
[  619.765546][T22373]        vfs_setxattr+0x163/0x360
[  619.770561][T22373]        filename_setxattr+0x296/0x630
[  619.776013][T22373]        path_setxattrat+0x3eb/0x440
[  619.781283][T22373]        __x64_sys_lsetxattr+0xbf/0xe0
[  619.786734][T22373]        do_syscall_64+0x14d/0xf80
[  619.791836][T22373]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.798232][T22373] 
[  619.798232][T22373] other info that might help us debug this:
[  619.798232][T22373] 
[  619.808439][T22373] Chain exists of:
[  619.808439][T22373]   &ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE] --> &journal->j_trans_barrier --> &oi->ip_xattr_sem
[  619.808439][T22373] 
[  619.825544][T22373]  Possible unsafe locking scenario:
[  619.825544][T22373] 
[  619.832977][T22373]        CPU0                    CPU1
[  619.838325][T22373]        ----                    ----
[  619.843670][T22373]   lock(&oi->ip_xattr_sem);
[  619.848249][T22373]                                lock(&journal->j_trans_barrier);
[  619.856034][T22373]                                lock(&oi->ip_xattr_sem);
[  619.863133][T22373]   lock(&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]);
[  619.870573][T22373] 
[  619.870573][T22373]  *** DEADLOCK ***
[  619.870573][T22373] 
[  619.878698][T22373] 3 locks held by syz.1.7318/22373:
[  619.883882][T22373]  #0: ffff88806cc70420 (sb_writers#30){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  619.893130][T22373]  #1: ffff88805c079800 (&type->i_mutex_dir_key#20){++++}-{4:4}, at: vfs_setxattr+0x13e/0x360
[  619.903424][T22373]  #2: ffff88805c079538 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x475/0x13e0
[  619.913344][T22373] 
[  619.913344][T22373] stack backtrace:
[  619.919224][T22373] CPU: 0 UID: 0 PID: 22373 Comm: syz.1.7318 Not tainted syzkaller #0 PREEMPT(full) 
[  619.919244][T22373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  619.919254][T22373] Call Trace:
[  619.919284][T22373]  <TASK>
[  619.919293][T22373]  dump_stack_lvl+0xe8/0x150
[  619.919319][T22373]  print_circular_bug+0x2e1/0x300
[  619.919345][T22373]  check_noncircular+0x12e/0x150
[  619.919370][T22373]  __lock_acquire+0x15a5/0x2cf0
[  619.919393][T22373]  ? _raw_spin_unlock+0x28/0x50
[  619.919413][T22373]  ? ocfs2_get_system_file_inode+0x202/0x7e0
[  619.919438][T22373]  lock_acquire+0xf0/0x2e0
[  619.919457][T22373]  ? ocfs2_reserve_suballoc_bits+0x16a/0x4940
[  619.919482][T22373]  down_write+0x96/0x200
[  619.919504][T22373]  ? ocfs2_reserve_suballoc_bits+0x16a/0x4940
[  619.919525][T22373]  ? __pfx_down_write+0x10/0x10
[  619.919549][T22373]  ocfs2_reserve_suballoc_bits+0x16a/0x4940
[  619.919576][T22373]  ? do_raw_spin_lock+0x12b/0x2f0
[  619.919595][T22373]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[  619.919616][T22373]  ? lockdep_hardirqs_on+0x7a/0x110
[  619.919635][T22373]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  619.919653][T22373]  ? stack_depot_save_flags+0x3f3/0x810
[  619.919679][T22373]  ? kasan_save_track+0x4f/0x80
[  619.919695][T22373]  ? kasan_save_track+0x3e/0x80
[  619.919709][T22373]  ? __kasan_kmalloc+0x93/0xb0
[  619.919724][T22373]  ? __kmalloc_cache_noprof+0x31c/0x660
[  619.919740][T22373]  ? ocfs2_reserve_new_metadata_blocks+0x10c/0x9a0
[  619.919761][T22373]  ? ocfs2_init_xattr_set_ctxt+0x2f5/0x790
[  619.919776][T22373]  ? ocfs2_xattr_set+0xc42/0x13e0
[  619.919790][T22373]  ? __vfs_setxattr+0x43c/0x480
[  619.919810][T22373]  ? __vfs_setxattr_noperm+0x12d/0x660
