last executing test programs:

2m13.218024597s ago: executing program 5 (id=1074):
r0 = memfd_create(&(0x7f0000000000)='/dev/urandom\x00', 0x5)
preadv(r0, 0x0, 0x0, 0x8001, 0x8)

2m12.835398724s ago: executing program 5 (id=1079):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a076b876c1d0048007ea60864160af36504001d0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

2m12.358013342s ago: executing program 5 (id=1083):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x10, 0x0, &(0x7f0000000280)=[@request_death={0x400c6313}], 0x0, 0x0, 0x0})

2m11.936530412s ago: executing program 5 (id=1092):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000001600)={[{@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@redirect_dir_nofollow}, {@userxattr}], [], 0x2c})

2m10.890591192s ago: executing program 5 (id=1105):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f0000000140)={0x18, 0x1, 0x0, 0x204, 0x0, 0x1})

2m9.296523055s ago: executing program 5 (id=1122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x80000000}]}, 0x3c}, 0x1, 0x0, 0x0, 0xf00}, 0x0)

2m8.528760728s ago: executing program 32 (id=1122):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x80000000}]}, 0x3c}, 0x1, 0x0, 0x0, 0xf00}, 0x0)

7.58364491s ago: executing program 3 (id=2482):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd70000000000002000000140001800d0001007564703a73faebbf60"], 0x28}}, 0x0)

6.879103139s ago: executing program 3 (id=2490):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000100)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x40, 0x56e, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x80, 0x9, [{{0x9, 0x4, 0x0, 0x6, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x6, 0x4, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20, 0x20, 0x0, 0xf7}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000580)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="20240f"], 0x0, 0x0, 0x0, 0x0}, 0x0)

5.153572418s ago: executing program 0 (id=2504):
unshare(0x22020600)
r0 = socket$phonet(0x23, 0x2, 0x1)
bind$phonet(r0, 0x0, 0x0)

5.064733357s ago: executing program 6 (id=2506):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@newlink={0x40, 0x10, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4d264}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0xc, 0x16, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x4}]}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x40)

4.833761244s ago: executing program 0 (id=2508):
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\f\xffN\xfd&b\x17z\x97$\xc3\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb', 0x0)
fsetxattr$security_ima(r0, &(0x7f0000000080), &(0x7f0000001200)=@sha1={0x1, "133f9613e19d9ae35fcacf2bf3c557a71b10d14b"}, 0x15, 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

4.625129993s ago: executing program 6 (id=2512):
r0 = syz_io_uring_setup(0xec4, &(0x7f00000003c0)={0x0, 0xfffffffc, 0x2, 0x6, 0x34b}, &(0x7f0000000500), &(0x7f0000000600))
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0)
io_uring_enter(r0, 0x5125, 0xf6d7, 0x3, &(0x7f0000000040)={[0x2]}, 0x8)

4.470190787s ago: executing program 0 (id=2513):
r0 = syz_open_dev$loop(&(0x7f0000000040), 0x81, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_test', 0x41e43, 0x14)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809a1a93c5240f45f819e01177d3d458dd4992861ac000000150000000000000000000000000000001000", "90be8b1c551265406c7f306003d8a0f4bd00", [0x0, 0xfffffffffffffff8]}})

4.299696848s ago: executing program 6 (id=2515):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x20008d0, &(0x7f0000000400)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6e6f757365725f78617474722c636f686572656e63793d66756c6c2c646174613d77726974656261636b2c6c6f63616c616c6c6f633d30303030303030303030303030303030303030312c61636c2c6e6f61636c2c6c6f63616c616c6c6f633d30303030303030303030303030303030302c00a89f6b8d5800aa954e6c8735dcd52921ce08462fb4ce7c1600883251443ac332f4d17b77d29867e4321610916dbc5963e9fb59a032c92e32ebffc3b739951e866d52bff6bd63136a656222062a8eea0cf97480bc8ac6c0e8a2aa38ffa8fa758cd54b9ef39a7f536d7b85173a83c34d78e210ecf4d040817bbe989e9eb015acb84b99b2ed90f71810cd92eeca69f5275cb7b7027d4babf643bd69b0a68134c022fe5dcd03834f547325ac2d1a5d16f074d898946ff71afa90180b317e645dd58a922e5d907462cd50dc23801c48c0d49ab012961d84d2eb85a3730a3f3177da048c3bc991216b11dca020afefc24ae7583b59534a0ab1fca82bf473216141db8e9864f7861d0500a920e1a8d3352d0662f586e743386e87b6c0c5ed6e4d192ef2990b44cedbb708e7a18b20dcd5573b603c4d659992647ffa8210abf4e9d232b52a8ea1dd1c045afd8e472cd1fbb775e89cca49d136a6"], 0x1, 0x4446, &(0x7f00000088c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
llistxattr(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)

4.0571241s ago: executing program 3 (id=2517):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000005c0)={'pcl726\x00', [0x4f27, 0xfffffffc, 0x4, 0x4, 0x3, 0x5, 0x4, 0x7, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x1, 0x6, 0x101, 0x2, 0x7f, 0x3, 0x40000005, 0x8d, 0xcaa3, 0x0, 0x20001e5b, 0x3, 0xe66, 0x1000003, 0x100008, 0x4086, 0x0, 0xfffffff8]})

3.652847872s ago: executing program 0 (id=2519):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f0000000000)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x2d0, 0x241, 0x1, 0x0, 0xdd9f83, 0x8, 0x9, 0x1, 0x2, 0x8, 0x722, 0x13, 0x7, 0x7f, 0x3e, 0xb763599953cb091f, {0x0, 0x6fd8e848}, 0x3, 0xed}})

3.607983915s ago: executing program 3 (id=2520):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a)
write(r0, &(0x7f0000000000)="240000001a005f0400f9f407000904018000200000000000000000000800020040000000", 0x24)

3.396964439s ago: executing program 0 (id=2522):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r0 = socket$netlink(0x10, 0x3, 0x4)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000340)="480000001400191809004beafd0d3602028447000b4e230f02000500a2bc5603ca00000f7f89004e00200000000101ff05c00e03000200000000000100000000005839c97b910000", 0x48}], 0x1)

3.353125424s ago: executing program 3 (id=2524):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x34, r1, 0x303, 0x70bd27, 0x0, {0x2a}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000840}, 0x0)

3.123598781s ago: executing program 0 (id=2525):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x41e, 0x2801, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x8}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000280)={0x18, &(0x7f0000000340)={0x0, 0x3, 0x16, {0x16, 0x30, "4ff643a214184d7a330d5822b860f5ac4a2b2fee"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

3.065913689s ago: executing program 2 (id=2526):
r0 = syz_open_dev$I2C(&(0x7f000000adc0), 0x0, 0x60242)
ioctl$I2C_TENBIT(r0, 0x704, 0x1)
ioctl$I2C_SLAVE(r0, 0x703, 0x30d)

2.971086973s ago: executing program 3 (id=2527):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file3\x00', 0xcc0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c00535d4e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0"], 0x1, 0x442a, &(0x7f0000008940)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FITRIM(r0, 0x40046f01, &(0x7f0000000000)={0xc6, 0x1, 0x401})

2.882978159s ago: executing program 4 (id=2528):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000440), r0)
sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010026bd7000fbdbdf25040000df05000a000100000008000100c9"], 0x24}, 0x1, 0x0, 0x0, 0x41}, 0x2800)

2.791264634s ago: executing program 2 (id=2529):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffd}}, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20)

2.592763016s ago: executing program 4 (id=2530):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x2)
ioctl$TCFLSH(r0, 0x40087101, 0x8000020001100)

2.475439484s ago: executing program 2 (id=2531):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000005c0), 0x10)
sendmsg$sock(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000000)="bb58540a1dd6219a88b3eb80d9db32761d3f53867695973d5bedb6c8c67dce0d9424b3f81ab63989a105c45292a7282965b8aac439cca3ee7e", 0x39}, {0x0}], 0x2}, 0x20008800)

2.283995997s ago: executing program 4 (id=2533):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x13d, 0x40009, 0x0, 0x90000, 0x2c, "737b27e90e2947801cf3a246ada40a9fd86000"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0xd)

2.197793801s ago: executing program 6 (id=2534):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x20000090, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000080)=0x4000004, 0x4)

2.120733965s ago: executing program 2 (id=2535):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000100), 0x1c3902, 0x0)
sendfile(r0, r0, 0x0, 0x200000)

1.918647659s ago: executing program 4 (id=2536):
syz_mount_image$jfs(&(0x7f0000000400), &(0x7f0000000040)='./file0\x00', 0x1c802, &(0x7f0000002740)=ANY=[@ANYBLOB="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"], 0x1, 0x5f98, &(0x7f000000efc0)="$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")
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0, 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[@ANYBLOB="200000000200000020"], 0x0)

1.598353642s ago: executing program 6 (id=2537):
syz_mount_image$ocfs2(&(0x7f00000002c0), &(0x7f0000000140)='./file1\x00', 0x8c0, &(0x7f0000000500)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cc85bf8e749e04e", @ANYRES16, @ANYRESOCT, @ANYRES16], 0x11, 0x445c, &(0x7f0000004a80)="$eJzs3c9vE9kdAPA3k1ASyo+EcqBSpVoqUqu2ihJOtEFqEgIhgZSKFlT1YpzEQFonRolT9YBEekPtqVIPVQ9oV9pbTij/APsn7GWP7BlpOexlpZXQemV7HDwTezFgh2X1+Rw89vvtfGee3xwmL05U7q5u5lY3c4X1XHn59ubZ3N/Lpa21YogPSNv+Dx1c/3TnNc+TsN37Numhaxcu/fHm2RA+Xvn0WbVarYaawdDWRMv7L7+4v9x6bIozdWrttm+tV/4SQji1b1w1AyGEPycDmk7SZpLjcAjhWAghCiHcvP/vW7kejebx0+L5/IvFh7uTZxZ2Hu12/u5RCP8v/fjXd9Y+/9nA5Ge/7FH3AAAAAAAAAAAAAAAAAAC85+auX7vxh/GJ8CQKgzvR/ud155Jjp+djqz3z005D/FdPvzAAAAAAAAAAAAAAAAAAAAB8B718/j8XnWzz/P9scpzqUL/6uw4Zh3s7Tvpj/vfXZi+OTyT7v0f78s8lSc+nB8Jom33fs/u/T2fqt9//PWl04O3H3xxfs9+REMVj1Qd7+SMhjsfGQvgw2fj9dHQkLpU3K7+6Xd5aX3n7/t936fg3NstPnQXJ/vndxn8m037/9///UcietbXPt/afyrSRjn/nC/Kjf0Zdxf9Cpt5BxJ83l47/YD1tuLXAVGMCqMX/P4Ovjv9spv1+xf94CCEX1caaS80AtTVMLb3TeoW0dPwP1dNSU2fyh+x0/X+Vif/FTPud4n+i/vqDHnyD9vP/dvaHiLbS8W/EYyhV4uX1Pxp3vv6bc8alTPvv4ve/Nv5tv/9dScc/uWkbTBWp/yW7nf/nMu33K/434mScx6PUGbATNdI7/b860tLxH9qXfy5q3KU9n467Wv9dztT/1vu/Hmje/zX7rd//tdyH/CJq3P/RXjr+wx3LdXv9z2fq9Xv+n6qv/3hT6fgfqael184j9ddu47+Qab9f8a+vSoaa8X85n3x9uJH+gfVfV9Lx/2EjMW4tsV1/ra//onTcq9Xqg+z6/0qm/Xex/quNfzvub6/fF+n4H+1Yrhb/T7r4/b+aqdf/+Icwbq3/xtLxP5bJnapWq4139et/6NXxX8y00O/4/7yfjQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC8B2aS40iI4rHU5zgeGwvhQvL5dDgSLRVW8kul8vLfNkOYTdJz4WR0p1ReKpTyq+vllWK+UCqVl0O4mOSfCkPRZqlcya8V7l3aa2s4ulssbFSWioVKCGEuSf9JONZsa2m1sla4F0K4vJd3Ii5v3LtbWM+vrG78dnx8fDzM741hNCr+o1JcrzR6b+SGsLBXdyRqGVw9+8reWI5Gfy1vbawXSvX0qy11SuXlQqmlzmKS998wGlU2ttaXC5VivlS+0+zvXZpKjrPz1/90/erEvvxbUeM4c7DDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOA1PZn8zf9CCIONT3EIYar5JmpX/vHT4vn8i8WHu5NnFnYe7T7rVA4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Bt24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsEvHKBEDURiA34yF2nkMq5B0tgmKaGFE8AR6DA8Tj+IlvIOFha2FCGYGNO5Cmt3q+5oH+Xl5PyQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKxzeTfe37ZdRIqjr8OIl8fXt9/5dZnTMM+82D/YU0924+pmPL9ou/Ld07/8rDx67/NP+vnx9BAbZvU8/N1f/k+zeud4a69pWNe/9qt3TyLlJiL6kp+mnJtm3bsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+GYHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKO3AsAAAAACDM3zqKvg0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgVwAAAP//xmUngw==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020660b, &(0x7f0000000040)={0x1, 0x10000002000003})

1.470563142s ago: executing program 1 (id=2538):
unshare(0x22020600)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, 0x0, 0x0)

1.343472345s ago: executing program 2 (id=2539):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000001c0)=[@in={0x2, 0x4e21, @private=0xa010102}], 0x10)
setsockopt(r0, 0x84, 0x7f, &(0x7f0000000140)="020000000d800089", 0x8)

1.33362765s ago: executing program 1 (id=2540):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x3}, {0x0}, &(0x7f0000000440)=[{0x0}], 0x1, 0x60, 0x4}}], 0x48, 0x8004}, 0x0)

1.153439767s ago: executing program 1 (id=2541):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x8}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x70}, 0x1, 0x0, 0x0, 0x8890}, 0x24000000)

918.020166ms ago: executing program 1 (id=2542):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a50000000060a0904000000000000000002000003240004800c000180080001006c6f6700140001800c000100636f756e74657200040002800900010073797a30000000000900020073797a32"], 0x78}, 0x1, 0x0, 0x0, 0x40010}, 0x0)

739.265832ms ago: executing program 1 (id=2543):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0x800, 0x70bd29, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff1, 0xfff2}, {0x1, 0xc}, {0xfff3, 0x8}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x80000000}, @TCA_CAKE_FWMARK={0x8, 0x12, 0xffff7fff}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x44045}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000084)

469.335783ms ago: executing program 4 (id=2544):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_SREG={0x8, 0x7, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_TYPE={0x5}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0xfffffffd}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}, @NFTA_EXTHDR_LEN={0x8}]}}}]}]}], {0x14}}, 0x94}}, 0x0)

380.787834ms ago: executing program 2 (id=2545):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000a80)={[{@barrier_val}, {@resuid}, {@noblock_validity}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000b00)={0x4, 0x4, 0x5, 0x5})

199.252768ms ago: executing program 1 (id=2546):
r0 = getpid()
setuid(0xee00)
prlimit64(r0, 0x0, 0x0, 0x0)

68.903655ms ago: executing program 6 (id=2547):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0x69)

0s ago: executing program 4 (id=2548):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006)

kernel console output (not intermixed with test programs):

