last executing test programs:

11m8.764589172s ago: executing program 32 (id=9335):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000004840)={0x0, 0x0, &(0x7f0000004800)={&(0x7f0000000080)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_DELOBJ={0x1c, 0x14, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x40000)

9m35.481498729s ago: executing program 33 (id=10615):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000002c80), 0x2, 0x0)
ioctl$VIDIOC_DECODER_CMD(r0, 0xc0485660, &(0x7f0000000340)={0x1, 0x2, @start={0x14}})

7m32.750918672s ago: executing program 34 (id=12362):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmallocinfo\x00', 0x0, 0x0)
pread64(r0, &(0x7f0000000340)=""/88, 0x58, 0x1)

6m37.935984065s ago: executing program 8 (id=13054):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000080)={0xf0f040, 0x4})

6m37.655193801s ago: executing program 8 (id=13059):
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x3, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}}}}}}, 0x0)
rt_sigqueueinfo(0xffffffffffffffff, 0x22, &(0x7f0000000000)={0x35, 0x3, 0x80000000})

6m37.366061179s ago: executing program 8 (id=13062):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0x4}, {0x6, 0xff}]})

6m36.968250123s ago: executing program 8 (id=13066):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0)

6m36.652498273s ago: executing program 8 (id=13070):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x12)

6m36.243876295s ago: executing program 8 (id=13076):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, 0x0, 0xb, 0x801, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_COMPAT_NAME={0x7, 0x1, ')!\x00'}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040)

6m35.615278285s ago: executing program 35 (id=13076):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x2c, 0x0, 0xb, 0x801, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_COMPAT_NAME={0x7, 0x1, ')!\x00'}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000040)

6m10.426745518s ago: executing program 9 (id=13353):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

6m10.11808796s ago: executing program 9 (id=13357):
pipe2(&(0x7f0000000000)={<r0=>0x0, 0x0}, 0x0)
read$eventfd(r0, 0x0, 0x0)

6m9.754371769s ago: executing program 9 (id=13360):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000004c0)={0x20, 0x0, 0x8, 0x3, 0x0, 0x0, {0x3, 0x0, 0x2}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20024010}, 0x0)

6m9.38714644s ago: executing program 9 (id=13365):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x4, &(0x7f0000000140)={[{@uid}, {@nodecompose}, {@umask={'umask', 0x3d, 0x1}}, {@barrier}, {@gid={'gid', 0x3d, 0xee00}}, {@nodecompose}, {@gid}, {@nls={'nls', 0x3d, 'cp1251'}}, {}, {@barrier}]}, 0xfc, 0x6ea, &(0x7f0000000f80)="$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")
mount$bind(&(0x7f0000000200)='./file1\x00', &(0x7f0000000340)='./file1\x00', 0x0, 0x883042, 0x0)

6m8.851931676s ago: executing program 9 (id=13367):
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getsockopt$llc_int(r0, 0x10c, 0x5, &(0x7f0000000600), &(0x7f0000000280)=0x4)

6m8.024723795s ago: executing program 9 (id=13375):
r0 = mq_open(&(0x7f0000000480)='!selinuxwk1\x1f\xd0m\xc3\x7f9\xc9\x9e*\rT\x93\xfd\xe2\x91\xef\xaa\x16#j\x97\x8f\xbc\xdeY\x0f\xcc\xc5mV\xcb\x15vm(p\xc9-QZ#\xd2{\x84\xbf\x06\x00\x00\xd9', 0x840, 0x104, 0x0)
finit_module(r0, 0x0, 0x0)

6m7.663816519s ago: executing program 36 (id=13375):
r0 = mq_open(&(0x7f0000000480)='!selinuxwk1\x1f\xd0m\xc3\x7f9\xc9\x9e*\rT\x93\xfd\xe2\x91\xef\xaa\x16#j\x97\x8f\xbc\xdeY\x0f\xcc\xc5mV\xcb\x15vm(p\xc9-QZ#\xd2{\x84\xbf\x06\x00\x00\xd9', 0x840, 0x104, 0x0)
finit_module(r0, 0x0, 0x0)

4m39.459579526s ago: executing program 3 (id=14422):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53, 0x2000000}, 0x20)

4m39.242606967s ago: executing program 3 (id=14427):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x13c, 0x19, 0xb05, 0x0, 0x10, {{@in=@remote, @in=@remote, 0x0, 0x0, 0xffff, 0x0, 0xa, 0x80, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0xf82, 0x8}, {0x1, 0x0, 0x80}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3}, [@tmpl={0x84, 0x5, [{{@in=@local, 0x0, 0x32}, 0x0, @in=@broadcast}, {{@in=@private=0xa010101, 0x4d3, 0x33}, 0x2, @in6=@dev, 0x40, 0x0, 0x0, 0x0, 0x800}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4088800}, 0x0)

4m39.04069733s ago: executing program 3 (id=14431):
timer_create(0x9, 0x0, &(0x7f00000000c0)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

4m38.706656436s ago: executing program 3 (id=14440):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

4m38.120572539s ago: executing program 3 (id=14449):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)

4m37.05895507s ago: executing program 3 (id=14458):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r0, 0xc0884123, &(0x7f0000000040)={0x0, "978ecb5cea46a8fbca158168d717ca8a427de59cb6ac24e2ed1e9265f391ef214f784f1304a9c3e607595dae65960313cc4d694635b59f5d87db6169bfa42fd4", {0x80000000}})

4m36.622670171s ago: executing program 37 (id=14458):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r0, 0xc0884123, &(0x7f0000000040)={0x0, "978ecb5cea46a8fbca158168d717ca8a427de59cb6ac24e2ed1e9265f391ef214f784f1304a9c3e607595dae65960313cc4d694635b59f5d87db6169bfa42fd4", {0x80000000}})

3m42.426774398s ago: executing program 5 (id=14968):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="11000000040000000400000022"], 0x48)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r0, &(0x7f0000000540)}, 0x20)

3m42.022313911s ago: executing program 5 (id=14971):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x4, 0x0, 0x0, 0x30, 0x0, 0xa3}, 0x9c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

3m40.516920598s ago: executing program 5 (id=14983):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@delneigh={0x30, 0x1d, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x40, 0x96, 0x4}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, @NDA_VLAN={0x6, 0x5, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)

3m39.787745375s ago: executing program 5 (id=14987):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0)
umount2(&(0x7f0000000280)='./file0\x00', 0x8)

3m39.410508795s ago: executing program 5 (id=14992):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000280)={&(0x7f00000059c0)=[0x0], &(0x7f0000007d40)=[{}, {}, {}, {}, {}], &(0x7f00000000c0), &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0], 0x3c3c3c3c3c3c49c, 0x0, 0x1, 0x0, r1})

3m38.702772113s ago: executing program 5 (id=14999):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fcffffff1000000008000600000000001800018014000200776c616e300000000000000000000000080007"], 0x3c}}, 0x0)

3m37.884918342s ago: executing program 38 (id=14999):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fcffffff1000000008000600000000001800018014000200776c616e300000000000000000000000080007"], 0x3c}}, 0x0)

22.569047228s ago: executing program 7 (id=16733):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWRULE={0x50, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @log={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_LOG_GROUP={0x6, 0x1, 0x1, 0x0, 0x2}, @NFTA_LOG_SNAPLEN={0x8, 0x3, 0x1, 0x0, 0x5}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0)

22.350605588s ago: executing program 7 (id=16736):
syz_mount_image$jfs(&(0x7f0000005dc0), &(0x7f0000005e00)='./file1\x00', 0x208000, &(0x7f0000001d40)=ANY=[@ANYBLOB="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"], 0x41, 0x5e62, &(0x7f0000011a80)="$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")
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=@md5={0x1, "5211eb8e5ce6935e9bbd76e32c4c956e"}, 0xfec2, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)

20.230818955s ago: executing program 7 (id=16757):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000a00)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@resgid}, {@barrier}, {@bsdgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a)
lseek(r0, 0x8000, 0x4)

19.392808237s ago: executing program 7 (id=16765):
r0 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000001f80)={&(0x7f0000001d00)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, 0x0}, 0x0)
sendmsg$kcm(r0, &(0x7f0000001540)={&(0x7f0000000040)=@qipcrtr={0x2a, 0x1, 0x3fff}, 0x80, 0x0}, 0x0)

18.980026278s ago: executing program 7 (id=16768):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0)

18.672997936s ago: executing program 7 (id=16770):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000005640), 0x1, 0x55a7, &(0x7f0000005680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc040, 0x180)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f0000000040)={0x0, 0x8000, 0x2, 0xedd8, 0x0, [0x9, 0xf53, 0x2, 0x9]})

3.980461116s ago: executing program 6 (id=16878):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0xb, 0x400)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f00000030c0)={0xf, 0xdcd, 0x40, 0x0, <r1=>0x0})
ioctl$DRM_IOCTL_MODE_MAP_DUMB(r0, 0xc01064b3, &(0x7f0000003100)={r1})

3.973737122s ago: executing program 2 (id=16879):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)

3.69430557s ago: executing program 6 (id=16883):
r0 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10)
sendmmsg$inet(r0, &(0x7f0000000240)=[{{&(0x7f00000007c0)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a90500040000746400009e150451160200000064c6", 0x15}, {&(0x7f0000000000)="53340081ba60ccbb9d000000000000", 0xf}], 0x2}}, {{0x0, 0x0, 0x0}}], 0x2, 0x4004040)