[  619.919830][T22373]  ? vfs_setxattr+0x163/0x360
[  619.919850][T22373]  ? filename_setxattr+0x296/0x630
[  619.919871][T22373]  ? path_setxattrat+0x3eb/0x440
[  619.919886][T22373]  ? __x64_sys_lsetxattr+0xbf/0xe0
[  619.919907][T22373]  ? do_syscall_64+0x14d/0xf80
[  619.919931][T22373]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.919959][T22373]  ? __kasan_kmalloc+0x93/0xb0
[  619.919976][T22373]  ? __kmalloc_cache_noprof+0x31c/0x660
[  619.919992][T22373]  ? ocfs2_reserve_new_metadata_blocks+0x10c/0x9a0
[  619.920013][T22373]  ? __kmalloc_cache_noprof+0x15b/0x660
[  619.920029][T22373]  ocfs2_reserve_new_metadata_blocks+0x415/0x9a0
[  619.920053][T22373]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[  619.920075][T22373]  ? __pfx_ocfs2_calc_xattr_set_need+0x10/0x10
[  619.920102][T22373]  ocfs2_init_xattr_set_ctxt+0x2f5/0x790
[  619.920120][T22373]  ? __pfx_ocfs2_init_xattr_set_ctxt+0x10/0x10
[  619.920136][T22373]  ? ocfs2_xattr_set+0xc08/0x13e0
[  619.920151][T22373]  ? up_write+0x1ab/0x410
[  619.920165][T22373]  ? __kmalloc_cache_noprof+0x15b/0x660
[  619.920183][T22373]  ocfs2_xattr_set+0xc42/0x13e0
[  619.920205][T22373]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  619.920223][T22373]  ? try_to_unlazy+0x6ad/0xc50
[  619.920239][T22373]  ? register_lock_class+0x31/0x2e0
[  619.920259][T22373]  ? __lock_acquire+0x6b5/0x2cf0
[  619.920278][T22373]  ? terminate_walk+0x3d7/0x510
[  619.920301][T22373]  ? evm_protected_xattr_common+0x170/0x190
[  619.920321][T22373]  ? evm_protect_xattr+0x748/0xac0
[  619.920339][T22373]  ? __pfx_ima_get_hash_algo+0x10/0x10
[  619.920356][T22373]  ? __pfx_evm_protect_xattr+0x10/0x10
[  619.920375][T22373]  ? __pfx_ocfs2_xattr_security_set+0x10/0x10
[  619.920391][T22373]  __vfs_setxattr+0x43c/0x480
[  619.920415][T22373]  __vfs_setxattr_noperm+0x12d/0x660
[  619.920438][T22373]  vfs_setxattr+0x163/0x360
[  619.920460][T22373]  ? __pfx_vfs_setxattr+0x10/0x10
[  619.920483][T22373]  filename_setxattr+0x296/0x630
[  619.920508][T22373]  ? __pfx_filename_setxattr+0x10/0x10
[  619.920531][T22373]  ? do_getname+0x151/0x250
[  619.920550][T22373]  path_setxattrat+0x3eb/0x440
[  619.920569][T22373]  ? __pfx_path_setxattrat+0x10/0x10
[  619.920585][T22373]  ? do_futex+0x333/0x420
[  619.920612][T22373]  ? rcu_is_watching+0x15/0xb0
[  619.920635][T22373]  __x64_sys_lsetxattr+0xbf/0xe0
[  619.920658][T22373]  do_syscall_64+0x14d/0xf80
[  619.920677][T22373]  ? trace_irq_disable+0x3b/0x150
[  619.920690][T22373]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.920705][T22373]  ? clear_bhb_loop+0x40/0x90
[  619.920721][T22373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  619.920737][T22373] RIP: 0033:0x7f69d299c629
[  619.920752][T22373] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  619.920766][T22373] RSP: 002b:00007f69d384e028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  619.920784][T22373] RAX: ffffffffffffffda RBX: 00007f69d2c15fa0 RCX: 00007f69d299c629
[  619.920796][T22373] RDX: 0000200000000500 RSI: 0000200000000080 RDI: 0000200000000040
[  619.920807][T22373] RBP: 00007f69d2a32b39 R08: 0000000000000001 R09: 0000000000000000
[  619.920817][T22373] R10: 0000000000000e01 R11: 0000000000000246 R12: 0000000000000000
[  619.920827][T22373] R13: 00007f69d2c16038 R14: 00007f69d2c15fa0 R15: 00007fff46837b48
[  619.920844][T22373]  </TASK>
[  620.444667][T22400] /dev/loop2: Can't open blockdev
[  620.496783][ T6263] ocfs2: Unmounting device (7,1) on (node local)