97e-477c-816d-cd80a5b93e5d
[  167.693214][ T7959] loop2: detected capacity change from 0 to 32768
[  167.807837][ T7959] read_mapping_page failed!
[  167.866856][ T7959] ialloc: diAlloc returned -5!
[  168.033102][ T8026] loop0: detected capacity change from 0 to 256
[  168.124003][ T8026] exfat: Deprecated parameter 'namecase'
[  168.245978][ T8026] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d)
[  169.783623][ T8072] openvswitch: netlink: Key 4 has unexpected len 0 expected 12
[  170.085348][ T8074] loop1: detected capacity change from 0 to 4096
[  170.093248][ T8036] loop3: detected capacity change from 0 to 32768
[  170.130182][ T8074] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  170.163103][ T8036] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.894 (8036)
[  170.163295][ T8084] tmpfs: Bad value for 'mpol'
[  170.262133][ T8036] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  170.320686][ T8036] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  170.603073][ T8036] BTRFS info (device loop3): enabling ssd optimizations
[  170.706074][ T8036] BTRFS info (device loop3): enabling free space tree
[  171.038142][   T30] kauditd_printk_skb: 1739 callbacks suppressed
[  171.038261][   T30] audit: type=1326 audit(1756324112.393:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  171.084418][ T8122] syz.4.924 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  171.155780][   T30] audit: type=1326 audit(1756324112.433:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  171.218030][   T30] audit: type=1326 audit(1756324112.433:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  171.326778][   T30] audit: type=1326 audit(1756324112.463:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8121 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  171.816243][ T5864] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  173.014099][ T8170] loop4: detected capacity change from 0 to 1024
[  173.268534][ T8176] loop0: detected capacity change from 0 to 1024
[  173.283307][ T8134] loop5: detected capacity change from 0 to 32768
[  173.337652][ T3594] hfsplus: b-tree write err: -5, ino 4
[  173.387468][ T8134] ERROR: (device loop5): dbAlloc: the hint is outside the map
[  173.387468][ T8134] 
[  173.448144][ T8134] ERROR: (device loop5): remounting filesystem as read-only
[  173.916847][ T8193] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  174.076641][ T8201] netlink: 28 bytes leftover after parsing attributes in process `syz.3.961'.
[  174.124432][ T8201] netlink: 28 bytes leftover after parsing attributes in process `syz.3.961'.
[  174.287546][ T5866] usb 5-1: new low-speed USB device number 5 using dummy_hcd
[  174.346127][ T5965] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  174.488155][ T5866] usb 5-1: config index 0 descriptor too short (expected 6427, got 27)
[  174.508301][ T8213] netlink: 'syz.1.967': attribute type 10 has an invalid length.
[  174.516332][ T5965] usb 3-1: Using ep0 maxpacket: 32
[  174.523746][ T5866] usb 5-1: config 0 has an invalid interface number: 21 but max is 0
[  174.543566][ T8213] netlink: 40 bytes leftover after parsing attributes in process `syz.1.967'.
[  174.553670][ T5965] usb 3-1: unable to get BOS descriptor or descriptor too short
[  174.566669][ T5866] usb 5-1: config 0 has no interface number 0
[  174.585259][ T5965] usb 3-1: config 1 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 250, changing to 11
[  174.605673][ T5866] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt
[  174.628181][ T5965] usb 3-1: config 1 interface 0 has no altsetting 0
[  174.640517][ T5866] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  174.665005][ T5965] usb 3-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.40
[  174.705031][ T5866] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  174.719509][ T5965] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.736523][ T8213] team0: Port device geneve0 added
[  174.745375][ T5866] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.755670][ T5965] usb 3-1: Product: syz
[  174.773263][ T5965] usb 3-1: Manufacturer: syz
[  174.782108][   T30] audit: type=1326 audit(1756324116.133:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8218 comm="syz.0.970" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe4c138ebe9 code=0x0
[  174.806031][ T5965] usb 3-1: SerialNumber: syz
[  174.817824][ T5866] usb 5-1: config 0 descriptor??
[  175.264080][ T5866] usb 5-1: USB disconnect, device number 5
[  175.285163][ T5965] usbhid 3-1:1.0: can't add hid device: -71
[  175.309367][ T5965] usbhid 3-1:1.0: probe with driver usbhid failed with error -71
[  175.350134][ T5965] usb 3-1: USB disconnect, device number 7
[  175.798256][ T8249] loop3: detected capacity change from 0 to 8
[  175.960785][ T8249] SQUASHFS error: Failed to read block 0x1ec: -5
[  175.982620][ T8249] SQUASHFS error: Unable to read metadata cache entry [1ea]
[  176.911807][ T8283] netlink: 304 bytes leftover after parsing attributes in process `syz.0.1000'.
[  177.280218][ T8293] program syz.1.1005 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  177.431471][ T8259] loop4: detected capacity change from 0 to 32768
[  177.915621][   T30] audit: type=1326 audit(1756324119.263:1770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.5.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf258ebe9 code=0x7ffc0000
[  177.938000][    C0] vkms_vblank_simulate: vblank timer overrun
[  178.021644][   T30] audit: type=1326 audit(1756324119.263:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.5.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf258ebe9 code=0x7ffc0000
[  178.052780][ T8320] netlink: 'syz.1.1018': attribute type 4 has an invalid length.
[  178.125666][   T30] audit: type=1326 audit(1756324119.303:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.5.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7fdcf258ebe9 code=0x7ffc0000
[  178.190260][   T30] audit: type=1326 audit(1756324119.303:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.5.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf258ebe9 code=0x7ffc0000
[  178.325687][   T30] audit: type=1326 audit(1756324119.303:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8315 comm="syz.5.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcf258ebe9 code=0x7ffc0000
[  178.599797][ T8334] _�Z`Ԁ@: entered promiscuous mode
[  179.017364][ T8348] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1033'.
[  179.329951][ T8354] loop1: detected capacity change from 0 to 2048
[  179.454301][ T8354] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  179.490275][ T8362] netlink: 256 bytes leftover after parsing attributes in process `syz.2.1039'.
[  179.525802][ T8323] loop5: detected capacity change from 0 to 32768
[  179.569282][ T8362] unsupported nlmsg_type 40
[  179.635843][ T8366] netlink: 'syz.3.1041': attribute type 1 has an invalid length.
[  180.458956][ T8386] netlink: 'syz.5.1046': attribute type 9 has an invalid length.
[  180.767026][ T8356] loop0: detected capacity change from 0 to 32768
[  180.815742][ T8356] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1036 (8356)
[  180.939408][ T8356] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  181.002044][ T8356] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  181.318227][ T8356] BTRFS info (device loop0): enabling ssd optimizations
[  181.365789][ T8356] BTRFS info (device loop0): enabling free space tree
[  181.736517][ T5872] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  182.062720][ T8445] netlink: 'syz.2.1070': attribute type 5 has an invalid length.
[  182.320511][ T8390] loop4: detected capacity change from 0 to 32768
[  182.405810][ T8390] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1053 (8390)
[  182.574422][ T8390] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  182.623298][ T8390] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  182.638530][ T8466] loop1: detected capacity change from 0 to 8
[  182.716002][ T8466] SQUASHFS error: lzo decompression failed, data probably corrupt
[  182.730775][ T8466] SQUASHFS error: Failed to read block 0x91: -5
[  182.737803][ T8466] SQUASHFS error: Unable to read metadata cache entry [8f]
[  182.745133][ T8466] SQUASHFS error: Unable to read inode 0x11f
[  182.777169][ T8474] netlink: 'syz.5.1079': attribute type 29 has an invalid length.
[  183.007464][ T8390] BTRFS info (device loop4): enabling ssd optimizations
[  183.014485][ T8390] BTRFS info (device loop4): enabling free space tree
[  183.353098][ T5863] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  183.363805][ T8496] binder: 8492:8496 ioctl c0306201 2000000001c0 returned -22
[  183.775194][ T8512] loop5: detected capacity change from 0 to 1024
[  184.062235][ T8512] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  184.126547][ T8528] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1095'.
[  184.199416][ T8528] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1095'.
[  184.328547][ T8527] loop0: detected capacity change from 0 to 2048
[  184.477045][ T8527] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  185.030274][ T5873] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[  185.125697][ T8550] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1106'.
[  185.147297][ T5873] EXT4-fs error (device loop5): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[  185.170300][ T8550] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1106'.
[  185.315357][ T8552] loop1: detected capacity change from 0 to 1024
[  185.376531][ T8552] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  185.466819][ T8556] loop2: detected capacity change from 0 to 1764
[  185.527015][ T8552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.652472][ T8552] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.1110: missing EA_INODE flag
[  185.764609][ T8552] EXT4-fs (loop1): Remounting filesystem read-only
[  185.812461][ T8552] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  185.902504][ T8538] loop4: detected capacity change from 0 to 32768
[  185.941797][ T8571] netlink: 'syz.0.1116': attribute type 5 has an invalid length.
[  185.961516][ T5873] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.021897][ T8538] JBD2: Ignoring recovery information on journal
[  186.143795][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.147064][ T8538] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  186.229256][ T8578] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1121'.
[  186.326183][ T8571] ip6erspan0: entered promiscuous mode
[  186.581674][ T5863] ocfs2: Unmounting device (7,4) on (node local)
[  186.618318][ T3467] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.870938][ T3467] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.080553][ T8585] Unsupported ieee802154 address type: 0
[  187.111822][ T8589] loop4: detected capacity change from 0 to 512
[  187.119292][ T8590] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  187.140401][ T3467] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.201224][ T8589] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  187.227671][ T8589] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  187.292151][ T8589] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1128: bg 0: block 4: invalid block bitmap
[  187.336087][ T8589] EXT4-fs (loop4): Remounting filesystem read-only
[  187.426951][ T8589] EXT4-fs (loop4): 1 truncate cleaned up
[  187.438865][ T8595] netlink: 'syz.2.1130': attribute type 24 has an invalid length.
[  187.491070][ T8589] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.718773][   T30] audit: type=1326 audit(1756324129.073:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.2.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  187.781062][   T30] audit: type=1326 audit(1756324129.073:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.2.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  187.886482][   T30] audit: type=1326 audit(1756324129.073:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.2.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  187.979291][   T30] audit: type=1326 audit(1756324129.073:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.2.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  188.013504][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.047617][ T8605] loop0: detected capacity change from 0 to 256
[  188.077861][ T3467] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.109761][   T30] audit: type=1326 audit(1756324129.073:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.2.1132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  188.190842][ T8605] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[  188.720459][ T5871] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  188.734753][ T5871] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  188.746718][ T5871] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  188.784240][ T8624] loop0: detected capacity change from 0 to 256
[  188.795465][ T5871] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  188.822058][ T5871] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  188.825714][ T8624] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000005) bogus content (0x00000001)
[  188.899540][ T8624] exFAT-fs (loop0): failed to count the number of clusters in root
[  188.958138][ T8624] exFAT-fs (loop0): failed to recognize exfat type
[  188.965897][ T3467] bridge_slave_1: left allmulticast mode
[  188.972211][ T3467] bridge_slave_1: left promiscuous mode
[  189.025306][ T3467] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.162466][ T3467] bridge_slave_0: left allmulticast mode
[  189.204577][ T3467] bridge_slave_0: left promiscuous mode
[  189.243231][ T3467] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.303916][ T8633] loop2: detected capacity change from 0 to 256
[  189.382537][ T8633] FAT-fs (loop2): Directory bread(block 64) failed
[  189.384425][ T8638] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1148'.
[  189.404510][ T8633] FAT-fs (loop2): Directory bread(block 65) failed
[  189.441442][ T8633] FAT-fs (loop2): Directory bread(block 66) failed
[  189.465770][ T8633] FAT-fs (loop2): Directory bread(block 67) failed
[  189.472521][ T8633] FAT-fs (loop2): Directory bread(block 68) failed
[  189.505968][ T8633] FAT-fs (loop2): Directory bread(block 69) failed
[  189.534310][ T8633] FAT-fs (loop2): Directory bread(block 70) failed
[  189.583295][ T8633] FAT-fs (loop2): Directory bread(block 71) failed
[  189.609191][ T8633] FAT-fs (loop2): Directory bread(block 72) failed
[  189.643329][ T8633] FAT-fs (loop2): Directory bread(block 73) failed
[  189.865013][ T8610] loop4: detected capacity change from 0 to 32768
[  189.982943][ T8610] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  190.027250][ T8610] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  190.103951][ T8653] ubi7: attaching mtd0
[  190.138316][ T8653] ubi7: scanning is finished
[  190.167948][ T8653] ubi7: empty MTD device detected
[  190.360613][ T8610] XFS (loop4): Ending clean mount
[  190.391458][ T8659] netlink: 'syz.0.1155': attribute type 7 has an invalid length.
[  190.522613][ T8653] ubi7: attached mtd0 (name "mtdram test device", size 0 MiB)
[  190.564053][ T8653] ubi7: PEB size: 4096 bytes (4 KiB), LEB size: 3519 bytes
[  190.573544][ T5863] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  190.615972][ T8653] ubi7: min./max. I/O unit sizes: 1/64, sub-page size 1
[  190.655235][ T8653] ubi7: VID header offset: 513 (aligned 513), data offset: 577
[  190.735855][ T8653] ubi7: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  190.756070][ T8664] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  190.775980][ T8653] ubi7: user volume: 0, internal volumes: 1, max. volumes count: 20
[  190.812763][ T8653] ubi7: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3105795674
[  190.875282][ T5871] Bluetooth: hci4: command tx timeout
[  190.935123][ T8653] ubi7: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  190.948701][ T8661] ubi7: background thread "ubi_bgt7d" started, PID 8661
[  190.950796][ T3467] team0: Port device bridge0 removed
[  191.360880][ T8672] openvswitch: netlink: Message has 16 unknown bytes.
[  191.368461][ T8670] loop2: detected capacity change from 0 to 1024
[  191.392361][ T8670] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  191.425374][ T8670] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  191.446032][ T8670] EXT4-fs (loop2): orphan cleanup on readonly fs
[  191.468250][ T8670] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz.2.1160: Invalid inode table block 0 in block_group 0
[  191.507342][ T8670] EXT4-fs (loop2): Remounting filesystem read-only
[  191.513954][ T8670] Quota error (device loop2): write_blk: dquota write failed
[  191.546177][ T8670] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  191.556753][ T8670] EXT4-fs (loop2): 1 truncate cleaned up
[  191.606293][ T8670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  191.686327][ T3467] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  191.698021][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.719884][ T3467] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  191.777897][ T3467] bond0 (unregistering): Released all slaves
[  192.512264][ T8699] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1172'.
[  192.755963][ T8708] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1176'.
[  192.945863][ T5871] Bluetooth: hci4: command tx timeout
[  193.235993][ T8725] netlink: 'syz.2.1183': attribute type 1 has an invalid length.
[  193.284751][ T8725] netlink: 'syz.2.1183': attribute type 1 has an invalid length.
[  193.284845][ T8718] loop4: detected capacity change from 0 to 2048