3.675240079s ago: executing program 2 (id=16884):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
memfd_create(0x0, 0x2)
setsockopt$rose(r0, 0x104, 0xf6ea53ac68ca7552, &(0x7f0000000180)=0x4, 0x4)

3.514021895s ago: executing program 0 (id=16886):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x40)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r0, 0x80585414, &(0x7f0000000080))

3.431748683s ago: executing program 6 (id=16887):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close_range(r1, r1, 0x0)
connect$tipc(r0, &(0x7f0000000080)=@name={0x1e, 0x2, 0x3, {{0x40, 0x3}}}, 0x10)

3.330806276s ago: executing program 2 (id=16888):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)={[{@acl}, {@heartbeat_none}, {@err_ro}, {@coherency_full}, {@coherency_full}, {@localflocks}, {@intr}, {@inode64}]}, 0x0, 0x442e, &(0x7f0000004480)="$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")
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x1)

3.222311214s ago: executing program 0 (id=16890):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000b80)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0x10, {[@main=@item_4={0x3, 0x0, 0x8, "f1080699"}, @main=@item_012={0x2, 0x0, 0xb, "17ab"}, @main=@item_012={0x2, 0x0, 0xc, "d222"}, @global=@item_4={0x3, 0x1, 0xfe15b2f462c62910, "00014a00"}]}}, 0x0}, 0x0)

3.086563s ago: executing program 6 (id=16891):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000000000401e04012800000000000109022400010000000009040100010300000009210000000122070009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000040)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x8, {[@global=@item_012={0x1, 0x1, 0x3, "e0"}, @global=@item_012={0x0, 0x1, 0x4}, @local=@item_4={0x3, 0x2, 0x1, "2fdfe1ac"}]}}, 0x0}, 0x0)

2.699277594s ago: executing program 1 (id=16895):
unshare(0x22020600)
r0 = socket$caif_stream(0x25, 0x1, 0x5)
setsockopt(r0, 0x7fffffff, 0x83, 0x0, 0x0)

2.38749036s ago: executing program 39 (id=16770):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000005640), 0x1, 0x55a7, &(0x7f0000005680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc040, 0x180)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f0000000040)={0x0, 0x8000, 0x2, 0xedd8, 0x0, [0x9, 0xf53, 0x2, 0x9]})

2.382339947s ago: executing program 1 (id=16897):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'macvlan1\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000500)="330520000a00160006007ef52f55", 0x5ee, 0x0, &(0x7f00000003c0)={0x11, 0x5, r1, 0x1, 0x5f, 0x6, @random='\x00\r\x005\x00'}, 0x14)

2.176808422s ago: executing program 1 (id=16899):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1.807909964s ago: executing program 1 (id=16900):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=@newqdisc={0x40, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x14, 0x2, [@TCA_PIE_BYTEMODE={0x8, 0x7, 0x1}, @TCA_PIE_ECN={0x8}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x80884}, 0x20000000)

1.782609379s ago: executing program 4 (id=16901):
r0 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000100)='mode\x00', &(0x7f0000000140)='7', 0x0)

1.504062171s ago: executing program 2 (id=16902):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, &(0x7f0000000200)='GPL\x00', 0xe, 0x0, 0x0, 0x0, 0x0, '\x00', r1}, 0x94)

1.376638991s ago: executing program 4 (id=16903):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x19, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8005a21, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x803ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @call={0x85, 0x0, 0x0, 0xe}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1.362300196s ago: executing program 1 (id=16904):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000001040)=ANY=[@ANYBLOB='dots,check=strict,discard,uid=', @ANYRESHEX=0xee00, @ANYBLOB="0000a74e26de00", @ANYRESHEX=0xee00, @ANYBLOB=',nodots,nodots,dots,nodots,nodots,nodots,dmask=00000000000000000000010,nodots,nfs,nodots,showexec,nodots,umask=00000000000000000000007,nodots,dots,\x00'], 0x1, 0x1f5, &(0x7f0000000600)="$eJzs3cFqE1EUANCbmCYTcdGdIAgjLnRV1C+oSAUxIFSy0J2gK7NqN6mb9jP8Bf/LD5CuspEncSadmKYxBDKj7Tmb3pn7Xt+7M2SSTW5SFL7f/RpZ1or2fuzHpBW70Y6ZswAArpNJSvEjFZreCwBQjzXe/3/WvCUAYMvevnv/+vlgcHCY51nE+dl4OB4Wf4v8y1eDgyf5b7vVrPPxeHjrIv80X/zsMM3vxO0y/6yYn1+kuxEx7Mbjh0V+mnvxZpD/Ob8XH7dcOwAAAAAAAAAAAAAAAAAAAAAANOV+5DNL+/vs7S3m+2W+OJrrD7TQv6cT9zrlYdUeKJ3WURQAAAAAAAAAAAAAAAAAAAD8Z45Pvnz+MBp9OqqCXkTMn+ksGXN10Cr/8VqDmw/asdn0flnmBou2yku03QL7y2/uOkF0/pW7s2mQ17BWf+XlTWkaLH8VzNpiXDm9GxGrV390uOnmJyml0bcHR8cnkVYOrp4RvVqfSAAAAAAAAAAAAAAAAAAAcHPNfev7kqyJDQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAA6rf/58Gl8+sDE4j4k78dfBsrZ3IGq0VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA6+tXAAAA//85ziI4")
r0 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x50009405, &(0x7f00000004c0)={0x0, 0x0, 0x3a})

1.214948576s ago: executing program 4 (id=16905):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0)
getsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, &(0x7f0000002240))