[  193.497001][ T8732] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  193.527912][ T8733] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem
[  193.531091][ T8718] NILFS error (device loop4): nilfs_lookup: deleted inode referenced: 12
[  193.648078][ T8718] Remounting filesystem read-only
[  193.836726][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  193.843467][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  194.094393][ T3467] hsr_slave_0: left promiscuous mode
[  194.147688][ T3467] hsr_slave_1: left promiscuous mode
[  194.157386][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  194.164808][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_0
[  194.262036][ T3467] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  194.305683][ T3467] batman_adv: batadv0: Removing interface: batadv_slave_1
[  194.420562][ T3467] veth1_macvtap: left promiscuous mode
[  194.450011][ T3467] veth0_macvtap: left promiscuous mode
[  194.479408][ T8752] loop2: detected capacity change from 0 to 128
[  194.480481][ T3467] veth1_vlan: left promiscuous mode
[  194.513008][ T3467] veth0_vlan: left promiscuous mode
[  194.537396][ T8752] ext4: Unknown parameter 'fsname'
[  194.549277][ T8710] loop1: detected capacity change from 0 to 32768
[  194.561310][ T8721] loop3: detected capacity change from 0 to 32768
[  194.597616][ T8752] Invalid option length (1047378) for dns_resolver key
[  194.662478][ T8710] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  194.709025][ T8721] JBD2: Ignoring recovery information on journal
[  195.025740][ T5871] Bluetooth: hci4: command tx timeout
[  195.044291][ T8721] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  195.217513][ T8710] XFS (loop1): Ending clean mount
[  195.326161][ T8710] XFS (loop1): Quotacheck needed: Please wait.
[  195.428366][ T5864] ocfs2: Unmounting device (7,3) on (node local)
[  195.442165][ T8710] XFS (loop1): Quotacheck: Done.
[  195.649736][ T5859] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  195.776086][   T10] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  195.937178][   T10] usb 4-1: Using ep0 maxpacket: 32
[  195.952407][   T10] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  196.016014][   T10] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.049717][   T10] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  196.068137][   T10] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  196.076932][   T10] usb 4-1: Product: syz
[  196.081338][   T10] usb 4-1: Manufacturer: syz
[  196.118420][   T10] hub 4-1:4.0: USB hub found
[  196.308255][   T10] hub 4-1:4.0: config failed, hub doesn't have any ports! (err -19)
[  196.608264][ T5852] usb 4-1: USB disconnect, device number 5
[  196.736980][   T10] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  196.855315][ T3467] team0 (unregistering): Port device team_slave_1 removed
[  196.924795][   T10] usb 2-1: Using ep0 maxpacket: 32
[  196.993978][   T10] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  197.006380][   T10] usb 2-1: config 0 has no interface number 0
[  197.012769][   T10] usb 2-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  197.013356][ T3467] team0 (unregistering): Port device team_slave_0 removed
[  197.054200][   T10] usb 2-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  197.105900][ T5871] Bluetooth: hci4: command tx timeout
[  197.111509][   T10] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  197.121292][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  197.141123][   T10] usb 2-1: Product: syz
[  197.145341][   T10] usb 2-1: Manufacturer: syz
[  197.150731][   T10] usb 2-1: SerialNumber: syz
[  197.164786][   T10] usb 2-1: config 0 descriptor??
[  197.178441][   T10] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  197.402950][   T10] usb 2-1: qt2_setup_urbs - submit read urb failed -90
[  197.428654][   T10] quatech2 2-1:0.51: probe with driver quatech2 failed with error -90
[  197.640808][   T10] usb 2-1: USB disconnect, device number 2
[  198.224613][ T8816] program syz.3.1219 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.535201][ T8824] comedi comedi1: mpc624: I/O port conflict (0x5,16)
[  198.620949][   T10] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  198.780254][   T10] usb 4-1: config 0 has an invalid interface number: 194 but max is 0
[  198.795890][   T10] usb 4-1: config 0 has no interface number 0
[  198.809325][ T8777] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1201'.
[  198.836603][   T10] usb 4-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=7d.d2
[  198.846204][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.854272][   T10] usb 4-1: Product: syz
[  198.879210][   T10] usb 4-1: Manufacturer: syz
[  198.886930][   T10] usb 4-1: SerialNumber: syz
[  198.897321][   T10] usb 4-1: config 0 descriptor??
[  199.350600][   T10] usb 4-1: USB disconnect, device number 6
[  199.360671][   T10] f81534a_ctrl 4-1:0.194: failed to set register 0x116: -19
[  199.372805][ T8617] chnl_net:caif_netlink_parms(): no params data found
[  199.413802][   T10] f81534a_ctrl 4-1:0.194: failed to enable ports: -19
[  200.009829][ T8826] loop1: detected capacity change from 0 to 32768
[  200.028201][ T8862] loop0: detected capacity change from 0 to 1024
[  200.134045][ T8826] (syz.1.1224,8826,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  200.227221][ T8826] (syz.1.1224,8826,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  200.360990][ T8617] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.381371][ T8826] JBD2: Ignoring recovery information on journal
[  200.385746][ T8617] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.446693][ T8617] bridge_slave_0: entered allmulticast mode
[  200.454840][ T8617] bridge_slave_0: entered promiscuous mode
[  200.573112][ T8617] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.631656][ T8617] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.677798][ T8826] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  200.707566][ T8617] bridge_slave_1: entered allmulticast mode
[  200.757503][ T8617] bridge_slave_1: entered promiscuous mode
[  201.089270][ T8888] 8021q: adding VLAN 0 to HW filter on device bond1
[  201.123319][ T8893] bond0: option primary: mode dependency failed, not supported in mode balance-rr(0)
[  201.243706][ T5859] ocfs2: Unmounting device (7,1) on (node local)
[  201.339576][ T8617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.451039][ T8617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.470342][ T8906] netlink: 'syz.3.1252': attribute type 6 has an invalid length.
[  201.891418][ T8916] cgroup: name respecified
[  201.940204][ T8617] team0: Port device team_slave_0 added
[  201.987512][ T8617] team0: Port device team_slave_1 added
[  202.080878][ T8914] loop3: detected capacity change from 0 to 4096
[  202.139948][ T8914] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  202.264336][ T8914] ntfs3(loop3): Failed to load $Extend (-22).
[  202.315556][ T8914] ntfs3(loop3): Failed to initialize $Extend.
[  202.386575][ T8617] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.406502][ T8617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.503831][ T8617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.661949][ T8617] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.701432][ T8617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.794177][ T8617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  203.041362][ T8947] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1270'.
[  203.227135][ T8617] hsr_slave_0: entered promiscuous mode
[  203.246872][ T8617] hsr_slave_1: entered promiscuous mode
[  203.253605][ T8617] debugfs: 'hsr0' already exists in 'hsr'
[  203.304620][ T8617] Cannot create hsr debugfs directory
[  203.747607][ T8937] loop2: detected capacity change from 0 to 32768
[  203.775094][ T8937] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1265 (8937)
[  203.785666][   T43] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  203.910309][ T8937] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  203.941205][ T8937] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  204.005195][   T43] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  204.065424][   T43] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.163601][   T43] usb 5-1: config 0 descriptor??
[  204.199359][ T8937] BTRFS info (device loop2): enabling ssd optimizations
[  204.227583][   T43] cp210x 5-1:0.0: cp210x converter detected
[  204.262703][ T8937] BTRFS info (device loop2): enabling free space tree
[  204.430613][ T8937] BTRFS info (device loop2): setting incompat feature flag for SIMPLE_QUOTA (0x10000)
[  204.501101][   T43] usb 5-1: cp210x converter now attached to ttyUSB0
[  204.618561][ T8617] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  204.679236][   T43] usb 5-1: USB disconnect, device number 6
[  204.717513][ T8617] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  204.729613][   T43] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  204.779658][   T43] cp210x 5-1:0.0: device disconnected
[  204.807461][ T8617] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  204.820649][ T5880] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  204.942217][ T8617] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  204.985902][ T8968] loop1: detected capacity change from 0 to 32768
[  205.026859][ T8968] XFS: attr2 mount option is deprecated.
[  205.032611][ T8968] XFS: attr2 mount option is deprecated.
[  205.157970][ T8968] XFS (loop1): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  205.596347][ T5859] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  205.610996][ T8617] 8021q: adding VLAN 0 to HW filter on device bond0
[  205.785317][ T8617] 8021q: adding VLAN 0 to HW filter on device team0
[  205.886430][ T1111] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.893635][ T1111] bridge0: port 1(bridge_slave_0) entered forwarding state
[  205.975753][   T43] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  206.001655][ T3594] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.009014][ T3594] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.180833][   T43] usb 4-1: Using ep0 maxpacket: 8
[  206.197837][   T43] usb 4-1: config 0 has an invalid interface number: 186 but max is 0
[  206.245818][   T43] usb 4-1: config 0 has no interface number 0
[  206.306041][   T43] usb 4-1: config 0 interface 186 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  206.378487][   T43] usb 4-1: config 0 interface 186 altsetting 0 has an endpoint descriptor with address 0x9A, changing to 0x8A
[  206.467142][   T43] usb 4-1: config 0 interface 186 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  206.575839][   T43] usb 4-1: config 0 interface 186 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  206.637974][   T43] usb 4-1: config 0 interface 186 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  206.779496][   T43] usb 4-1: New USB device found, idVendor=07c0, idProduct=1505, bcdDevice=b8.c5
[  206.829135][ T9057] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  206.843243][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.872757][   T43] usb 4-1: Product: syz
[  206.902762][ T9048] loop2: detected capacity change from 0 to 4096
[  206.915968][   T43] usb 4-1: Manufacturer: syz
[  206.935627][   T43] usb 4-1: SerialNumber: syz
[  206.983527][   T43] usb 4-1: config 0 descriptor??
[  207.302680][ T9048] ntfs3(loop2): try to read out of volume at offset 0x3fffffc7000
[  207.337521][   T43] iowarrior 4-1:0.186: IOWarrior product=0x1505, serial=㠲י interface=186 now attached to iowarrior0
[  207.605580][ T5929] usb 4-1: USB disconnect, device number 7
[  207.709620][ T8617] 8021q: adding VLAN 0 to HW filter on device batadv0
[  208.013960][ T9087] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048)
[  208.248052][ T9093] loop4: detected capacity change from 0 to 16
[  208.312853][ T9093] erofs (device loop4): mounted with root inode @ nid 36.
[  208.457371][ T9093] erofs (device loop4): readahead error at folio 2 @ nid 89
[  208.464950][ T9093] erofs (device loop4): readahead error at folio 1 @ nid 89
[  208.515963][ T9093] erofs (device loop4): readahead error at folio 0 @ nid 89
[  208.565988][ T9093] erofs (device loop4): read error -117 @ 0 of nid 89
[  208.647339][ T9102] veth3: entered promiscuous mode
[  209.034081][ T9120] loop4: detected capacity change from 0 to 512
[  209.166017][ T9120] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[  209.204704][ T9120] System zones: 1-12
[  209.353611][ T9120] EXT4-fs error (device loop4): ext4_xattr_inode_iget:442: comm syz.4.1319: error while reading EA inode 32 err=-116
[  209.416822][ T9127] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[  209.431786][ T9131] loop0: detected capacity change from 0 to 16
[  209.463681][ T9127] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  209.486034][ T9120] EXT4-fs (loop4): Remounting filesystem read-only
[  209.492726][ T9120] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[  209.542304][ T8617] veth0_vlan: entered promiscuous mode
[  209.565712][ T9120] EXT4-fs (loop4): 1 orphan inode deleted
[  209.565958][ T9131] erofs (device loop0): mounted with root inode @ nid 36.
[  209.607794][ T9120] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.694338][ T8617] veth1_vlan: entered promiscuous mode
[  209.880573][ T8617] veth0_macvtap: entered promiscuous mode
[  209.951601][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.953916][ T8617] veth1_macvtap: entered promiscuous mode
[  209.988416][ T9140] mmap: syz.3.1329 (9140) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  210.154993][ T8617] batman_adv: batadv0: Interface activated: batadv_slave_0
[  210.234520][ T8617] batman_adv: batadv0: Interface activated: batadv_slave_1
[  210.288234][ T9148] loop1: detected capacity change from 0 to 256
[  210.407687][   T66] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.425612][ T9148] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f50, chksum : 0xa6aae999, utbl_chksum : 0xe619d30d)
[  210.451903][ T9153] loop0: detected capacity change from 0 to 128
[  210.459564][   T66] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.523601][   T66] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.610586][   T66] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.662209][ T9149] loop4: detected capacity change from 0 to 4096
[  211.103698][ T9149] ntfs3(loop4): ino=9, attr_set_size
[  211.271581][ T5869] Bluetooth: hci2: command 0x0406 tx timeout
[  211.278096][   T51] Bluetooth: hci5: command 0x0406 tx timeout
[  211.285569][ T5181] Bluetooth: hci0: command 0x0406 tx timeout
[  211.291695][ T5181] Bluetooth: hci3: command 0x0406 tx timeout
[  211.298021][ T5181] Bluetooth: hci1: command 0x0406 tx timeout
[  211.396890][ T1035] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.404813][ T1035] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  211.443385][ T9172] loop0: detected capacity change from 0 to 64
[  211.636747][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.724143][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  212.108919][ T9189] Sensor A: =================  START STATUS  =================
[  212.146667][ T9189] Sensor A: Test Pattern: 75% Colorbar
[  212.171844][ T9189] Sensor A: Show Information: None
[  212.195669][ T9189] Sensor A: Vertical Flip: false
[  212.222166][ T9189] Sensor A: Horizontal Flip: false
[  212.246666][ T9189] Sensor A: Brightness: 128
[  212.272532][ T9196] binder: 9195:9196 ioctl c018620c 2000000000c0 returned -1
[  212.279461][ T9189] Sensor A: Contrast: 128
[  212.324442][ T9189] Sensor A: Hue: 0
[  212.334943][ T9189] Sensor A: Saturation: 128
[  212.365825][ T9189] Sensor A: ==================  END STATUS  ==================
[  212.637346][ T9208] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1358'.
[  212.689687][ T9210] netlink: 'syz.4.1360': attribute type 4 has an invalid length.
[  212.697786][ T9208] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1358'.
[  212.777534][ T9214] loop1: detected capacity change from 0 to 512
[  212.810724][ T9214] EXT4-fs: Ignoring removed nobh option
[  212.878870][ T9214] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  212.911481][ T9214] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1362: invalid indirect mapped block 256 (level 1)
[  213.124684][ T9214] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1362: invalid indirect mapped block 2683928664 (level 1)
[  213.261594][ T9214] EXT4-fs (loop1): 1 truncate cleaned up
[  213.302527][ T9214] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.356902][ T9232] netlink: 'syz.2.1370': attribute type 4 has an invalid length.
[  213.385082][ T9231] loop6: detected capacity change from 0 to 4096
[  213.431299][ T9226] loop4: detected capacity change from 0 to 4096
[  213.445582][ T9231] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  213.478039][ T9226] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  213.556634][ T9226] ntfs3(loop4): ino=3, mi_enum_attr
[  213.909589][ T9238] veth1_macvtap: left promiscuous mode
[  213.915158][ T9238] macsec0: entered promiscuous mode
[  213.936465][   T30] audit: type=1800 audit(1756324155.273:1780): pid=9214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1362" name="file0" dev="loop1" ino=13 res=0 errno=0
[  214.111315][ T5859] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.817021][ T9224] loop3: detected capacity change from 0 to 32768
[  215.854609][ T9298] Illegal XDP return value 4294967262 on prog  (id 61) dev N/A, expect packet loss!
[  216.165679][ T5929] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  216.338363][ T9315] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1413'.