1.008929617s ago: executing program 1 (id=16906):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000440)='./file1\x00', 0x0, &(0x7f00000003c0)={[{@compress_algo={'compress', 0x3d, 'lzo'}}]}, 0x1, 0x55a5, &(0x7f000000ac40)="$eJzs3X1sVWcdB/BzeyllkNAyZRnqwvwHJ4hUTCxC0CIwgcHoQJNhYBQHbAiD0gRhY9OOOZ0jk4Y5xoovDKQCxq6+rJiYIbqIcU4mi8OGEXnJIuICK4yoJNOZ3nufy73nru0dznVun8/SnvPc33me89yT80e/dzznRgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABBF0cEVC/+27gcrvvngtSenbrzvzP0nap59bNOEu+buHn34/lVXtJ9ubi595bmz1y++96GqYSf2LDgURYlUv0Sm//xPTZm1ePb8Gf3CgLU3pLcVFV2dMt31WLrRN+/Fzn75PwuiKCqNDZDMbCcPyGkn4ieI6gsH7Nb2qrGrBm2cNH1z2ZTBi5J1TYVvnU79ensCvSVzX71w8V6qTv0uiR2Rbefceom8WzTdP37DvSlvAgB4XSprUpvsn6OZP3Gz7YZ4PdaujrUbY+3wF0JjbuNSpMft29U8r47Xe2me1emoUNblPGP1zPXPtmvi/WPtWNR4HfPMPzQTafp1Nc+6WL235gkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwVnLX8ZufKtn0o/ctWz8qeXzI8F98tXnL9yZ3lE/92r4N7b9ve/Y9zc2lrzx39vrF9z5UNezEngWHoqgi1S+R7p6Yt6Ntw89WTl3987mPtJx77+27kplxw7ZPzsFRe9j5eHkUfT6n8kIY9tTAKKrJL6Sa0SOFhSWpnamhAAAAwNvJkNTvkmw7HQdL89qJVJpMpP4L0mFxe9XYVYM2Tpq+uWzK4EXJuqZLH6+mi/GqX3O8bLvi4k8iJxiH+Bsf72I9HFpfME734iPG8/zoYRcOH/n6ig1rmwac3H/ZoOTkX325dsjlc8e8fM24sbf+9eEdBfm/ovv8H66c/A8AAMB/Q/6Pj9O9nvL/8CP3nbnz1E/X1X5m27zjE75RO/BdlWv+1PLhz60fPm1Sn2NXbCnI/1fnnbIg/4cZh/xfEl1a/gcAAIC3sv91/q8uGKd7PeX/5WtG/n36hdmTHh9/4Ydn7hj6y4NHor0NI7/QetsH9s/pP7DxJwX5v7K4/N8nd9rhxafDhJeWR1Fl8RcVAAAAyBP+v/vFjxZCXk9/chDP63PPH5x8U+kDZz8y55ph244O3dVx/h9LV2y6MKZl5oiqTz9VsaEg/1cXl/9L35y3CwAAABThySWfuHFnNGPyh6rvPrx/4faHG5avrV/WVJaY9u/69uv+1dK3IP/XFJf/y3rn7QAAAACv4dCXtu1+ddbythEtZee3/uHVPz921YjVB5orj9b/dlDpyrbaJQX5v7a4/N8/s82sfEh32h/+FcKD5VHUr3OnLl34TdT4yWwBAAAAeIOEnP7PY+2jdl5b9usnv//S5tnf+fbgvd+aebDpuxMH3DzpgQMzDzxRW5D/67p//n940kFY/5/3/L+C9f85hfRT/8Z5MAAAAADvRIXr+cPj8dPfXNDV9+8Xu/7/hi+2vXj8tgVf6Xj30BuXv3Tr5bd8bMKpP864I7lz/J0l06a9eLog/zcUl/+Tuds38vv/AAAA4BL8v33/35yCcbrX0/P/Zz1699GOvzw/fuSsprWLT07Y+OP5W55+dHfVVecW3nTZB59Ztrcg/zcWl//DdkDu29sXrs895VF0ZedO5mmCu8J0l8YKraU5hfSFj/WYHXpkCq1lOYWUuliP0eVR9P7OnYZYYVAoNMYKHQMzha2xwjOhkLkfsoWWWGFfuNM2DcxMN17YEwqZBRatYQXFgOySiFiPl7vq0VmI9eib2nk+e3IAAIB3lBCeM1m2NL8ZxaNsa6KnA/r3dEBJTwckezqgT+yA+IFdvR7V5hfC6+fXPP67yo+WfPbQLbdPHDFq0bp7GscdSM6beN0TOy47t/L0mNUF+X9rcfk/XIp08Oxy/X8U1v9nvtcwu/6/NhQqYoXWUKiJPzGgJpwjHY/Xh3NU1GR6dFyZLQAAAMDbWvhcINnL8wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOA/7N17nFTVnSDw000/aGiaFuMrYmx1bUWHpkFRP8EHaiYaYE2j7My4+GiERpFWEGEirlFQs5vEwSgqUWdGYRVGVnHwBWQ1ATWiiWg0jmZGHUMwatyNH8WIfrLGuJ/uW6eoutVlFwJKO9/vH12n6neetx5d595b5wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPzHsP7RG4/4p4ueHD1qw7wBy185/L9/WH/oskXv/K8/PXvdbXvP+976VUuWVP7p+Y0nTf7ODYc3blg54YUQWjrLlSXFy05fvOIHqy74xrcePO2mu9/dc/bSqky9mXjo2/GnPHPnytjqb/uFsLIshIp0YHBtEqjM3K+N9Q2sDWGnsDmQLdHWJymRbjg8VhPCwrA5kK3qRzUh1OYExv3ykdXzOhLX14SwfwihOt3Gv1cnbdSkA41VSaBPOjCtIgl88HEiG1hVngRgq8U3Q/ZFv7wlP0N91+WKvP4qt1nHPl/p4fWKifri+d46djt3KkdV+oGWrXraCqpjuyh4e6zxbusB77aC7XyNpy33i1TmG8rHm0PVoXxS2+QJs9pnxkfKQ1NTr2I1bafn+cWNl0zcknSPeR3GDtS35D/y6V6Hj58/8M4FjWN2vfnhDZNfr3p2wdZ2s9jm3d6qQ+Y112Oex2ikz5Me8PYr+JbU4EtXCOH24ze9/duXxv7fXz349OD3vjn0rCEvvDK07ubvTuv312f/n8pbpm4smP/Xf/L8P76c4215Xu7Y6od1ydw8PlIbE2/XJXNzAAAA6DF6wl7TN0Yc9HbtuoaH9/36isnnLZr32unn/rnqp30nHHTiKUO/f8eNU08rmP83lHb8Px7yr80d7ZoQRnYmrugfwu6djyeBpbE7Z/UPYZ/OVEt+4NhUYE0Ie3QmBmWrSpXoHUs0pAJv1GUCI1OBtTHQkgosjoFrUoErY2B5KjAxBtakAsfFQJiSP46D6jLjKDlQEwOtyUZcHs9C+ENdbC21rV7KVgUAALCNZGaHlfl3c8512NoMcXq5vKa7DPEM7KIZqlM1pGew2WlV0RoququhvLsasuOe88nDL6i5rLuaC07DKMvP8N6B981d/cC//fjGCYc9ddCHrWe8vH7Vo6M39fq7d8b8+NJx84eNL5j/N3/y/L+6i46UFRz/D2Fs59+YuzwTac/GW1vyMgAAAABboeK1pSf/Yu5HZUt+ds7G/f/ytHFX916x774D1h583/9reHPA8av2L5j/jyzt/P+4T6RXTuawLu6GmNo/hOb8QFLtiMJActS7byYAAAAAPUH2eHz2WPiUzG1yinZ6Pl2Yv2UL88cD/yO7zD943NXrmlfffsqUEYeuWbPpjF1fXrbhqV32f+eFA08+/YT7pzbcUzD/bynt/P8++bdJJ9bGXlzXP4TeOYHHYy87Ap0aYmD9MfmBzPjXxg1wVawqc2JCtqqrYonWGGhOBRYWK/FMtsTu+YHMk5Vt/IrsOKZkSuQEAAAA4DMXdwfE4/Lx/P+nz+336D8uu+WSB5esC33PXv6Ly44ePnD+4N5vTXvmkEf+9t2TpxbM/1u37Pz/znlwwen97X1DGFIRQq/0DwPW9UkWBoyB2rJM4sd9krp6pau6vE8IIzoGlq5qQ2b9/4r0GoPP1SRVxcDu+96xsbEjcXtNCENyAy+MXzS8IzErFcg2/lc1IezdMdp04yt6J41Xphu/sXcIX8kJZKua2DuEjsaq0lU9Wp25jkG6quXVIeycE8hWdXh1CLMDAD1V/F86KffBC2dfPHVCe3vbjO2YiDvxa8LkKe1tTROntU+qLtKnSak+561jNLdwTKVe+ublzBpFd41q6l9KOvtDwebctjI78gvOHMzcj1+GKjvHOawy7+4h6SEfuF9hEyHnq1SxIZdv5yH3ya1k85NYUH/MXxX6ht6zLmyb0XTRhJkzZwxN/paafVjyNx5nSrbV0PS26tNV30p4eRRdLivl026rxtxKhsw8b/qQC2dfPHjKeRPObju77fzDhh92xBHDDj10+JCOQTUnf7sZaWNXNadG+vGiEoe1DUf65YqcSj6LDw0JCYmellj1uz1ePnqXpd9bccviGT9vP6rt51/feecxS6q++cKmSy/b/+n/8UHB/H/6J8//46dO/ODPrM9Q7Ph/fTzMnzy++TB/awwsLPX4f32xo/nZEwMaUoE5MTDHYX4AAAC+GOLuyLg3M+6UfmT+bv9y57j7xsxff/CT654rW9/n4L//8PfllZeN+y/HPNBw23f/pmD+P6e03/9vo/X/s0vXjyq2zP+gWKI5P1CVXf8/vcx/dv3/OcXW/08v859d/3/h57D+/6xsILVJ/mD9fwAA4Ivgs1v/v9vl/dMXCCjI0O3y/ukLBBRk6HYZ/1IvELDF6/8/0nDQyJ+s/s5vGpddMO2d/zbkvtED9mz43SN7XTlp6sjRo0cM/peC+f81pc3/LdwPAAAAO44DJh771MZJex979f+8bac9ftL67V0P2+X7y45sm79p/cS/ue3dc/66YP6/sLT5/2e//l8odv5/Q7FAS7GFAa3/BwAAQA9VbP2/oTd+6/JXFx93/z2XTxvV2jp+9hVX77f6gOpTw0uj5zf8xYx7PyqY/y8vbf4fT7soz8sde/NhXbKmXUivafd2XfYnAwAAANAzlIempsoS8+YtjHrsp2/zxcxSoJ+UzvXkg/s9/8BXR5w4f3HV1a+V7Tbs46eun3nw8V/74asb97rkjnPP269g/r+mtPl/3u8yHj9/4J0LGsfs+uHND2+Y/HrVsws2H/8HAAAAtp9S90sAAAAAAAAAAAAAAACfvxMe/snVb09c8rU5C3+56097jX12+YZZc5pm117/6g+v/dURdz48ruD3/2FsZ7liv/+P1/2Lvy/4Ul7u2Gr36/9l7o8bfffsziUL19WFsF9uYOrlU3cKmWvzH5AbWH36oN06EpenSzz0ynGvdSTOTAdOHDzg/Y7EkalAa1wkcY90IF5V8f1+qUBcXvG5dCBuj+XpQFUm8L1+yTjK0tvqzdpkW5Wlt9WLtSH0zwlkt9XK2qSNsvQAr08FsgO8IB2IAzwpEyhP9+ruvkmvYqA2Fr21b9IrAAB2WPFbYGWYPKW9rTl+hY+3X67Iv43yliybW1htWYnNv5xZmuyuUU39S0n3Sn8X3Xyt8cpQ3TGEoQVfV3OzlHWOctvU0s2m+1KRIXe32lt5kXJpW7rpqoqPqCYZUdPEae2TKrsd+CHdZxlW0W2WoQWTndws5Z2btIRaSuhLCSMqcduU0OV4vzw0NfVK5fpqDNaHPN29Ikr9vX7uOn/FXgW5eZ58s/2pJ/75+ZX7PP7np8/+4K8mffvSeWed8e6R51T/w38ue/q/Dty5YP5fX9r8vzp3XO9nLgYwJ15Zb0T/EFpLHBEAAAB88Z1z/ivzv/votW+sb2l8bdqQa1f/6+wbL66oW3rlX7740N9uGn/1mVsbf/Pnd+zz8OQJz3zp3EOWnfD6Pgdf1njmW/f9xbxxD17V95Yfzr/jBwXz/4bS5v9xD1bmUHCyt2NNvP7/Ff1D6Ly0fn0SWBqHe1b/EPbpTLXEEskF9UfFEs1JYGncYTIolmhtya+qdwwsTwXeqMsE1qQCa2Mgs5fijpDZlXNtXQjDO1Nj80tMjyXqU4FvxkBDKtAUA82pQL8YGJkK/L5fJtCSCjwZA2FK/ra6r19mWwEAAGyJzDyrMv9uSM/zlld0l6Gsuwx9ustQ3l2G6u4yFBtFvH9vzFCZOnmlLCdTZbrWmlQtBRnixfC3uF8FGcIz+TnTBQuajucfZM83KMvP8MDJX73nqgWTB5X/6qO1S1vfu3/iiltnH73ynIf+7olJ+y666/q9C+b/zaXN//vk3yatr43z/83X/0sCj8fuXRdPHW+IgfXH5AcyOwbWxsnuVdmqWjIlMpP2q2KJkTHQkApMj4GRqUDr2Exg4W75gcxMO9v4FdnGp2RK5AQAAADgMxd3EMTdNHH+/8dlzx71WMWiu/711fF33TvnrXvu/ek999x67+jbN339uSsufveijwrm/yNLm//H9vrmNnZl7M1v+4Wwsmxzb7KBwbVJIO7HqI0/jx9YG8JOOTs4siXa+iQlqlINh8dqkl+oV6Wr+lFNssZAvD/ul4+snteRuL4mhP1z9r5k2/j36qSNmnSgsSoJ9EkHplUkgbjnJxtYVZ4EYKtl9wrGF1TmVJes+q7LFXn9fVGuCZoeXsE+0C7ydfWbq+2lOv1AZp9q1pY9bQXVsV0UvD3WeLf1xHdbvXdb7hepzDeUjzeHqkP5pLbJE2a1z4yP5P6StcB2ep5zf6VaSnobvA7nfPredq863YHm1MdHc9flun4dlsXqHj9/4J0LGsfsevPDGya/XvXsgpK7UUT8ofAzVQPqczfv9lYdMq+5Hvd50uLzpCf+G2jwtIUQNlx6wnUjq6ZfsXL0IUfu9dppp1TPfG/e39//0gPv7vuPKyYO+9qAgvl/S2nz/4rUbac/xo15Yf8QDszZuOvi5j++f/I5mBNIPiV3Lgwkh9xfrSv6yQkAAADbWnZ3R3Z/wZTMbXJCeHqeXJi/ZQvzx/0VI7vMX2q/fzTolL3u3+3ucdeeetRN//ybsf02jn9xyTErWo9qXHr0z/7TmTXzCub/rZ88/++d6qbj/47/s504/t+lHX1XdO/0A3O2ald0QXVsF47/d2lHf7c5/t8lx/8d/++K4//dcPy/Szv601bwLWm6L10hhGFjzhhce9fgJ94fuPrXTzw15d/mtk645xtX3bLnx9+uX7ygfte+BfP/6aXN/63/1/Wifdn1/1qLrf83vdj6f3Os/wcAAGxXRRaaS8/zClbvK8iQXr2vIEO3CwR2u8Sg9f+2eP2/x446cvzy0Yt/vWbvMQdc1nfu3FN3efKmF1tmvl9z2wfv7/aLA0cVzP/nlDb/jy+Hvrmt95T1/xrGFqnqmhiYbmFAAAAAdkTFdhAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADw+dr9huvGH9NcfdJvjr+0ZvT3H1p3QPU1r5x66bIJt076yu3nD5q1YsmSyj89v/Gkyd+54fDGDSsnvBDClM5yZUnxstMXr/jBqgu+8a0HT7vp7nf3nL20OlNvZeZ2z7zcsdUP60JYmPNIbUy8XddxZ3Ng3Oi7Z1d0JNbVhbBfbmDq5VN36kgsrgvhgNzA6tMH7daRuDxd4qFXjnutI3FmOnDi4AHvdySOzATK0t39h35Jd8vS3Z3XL4T+OYFsd8/tl19Vto0TMoHydBv/VJu0EQO1seiNtUkbMdAeS0zpHcKQihB6pav6WXVSVa90Vf+7OqmqV7qqy6pDGBFCqEhX9euqpKqK9MifqUqqioHd971jY2NHYlFVCENyAy+MXzS8IzEjFcg2fkpVCHt3vGTSjd9XmTRemW78hsoQvhJCqEqX2FSRlKhKl9hQEcLOOYHNG7EihNmBL4b46TMp98ELZ188dUJ7e9uM7ZioyrRVEyZPaW9rmjitfVJ1qk/FlOWkP5776cf+8sZLJnbc3jWqqX8p6YpMucrOLg+rzLt7yI7e+9ivPrmVbH4+CuqP+atC39B71oVtM5oumjBz5oyhyd9Ssw9L/vbKRJNtNbSnbKvG3EqGzDxv+pALZ188eMp5E85uO7vt/MOGH3bEEcMOPXT4kI5BNSd/t8VIF332I/1yRU4ln8X7X0JCoqclyvM+3Zp39M/xgi/6mztaGao7P6ALphW5Wco6R7ktBn3spxzxp/ma0u2IhhZMHAqyDOs+yyEFk4nNWWqSLJ1f6womh7k1lXdu0ni/PDQ19Sq2Herz7+Zu3re2YvO+mNl0paYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg/7MDBwIAAAAAQP6vjVBVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWFHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAsQAAAACAMH/rMHo2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuBQAAP//MCwiLA==")
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x180)
ioctl$FS_IOC_SETFLAGS(r0, 0x41009432, &(0x7f00000001c0)=0x80ff)

851.733779ms ago: executing program 0 (id=16907):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000002d80)={0x0, 0x0, &(0x7f0000002d40)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000000203010200000000000000000000000009000200000000470200000008000340000000000800010001"], 0x30}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x20, 0x2, 0x3, 0x801, 0x0, 0x0, {0xa}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x9, 0x2}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40049d1}, 0x9bd2e45169aa59f0)

844.051044ms ago: executing program 6 (id=16908):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xeffffb, 0x0, 0xfffffffd, 0x1}, 0x10)
write(r0, &(0x7f0000000040)="240000001a005f0214f9f407000904ff800000002000000000000034f900080004000100", 0x24)

754.816765ms ago: executing program 4 (id=16909):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x3, &(0x7f0000000040), 0x4)
connect$llc(r0, &(0x7f00000004c0)={0x1a, 0x1, 0xc0, 0x1, 0x3f, 0x0, @remote}, 0x10)

656.451949ms ago: executing program 2 (id=16910):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000940)={[{@barrier_val}, {@resuid}, {@block_validity}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000000)=ANY=[@ANYRESHEX])

534.449106ms ago: executing program 4 (id=16911):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80081, 0x36)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)

521.272899ms ago: executing program 0 (id=16912):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x11, 0x4, 0x4, 0x8}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0x3100, 0x3100, &(0x7f0000000000), 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

232.649075ms ago: executing program 6 (id=16913):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x10}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x4000)

201.249896ms ago: executing program 0 (id=16914):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x3)
ioctl$TCFLSH(r0, 0x540b, 0x2)

143.282188ms ago: executing program 2 (id=16915):
syz_emit_ethernet(0x3e, &(0x7f0000000100)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x5, 0x4, 0x1, 0x3, 0x7, 0x65, 0x1, 0xa3, 0x1, 0xd, @loopback, @loopback}}}}}}, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x5)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="080100000000000029000000020000"], 0x108}}], 0x2, 0xc040)

71.950438ms ago: executing program 4 (id=16916):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00000000c0)=0x2009, 0x4)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)

0s ago: executing program 0 (id=16917):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="b9da06", 0x3)

kernel console output (not intermixed with test programs):