[  216.391875][ T5929] usb 7-1: config 0 has an invalid interface number: 69 but max is 0
[  216.415421][ T9320] usb usb8: usbfs: process 9320 (syz.1.1411) did not claim interface 0 before use
[  216.436295][ T5929] usb 7-1: config 0 has no interface number 0
[  216.456009][ T5929] usb 7-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[  216.507679][ T5929] usb 7-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  216.576343][ T5929] usb 7-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[  216.603929][ T5929] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.636549][ T5929] usb 7-1: Product: syz
[  216.640790][ T5929] usb 7-1: Manufacturer: syz
[  216.679788][   T30] audit: type=1326 audit(1756324158.033:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  216.702208][    C1] vkms_vblank_simulate: vblank timer overrun
[  216.702436][ T5929] usb 7-1: SerialNumber: syz
[  216.718114][ T5929] usb 7-1: config 0 descriptor??
[  216.729026][ T9302] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  216.758985][ T5929] cyberjack 7-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[  216.809981][ T5929] usb 7-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[  216.841623][   T30] audit: type=1326 audit(1756324158.033:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  216.975604][   T30] audit: type=1326 audit(1756324158.093:1783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  217.095752][   T30] audit: type=1326 audit(1756324158.093:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  217.118316][    C1] vkms_vblank_simulate: vblank timer overrun
[  217.199421][   T30] audit: type=1326 audit(1756324158.093:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9325 comm="syz.4.1415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f235e18ebe9 code=0x7ffc0000
[  217.248264][ T5866] usb 7-1: USB disconnect, device number 2
[  217.355286][ T5866] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[  217.399887][ T5866] cyberjack 7-1:0.69: device disconnected
[  217.406005][ T5965] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  217.581939][ T5965] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  217.601933][ T5965] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.619271][ T9353] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  217.651492][ T5965] usb 4-1: Product: syz
[  217.680563][ T5965] usb 4-1: Manufacturer: syz
[  217.685278][ T5965] usb 4-1: SerialNumber: syz
[  217.722294][ T5965] r8152-cfgselector 4-1: Unknown version 0x0000
[  217.739115][ T5965] r8152-cfgselector 4-1: config 0 descriptor??
[  217.830630][ T9360] loop0: detected capacity change from 0 to 2048
[  217.910966][ T9362] overlay: Bad value for 'upperdir'
[  218.013289][ T9360] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  218.102239][ T9366] loop6: detected capacity change from 0 to 256
[  218.114780][ T9366] exfat: Deprecated parameter 'namecase'
[  218.152245][ T9366] exfat: Deprecated parameter 'utf8'
[  218.201429][ T5965] r8152-cfgselector 4-1: USB disconnect, device number 8
[  218.284825][ T9366] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  218.469349][ T9374] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  218.708839][ T9381] loop2: detected capacity change from 0 to 256
[  218.760897][ T9381] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  218.834728][ T9384] netlink: 'syz.0.1444': attribute type 21 has an invalid length.
[  218.885676][ T9384] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1444'.
[  218.945823][ T9384] netlink: 'syz.0.1444': attribute type 5 has an invalid length.
[  218.985725][ T9384] netlink: 'syz.0.1444': attribute type 6 has an invalid length.
[  219.052504][ T9384] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1444'.
[  219.097832][ T9391] loop3: detected capacity change from 0 to 2048
[  219.164825][ T9391] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  219.209910][ T9398] netlink: 'syz.4.1450': attribute type 2 has an invalid length.
[  219.262840][ T9391] syz.3.1447: attempt to access beyond end of device
[  219.262840][ T9391] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  219.289042][ T9399] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  219.411314][ T9391] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[  219.528203][ T9391] Remounting filesystem read-only
[  219.536033][ T9401] loop6: detected capacity change from 0 to 2048
[  219.558232][ T9391] NILFS error (device loop3): nilfs_bmap_last_key: broken bmap (inode number=16)
[  219.569792][ T9407] netlink: 'syz.1.1455': attribute type 1 has an invalid length.
[  219.604886][ T9407] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1455'.
[  219.618570][ T9391] NILFS (loop3): error -5 truncating bmap (ino=16)
[  219.651343][ T9401] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  219.839886][ T5864] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[  220.782267][ T9450] loop4: detected capacity change from 0 to 1024
[  220.843589][ T9455] ip6tnl1: entered promiscuous mode
[  220.876001][ T9455] ip6tnl1: entered allmulticast mode
[  221.174268][   T49] hfsplus: b-tree write err: -5, ino 4
[  221.656489][ T9482] loop6: detected capacity change from 0 to 16
[  221.705998][ T9482] erofs (device loop6): mounted with root inode @ nid 36.
[  222.696997][ T9519] loop6: detected capacity change from 0 to 64
[  223.103178][ T9531] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1510'.
[  223.155703][ T9531] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1510'.
[  223.164747][ T9531] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1510'.
[  223.589973][ T9554] loop6: detected capacity change from 0 to 64
[  223.945724][ T9568] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1526'.
[  224.005770][ T9568] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1526'.
[  224.416258][   T30] audit: type=1326 audit(1756324165.753:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.3.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff60878ebe9 code=0x7ffc0000
[  224.538936][   T30] audit: type=1326 audit(1756324165.753:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.3.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff60878ebe9 code=0x7ffc0000
[  224.583010][   T30] audit: type=1326 audit(1756324165.773:1788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.3.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7ff60878ebe9 code=0x7ffc0000
[  224.697303][   T30] audit: type=1326 audit(1756324165.773:1789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.3.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff60878ebe9 code=0x7ffc0000
[  224.730699][ T9578] loop2: detected capacity change from 0 to 8192
[  224.830258][   T30] audit: type=1326 audit(1756324165.773:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.3.1534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff60878ebe9 code=0x7ffc0000
[  224.864493][ T9578] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  225.775762][ T9623] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1550'.
[  225.989379][ T9631] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1554'.
[  226.018099][ T9631] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1554'.
[  226.055687][ T9629] loop0: detected capacity change from 0 to 2048
[  226.170218][ T9629] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  226.354227][   T43] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  226.411739][ T9641] overlay: Bad value for 'workdir'
[  226.549424][   T43] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  226.594236][   T43] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.623081][   T43] usb 2-1: Product: syz
[  226.656035][   T43] usb 2-1: Manufacturer: syz
[  226.671581][   T43] usb 2-1: SerialNumber: syz
[  226.701529][   T43] usb 2-1: config 0 descriptor??
[  226.782492][   T43] gspca_main: 055f:c230 too many config
[  227.006327][ T9655] netlink: 248 bytes leftover after parsing attributes in process `syz.0.1562'.
[  227.079096][ T9657] vim2m vim2m.0: Fourcc format (0x56595559) invalid.
[  227.369473][ T9627] loop3: detected capacity change from 0 to 32768
[  227.432687][ T9627] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1552 (9627)
[  227.454100][ T9664] loop6: detected capacity change from 0 to 256
[  227.527771][ T9664] FAT-fs (loop6): Directory bread(block 64) failed
[  227.545246][ T9664] FAT-fs (loop6): Directory bread(block 65) failed
[  227.573778][ T9627] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  227.610426][ T9664] FAT-fs (loop6): Directory bread(block 66) failed
[  227.620295][ T9627] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  227.630277][ T9664] FAT-fs (loop6): Directory bread(block 67) failed
[  227.650248][ T9664] FAT-fs (loop6): Directory bread(block 68) failed
[  227.679489][ T9627] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  227.697040][ T9664] FAT-fs (loop6): Directory bread(block 69) failed
[  227.715064][ T9664] FAT-fs (loop6): Directory bread(block 70) failed
[  227.744936][ T9664] FAT-fs (loop6): Directory bread(block 71) failed
[  227.758076][ T9638] loop4: detected capacity change from 0 to 32768
[  227.784447][ T9664] FAT-fs (loop6): Directory bread(block 72) failed
[  227.821140][ T9638] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1556 (9638)
[  227.836279][ T9664] FAT-fs (loop6): Directory bread(block 73) failed
[  227.872146][ T9638] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  227.918272][ T9638] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  228.096259][ T9627] BTRFS info (device loop3): rebuilding free space tree
[  228.243505][ T9627] BTRFS info (device loop3): disabling free space tree
[  228.284817][ T9707] snd_dummy snd_dummy.0: control 4:4:4:syz0:4096 is already present
[  228.299967][ T9627] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  228.355907][ T9638] BTRFS info (device loop4): enabling ssd optimizations
[  228.364799][ T9638] BTRFS info (device loop4): enabling free space tree
[  228.399413][ T9627] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  228.579474][ T9627] BTRFS info (device loop3): allowing degraded mounts
[  228.595825][ T9627] BTRFS info (device loop3): enabling ssd optimizations
[  228.644184][ T9627] BTRFS info (device loop3): enabling disk space caching
[  228.692237][ T9627] BTRFS info (device loop3): force clearing of disk cache
[  228.745753][ T9627] BTRFS info (device loop3): use zlib compression, level 3
[  228.750941][ T5863] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  228.754105][ T9716] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1573'.
[  229.090743][ T5864] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  229.253671][  T974] usb 2-1: USB disconnect, device number 3
[  229.582716][ T9734] netlink: 'syz.1.1581': attribute type 2 has an invalid length.
[  229.638882][ T9728] loop0: detected capacity change from 0 to 4096
[  229.660237][ T9734] netlink: 'syz.1.1581': attribute type 1 has an invalid length.
[  229.713508][ T9728] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  230.075125][ T9728] ntfs3(loop0): ino=19, mi_enum_attr
[  230.101342][ T9728] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  230.139550][ T9748] loop6: detected capacity change from 0 to 128
[  230.166077][ T9728] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  230.182431][ T9748] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  230.407351][ T9748] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  230.927827][ T9767] loop0: detected capacity change from 0 to 64
[  231.581721][ T9788] loop6: detected capacity change from 0 to 16
[  231.593565][ T9786] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1603'.
[  231.634324][ T9788] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  231.950301][ T9787] loop1: detected capacity change from 0 to 4096
[  232.008450][ T9787] ntfs3(loop1): ino=0, mi_enum_attr
[  232.034392][ T9787] ntfs3(loop1): ino=0, mi_enum_attr
[  232.043302][ T9787] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  232.700949][ T9817] PKCS8: Unsupported PKCS#8 version
[  233.069861][ T9824] loop2: detected capacity change from 0 to 164
[  233.160798][ T9828] loop6: detected capacity change from 0 to 512
[  233.185819][ T5929] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  233.202020][ T9824] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  233.303231][ T9828] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.303424][ T9824] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  233.331404][ T9824] rock: directory entry would overflow storage
[  233.339697][ T9824] rock: sig=0x4f50, size=4, remaining=3
[  233.345391][ T9824] iso9660: Corrupted directory entry in block 4 of inode 1792
[  233.353807][ T9828] ext4 filesystem being mounted at /43/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  233.430402][ T5929] usb 5-1: Using ep0 maxpacket: 16
[  233.511248][ T9828] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #2: block 18: comm syz.6.1618: lblock 23 mapped to illegal pblock 18 (length 1)
[  233.511739][ T5929] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  233.569083][ T5929] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.611641][ T5929] usb 5-1: Product: syz
[  233.626762][ T9828] EXT4-fs (loop6): Remounting filesystem read-only
[  233.630939][ T5929] usb 5-1: Manufacturer: syz
[  233.656076][ T5929] usb 5-1: SerialNumber: syz
[  233.726824][ T5929] r8152-cfgselector 5-1: Unknown version 0x0000
[  233.756962][ T5929] r8152-cfgselector 5-1: config 0 descriptor??
[  233.818618][ T8617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.505954][   T43] r8152-cfgselector 5-1: USB disconnect, device number 7
[  235.139694][ T9873] loop1: detected capacity change from 0 to 4096
[  235.184038][ T9873] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  235.194440][ T9873] ntfs3(loop1): ino=3, mi_enum_attr
[  235.392795][ T9873] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  235.393057][ T9873] ntfs3(loop1): ino=1f, "file2" failed to open parent directory r=5 to update
[  235.546567][ T1096] ntfs3(loop1): ino=1f, failed to open parent directory r=5 to update
[  236.099197][ T9907] usb usb8: usbfs: process 9907 (syz.6.1647) did not claim interface 0 before use
[  236.575397][ T9925] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1655'.
[  237.261005][ T9946] loop6: detected capacity change from 0 to 1024
[  237.824775][ T9965] loop6: detected capacity change from 0 to 2048
[  237.884588][ T9965] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  237.935079][ T9962] loop4: detected capacity change from 0 to 4096
[  237.942109][ T9962] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  238.022624][ T9962] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  238.024885][ T9962] ntfs3(loop4): ino=19, mi_enum_attr
[  238.108618][ T9962] ntfs3(loop4): failed to convert "c46c" to cp874
[  238.114859][ T9962] ntfs3(loop4): ino=20, mi_enum_attr
[  239.260388][T10003] random: crng reseeded on system resumption
[  239.685396][T10022] vivid-000: disconnect
[  239.707380][T10019] vivid-000: reconnect
[  240.291241][T10042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1708'.
[  240.336100][T10042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1708'.
[  240.370248][T10042] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1708'.
[  240.750704][ T5929] hid-generic 0000:0004:0034.0001: unknown main item tag 0x0
[  240.788625][ T5929] hid-generic 0000:0004:0034.0001: unknown main item tag 0x0
[  240.808826][ T5929] hid-generic 0000:0004:0034.0001: unknown main item tag 0x0
[  240.897516][ T5929] hid-generic 0000:0004:0034.0001: hidraw0: <UNKNOWN> HID v0.0e Device [syz0] on syz1
[  240.977080][T10073] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1723'.
[  241.099121][T10075] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-tlb(5)
[  241.324337][T10083] misc userio: No port type given on /dev/userio
[  241.502298][T10077] fido_id[10077]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  241.584946][T10090] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1731'.
[  242.189341][T10100] loop0: detected capacity change from 0 to 4096
[  242.273088][T10115] loop6: detected capacity change from 0 to 1024
[  242.311462][T10116] netlink: 'syz.1.1743': attribute type 21 has an invalid length.
[  242.342917][T10115] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  242.371785][T10116] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1743'.
[  242.384269][T10100] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  242.395737][T10115] System zones: 0-1, 3-36
[  242.459817][T10116] netlink: 'syz.1.1743': attribute type 4 has an invalid length.
[  242.468647][T10116] netlink: 'syz.1.1743': attribute type 3 has an invalid length.
[  242.476908][T10116] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1743'.
[  242.487814][T10115] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.511350][T10123] (unnamed net_device) (uninitialized): option arp_validate: mode dependency failed, not supported in mode balance-alb(6)
[  242.568403][T10100] ntfs3(loop0): Failed to load $Extend (-22).
[  242.609233][T10100] ntfs3(loop0): Failed to initialize $Extend.
[  242.760482][T10128] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1749'.
[  242.856731][T10128] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1749'.
[  242.967536][ T8617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.452278][T10148] netlink: 'syz.4.1759': attribute type 1 has an invalid length.
[  243.491218][T10148] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1759'.
[  243.667150][T10146] loop3: detected capacity change from 0 to 4096
[  243.726553][T10146] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  244.186749][ T5929] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  244.256711][T10172] netlink: 'syz.4.1769': attribute type 1 has an invalid length.
[  244.421790][ T5929] usb 2-1: Using ep0 maxpacket: 8
[  244.458604][ T5929] usb 2-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[  244.482468][ T5929] usb 2-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[  244.511142][ T5929] usb 2-1: Product: syz
[  244.515443][ T5929] usb 2-1: Manufacturer: syz
[  244.536047][T10180] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  244.555814][ T5929] usb 2-1: SerialNumber: syz
[  244.604125][ T5929] usb 2-1: config 0 descriptor??
[  244.630138][T10180] batadv_slave_0: entered promiscuous mode
[  244.654739][ T5929] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[  244.672371][T10180] batadv_slave_0: entered allmulticast mode
[  244.711868][T10180] batman_adv: batadv0: Removing interface: batadv_slave_0
[  244.767503][T10180] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  245.027899][ T5878] Bluetooth: hci1: Malformed HCI Event
[  245.050510][ T5929] gspca_zc3xx: reg_r err -71
[  245.066238][ T5929] gspca_zc3xx 2-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  245.122967][T10157] loop6: detected capacity change from 0 to 32768
[  245.148662][ T5929] usb 2-1: USB disconnect, device number 4
[  245.176569][T10157] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1763 (10157)
[  245.268344][T10157] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  245.302292][T10157] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  245.671035][T10157] BTRFS info (device loop6): rebuilding free space tree
[  245.806852][T10157] BTRFS info (device loop6): enabling ssd optimizations
[  245.835870][T10157] BTRFS info (device loop6): using spread ssd allocation scheme
[  245.843588][T10157] BTRFS info (device loop6): enabling free space tree
[  245.885615][T10157] BTRFS info (device loop6): force clearing of disk cache
[  245.932793][T10236] kAFS: unable to lookup cell ''
[  246.269134][ T8617] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  246.750399][T10259] loop4: detected capacity change from 0 to 256
[  246.953230][T10259] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  247.466330][    C0] vkms_vblank_simulate: vblank timer overrun
[  247.839975][T10288] loop3: detected capacity change from 0 to 256
[  248.045683][T10288] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  248.092752][T10288] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  248.177876][T10300] loop2: detected capacity change from 0 to 16
[  248.353124][T10306] __nla_validate_parse: 1 callbacks suppressed
[  248.353159][T10306] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1828'.
[  248.377310][T10306] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1828'.
[  248.391686][T10308] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1829'.
[  248.410265][T10300] erofs (device loop2): mounted with root inode @ nid 36.
[  248.506633][T10300] erofs (device loop2): bogus lookback distance 1388 @ lcn 42 of nid 36
[  248.580676][T10300] erofs (device loop2): read error -117 @ 43 of nid 36
[  249.564983][T10337] loop0: detected capacity change from 0 to 2048
[  249.757991][T10348] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1847'.
[  249.775380][T10337] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 129: 0x32 != 0x7d
[  249.850808][T10302] loop4: detected capacity change from 0 to 32768
[  249.875733][T10337] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  249.974938][T10302] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1826 (10302)
[  250.140859][T10302] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  250.175951][T10302] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  250.636029][T10383] sctp: [Deprecated]: syz.1.1854 (pid 10383) Use of int in maxseg socket option.
[  250.636029][T10383] Use struct sctp_assoc_value instead
[  250.652944][T10302] BTRFS info (device loop4): rebuilding free space tree
[  250.831935][T10302] BTRFS info (device loop4): setting nodatasum
[  250.879514][T10302] BTRFS info (device loop4): allowing degraded mounts
[  250.922488][T10302] BTRFS info (device loop4): enabling ssd optimizations
[  250.984433][T10302] BTRFS info (device loop4): enabling free space tree
[  251.024489][T10302] BTRFS info (device loop4): force clearing of disk cache
[  251.053194][T10302] BTRFS info (device loop4): doing ref verification
[  251.086699][T10302] BTRFS info (device loop4): force zlib compression, level 3
[  251.118460][T10396] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1859'.
[  251.150402][T10396] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1859'.
[  251.220848][T10396] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1859'.
[  251.274094][T10396] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1859'.
[  251.355597][T10396] netlink: 104 bytes leftover after parsing attributes in process `syz.6.1859'.
[  251.401659][ T5863] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  251.949393][T10415] loop6: detected capacity change from 0 to 2048
[  252.040523][T10415] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  252.513975][T10430] loop4: detected capacity change from 0 to 1024
[  252.614279][T10434] bond1: entered allmulticast mode
[  252.620092][T10434] 8021q: adding VLAN 0 to HW filter on device bond1
[  252.628818][T10432] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1874'.
[  252.695815][T10430] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  252.916108][    C0] vkms_vblank_simulate: vblank timer overrun
[  253.018044][T10430] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1873: bg 0: block 10: padding at end of block bitmap is not set
[  253.074906][T10448] loop2: detected capacity change from 0 to 2048
[  253.096713][T10430] Quota error (device loop4): write_blk: dquota write failed
[  253.104152][T10430] Quota error (device loop4): find_free_dqentry: Can't write quota data block 2
[  253.205286][T10430] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  253.248431][T10430] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1873: Failed to acquire dquot type 0
[  253.281962][T10448] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  253.339424][T10430] Quota error (device loop4): write_blk: dquota write failed
[  253.387796][T10430] Quota error (device loop4): find_free_dqentry: Can't write quota data block 2
[  253.443905][T10430] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  253.515936][T10430] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1873: Failed to acquire dquot type 0
[  253.546554][T10461] warning: `syz.3.1887' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  253.598764][T10430] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.1873: Freeing blocks not in datazone - block = 0, count = 4096
[  253.686568][T10430] Quota error (device loop4): write_blk: dquota write failed
[  253.737644][T10430] Quota error (device loop4): find_free_dqentry: Can't write quota data block 2
[  253.793575][T10430] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  253.844624][T10430] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.1873: Failed to acquire dquot type 0
[  253.918943][T10469] netlink: 'syz.2.1889': attribute type 11 has an invalid length.
[  253.987987][T10430] EXT4-fs (loop4): 1 orphan inode deleted
[  254.040170][T10430] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.095893][T10474] loop1: detected capacity change from 0 to 16
[  254.189218][T10430] EXT4-fs error (device loop4): ext4_search_dir:1474: inode #2: block 16: comm syz.4.1873: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  254.511445][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.916093][T10474] erofs (device loop1): mounted with root inode @ nid 36.
[  255.161506][T10503] loop2: detected capacity change from 0 to 256
[  255.176651][T10505] loop4: detected capacity change from 0 to 2048
[  255.203313][T10505] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  255.211043][T10503] exfat: Deprecated parameter 'utf8'
[  255.272519][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  255.285678][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  255.313878][T10503] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  255.455217][T10507] loop0: detected capacity change from 0 to 1024
[  255.499624][T10507] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  255.557985][T10509] loop6: detected capacity change from 0 to 2048
[  255.568435][T10507] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  255.578587][T10507] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  255.591086][T10507] EXT4-fs (loop0): invalid journal inode
[  255.647113][T10511] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  255.808763][T10511] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  255.864436][T10511] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[  255.951873][T10511] Remounting filesystem read-only
[  256.135054][ T8617] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[  256.176519][T10517] loop4: detected capacity change from 0 to 1024
[  256.495000][T10525] loop0: detected capacity change from 0 to 64
[  256.636161][T10529] netlink: 'syz.1.1912': attribute type 1 has an invalid length.
[  256.675716][T10529] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  257.267098][T10546] loop6: detected capacity change from 0 to 128
[  257.300653][T10548] loop3: detected capacity change from 0 to 128
[  257.356644][T10546] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  257.394809][T10546] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  257.410205][T10548] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  257.453422][T10548] ext4 filesystem being mounted at /339/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  257.573742][ T8617] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  257.622586][T10548] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:375: inode #2: comm syz.3.1928: No space for directory leaf checksum. Please run e2fsck -D.
[  257.676176][T10548] EXT4-fs error (device loop3): __ext4_find_entry:1626: inode #2: comm syz.3.1928: checksumming directory block 0
[  257.755940][T10521] loop2: detected capacity change from 0 to 32768
[  257.916044][T10521] 
[  257.916044][T10521]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  257.916044][T10521] 
[  258.080087][ T5864] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  258.123318][T10564] loop0: detected capacity change from 0 to 512
[  258.139631][ T5880] 
[  258.139631][ T5880]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  258.139631][ T5880] 
[  258.193176][ T5880] 
[  258.193176][ T5880]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  258.193176][ T5880] 
[  258.261933][T10566] loop4: detected capacity change from 0 to 1024
[  258.298486][T10564] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 3: comm syz.0.1936: lblock 0 mapped to illegal pblock 3 (length 1)
[  258.471840][T10564] EXT4-fs (loop0): Remounting filesystem read-only
[  258.535822][T10564] EXT4-fs warning (device loop0): dx_probe:791: inode #2: lblock 0: comm syz.0.1936: error -117 reading directory block
[  258.589994][T10564] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  258.652049][T10564] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  258.969528][ T5872] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.095631][   T10] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  259.308265][   T10] usb 3-1: config 0 has an invalid interface number: 255 but max is 0
[  259.316839][   T10] usb 3-1: config 0 has no interface number 0
[  259.343419][   T10] usb 3-1: config 0 interface 255 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[  259.408234][   T10] usb 3-1: config 0 interface 255 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[  259.450233][   T10] usb 3-1: config 0 interface 255 altsetting 0 endpoint 0xA has an invalid bInterval 255, changing to 11
[  259.513162][   T10] usb 3-1: config 0 interface 255 altsetting 0 endpoint 0xA has invalid maxpacket 59391, setting to 1024
[  259.604053][   T10] usb 3-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[  259.621536][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.645653][   T10] usb 3-1: Product: syz
[  259.649871][   T10] usb 3-1: Manufacturer: syz
[  259.684991][   T10] usb 3-1: SerialNumber: syz
[  259.710335][T10609] 
: renamed from vlan1 (while UP)
[  259.727212][   T10] usb 3-1: config 0 descriptor??
[  259.744259][T10611] loop0: detected capacity change from 0 to 512
[  259.782291][T10580] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  259.827547][T10611] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  259.879188][T10611] EXT4-fs (loop0): 1 truncate cleaned up
[  259.924175][T10611] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  260.025702][ T5878] Bluetooth: hci5: ACL packet for unknown connection handle 0
[  260.328102][T10622] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1964'.
[  260.422717][ T5872] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.515925][T10624] loop4: detected capacity change from 0 to 512
[  260.679784][T10624] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  260.836783][T10632] IPv6: NLM_F_REPLACE set, but no existing node found!
[  260.876972][T10603] loop1: detected capacity change from 0 to 32768
[  260.925959][T10624] Quota error (device loop4): v2_read_file_info: Free block number 58381 out of range (1, 6).
[  260.976293][T10603] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  260.997849][T10624] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  261.047388][T10642] netlink: 'syz.6.1971': attribute type 11 has an invalid length.
[  261.055549][T10642] netlink: 224 bytes leftover after parsing attributes in process `syz.6.1971'.
[  261.266355][T10603] XFS (loop1): Ending clean mount
[  261.319754][T10603] XFS (loop1): Quotacheck needed: Please wait.
[  261.482524][ T5863] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  261.593896][T10603] XFS (loop1): Quotacheck: Done.
[  261.623380][T10654] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1975'.
[  262.053579][T10661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1978'.
[  262.063486][ T5859] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  262.626717][T10676] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  262.668319][T10676] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  262.806062][T10676] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  263.442147][T10693] loop4: detected capacity change from 0 to 256
[  263.505400][T10693] exfat: Deprecated parameter 'namecase'
[  263.560217][T10693] exfat: Deprecated parameter 'utf8'
[  263.684201][T10693] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d)
[  263.786508][   T30] audit: type=1800 audit(1756324205.133:1791): pid=10693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1992" name="file0" dev="loop4" ino=1048631 res=0 errno=0
[  264.126916][T10710] loop2: detected capacity change from 0 to 256
[  264.248551][T10710] FAT-fs (loop2): Directory bread(block 64) failed
[  264.286600][T10710] FAT-fs (loop2): Directory bread(block 65) failed
[  264.293573][T10710] FAT-fs (loop2): Directory bread(block 66) failed
[  264.300349][T10710] FAT-fs (loop2): Directory bread(block 67) failed
[  264.305627][ T5965] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  264.307808][T10710] FAT-fs (loop2): Directory bread(block 68) failed
[  264.323538][T10710] FAT-fs (loop2): Directory bread(block 69) failed
[  264.330456][T10710] FAT-fs (loop2): Directory bread(block 70) failed
[  264.366696][T10710] FAT-fs (loop2): Directory bread(block 71) failed
[  264.442641][T10710] FAT-fs (loop2): Directory bread(block 72) failed
[  264.479160][T10718] loop3: detected capacity change from 0 to 1024
[  264.506015][T10710] FAT-fs (loop2): Directory bread(block 73) failed
[  264.535892][ T5965] usb 2-1: Using ep0 maxpacket: 16
[  264.582242][ T5965] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  264.630231][ T5965] usb 2-1: config 0 has no interface number 0
[  264.682353][ T5965] usb 2-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  264.748779][ T5965] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.808175][ T5965] usb 2-1: Product: syz
[  264.812441][ T5965] usb 2-1: Manufacturer: syz
[  264.863109][ T5965] usb 2-1: SerialNumber: syz
[  264.872446][T10721] i2c i2c-0: Invalid block write size 36
[  264.899536][   T49] hfsplus: b-tree write err: -5, ino 4
[  264.911094][ T5965] usb 2-1: config 0 descriptor??
[  264.953189][ T5965] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  265.404123][ T5965] gspca_spca1528: reg_w err -71
[  265.436350][ T5965] spca1528 2-1:0.1: probe with driver spca1528 failed with error -71
[  265.535879][T10734] netlink: 'syz.3.2008': attribute type 4 has an invalid length.
[  265.557638][ T5965] usb 2-1: USB disconnect, device number 5
[  265.824206][T10741] loop6: detected capacity change from 0 to 1024
[  266.526392][T10758] netlink: 'syz.0.2017': attribute type 2 has an invalid length.
[  266.755268][T10763] netlink: del zone limit has 4 unknown bytes
[  266.926591][T10767] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2021'.
[  267.000229][T10767] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  267.949008][T10796] loop0: detected capacity change from 0 to 1024
[  268.198143][T10805] vlan0: entered promiscuous mode
[  269.141822][T10832] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  269.187567][T10833] ieee802154 phy0 wpan0: encryption failed: -22
[  269.638464][T10844] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2053'.
[  269.698572][T10849] netlink: 'syz.4.2055': attribute type 8 has an invalid length.