 ep0 maxpacket: 16
[ 1499.536758][ T6004] usb 8-1: config 0 has an invalid interface number: 214 but max is 0
[ 1499.567152][ T6004] usb 8-1: config 0 has no interface number 0
[ 1499.606970][ T6004] usb 8-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[ 1499.656038][ T6004] usb 8-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1499.666106][ T6004] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1499.674264][ T6004] usb 8-1: Product: syz
[ 1499.685313][ T3050] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1499.699992][ T6004] usb 8-1: Manufacturer: syz
[ 1499.704682][ T6004] usb 8-1: SerialNumber: syz
[ 1499.752318][ T6004] usb 8-1: config 0 descriptor??
[ 1499.863440][ T3050] usb 3-1: too many endpoints for config 0 interface 0 altsetting 2: 255, using maximum allowed: 30
[ 1499.883375][ T3050] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1499.919610][ T3050] usb 3-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1499.944550][ T3050] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1499.965313][ T3050] usb 3-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[ 1499.995158][ T3050] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1500.009359][ T3050] usb 3-1: config 0 descriptor??
[ 1500.048705][T23601] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1500.081588][  T114] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[ 1500.223119][T23601] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1500.249609][T23601] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[ 1500.272382][  T114] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1500.291839][T23601] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[ 1500.303001][  T114] usb 1-1: config 0 has no interface number 0
[ 1500.313883][  T114] usb 1-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 1500.329582][  T114] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1500.350805][T23601] usb 5-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[ 1500.364984][T23601] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1500.374639][  T114] usb 1-1: config 0 descriptor??
[ 1500.379842][T23601] usb 5-1: Product: syz
[ 1500.387749][T23601] usb 5-1: Manufacturer: syz
[ 1500.393684][T23601] usb 5-1: SerialNumber: syz
[ 1500.404207][  T114] usb 1-1: selecting invalid altsetting 1
[ 1500.417183][ T6004] usbtouchscreen 8-1:0.214: probe with driver usbtouchscreen failed with error -71
[ 1500.419383][T23601] usb 5-1: config 0 descriptor??
[ 1500.446817][  T114] dvb_ttusb_budget: ttusb_init_controller: error
[ 1500.453184][  T114] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 1500.470967][ T6004] usb 8-1: USB disconnect, device number 19
[ 1500.472877][ T3050] uclogic 0003:28BD:0071.001B: interface is invalid, ignoring
[ 1500.484766][T12623] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[ 1500.493531][T12623] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[ 1500.514336][T23601] usb 5-1: ucan: probing device on interface #0
[ 1500.680048][  T114] DVB: Unable to find symbol cx22700_attach()
[ 1500.695174][ T3050] usb 3-1: USB disconnect, device number 9
[ 1500.798987][  T114] DVB: Unable to find symbol tda10046_attach()
[ 1500.805424][  T114] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 1500.816798][  T114] usb 1-1: USB disconnect, device number 8
[ 1500.956646][T12649] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16144'.
[ 1500.982546][T12641] loop6: detected capacity change from 0 to 32768
[ 1501.033722][T12641] ocfs2: Slot 0 on device (7,6) was already allocated to this node!
[ 1501.076423][T12641] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1501.129763][T12653] loop7: detected capacity change from 0 to 512
[ 1501.169382][   T30] audit: type=1800 audit(1417.457:3250): pid=12641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.16141" name="file0" dev="loop6" ino=17058 res=0 errno=0
[ 1501.193989][T23601] ucan 5-1:0.0: probe with driver ucan failed with error -71
[ 1501.219308][T12653] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 1501.257262][T23601] usb 5-1: USB disconnect, device number 10
[ 1501.259231][T12653] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1501.357388][T12653] Quota error (device loop7): find_block_dqentry: Quota for id 0 referenced but not present
[ 1501.392805][ T9275] ocfs2: Unmounting device (7,6) on (node local)
[ 1501.438515][T12653] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[ 1501.448813][T12653] EXT4-fs error (device loop7): ext4_acquire_dquot:6945: comm syz.7.16145: Failed to acquire dquot type 1
[ 1501.539461][T12653] EXT4-fs (loop7): Remounting filesystem read-only
[ 1501.567160][T12661] loop2: detected capacity change from 0 to 256
[ 1501.573610][T12653] EXT4-fs (loop7): 1 truncate cleaned up
[ 1501.622548][T12653] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1501.676193][T12661] FAT-fs (loop2): Directory bread(block 64) failed
[ 1501.716454][T12661] FAT-fs (loop2): Directory bread(block 65) failed
[ 1501.737908][T12661] FAT-fs (loop2): Directory bread(block 66) failed
[ 1501.744437][T12661] FAT-fs (loop2): Directory bread(block 67) failed
[ 1501.770322][T12661] FAT-fs (loop2): Directory bread(block 68) failed
[ 1501.791171][ T5911] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[ 1501.801012][T30537] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1501.812603][T12661] FAT-fs (loop2): Directory bread(block 69) failed
[ 1501.819217][T12661] FAT-fs (loop2): Directory bread(block 70) failed
[ 1501.855385][T12661] FAT-fs (loop2): Directory bread(block 71) failed
[ 1501.862025][T12661] FAT-fs (loop2): Directory bread(block 72) failed
[ 1501.919518][T12661] FAT-fs (loop2): Directory bread(block 73) failed
[ 1501.973915][ T5911] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1501.981420][ T5911] usb 1-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[ 1502.008662][   T30] audit: type=1800 audit(1418.243:3251): pid=12661 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.16148" name="file1" dev="loop2" ino=1048945 res=0 errno=0
[ 1502.037402][ T5911] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1502.058724][T12672] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16154'.
[ 1502.096972][ T5911] usb 1-1: config 0 descriptor??
[ 1502.428318][T12682] loop2: detected capacity change from 0 to 64
[ 1502.463662][T12682] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[ 1502.489619][T12684] loop7: detected capacity change from 0 to 512
[ 1502.555066][T12684] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -13
[ 1502.630313][T12684] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #13: comm syz.7.16160: iget: bad i_size value: 12154757448730
[ 1502.731755][T12684] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.16160: couldn't read orphan inode 13 (err -117)
[ 1502.760584][ T5911] video4linux radio48: keene_cmd_set failed (-71)
[ 1502.800065][ T5911] radio-keene 1-1:0.0: V4L2 device registered as radio48
[ 1502.809675][T12684] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1502.873011][ T5911] usb 1-1: USB disconnect, device number 9
[ 1502.910970][T12695] loop1: detected capacity change from 0 to 256
[ 1502.936125][T12695] FAT-fs (loop1): Directory bread(block 1285) failed
[ 1503.021974][T12695] FAT-fs (loop1): FAT read failed (blocknr 1281)
[ 1503.119134][T30537] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1503.256618][T12701] loop4: detected capacity change from 0 to 128
[ 1503.270464][T12704] loop2: detected capacity change from 0 to 128
[ 1503.290735][T12701] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1503.338009][T12704] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1503.367960][T12701] hpfs: filesystem error: improperly stopped
[ 1503.409662][T12704] hpfs: filesystem error: improperly stopped
[ 1503.409691][T12704] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1503.409713][T12704] hpfs: You really don't want any checks? You are crazy...
[ 1503.410064][T12704] hpfs: hpfs_map_sector(): read error
[ 1503.410081][T12704] hpfs: code page support is disabled
[ 1503.410094][T12701] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1503.410117][T12701] hpfs: You really don't want any checks? You are crazy...
[ 1503.410196][T12704] hpfs: hpfs_map_4sectors(): unaligned read
[ 1503.410273][T12704] hpfs: hpfs_map_4sectors(): unaligned read
[ 1503.410287][T12704] hpfs: filesystem error: unable to find root dir
[ 1503.410461][T12701] hpfs: hpfs_map_sector(): read error
[ 1503.410475][T12701] hpfs: code page support is disabled
[ 1503.410570][T12701] hpfs: hpfs_map_4sectors(): unaligned read
[ 1503.410636][T12701] hpfs: hpfs_map_4sectors(): unaligned read
[ 1503.410650][T12701] hpfs: filesystem error: unable to find root dir
[ 1503.533344][T12674] loop6: detected capacity change from 0 to 32768
[ 1503.541295][T12674] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.16155 (12674)
[ 1503.578021][T12674] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1503.578141][T12674] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[ 1503.597606][T12711] loop7: detected capacity change from 0 to 128
[ 1503.626168][T12711] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1503.626233][T12711] hpfs: filesystem error: improperly stopped
[ 1503.626254][T12711] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1503.626276][T12711] hpfs: You really don't want any checks? You are crazy...
[ 1503.626624][T12711] hpfs: hpfs_map_sector(): read error
[ 1503.626639][T12711] hpfs: code page support is disabled
[ 1503.626987][T12711] hpfs: hpfs_map_4sectors(): unaligned read
[ 1503.627067][T12711] hpfs: hpfs_map_4sectors(): unaligned read
[ 1503.627080][T12711] hpfs: filesystem error: unable to find root dir
[ 1503.791080][T12674] BTRFS info (device loop6): turning on flush-on-commit
[ 1503.791113][T12674] BTRFS info (device loop6): turning on async discard
[ 1503.791134][T12674] BTRFS info (device loop6): enabling free space tree
[ 1503.891192][T12674] BTRFS info (device loop6): balance: start 
[ 1503.891336][T12674] BTRFS info (device loop6): balance: ended with status: 0
[ 1504.168156][ T9275] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1504.766589][T12747] loop6: detected capacity change from 0 to 128
[ 1505.070359][T12710] loop0: detected capacity change from 0 to 40427
[ 1505.087837][T12710] F2FS-fs (loop0): build fault injection rate: 14
[ 1505.139361][T12710] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[ 1505.215827][T12710] F2FS-fs (loop0): invalid crc value
[ 1505.225514][    C1] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 1505.276680][    C0] F2FS-fs (loop0): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[ 1505.374226][T12736] loop7: detected capacity change from 0 to 32768
[ 1505.431548][T12736] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1505.643593][T12759] loop2: detected capacity change from 0 to 32768
[ 1505.660791][T12759] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.16184 (12759)
[ 1505.686091][T12759] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1505.705852][T12760] loop6: detected capacity change from 0 to 4096
[ 1505.722886][T12759] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[ 1505.729952][T12710] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1505.732506][T12759] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1505.762534][T12736] XFS (loop7): Ending clean mount
[ 1505.809474][T12710] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[ 1505.820481][T12736] XFS (loop7): Quotacheck needed: Please wait.
[ 1505.839737][T12710] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1505.867179][ T5911] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1505.967764][T12759] BTRFS info (device loop2): rebuilding free space tree
[ 1505.999787][T12736] XFS (loop7): Quotacheck: Done.
[ 1506.066547][T12759] BTRFS info (device loop2): disabling free space tree
[ 1506.078670][T12759] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1506.096449][ T5911] usb 2-1: New USB device found, idVendor=0856, idProduct=ac31, bcdDevice=93.1e
[ 1506.105125][T30537] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1506.114323][ T5911] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1506.131209][T12759] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1506.134280][ T5911] usb 2-1: Product: syz
[ 1506.210510][ T5911] usb 2-1: Manufacturer: syz
[ 1506.217633][ T5911] usb 2-1: SerialNumber: syz
[ 1506.218807][T12759] BTRFS info (device loop2): enabling ssd optimizations
[ 1506.250431][ T5911] usb 2-1: config 0 descriptor??
[ 1506.294804][T12759] BTRFS info (device loop2): enabling disk space caching
[ 1506.345568][T12759] BTRFS info (device loop2): force clearing of disk cache
[ 1506.378725][T12759] BTRFS info (device loop2): enabling auto defrag
[ 1506.406941][T12759] BTRFS info (device loop2): max_inline set to 0
[ 1506.514758][T12791] vlan2: entered promiscuous mode
[ 1506.548560][T12791] bridge0: entered promiscuous mode
[ 1506.732867][T23578] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[ 1506.785383][ T5911] mos7840 2-1:0.0: required endpoints missing
[ 1506.854899][ T5911] usb 2-1: USB disconnect, device number 19
[ 1506.885339][ T5830] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1506.997664][ T5832] Bluetooth: hci3: command 0x0405 tx timeout
[ 1507.143651][ T5911] IPVS: starting estimator thread 0...
[ 1507.215867][T12805] loop6: detected capacity change from 0 to 64
[ 1507.222659][T12804] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1507.229110][T12804] comedi comedi3: 8255: I/O port conflict (0x2,4)
[ 1507.263994][T12803] IPVS: using max 27 ests per chain, 64800 per kthread
[ 1507.294695][T12804] comedi comedi3: 8255: I/O port conflict (0x401,4)
[ 1507.325215][T12804] comedi comedi3: 8255: I/O port conflict (0x1,4)
[ 1507.336930][T12804] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[ 1507.371718][T12804] comedi comedi3: 8255: I/O port conflict (0x5,4)
[ 1507.417085][T12804] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[ 1507.693938][T12815] netlink: 44 bytes leftover after parsing attributes in process `syz.7.16199'.
[ 1507.756588][T12815] netlink: 8 bytes leftover after parsing attributes in process `syz.7.16199'.
[ 1507.775934][T12815] netlink: 48 bytes leftover after parsing attributes in process `syz.7.16199'.
[ 1508.521121][T12841] loop4: detected capacity change from 0 to 64
[ 1508.579453][T12813] loop0: detected capacity change from 0 to 32768
[ 1508.699860][T12813] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[ 1509.076827][ T4739] ocfs2: Unmounting device (7,0) on (node local)
[ 1509.164232][ T5911] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[ 1509.218461][T12837] loop1: detected capacity change from 0 to 32768
[ 1509.260902][T12860] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16215'.
[ 1509.282225][T12861] loop6: detected capacity change from 0 to 512
[ 1509.288609][   T24] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[ 1509.342293][ T5911] usb 3-1: Using ep0 maxpacket: 16
[ 1509.349860][T12861] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0002]
[ 1509.361771][ T5911] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1509.385400][T12861] System zones: 1-12
[ 1509.390949][T12837] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1509.394934][T12861] EXT4-fs error (device loop6): dx_probe:791: inode #2: comm syz.6.16218: Directory hole found for htree index block 0
[ 1509.412208][ T5911] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1509.422219][ T5911] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1509.437855][ T5911] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1509.448694][T12861] EXT4-fs (loop6): Remounting filesystem read-only
[ 1509.455234][T12861] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -117
[ 1509.467033][   T24] usb 5-1: Using ep0 maxpacket: 32
[ 1509.487722][ T5911] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1509.499507][T12861] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[ 1509.504639][   T24] usb 5-1: config 2 has an invalid interface number: 121 but max is 0
[ 1509.528525][T12861] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1509.559375][   T24] usb 5-1: config 2 has no interface number 0
[ 1509.586283][   T24] usb 5-1: config 2 interface 121 altsetting 35 bulk endpoint 0xD has invalid maxpacket 32
[ 1509.597642][ T5911] usb 3-1: config 0 descriptor??
[ 1509.606904][T12837] XFS (loop1): Ending clean mount
[ 1509.617035][   T24] usb 5-1: config 2 interface 121 altsetting 35 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1509.627390][   T24] usb 5-1: config 2 interface 121 altsetting 35 endpoint 0xC has invalid maxpacket 1024, setting to 64
[ 1509.660358][   T24] usb 5-1: config 2 interface 121 has no altsetting 0
[ 1509.673325][   T24] usb 5-1: New USB device found, idVendor=1bc7, idProduct=3000, bcdDevice=1a.9c
[ 1509.689184][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1509.717640][   T24] usb 5-1: Product: syz
[ 1509.721961][   T24] usb 5-1: Manufacturer: syz
[ 1509.726769][   T24] usb 5-1: SerialNumber: syz
[ 1509.740864][T12853] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1509.748983][T12853] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1509.843711][ T7669] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1509.865527][ T9275] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1509.931177][T12877] loop0: detected capacity change from 0 to 1024
[ 1510.045366][   T24] option 5-1:2.121: GSM modem (1-port) converter detected
[ 1510.084025][ T5911] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.001C/input/input105
[ 1510.132499][T23578] hfsplus: b-tree write err: -5, ino 4
[ 1510.138307][   T24] usb 5-1: USB disconnect, device number 11
[ 1510.194925][ T5911] microsoft 0003:045E:07DA.001C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[ 1510.249414][   T24] option 5-1:2.121: device disconnected
[ 1510.358173][T23601] usb 3-1: USB disconnect, device number 10
[ 1510.528029][T12882] fido_id[12882]: Failed to read report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.001C/report_descriptor': No such device
[ 1510.743933][T12867] loop7: detected capacity change from 0 to 32768
[ 1510.792738][T12867] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.16219 (12867)
[ 1510.793692][T12888] loop1: detected capacity change from 0 to 256
[ 1510.887205][T12867] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1510.927353][T12892] sp0: Synchronizing with TNC
[ 1510.949647][T12867] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[ 1511.028175][T12890] [U] è
[ 1511.210067][T12867] BTRFS info (device loop7): enabling ssd optimizations
[ 1511.249707][T12867] BTRFS info (device loop7): turning on async discard
[ 1511.291571][T12867] BTRFS info (device loop7): enabling free space tree
[ 1511.551996][T30537] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1512.209854][T12891] loop4: detected capacity change from 0 to 40427
[ 1512.262784][T12938] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[ 1512.677100][T12950] loop7: detected capacity change from 0 to 128
[ 1512.710767][T12891] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1512.739928][T12950] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1512.770625][T12891] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1512.838849][T12950] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1512.927404][T12952] loop0: detected capacity change from 0 to 4096
[ 1512.981988][ T5826] syz-executor: attempt to access beyond end of device
[ 1512.981988][ T5826] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1513.030526][ T5826] CPU: 1 UID: 0 PID: 5826 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[ 1513.030559][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1513.030574][ T5826] Call Trace:
[ 1513.030584][ T5826]  <TASK>
[ 1513.030595][ T5826]  dump_stack_lvl+0x189/0x250
[ 1513.030639][ T5826]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1513.030670][ T5826]  ? __pfx_queue_work_on+0x10/0x10
[ 1513.030697][ T5826]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1513.030730][ T5826]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1513.030771][ T5826]  f2fs_handle_critical_error+0x37c/0x540
[ 1513.030817][ T5826]  f2fs_write_end_io+0x886/0xb60
[ 1513.030860][ T5826]  __submit_merged_bio+0x27a/0x6a0
[ 1513.030907][ T5826]  __submit_merged_write_cond+0x255/0x530
[ 1513.030947][ T5826]  f2fs_write_data_pages+0x261d/0x3000
[ 1513.031005][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1513.031071][ T5826]  ? __mod_zone_page_state+0xd7/0x140
[ 1513.031115][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031141][ T5826]  ? folios_put_refs+0x58b/0x670
[ 1513.031180][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031204][ T5826]  ? __lock_acquire+0xab9/0xd20
[ 1513.031237][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031262][ T5826]  ? do_raw_spin_lock+0x121/0x290
[ 1513.031300][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031329][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031353][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[ 1513.031385][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1513.031408][ T5826]  do_writepages+0x32e/0x550
[ 1513.031443][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031472][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031497][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[ 1513.031532][ T5826]  filemap_fdatawrite+0x199/0x240
[ 1513.031564][ T5826]  ? __pfx_filemap_fdatawrite+0x10/0x10
[ 1513.031636][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031667][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[ 1513.031702][ T5826]  f2fs_sync_dirty_inodes+0x31f/0x830
[ 1513.031742][ T5826]  f2fs_write_checkpoint+0x93e/0x2440
[ 1513.031765][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031789][ T5826]  ? __lock_acquire+0xab9/0xd20
[ 1513.031840][ T5826]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[ 1513.031930][ T5826]  kill_f2fs_super+0x2cc/0x6d0
[ 1513.031955][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.031986][ T5826]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1513.032028][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.032052][ T5826]  ? shrinker_free+0x2ce/0x3e0
[ 1513.032081][ T5826]  deactivate_locked_super+0xbc/0x130
[ 1513.032115][ T5826]  cleanup_mnt+0x425/0x4c0
[ 1513.032141][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.032166][ T5826]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1513.032201][ T5826]  task_work_run+0x1d4/0x260
[ 1513.032238][ T5826]  ? __pfx_task_work_run+0x10/0x10
[ 1513.032269][ T5826]  ? __x64_sys_umount+0x122/0x160
[ 1513.032304][ T5826]  ? exit_to_user_mode_loop+0x40/0x130
[ 1513.032331][ T5826]  exit_to_user_mode_loop+0xe9/0x130
[ 1513.032353][ T5826]  do_syscall_64+0x2bd/0xfa0
[ 1513.032384][ T5826]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1513.032413][ T5826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1513.032434][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1513.032458][ T5826]  ? exc_page_fault+0xab/0x100
[ 1513.032490][ T5826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1513.032512][ T5826] RIP: 0033:0x7f95f09909f7
[ 1513.032532][ T5826] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1513.032553][ T5826] RSP: 002b:00007ffe8df0e388 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1513.032576][ T5826] RAX: 0000000000000000 RBX: 00007f95f0a11d7d RCX: 00007f95f09909f7
[ 1513.032592][ T5826] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe8df0e440
[ 1513.032607][ T5826] RBP: 00007ffe8df0e440 R08: 0000000000000000 R09: 0000000000000000
[ 1513.032621][ T5826] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe8df0f4d0
[ 1513.032636][ T5826] R13: 00007f95f0a11d7d R14: 000000000015cba9 R15: 00007ffe8df0f510
[ 1513.032673][ T5826]  </TASK>
[ 1513.036975][ T5826] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 1513.215668][T12928] loop1: detected capacity change from 0 to 32768
[ 1513.456398][ T3484] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1513.470496][T12952] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[ 1513.486156][T12957] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1513.488165][T12952] NILFS (loop0): mounting fs with errors
[ 1513.510785][T12928] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.16239 (12928)
[ 1513.598194][T12928] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1513.618194][T12952] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=2)
[ 1513.632001][T12961] netlink: 124 bytes leftover after parsing attributes in process `syz.7.16251'.
[ 1513.649821][T12928] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[ 1513.663680][T12952] Remounting filesystem read-only
[ 1513.683141][T12952] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=2)
[ 1513.696428][T12961] nbd: couldn't find a device at index -1
[ 1513.856107][T12928] BTRFS info (device loop1): enabling ssd optimizations
[ 1513.867660][ T3050] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[ 1513.924989][T12928] BTRFS info (device loop1): turning on async discard
[ 1513.932752][T12928] BTRFS info (device loop1): enabling free space tree
[ 1514.035326][T12980] loop0: detected capacity change from 0 to 64
[ 1514.085416][ T3050] usb 3-1: Using ep0 maxpacket: 32
[ 1514.103069][ T3050] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1514.126389][T12955] loop6: detected capacity change from 0 to 32768
[ 1514.151389][ T3050] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1514.178836][T12955] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.16249 (12955)
[ 1514.207372][ T3050] usb 3-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00
[ 1514.235616][ T7669] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1514.267798][ T3050] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1514.276660][T12955] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1514.342016][T12955] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[ 1514.370132][ T3050] usb 3-1: config 0 descriptor??
[ 1514.577683][T12955] BTRFS info (device loop6): enabling ssd optimizations