[  269.852889][T10849] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  270.855898][ T5866] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  270.955306][T10881] loop6: detected capacity change from 0 to 256
[  271.030247][T10881] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b1f, utbl_chksum : 0xe619d30d)
[  271.065649][ T5866] usb 2-1: Using ep0 maxpacket: 32
[  271.113016][ T5866] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[  271.137056][ T5866] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  271.197920][ T5866] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  271.285576][ T5866] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[  271.294579][ T5866] usb 2-1: config 1 has no interface number 0
[  271.321917][ T5866] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  271.332255][ T5866] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.375404][ T5866] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[  271.610033][ T5866] snd_usb_pod 2-1:1.1: set_interface failed
[  271.647042][ T5866] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[  271.701029][ T5866] snd_usb_pod 2-1:1.1: probe with driver snd_usb_pod failed with error -71
[  271.767041][ T5866] usb 2-1: USB disconnect, device number 6
[  272.599135][T10869] loop2: detected capacity change from 0 to 32768
[  272.656188][T10869] XFS: attr2 mount option is deprecated.
[  272.727839][T10869] XFS (loop2): DAX unsupported by block device. Turning off DAX.
[  272.830024][T10869] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  273.088341][T10869] XFS (loop2): Ending clean mount
[  273.173124][T10869] XFS (loop2): Quotacheck needed: Please wait.
[  273.400414][T10869] XFS (loop2): Quotacheck: Done.
[  273.613170][T10936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2091'.
[  273.700344][ T5880] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  273.810035][T10940] loop0: detected capacity change from 0 to 512
[  273.820830][ T5965] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  273.838803][T10940] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  273.915905][T10940] EXT4-fs (loop0): can't mount with commit=, fs mounted w/o journal
[  274.055686][ T5965] usb 7-1: Using ep0 maxpacket: 8
[  274.098254][ T5965] usb 7-1: config 2 has an invalid interface number: 31 but max is 0
[  274.118985][ T5965] usb 7-1: config 2 has no interface number 0
[  274.154007][ T5965] usb 7-1: config 2 interface 31 has no altsetting 0
[  274.243105][ T5965] usb 7-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  274.280859][ T5965] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.319560][ T5965] usb 7-1: Product: syz
[  274.323817][ T5965] usb 7-1: Manufacturer: syz
[  274.355416][T10942] loop1: detected capacity change from 0 to 8192
[  274.374739][ T5965] usb 7-1: SerialNumber: syz
[  274.765240][T10950] loop2: detected capacity change from 0 to 64
[  274.880443][ T5965] ch9200 7-1:2.31: probe with driver ch9200 failed with error -22
[  274.969155][ T5965] usb 7-1: USB disconnect, device number 3
[  276.319578][T10982] netlink: 'syz.6.2115': attribute type 10 has an invalid length.
[  276.581608][T10982] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  276.728141][T10990] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  276.952180][T10962] loop2: detected capacity change from 0 to 32768
[  277.008263][T10994] netdevsim netdevsim6 netdevsim0: entered allmulticast mode
[  277.035048][T10994] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2121'.
[  277.140125][T10967] loop4: detected capacity change from 0 to 40427
[  277.147246][ T5965] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  277.345867][ T5965] usb 2-1: config 0 interface 0 altsetting 15 endpoint 0x81 has invalid wMaxPacketSize 0
[  277.371538][ T5965] usb 2-1: config 0 interface 0 altsetting 15 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  277.423310][T10967] F2FS-fs (loop4): invalid crc value
[  277.445921][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  277.493319][ T5965] usb 2-1: New USB device found, idVendor=05ac, idProduct=025b, bcdDevice= 0.00
[  277.551018][ T5965] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  277.607294][ T5965] usb 2-1: config 0 descriptor??
[  277.693030][T11007] loop3: detected capacity change from 0 to 256
[  277.886208][T11009] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2128'.
[  277.893747][ T5965] usb 2-1: string descriptor 0 read error: -71
[  277.962937][ T5965] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input14
[  278.070854][ T5216] bcm5974 2-1:0.0: could not read from device
[  278.144555][ T5216] bcm5974 2-1:0.0: could not read from device
[  278.150275][ T5965] usb 2-1: USB disconnect, device number 7
[  278.225273][T10967] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  278.384344][T10967] F2FS-fs (loop4): Start checkpoint disabled!
[  278.503589][ T6029] udevd[6029]: Error opening device "/dev/input/event4": No such file or directory
[  278.537934][ T6029] udevd[6029]: Unable to EVIOCGABS device "/dev/input/event4"
[  278.554764][T11016] loop6: detected capacity change from 0 to 256
[  278.557166][ T6029] udevd[6029]: Unable to EVIOCGABS device "/dev/input/event4"
[  278.585926][ T6029] udevd[6029]: Unable to EVIOCGABS device "/dev/input/event4"
[  278.629221][ T6029] udevd[6029]: Unable to EVIOCGABS device "/dev/input/event4"
[  278.920457][T11016] FAT-fs (loop6): Directory bread(block 64) failed
[  278.986032][T11016] FAT-fs (loop6): Directory bread(block 65) failed
[  278.992712][T11016] FAT-fs (loop6): Directory bread(block 66) failed
[  279.125730][T11016] FAT-fs (loop6): Directory bread(block 67) failed
[  279.185416][T11016] FAT-fs (loop6): Directory bread(block 68) failed
[  279.192465][T11016] FAT-fs (loop6): Directory bread(block 69) failed
[  279.295794][T11016] FAT-fs (loop6): Directory bread(block 70) failed
[  279.335721][T11016] FAT-fs (loop6): Directory bread(block 71) failed
[  279.342629][T11016] FAT-fs (loop6): Directory bread(block 72) failed
[  279.405785][T11016] FAT-fs (loop6): Directory bread(block 73) failed
[  279.588001][T11032] loop0: detected capacity change from 0 to 2048
[  279.663013][T11038] netlink: 'syz.3.2143': attribute type 10 has an invalid length.
[  279.711822][T11032] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  279.750696][T11038] team0: Device ipvlan1 failed to register rx_handler
[  279.936233][   T30] audit: type=1326 audit(1756324221.283:1792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11039 comm="syz.2.2144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  280.089292][   T30] audit: type=1326 audit(1756324221.283:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11039 comm="syz.2.2144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  280.249953][   T10] iguanair 3-1:0.255: failed to get version
[  280.267492][   T30] audit: type=1326 audit(1756324221.353:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11039 comm="syz.2.2144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  280.298198][   T10] iguanair 3-1:0.255: probe with driver iguanair failed with error -110
[  280.394525][   T30] audit: type=1326 audit(1756324221.353:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11039 comm="syz.2.2144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  280.417623][    C0] vkms_vblank_simulate: vblank timer overrun
[  280.434795][   T10] usb 3-1: USB disconnect, device number 8
[  280.521362][   T30] audit: type=1326 audit(1756324221.353:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11039 comm="syz.2.2144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  280.700925][T11063] netlink: 'syz.1.2154': attribute type 1 has an invalid length.
[  280.747694][T11063] netlink: 232 bytes leftover after parsing attributes in process `syz.1.2154'.
[  280.791778][T11063] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2154'.
[  281.202162][T11084] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2161'.
[  281.219039][T11085] loop2: detected capacity change from 0 to 128
[  281.498913][T11095] binder: 11094:11095 ioctl 400c620e 9999999999999999 returned -14
[  281.913591][T11111] loop3: detected capacity change from 0 to 256
[  282.049593][T11115] netlink: 'syz.4.2175': attribute type 29 has an invalid length.
[  282.059507][T11111] FAT-fs (loop3): Directory bread(block 64) failed
[  282.082066][T11111] FAT-fs (loop3): Directory bread(block 65) failed
[  282.132141][T11111] FAT-fs (loop3): Directory bread(block 66) failed
[  282.149939][T11121] loop1: detected capacity change from 0 to 128
[  282.168554][T11111] FAT-fs (loop3): Directory bread(block 67) failed
[  282.172087][T11122] netlink: 'syz.6.2178': attribute type 21 has an invalid length.
[  282.175243][T11111] FAT-fs (loop3): Directory bread(block 68) failed
[  282.246922][T11121] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  282.264295][T11122] netlink: 128 bytes leftover after parsing attributes in process `syz.6.2178'.
[  282.292776][T11111] FAT-fs (loop3): Directory bread(block 69) failed
[  282.340266][T11111] FAT-fs (loop3): Directory bread(block 70) failed
[  282.376068][T11121] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  282.390686][T11111] FAT-fs (loop3): Directory bread(block 71) failed
[  282.407522][T11122] netlink: 'syz.6.2178': attribute type 4 has an invalid length.
[  282.427510][T11122] netlink: 3 bytes leftover after parsing attributes in process `syz.6.2178'.
[  282.444999][T11111] FAT-fs (loop3): Directory bread(block 72) failed
[  282.485989][T11111] FAT-fs (loop3): Directory bread(block 73) failed
[  282.497365][T11129] loop2: detected capacity change from 0 to 8
[  282.556600][T11129] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  282.608845][ T6029] udevd[6029]: incorrect cramfs checksum on /dev/loop2
[  282.674135][T11129] cramfs: Error -5 while decompressing!
[  282.736487][T11129] cramfs: ffffffff99bf0668(26)->ffff88806a9c6000(4096)
[  282.766609][ T6135] udevd[6135]: incorrect cramfs checksum on /dev/loop2
[  282.817446][T11129] cramfs: Error -3 while decompressing!
[  282.823067][T11129] cramfs: ffffffff99bf0682(26)->ffff88806af43000(4096)
[  282.915670][T11129] cramfs: Error -3 while decompressing!
[  282.974464][T11129] cramfs: ffffffff99bf069c(16)->ffff888061ae2000(4096)
[  283.007808][T11129] cramfs: Error -5 while decompressing!
[  283.013784][T11129] cramfs: ffffffff99bf0668(26)->ffff88806a9c6000(4096)
[  283.376655][T11149] netlink: 5852 bytes leftover after parsing attributes in process `syz.2.2190'.
[  283.407562][T11149] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  283.426917][ T5866] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  283.624656][ T5866] usb 7-1: Using ep0 maxpacket: 8
[  283.677148][ T5866] usb 7-1: config 7 has an invalid interface number: 190 but max is 0
[  283.685400][ T5866] usb 7-1: config 7 has no interface number 0
[  283.725052][ T5866] usb 7-1: config 7 interface 190 has no altsetting 0
[  283.749825][T11161] loop2: detected capacity change from 0 to 128
[  283.795582][ T5866] usb 7-1: New USB device found, idVendor=0af0, idProduct=8400, bcdDevice=c0.15
[  283.807425][ T5866] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.815431][ T5866] usb 7-1: Product: syz
[  283.843591][T11161] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  283.855835][ T5866] usb 7-1: Manufacturer: syz
[  283.860476][ T5866] usb 7-1: SerialNumber: syz
[  283.930424][T11159] loop1: detected capacity change from 0 to 4096
[  284.003610][T11159] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  284.051841][T11161] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  284.172725][ T5866] hso 7-1:7.190: Not our interface
[  284.245676][ T5866] usb 7-1: USB disconnect, device number 4
[  284.612613][T11179] CIFS: VFS: Malformed UNC in devname
[  284.980137][T11190] loop0: detected capacity change from 0 to 164
[  285.027940][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.045724][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.072857][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.087413][T11190] rock: directory entry would overflow storage
[  285.093678][T11190] rock: sig=0x66, size=4, remaining=3
[  285.152302][T11191] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  285.177437][T11190] rock: directory entry would overflow storage
[  285.223283][T11190] rock: sig=0x66, size=4, remaining=3
[  285.247470][T11190] iso9660: Corrupted directory entry in block 4 of inode 1792
[  285.281390][T11191] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  285.369462][T11165] loop3: detected capacity change from 0 to 32768
[  285.589758][T11201] loop1: detected capacity change from 0 to 512
[  285.592589][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.674644][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.754250][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.837779][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.917368][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  285.996129][T11191] virt_wifi0 speed is unknown, defaulting to 1000
[  286.035075][T11213] loop1: detected capacity change from 0 to 16
[  286.093158][T11213] erofs (device loop1): mounted with root inode @ nid 36.
[  286.170756][T11217] loop2: detected capacity change from 0 to 8
[  286.181850][T11213] erofs (device loop1): read error -95 @ 8200 of nid 36
[  286.229295][T11216] loop4: detected capacity change from 0 to 256
[  286.300410][T11217] SQUASHFS error: Unable to read directory block [629:0]
[  287.664345][T11260] loop0: detected capacity change from 0 to 512
[  287.735376][T11260] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  287.827606][T11271] loop3: detected capacity change from 0 to 256
[  287.829087][T11260] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  287.863833][T11271] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  287.878024][T11271] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  287.949190][T11260] ext4 filesystem being mounted at /358/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  288.245334][T11260] EXT4-fs error (device loop0): ext4_xattr_block_find:1869: inode #15: comm syz.0.2245: corrupted xattr block 19: overlapping e_value 
[  288.296641][T11260] EXT4-fs (loop0): Remounting filesystem read-only
[  288.435276][T11285] loop2: detected capacity change from 0 to 1024
[  288.548944][T11285] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  288.575904][ T5872] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.650703][T11296] loop3: detected capacity change from 0 to 256
[  288.694669][T11285] EXT4-fs error (device loop2): ext4_find_dest_de:2052: inode #2: block 16: comm syz.2.2256: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1
[  288.880823][T11302] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2264'.
[  289.001682][T11306] loop4: detected capacity change from 0 to 1024
[  289.052732][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.361839][   T66] hfsplus: b-tree write err: -5, ino 4
[  289.367954][ T5965] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  289.537580][ T5965] usb 7-1: Using ep0 maxpacket: 32
[  289.575996][ T5965] usb 7-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  289.614636][ T5965] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  289.663171][ T5965] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  289.698683][ T5965] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  289.755401][ T5965] usb 7-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  289.776729][ T5965] usb 7-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  289.798855][ T5965] usb 7-1: Product: syz
[  289.830362][ T5965] usb 7-1: Manufacturer: syz
[  289.860190][ T5965] usb 7-1: SerialNumber: syz
[  289.919085][T11308] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  289.932429][ T5965] input: appletouch as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/input/input15
[  290.035071][    C0] appletouch 7-1:1.0: atp_complete: usb_submit_urb failed with result -1
[  290.359951][ T5866] usb 7-1: USB disconnect, device number 5
[  290.527818][T11342] loop3: detected capacity change from 0 to 512
[  290.583871][T11344] bridge3: entered promiscuous mode
[  290.669755][T11342] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.706712][ T5866] appletouch 7-1:1.0: input: appletouch disconnected
[  290.764692][T11342] ext4 filesystem being mounted at /409/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  291.022798][ T5864] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.309778][T11368] _�Z`Ԁ@��: entered promiscuous mode
[  291.681646][T11388] i2c i2c-0: Invalid block write size 36
[  291.844427][T11392] netlink: 'syz.2.2307': attribute type 3 has an invalid length.
[  291.875844][ T5866] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  292.057944][ T5866] usb 4-1: config 0 has an invalid interface number: 156 but max is 0
[  292.088497][ T5866] usb 4-1: config 0 has no interface number 0
[  292.094691][ T5866] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  292.171353][ T5866] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  292.221052][ T5866] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  292.262608][ T5866] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  292.315610][ T5866] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.343867][T11410] bridge0: port 1(bridge_slave_0) entered listening state
[  292.377957][ T5866] usb 4-1: config 0 descriptor??
[  292.438650][ T5866] gspca_main: spca561-2.14.0 probing abcd:cdee
[  292.518091][T11416] loop4: detected capacity change from 0 to 512
[  292.601743][ T5866] spca561 4-1:0.156: probe with driver spca561 failed with error -22
[  292.621078][ T5866] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  292.628830][T11416] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2319: Invalid inode bitmap blk 4 in block_group 0