[ 1514.633897][T12955] BTRFS info (device loop6): turning on async discard
[ 1514.686636][T12955] BTRFS info (device loop6): enabling free space tree
[ 1514.889737][ T3050] corsair 0003:1B1C:1B3E.001D: unknown main item tag 0x2
[ 1514.913891][ T3050] corsair 0003:1B1C:1B3E.001D: failed to start in urb: -90
[ 1514.945572][ T3050] corsair 0003:1B1C:1B3E.001D: hidraw0: USB HID v0.00 Device [HID 1b1c:1b3e] on usb-dummy_hcd.2-1/input0
[ 1515.093090][ T3050] usb 3-1: USB disconnect, device number 11
[ 1515.328231][ T9275] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1515.344894][T13007] fido_id[13007]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[ 1515.731357][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1515.939998][T13022] loop0: detected capacity change from 0 to 2048
[ 1515.993033][T13022] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1516.024202][T13003] loop4: detected capacity change from 0 to 32768
[ 1516.078683][T13003] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16250 (13003)
[ 1516.206005][T13003] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1516.250369][T13003] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[ 1516.487350][T13045] loop0: detected capacity change from 0 to 256
[ 1516.559428][T13045] exfat: Deprecated parameter 'utf8'
[ 1516.564806][T13045] exfat: Deprecated parameter 'namecase'
[ 1516.617963][T13045] exfat: Deprecated parameter 'namecase'
[ 1516.637543][T13045] exfat: Deprecated parameter 'utf8'
[ 1516.681853][T13045] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[ 1516.782206][T13003] BTRFS info (device loop4): rebuilding free space tree
[ 1516.855304][T13003] BTRFS info (device loop4): allowing degraded mounts
[ 1516.862138][T13003] BTRFS info (device loop4): enabling ssd optimizations
[ 1516.950536][T13003] BTRFS info (device loop4): enabling free space tree
[ 1516.960546][T13003] BTRFS info (device loop4): force clearing of disk cache
[ 1516.997252][T13003] BTRFS info (device loop4): use zstd compression, level 3
[ 1517.027258][T13003] BTRFS info (device loop4): max_inline set to 0
[ 1517.062621][T13057] netlink: 60 bytes leftover after parsing attributes in process `syz.6.16272'.
[ 1517.140673][T13057] netlink: 60 bytes leftover after parsing attributes in process `syz.6.16272'.
[ 1517.165507][   T30] audit: type=1800 audit(1432.414:3252): pid=13003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16250" name="bus" dev="loop4" ino=263 res=0 errno=0
[ 1517.343535][ T5826] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1517.383344][T13018] loop7: detected capacity change from 0 to 32768
[ 1517.490926][T13018] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.16262 (13018)
[ 1517.521346][T13018] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1517.567715][T13018] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[ 1517.909090][T13018] BTRFS info (device loop7): turning on flush-on-commit
[ 1517.936891][T13018] BTRFS info (device loop7): turning on async discard
[ 1517.945337][T13018] BTRFS info (device loop7): enabling free space tree
[ 1518.106629][T13018] BTRFS info (device loop7): balance: start 
[ 1518.124924][T13018] BTRFS info (device loop7): balance: ended with status: 0
[ 1518.408185][T30537] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1518.447558][  T114] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1518.639980][  T114] usb 7-1: Using ep0 maxpacket: 32
[ 1518.648116][  T114] usb 7-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[ 1518.660938][  T114] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1518.685128][  T114] usb 7-1: config 0 descriptor??
[ 1519.097462][   T30] audit: type=1326 audit(1434.229:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.123745][   T30] audit: type=1326 audit(1434.229:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.173490][  T114] logitech 0003:046D:C29C.001E: reserved main item tag 0xd
[ 1519.197502][  T114] logitech 0003:046D:C29C.001E: reserved main item tag 0xd
[ 1519.233866][   T30] audit: type=1326 audit(1434.257:3255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.259430][  T114] logitech 0003:046D:C29C.001E: hidraw0: USB HID vb4.34 Device [HID 046d:c29c] on usb-dummy_hcd.6-1/input0
[ 1519.304780][   T30] audit: type=1326 audit(1434.257:3256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.334916][   T30] audit: type=1326 audit(1434.257:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.357492][   T30] audit: type=1326 audit(1434.276:3258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.395080][  T114] logitech 0003:046D:C29C.001E: no inputs found
[ 1519.459262][   T30] audit: type=1326 audit(1434.276:3259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.1.16293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f838f6c9 code=0x7ffc0000
[ 1519.537894][  T114] usb 7-1: USB disconnect, device number 16
[ 1519.706689][T13120] fido_id[13120]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[ 1519.935889][T13132] qnx6: unable to read the first superblock
[ 1520.003965][ T6004] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1520.224038][ T6004] usb 2-1: too many endpoints for config 0 interface 0 altsetting 2: 255, using maximum allowed: 30
[ 1520.253123][T13140] loop0: detected capacity change from 0 to 256
[ 1520.261757][ T6004] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1520.282964][ T6004] usb 2-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1520.306988][T13142] loop6: detected capacity change from 0 to 64
[ 1520.319177][T13140] exfat: Deprecated parameter 'namecase'
[ 1520.324884][T13140] exfat: Deprecated parameter 'utf8'
[ 1520.350057][ T6004] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1520.367623][ T6004] usb 2-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00
[ 1520.395673][T13140] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x3f800a9b, utbl_chksum : 0xe619d30d)
[ 1520.403569][ T6004] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1520.490497][ T6004] usb 2-1: config 0 descriptor??
[ 1520.496969][T13136] loop2: detected capacity change from 0 to 4096
[ 1520.528055][T13146] Bluetooth: MGMT ver 1.23
[ 1520.573588][T13136] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[ 1520.585703][   T24] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[ 1520.719866][T13136] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[ 1520.781944][   T24] usb 5-1: Using ep0 maxpacket: 32
[ 1520.845644][   T24] usb 5-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[ 1520.855889][   T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1520.870303][T13136] ntfs3(loop2): ino=1e, mi_enum_attr
[ 1520.887686][T13150] loop0: detected capacity change from 0 to 64
[ 1520.900691][   T24] usb 5-1: Product: syz
[ 1520.904887][   T24] usb 5-1: Manufacturer: syz
[ 1520.929728][   T24] usb 5-1: SerialNumber: syz
[ 1520.961486][ T6004] uclogic 0003:28BD:0071.001F: interface is invalid, ignoring
[ 1520.982127][   T24] usb 5-1: config 0 descriptor??
[ 1521.118492][ T5192] udevd[5192]: worker [5889] terminated by signal 33 (Unknown signal 33)
[ 1521.296201][ T3050] usb 2-1: USB disconnect, device number 20
[ 1521.341103][T13158] cifs: Bad value for 'cache'
[ 1521.472646][T23601] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[ 1521.571012][T13162] loop7: detected capacity change from 0 to 2048
[ 1521.592943][T13162] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1521.648148][ T5192] udevd[5192]: worker [5889] failed while handling '/devices/virtual/block/loop0'
[ 1521.673692][T23601] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1521.702015][T23601] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1521.707111][T13154] loop6: detected capacity change from 0 to 65536
[ 1521.721554][   T24] airspy 5-1:0.0: Board ID: 00
[ 1521.722685][T23601] usb 3-1: config 1 has no interface number 0
[ 1521.726764][   T24] airspy 5-1:0.0: Firmware version: 
[ 1521.732905][T23601] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1521.784941][T13154] XFS (loop6): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1521.793717][T23601] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1521.793751][T23601] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1521.793776][T23601] usb 3-1: Product: syz
[ 1521.793795][T23601] usb 3-1: Manufacturer: syz
[ 1521.793814][T23601] usb 3-1: SerialNumber: syz
[ 1521.807725][T23601] usb 3-1: selecting invalid altsetting 1
[ 1521.928717][T13154] XFS (loop6): Ending clean mount
[ 1521.936609][T13154] XFS (loop6): Quotacheck needed: Please wait.
[ 1521.966235][   T24] airspy 5-1:0.0: usb_control_msg() failed -71 request 11
[ 1521.976260][T23578] XFS (loop6): Metadata CRC error detected at xfs_agfl_read_verify+0x126/0x1f0, xfs_agfl block 0x3 
[ 1522.054787][T23578] XFS (loop6): Unmount and run xfs_repair
[ 1522.061196][   T24] airspy 5-1:0.0: Registered as swradio24
[ 1522.082225][T23578] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1522.103453][   T24] airspy 5-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[ 1522.122555][T23578] 00000000: 58 41 46 4c 00 00 00 00 d6 f6 9d bd 8c 5d 46 be  XAFL.........]F.
[ 1522.169782][   T24] usb 5-1: USB disconnect, device number 12
[ 1522.179527][T23578] 00000010: b8 8e 92 c0 ae 88 ce b2 00 00 00 00 00 00 00 00  ................
[ 1522.237183][T23578] 00000020: 35 fc 5c 25 ff 00 ff ff 00 00 00 05 00 00 00 06  5.\%............
[ 1522.263194][T23578] 00000030: 00 00 00 07 00 00 00 08 ff ff ff ff ff ff ff ff  ................
[ 1522.294534][T23578] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1522.304066][T23578] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1522.317465][T23578] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1522.327022][T23578] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[ 1522.336540][T23578] XFS (loop6): metadata I/O error in "xfs_alloc_read_agfl+0x202/0x410" at daddr 0x3 len 1 error 74
[ 1522.389160][T13154] XFS (loop6): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[ 1522.456820][T13182] loop0: detected capacity change from 0 to 4096
[ 1522.509872][T13182] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1522.531950][T23601] cdc_ncm 3-1:1.1: SET_NTB_FORMAT failed
[ 1522.554810][T23601] usb 3-1: selecting invalid altsetting 1
[ 1522.571512][T23601] cdc_ncm 3-1:1.1: bind() failure
[ 1522.678316][ T9275] XFS (loop6): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1522.730513][T23601] usb 3-1: USB disconnect, device number 12
[ 1522.742587][ T9275] XFS (loop6): Uncorrected metadata errors detected; please run xfs_repair.
[ 1522.801873][T13182] ntfs3(loop0): ino=19, mi_enum_attr
[ 1522.807231][T13182] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1522.920630][T13190] loop1: detected capacity change from 0 to 256
[ 1523.050473][T13190] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xda2119e0, utbl_chksum : 0xe619d30d)
[ 1523.104583][T13195] loop7: detected capacity change from 0 to 256
[ 1523.125567][T13190] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 7)
[ 1523.155121][T13195] exfat: Deprecated parameter 'utf8'
[ 1523.196607][T13195] exfat: Deprecated parameter 'utf8'
[ 1523.202053][T13195] exfat: Deprecated parameter 'utf8'
[ 1523.327063][T13195] exFAT-fs (loop7): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[ 1523.424425][T13202] loop0: detected capacity change from 0 to 512
[ 1523.466257][T13195] exFAT-fs (loop7): error, exfat_zeroed_cluster: out of range(sect:224 len:8)
[ 1523.478071][T13204] loop2: detected capacity change from 0 to 512
[ 1523.519542][T13195] exFAT-fs (loop7): Filesystem has been set read-only
[ 1523.560392][T13202] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1523.585861][T13206] exfat: Deprecated parameter 'utf8'
[ 1523.596245][T13204] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1523.625689][T13206] exfat: Deprecated parameter 'utf8'
[ 1523.631153][T13206] exfat: Deprecated parameter 'utf8'
[ 1523.707050][T13202] EXT4-fs (loop0): 1 truncate cleaned up
[ 1523.759963][T13204] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[ 1523.789333][T13204] System zones: 0-1, 15-15, 18-18, 34-34
[ 1523.805069][T13202] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1523.813038][T13204] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1523.895792][T13204] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[ 1523.965349][T13204] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1523.980143][T13204] EXT4-fs (loop2): Cannot turn on quotas: error -22
[ 1524.011767][T13204] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.16328: bg 0: block 40: padding at end of block bitmap is not set
[ 1524.079453][T13218] nbd: socks must be embedded in a SOCK_ITEM attr
[ 1524.119322][T13204] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[ 1524.228441][T13204] EXT4-fs (loop2): 1 truncate cleaned up
[ 1524.258412][T13222] [U] VÔ3¸ÂFÙ¾"SÇÁ/ÉÊ4:ÃXTZ“W¡T‘’LWµ«=
[ 1524.272258][ T4739] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1524.274343][T13204] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1524.339596][T13222] [U] J"—E:ÀÆ"