[  292.646173][ T5866] usb 4-1: MIDIStreaming interface descriptor not found
[  292.720245][T11416] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.731631][ T5866] usb 4-1: USB disconnect, device number 9
[  292.870611][T11416] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters
[  292.946128][ T6042] udevd[6042]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  292.977994][T11416] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2319: Invalid inode bitmap blk 4 in block_group 0
[  293.009178][   T30] audit: type=1326 audit(1756324234.363:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11426 comm="syz.2.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  293.103609][T11416] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  293.153863][T11432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2325'.
[  293.181695][   T30] audit: type=1326 audit(1756324234.363:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11426 comm="syz.2.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  293.195793][T11432] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2325'.
[  293.283469][T11432] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2325'.
[  293.320767][   T30] audit: type=1326 audit(1756324234.373:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11426 comm="syz.2.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  293.358010][T11436] loop6: detected capacity change from 0 to 512
[  293.428862][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.430112][   T30] audit: type=1326 audit(1756324234.443:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11426 comm="syz.2.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  293.487179][   T30] audit: type=1326 audit(1756324234.493:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11426 comm="syz.2.2323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4adfd8ebe9 code=0x7ffc0000
[  293.511622][   T30] audit: type=1326 audit(1756324234.643:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11433 comm="syz.0.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4c138ebe9 code=0x7ffc0000
[  293.536068][T11436] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  293.548807][   T30] audit: type=1326 audit(1756324234.643:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11433 comm="syz.0.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4c138ebe9 code=0x7ffc0000
[  293.582286][T11442] netlink: 'syz.2.2329': attribute type 16 has an invalid length.
[  293.586691][T11436] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  293.670057][   T30] audit: type=1326 audit(1756324234.653:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11433 comm="syz.0.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fe4c138ebe9 code=0x7ffc0000
[  293.794352][   T30] audit: type=1326 audit(1756324234.653:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11433 comm="syz.0.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4c138ebe9 code=0x7ffc0000
[  293.955600][   T30] audit: type=1326 audit(1756324234.653:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11433 comm="syz.0.2327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4c138ebe9 code=0x7ffc0000
[  293.973762][T11454] loop2: detected capacity change from 0 to 512
[  294.051197][T11454] EXT4-fs: Ignoring removed i_version option
[  294.105807][T11457] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2336'.
[  294.136291][T11454] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  294.145989][ T8617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.535716][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.020302][T11488] usb usb8: usbfs: process 11488 (syz.4.2351) did not claim interface 0 before use
[  295.239296][T11495] loop3: detected capacity change from 0 to 1024
[  295.296341][T11495] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  295.325613][T11495] EXT4-fs (loop3): group descriptors corrupted!
[  295.437641][T11500] loop4: detected capacity change from 0 to 1024
[  295.494043][T11500] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  295.639357][T11500] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2357: Invalid block bitmap block 0 in block_group 0
[  295.695429][T11500] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.2357: Failed to acquire dquot type 0
[  295.774373][T11500] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.2357: Freeing blocks not in datazone - block = 0, count = 4096
[  295.810167][T11500] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2357: Invalid inode bitmap blk 0 in block_group 0
[  295.815611][ T5965] usb 3-1: new full-speed USB device number 9 using dummy_hcd
[  295.832339][T11500] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  295.855860][ T1096] EXT4-fs error (device loop4): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 0
[  295.902186][T11500] EXT4-fs (loop4): 1 orphan inode deleted
[  295.911745][T11517] loop3: detected capacity change from 0 to 256
[  295.920745][T11500] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  295.940830][T11517] exfat: Deprecated parameter 'utf8'
[  295.970811][T11517] exfat: Deprecated parameter 'utf8'
[  295.990706][T11517] exfat: Deprecated parameter 'utf8'
[  296.013166][T11517] exfat: Deprecated parameter 'utf8'
[  296.040597][ T5965] usb 3-1: config 8 has an invalid interface number: 79 but max is 0
[  296.067159][ T5965] usb 3-1: config 8 has no interface number 0
[  296.084371][T11517] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xac5c0b1f, utbl_chksum : 0xe619d30d)
[  296.105855][ T5965] usb 3-1: config 8 interface 79 altsetting 9 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  296.127264][ T5965] usb 3-1: config 8 interface 79 has no altsetting 0
[  296.142604][ T5965] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=bc.04
[  296.150772][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.152578][ T5965] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.198688][ T5965] usb 3-1: Product: syz
[  296.205955][ T5965] usb 3-1: Manufacturer: syz
[  296.210579][ T5965] usb 3-1: SerialNumber: syz
[  296.238157][T11505] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  296.351637][T11526] loop4: detected capacity change from 0 to 64
[  296.502432][ T5965] radio-si470x 3-1:8.79: could not find interrupt in endpoint
[  296.521407][T11530] netlink: 36 bytes leftover after parsing attributes in process `syz.6.2371'.
[  296.532085][ T5965] radio-si470x 3-1:8.79: probe with driver radio-si470x failed with error -5
[  296.570324][ T5965] radio-raremono 3-1:8.79: this is not Thanko's Raremono.
[  296.586264][ T5965] usbhid 3-1:8.79: couldn't find an input interrupt endpoint
[  296.634704][ T5965] usb 3-1: USB disconnect, device number 9
[  296.861518][T11536] loop4: detected capacity change from 0 to 1764
[  296.929115][T11536] iso9660: Corrupted directory entry in block 2 of inode 1920
[  297.703271][T11564] loop4: detected capacity change from 0 to 256
[  297.853188][T11568] loop3: detected capacity change from 0 to 512
[  297.892378][T11564] FAT-fs (loop4): Directory bread(block 64) failed
[  297.950341][T11564] FAT-fs (loop4): Directory bread(block 65) failed
[  298.029782][T11564] FAT-fs (loop4): Directory bread(block 66) failed
[  298.037349][T11564] FAT-fs (loop4): Directory bread(block 67) failed
[  298.044099][T11564] FAT-fs (loop4): Directory bread(block 68) failed
[  298.050954][T11564] FAT-fs (loop4): Directory bread(block 69) failed
[  298.057881][T11564] FAT-fs (loop4): Directory bread(block 70) failed
[  298.064582][T11564] FAT-fs (loop4): Directory bread(block 71) failed
[  298.073142][T11568] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  298.076441][T11564] FAT-fs (loop4): Directory bread(block 72) failed
[  298.092661][T11564] FAT-fs (loop4): Directory bread(block 73) failed
[  298.125934][T11568] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  298.267430][T11568] EXT4-fs error (device loop3): ext4_generic_delete_entry:2668: inode #12: block 32: comm syz.3.2390: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[  298.395672][T11568] EXT4-fs error (device loop3) in ext4_delete_entry:2739: Corrupt filesystem
[  298.596996][ T5864] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.739102][T11591] devtmpfs: Too few inodes for current use
[  298.909704][T11599] loop3: detected capacity change from 0 to 64
[  299.115651][T11605] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2406'.
[  299.188425][T11609] netlink: 209832 bytes leftover after parsing attributes in process `syz.2.2407'.
[  299.343424][T11611] loop6: detected capacity change from 0 to 1024
[  299.474605][T11611] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  299.514991][T11611] ext4 filesystem being mounted at /179/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  299.655817][T11621] loop3: detected capacity change from 0 to 2048
[  299.677006][T11611] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: block 7: comm syz.6.2408: lblock 7 mapped to illegal pblock 7 (length 1)
[  299.755680][T11611] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 7 with max blocks 1 with error 117
[  299.770262][T11621] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  299.831411][T11611] EXT4-fs (loop6): This should not happen!! Data will be lost
[  299.831411][T11611] 
[  300.008851][T11627] loop2: detected capacity change from 0 to 2048
[  300.052842][T11627] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  300.125965][T11630] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2416'.
[  300.170486][ T8617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  300.523318][T11639] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2419'.
[  300.554251][T11639] tipc: Started in network mode
[  300.628828][T11644] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2423'.
[  300.631815][T11639] tipc: Node identity ff000000000000000000000000000001, cluster identity 4711
[  300.713525][T11639] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  300.788102][  T974] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  300.995961][  T974] usb 3-1: Using ep0 maxpacket: 32
[  301.038713][  T974] usb 3-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  301.064154][  T974] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.080774][T11654] loop3: detected capacity change from 0 to 128
[  301.095942][  T974] usb 3-1: Product: syz
[  301.100161][  T974] usb 3-1: Manufacturer: syz
[  301.104789][  T974] usb 3-1: SerialNumber: syz
[  301.167492][  T974] usb 3-1: config 0 descriptor??
[  301.208308][  T974] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  301.730507][T11636] loop0: detected capacity change from 0 to 32768
[  301.820631][  T974] gspca_ov534_9: reg_w failed -71
[  301.849525][T11636] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  301.894588][T11636] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  301.968459][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  301.968482][   T30] audit: type=1400 audit(1756324243.323:1807): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=2626200DFFFFFFFFFFFFFF7FA6 pid=11672 comm="syz.1.2434"
[  302.156334][  T974] gspca_ov534_9: Unknown sensor 0000
[  302.156450][  T974] ov534_9 3-1:0.0: probe with driver ov534_9 failed with error -22
[  302.200550][T11636] XFS (loop0): Ending clean mount
[  302.212641][  T974] usb 3-1: USB disconnect, device number 10
[  302.243405][T11636] XFS (loop0): Quotacheck needed: Please wait.
[  302.369268][T11678] loop4: detected capacity change from 0 to 4096
[  302.401177][T11636] XFS (loop0): Quotacheck: Done.
[  302.408719][T11678] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  302.680241][ T5872] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  302.819102][T11678] ntfs3(loop4): ino=19, mi_enum_attr
[  302.837627][T11678] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  302.940842][T11678] ntfs3(loop4): failed to convert "c46c" to cp855
[  303.026232][T11678] ntfs3(loop4): ino=20, mi_enum_attr
[  303.857317][T11720] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2455'.
[  304.201617][T11697] loop1: detected capacity change from 0 to 32768
[  304.243167][T11697] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2445 (11697)
[  304.373579][T11697] BTRFS info (device loop1): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  304.401858][T11697] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  304.688728][T11697] BTRFS info (device loop1): enabling ssd optimizations
[  304.733329][T11697] BTRFS info (device loop1): enabling free space tree
[  304.821896][   T30] audit: type=1800 audit(1756324246.173:1808): pid=11697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2445" name="file1" dev="loop1" ino=260 res=0 errno=0
[  304.909128][T11722] loop4: detected capacity change from 0 to 32768
[  304.932868][T11722] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2454 (11722)
[  305.060718][ T5859] BTRFS info (device loop1): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  305.076321][T11722] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  305.095590][   T43] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  305.170577][T11722] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  305.211257][T11722] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  305.286673][ T5866] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  305.294540][   T43] usb 4-1: Using ep0 maxpacket: 32
[  305.347308][   T43] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  305.488390][ T5866] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  305.501124][   T43] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  305.510951][ T5866] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  305.520967][   T43] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.530624][ T5866] usb 3-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  305.555186][   T43] usb 4-1: Product: syz
[  305.559876][   T43] usb 4-1: Manufacturer: syz
[  305.564483][   T43] usb 4-1: SerialNumber: syz
[  305.586560][ T5866] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  305.605960][T11722] BTRFS info (device loop4): rebuilding free space tree
[  305.611887][ T5866] usb 3-1: config 0 descriptor??
[  305.636773][   T43] usb 4-1: config 0 descriptor??
[  305.699822][   T43] usb 4-1: bad CDC descriptors
[  305.742167][T11722] BTRFS info (device loop4): disabling free space tree
[  305.750423][   T43] usb 4-1: unsupported MDLM descriptors
[  305.758816][T11722] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  305.815781][T11722] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  305.926352][T11722] BTRFS info (device loop4): enabling ssd optimizations
[  305.979498][T11722] BTRFS info (device loop4): turning off barriers
[  306.021164][T11722] BTRFS info (device loop4): disabling tree log
[  306.041375][T11722] BTRFS info (device loop4): turning on flush-on-commit
[  306.110965][   T43] usb 4-1: USB disconnect, device number 10
[  306.113364][T11722] BTRFS info (device loop4): enabling disk space caching
[  306.143828][ T5866] logitech 0003:046D:C24F.0002: item fetching failed at offset 5/7
[  306.175090][T11722] BTRFS info (device loop4): force clearing of disk cache
[  306.196021][ T5866] logitech 0003:046D:C24F.0002: parse failed
[  306.202621][T11722] BTRFS info (device loop4): doing ref verification
[  306.235715][T11722] BTRFS info (device loop4): use lzo compression, level 0
[  306.235810][ T5866] logitech 0003:046D:C24F.0002: probe with driver logitech failed with error -22
[  306.291612][T11754] loop0: detected capacity change from 0 to 32768
[  306.342071][T11754] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.2463 (11754)
[  306.355408][ T5866] usb 3-1: USB disconnect, device number 11
[  306.567030][T11754] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  306.616703][T11754] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  306.992312][T11754] BTRFS info (device loop0): enabling ssd optimizations
[  307.046362][ T5863] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  307.063035][T11754] BTRFS info (device loop0): enabling free space tree
[  307.255347][T11754] BTRFS error: failed to open device for path k8/����";W���_#G��d�t�e�RU':�r�yA�*�5ڤ)�di��$6y��r�f���ߋHc��DH����,����	J������{d�D��
n with flags 0x1: -2
[  307.549185][ T5872] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  308.640813][T11842] Bluetooth: MGMT ver 1.23
[  308.786910][T11839] loop4: detected capacity change from 0 to 4096
[  309.048582][T11854] loop6: detected capacity change from 0 to 512
[  309.125598][  T974] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  309.134885][T11854] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  309.235750][ T5929] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  309.338742][T11854] EXT4-fs (loop6): 1 truncate cleaned up
[  309.406950][  T974] usb 4-1: config 0 interface 0 has no altsetting 0
[  309.407053][  T974] usb 4-1: New USB device found, idVendor=056e, idProduct=00fc, bcdDevice= 0.00
[  309.407077][  T974] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.410725][T11854] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.436289][ T5929] usb 3-1: Using ep0 maxpacket: 8
[  309.443647][ T5929] usb 3-1: config index 0 descriptor too short (expected 30, got 18)
[  309.448659][ T5929] usb 3-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  309.448693][ T5929] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  309.448718][ T5929] usb 3-1: Product: syz
[  309.448737][ T5929] usb 3-1: Manufacturer: syz
[  309.448756][ T5929] usb 3-1: SerialNumber: syz
[  309.452795][  T974] usb 4-1: config 0 descriptor??
[  309.464261][T11854] EXT4-fs (loop6): Online resizing not supported with sparse_super2
[  309.471266][ T5929] usb 3-1: config 0 descriptor??
[  309.771475][T11868] netlink: 'syz.4.2499': attribute type 2 has an invalid length.
[  309.848079][ T8617] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.861038][ T5929] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  309.966021][ T5929] usb 3-1: setting power ON
[  310.006314][ T5929] dvb-usb: bulk message failed: -22 (2/0)
[  310.059806][T11874] loop6: detected capacity change from 0 to 64
[  310.108350][T11851] dvb-usb: bulk message failed: -22 (3/0)
[  310.114857][T11851] cxusb: i2c wr: len=80 is too big!
[  310.114857][T11851] 
[  310.136947][ T5929] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  310.168637][ T5929] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  310.198461][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.238731][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.265876][ T5929] usb 3-1: media controller created
[  310.286664][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.326551][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.367106][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.408047][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.441212][ T5929] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  310.453997][  T974] elecom 0003:056E:00FC.0003: unknown main item tag 0x0
[  310.575787][  T974] elecom 0003:056E:00FC.0003: hidraw0: USB HID v0.06 Device [HID 056e:00fc] on usb-dummy_hcd.3-1/input0
[  310.652083][ T5929] usb 3-1: selecting invalid altsetting 6
[  310.665129][ T5929] usb 3-1: digital interface selection failed (-22)
[  310.681632][  T974] usb 4-1: USB disconnect, device number 11
[  310.709339][ T5929] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  310.760554][ T5929] usb 3-1: setting power OFF
[  310.796560][ T5929] dvb-usb: bulk message failed: -22 (2/0)
[  310.848924][ T5929] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  310.907454][ T5929] (NULL device *): no alternate interface
[  310.916869][T11889] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2509'.
[  311.153161][ T5929] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  311.240958][T11888] fido_id[11888]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  311.242430][T11900] loop9: detected capacity change from 0 to 7
[  311.275829][ T5929] usb 3-1: USB disconnect, device number 12
[  311.426467][T11900] Dev loop9: unable to read RDB block 7
[  311.432517][T11900]  loop9: unable to read partition table
[  311.456948][T11900] loop9: partition table beyond EOD, truncated
[  311.473673][T11904] loop2: detected capacity change from 0 to 1024
[  311.516645][T11900] loop_reread_partitions: partition scan of loop9 (�被x������ ) failed (rc=-5)
[  311.741193][T11904] hfsplus: bad catalog entry type
[  312.022261][ T1111] hfsplus: b-tree write err: -5, ino 4
[  312.066790][ T5874] Bluetooth: hci3: command 0x0406 tx timeout
[  312.283887][T11920] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2523'.
[  312.335244][T11920] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2523'.
[  312.381188][T11920] netlink: 'syz.4.2523': attribute type 7 has an invalid length.
[  312.696681][T11895] loop1: detected capacity change from 0 to 32768
[  312.798700][T11895] 
[  312.798700][T11895]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  312.798700][T11895] 
[  312.814120][T11903] loop6: detected capacity change from 0 to 32768
[  312.976577][T11903] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  313.111332][ T5859] 
[  313.111332][ T5859]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  313.111332][ T5859] 
[  313.167645][ T5859] 
[  313.167645][ T5859]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  313.167645][ T5859] 
[  313.418151][ T8617] ocfs2: Unmounting device (7,6) on (node local)
[  313.676927][ T5874] Bluetooth: hci4: command 0x0406 tx timeout
[  314.742007][T11944] loop4: detected capacity change from 0 to 32768
[  314.832413][T11962] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2543'.
[  314.848891][T11949] loop6: detected capacity change from 0 to 32768
[  314.877024][T11962] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2543'.
[  314.911133][T11962] netlink: 'syz.1.2543': attribute type 18 has an invalid length.
[  314.921583][T11928] loop3: detected capacity change from 0 to 32768
[  314.967481][T11949] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[  315.025296][T11928] debugfs: 'B1DE653C5FFC4D88B33B244AAB9EB3E9' already exists in 'ocfs2'
[  315.099918][T11949] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  315.194769][   T66] (kworker/u8:4,66,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[  315.260415][T11928] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  315.423937][T11971] loop2: detected capacity change from 0 to 2048
[  315.503313][T11928] 
[  315.505680][T11928] ======================================================
[  315.512749][T11928] WARNING: possible circular locking dependency detected
[  315.519777][T11928] syzkaller #0 Not tainted
[  315.524183][T11928] ------------------------------------------------------
[  315.531193][T11928] syz.3.2527/11928 is trying to acquire lock:
[  315.537270][T11928] ffff88806d203ff8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_init_acl+0x2f9/0x720
[  315.546620][T11928] 
[  315.546620][T11928] but task is already holding lock:
[  315.553987][T11928] ffff88806a634950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  315.563275][T11928] 
[  315.563275][T11928] which lock already depends on the new lock.
[  315.563275][T11928] 
[  315.573692][T11928] 
[  315.573692][T11928] the existing dependency chain (in reverse order) is:
[  315.582887][T11928] 
[  315.582887][T11928] -> #4 (jbd2_handle){++++}-{0:0}:
[  315.590232][T11928]        lock_acquire+0x120/0x360
[  315.595287][T11928]        start_this_handle+0x1fa7/0x21c0
[  315.600988][T11928]        jbd2__journal_start+0x2c1/0x5b0
[  315.606675][T11928]        jbd2_journal_start+0x2a/0x40
[  315.612055][T11928]        ocfs2_start_trans+0x376/0x6d0
[  315.617555][T11928]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  315.623860][T11928]        ocfs2_dismount_volume+0x201/0x8d0
[  315.629714][T11928]        generic_shutdown_super+0x135/0x2c0
[  315.635628][T11928]        kill_block_super+0x44/0x90
[  315.640838][T11928]        deactivate_locked_super+0xbc/0x130
[  315.646736][T11928]        cleanup_mnt+0x425/0x4c0
[  315.651692][T11928]        task_work_run+0x1d4/0x260
[  315.656870][T11928]        exit_to_user_mode_loop+0xec/0x110
[  315.662736][T11928]        do_syscall_64+0x2bd/0x3b0
[  315.667917][T11928]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.674353][T11928] 
[  315.674353][T11928] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  315.682905][T11928]        lock_acquire+0x120/0x360
[  315.687965][T11928]        down_read+0x46/0x2e0
[  315.692662][T11928]        ocfs2_start_trans+0x36a/0x6d0
[  315.698139][T11928]        ocfs2_shutdown_local_alloc+0x200/0xa10
[  315.704417][T11928]        ocfs2_dismount_volume+0x201/0x8d0
[  315.710292][T11928]        generic_shutdown_super+0x135/0x2c0
[  315.716207][T11928]        kill_block_super+0x44/0x90
[  315.721449][T11928]        deactivate_locked_super+0xbc/0x130
[  315.727354][T11928]        cleanup_mnt+0x425/0x4c0
[  315.732342][T11928]        task_work_run+0x1d4/0x260
[  315.737457][T11928]        exit_to_user_mode_loop+0xec/0x110
[  315.743272][T11928]        do_syscall_64+0x2bd/0x3b0
[  315.748422][T11928]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.754831][T11928] 
[  315.754831][T11928] -> #2 (sb_internal#4){.+.+}-{0:0}:
[  315.762323][T11928]        lock_acquire+0x120/0x360
[  315.767367][T11928]        ocfs2_start_trans+0x26b/0x6d0
[  315.772832][T11928]        ocfs2_setattr+0x969/0x1b40
[  315.778037][T11928]        notify_change+0xb36/0xe40
[  315.783153][T11928]        chmod_common+0x248/0x400
[  315.788186][T11928]        do_fchmodat+0x12d/0x200
[  315.793114][T11928]        __x64_sys_fchmodat+0x7d/0x90
[  315.798479][T11928]        do_syscall_64+0xfa/0x3b0
[  315.803519][T11928]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.809931][T11928] 
[  315.809931][T11928] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[  315.818716][T11928]        lock_acquire+0x120/0x360
[  315.823759][T11928]        down_write+0x96/0x1f0
[  315.828523][T11928]        ocfs2_try_remove_refcount_tree+0xb6/0x320
[  315.835023][T11928]        ocfs2_xattr_set+0x595/0x11f0
[  315.840389][T11928]        ocfs2_set_acl+0x701/0x7b0
[  315.845495][T11928]        ocfs2_iop_set_acl+0x1aa/0x2a0
[  315.850976][T11928]        vfs_set_acl+0x887/0xb00
[  315.855942][T11928]        filename_setxattr+0x2e0/0x600
[  315.861419][T11928]        path_setxattrat+0x364/0x3a0
[  315.866710][T11928]        __x64_sys_setxattr+0xbc/0xe0
[  315.872079][T11928]        do_syscall_64+0xfa/0x3b0
[  315.877111][T11928]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.883532][T11928] 
[  315.883532][T11928] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[  315.891416][T11928]        validate_chain+0xb9b/0x2140
[  315.896699][T11928]        __lock_acquire+0xab9/0xd20
[  315.901899][T11928]        lock_acquire+0x120/0x360
[  315.906922][T11928]        down_read+0x46/0x2e0
[  315.911613][T11928]        ocfs2_init_acl+0x2f9/0x720
[  315.916802][T11928]        ocfs2_mknod+0x1321/0x2050
[  315.921905][T11928]        ocfs2_create+0x1a5/0x440
[  315.926926][T11928]        path_openat+0x14f4/0x3830
[  315.932037][T11928]        do_filp_open+0x1fa/0x410
[  315.937085][T11928]        do_sys_openat2+0x121/0x1c0
[  315.942331][T11928]        __x64_sys_openat+0x138/0x170
[  315.947719][T11928]        do_syscall_64+0xfa/0x3b0
[  315.952763][T11928]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  315.959181][T11928] 
[  315.959181][T11928] other info that might help us debug this:
[  315.959181][T11928] 
[  315.969435][T11928] Chain exists of:
[  315.969435][T11928]   &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle
[  315.969435][T11928] 
[  315.983337][T11928]  Possible unsafe locking scenario:
[  315.983337][T11928] 
[  315.990891][T11928]        CPU0                    CPU1
[  315.996254][T11928]        ----                    ----
[  316.001608][T11928]   rlock(jbd2_handle);
[  316.005770][T11928]                                lock(&journal->j_trans_barrier);
[  316.013573][T11928]                                lock(jbd2_handle);
[  316.020176][T11928]   rlock(&oi->ip_xattr_sem);
[  316.024875][T11928] 
[  316.024875][T11928]  *** DEADLOCK ***
[  316.024875][T11928] 
[  316.033027][T11928] 8 locks held by syz.3.2527/11928:
[  316.038262][T11928]  #0: ffff888052fce428 (sb_writers#26){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  316.047544][T11928]  #1: ffff88806d2042c0 (&type->i_mutex_dir_key#26){+.+.}-{4:4}, at: path_openat+0x8da/0x3830
[  316.057892][T11928]  #2: ffff88806d20c2c0 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  316.071840][T11928]  #3: ffff88806d20b480 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  316.085834][T11928]  #4: ffff88806d20df40 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  316.099915][T11928]  #5: ffff888052fce618 (sb_internal#4){.+.+}-{0:0}, at: ocfs2_mknod+0xe93/0x2050
[  316.109201][T11928]  #6: ffff88807e5a6ce8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0
[  316.119965][T11928]  #7: ffff88806a634950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  316.129741][T11928] 
[  316.129741][T11928] stack backtrace:
[  316.135639][T11928] CPU: 0 UID: 0 PID: 11928 Comm: syz.3.2527 Not tainted syzkaller #0 PREEMPT(full) 
[  316.135671][T11928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  316.135687][T11928] Call Trace:
[  316.135696][T11928]  <TASK>
[  316.135709][T11928]  dump_stack_lvl+0x189/0x250
[  316.135749][T11928]  ? __pfx_dump_stack_lvl+0x10/0x10
[  316.135779][T11928]  ? __pfx__printk+0x10/0x10
[  316.135816][T11928]  ? stack_trace_save+0x9c/0xe0
[  316.135849][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.135887][T11928]  print_circular_bug+0x2ee/0x310
[  316.135920][T11928]  check_noncircular+0x134/0x160
[  316.135952][T11928]  validate_chain+0xb9b/0x2140
[  316.135980][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136012][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136046][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136080][T11928]  __lock_acquire+0xab9/0xd20
[  316.136124][T11928]  ? ocfs2_init_acl+0x2f9/0x720
[  316.136153][T11928]  lock_acquire+0x120/0x360
[  316.136188][T11928]  ? ocfs2_init_acl+0x2f9/0x720
[  316.136215][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136239][T11928]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  316.136271][T11928]  down_read+0x46/0x2e0
[  316.136290][T11928]  ? ocfs2_init_acl+0x2f9/0x720
[  316.136315][T11928]  ocfs2_init_acl+0x2f9/0x720
[  316.136339][T11928]  ? ocfs2_mknod_locked+0x148/0x250
[  316.136366][T11928]  ? __pfx_ocfs2_init_acl+0x10/0x10
[  316.136388][T11928]  ? dquot_alloc_inode+0x216/0xa50
[  316.136413][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136436][T11928]  ? ocfs2_block_signals+0x94/0xe0
[  316.136476][T11928]  ? __pfx_ocfs2_block_signals+0x10/0x10
[  316.136512][T11928]  ? ocfs2_init_security_get+0x139/0x1a0
[  316.136544][T11928]  ocfs2_mknod+0x1321/0x2050
[  316.136578][T11928]  ? __pfx_ocfs2_mknod+0x10/0x10
[  316.136599][T11928]  ? __pfx_ocfs2_find_entry+0x10/0x10
[  316.136629][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136653][T11928]  ? __lock_acquire+0xab9/0xd20
[  316.136695][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136720][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136743][T11928]  ? look_up_lock_class+0x74/0x170
[  316.136777][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136801][T11928]  ? register_lock_class+0x51/0x320
[  316.136834][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136857][T11928]  ? __lock_acquire+0xab9/0xd20
[  316.136891][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136915][T11928]  ? __lock_acquire+0xab9/0xd20
[  316.136949][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.136973][T11928]  ? do_raw_spin_lock+0x121/0x290
[  316.137002][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137028][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137051][T11928]  ? do_raw_spin_unlock+0x122/0x240
[  316.137078][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137104][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137127][T11928]  ? rcu_is_watching+0x15/0xb0
[  316.137148][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137172][T11928]  ? ocfs2_lookup+0x5b9/0x9b0
[  316.137195][T11928]  ocfs2_create+0x1a5/0x440
[  316.137214][T11928]  ? __pfx_ocfs2_lookup+0x10/0x10
[  316.137233][T11928]  ? from_kgid+0x1b0/0x650
[  316.137263][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137287][T11928]  ? __pfx_ocfs2_create+0x10/0x10
[  316.137306][T11928]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  316.137329][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137353][T11928]  ? inode_permission+0x149/0x470
[  316.137372][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137395][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137420][T11928]  ? __pfx_ocfs2_create+0x10/0x10
[  316.137440][T11928]  path_openat+0x14f4/0x3830
[  316.137465][T11928]  ? arch_stack_walk+0xfc/0x150
[  316.137509][T11928]  ? __pfx_path_openat+0x10/0x10
[  316.137532][T11928]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.137567][T11928]  do_filp_open+0x1fa/0x410
[  316.137591][T11928]  ? __lock_acquire+0xab9/0xd20
[  316.137622][T11928]  ? __pfx_do_filp_open+0x10/0x10
[  316.137659][T11928]  ? _raw_spin_unlock+0x28/0x50
[  316.137684][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137708][T11928]  ? alloc_fd+0x64c/0x6c0
[  316.137746][T11928]  do_sys_openat2+0x121/0x1c0
[  316.137769][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137793][T11928]  ? __se_sys_futex+0x36f/0x400
[  316.137820][T11928]  ? __pfx_do_sys_openat2+0x10/0x10
[  316.137845][T11928]  ? srso_alias_return_thunk+0x5/0xfbef5
[  316.137869][T11928]  ? rcu_is_watching+0x15/0xb0
[  316.137890][T11928]  __x64_sys_openat+0x138/0x170
[  316.137916][T11928]  do_syscall_64+0xfa/0x3b0
[  316.137952][T11928]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.137972][T11928]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  316.137998][T11928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.138019][T11928] RIP: 0033:0x7ff60878ebe9
[  316.138038][T11928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  316.138057][T11928] RSP: 002b:00007ff60964c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  316.138080][T11928] RAX: ffffffffffffffda RBX: 00007ff6089b5fa0 RCX: 00007ff60878ebe9
[  316.138096][T11928] RDX: 000000000000275a RSI: 0000200000000080 RDI: ffffffffffffff9c
[  316.138111][T11928] RBP: 00007ff608811e19 R08: 0000000000000000 R09: 0000000000000000
[  316.138125][T11928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  316.138138][T11928] R13: 00007ff6089b6038 R14: 00007ff6089b5fa0 R15: 00007ffe0ba269a8
[  316.138162][T11928]  </TASK>
[  316.754349][ T8617] ocfs2: Unmounting device (7,6) on (node local)
[  316.774249][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  316.799536][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  316.864651][T11971] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.887144][T11971] EXT4-fs error (device loop2): ext4_ext_precache:649: inode #2: comm syz.2.2545: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  316.904638][T11971] EXT4-fs (loop2): Remounting filesystem read-only
[  316.972203][ T5864] ocfs2: Unmounting device (7,3) on (node local)
[  317.002798][ T5880] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.