[ 1524.343197][T13222] [U] 
[ 1524.391400][T13204] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.16328: bad symlink.
[ 1524.576850][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1524.784349][T13233] ptrace attach of "./syz-executor exec"[5830] was attempted by ""[13233]
[ 1525.045752][T13242] loop1: detected capacity change from 0 to 512
[ 1525.080736][T13213] loop4: detected capacity change from 0 to 32768
[ 1525.109186][T13246] No control pipe specified
[ 1525.114645][T13242] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1525.140502][T13242] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1525.215311][T13242] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #16: comm syz.1.16343: corrupted inode contents
[ 1525.276456][T13242] EXT4-fs (loop1): Remounting filesystem read-only
[ 1525.299286][T13242] EXT4-fs (loop1): 1 truncate cleaned up
[ 1525.321559][ T3484] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[ 1525.365463][ T3484] Quota error (device loop1): write_blk: dquota write failed
[ 1525.396882][ T3484] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries
[ 1525.449846][ T3484] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[ 1525.472708][ T3484] Quota error (device loop1): write_blk: dquota write failed
[ 1525.490050][ T3484] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list
[ 1525.511091][ T3484] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[ 1525.522215][ T3484] Quota error (device loop1): v2_write_file_info: Can't write info structure
[ 1525.531636][ T3484] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1525.571378][T13242] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1525.780370][ T7669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1526.142764][T13238] loop7: detected capacity change from 0 to 32768
[ 1526.239355][T13238] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1526.321684][T13280] loop6: detected capacity change from 0 to 1024
[ 1526.472632][T13238] XFS (loop7): Ending clean mount
[ 1526.521473][T13238] XFS (loop7): Quotacheck needed: Please wait.
[ 1526.727234][T13238] XFS (loop7): Quotacheck: Done.
[ 1526.823821][T13291] loop6: detected capacity change from 0 to 256
[ 1526.901477][T13291] exFAT-fs (loop6): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[ 1526.954278][T13265] loop1: detected capacity change from 0 to 32768
[ 1527.087985][T13265] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[ 1527.141785][T13304] loop0: detected capacity change from 0 to 8
[ 1527.159237][T13304] squashfs: Unknown parameter 'ÿÿÿÿÿÿÿÿ0x000000000000000000000000000000000000000184467440737095516150xffffffffffffffff'
[ 1527.220177][T30537] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1527.373860][ T6044] usb 7-1: new full-speed USB device number 17 using dummy_hcd
[ 1527.418708][ T7669] ocfs2: Unmounting device (7,1) on (node local)
[ 1527.597011][ T6044] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1527.627180][ T6044] usb 7-1: config 0 has no interface number 0
[ 1527.652987][ T6044] usb 7-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[ 1527.703908][ T6044] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1527.777330][ T6044] usb 7-1: config 0 descriptor??
[ 1527.795392][ T6044] usb 7-1: selecting invalid altsetting 1
[ 1527.890732][ T6044] dvb_ttusb_budget: ttusb_init_controller: error
[ 1527.908393][T13295] loop4: detected capacity change from 0 to 32768
[ 1527.931316][ T6044] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[ 1527.946597][T13295] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16365 (13295)
[ 1528.034323][T13295] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1528.105742][T13295] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[ 1528.306068][ T6044] DVB: Unable to find symbol cx22700_attach()
[ 1528.358678][T13295] BTRFS info (device loop4): rebuilding free space tree
[ 1528.394419][T13323] loop7: detected capacity change from 0 to 4096
[ 1528.441277][T13295] BTRFS info (device loop4): enabling ssd optimizations
[ 1528.459233][T13295] BTRFS info (device loop4): turning on sync discard
[ 1528.517853][T13295] BTRFS info (device loop4): enabling free space tree
[ 1528.524965][ T6044] DVB: Unable to find symbol tda10046_attach()
[ 1528.544901][ T6044] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[ 1528.551210][T13295] BTRFS info (device loop4): force clearing of disk cache
[ 1528.562752][T13295] BTRFS info (device loop4): enabling auto defrag
[ 1528.569193][T13295] BTRFS info (device loop4): max_inline set to 0
[ 1528.605628][ T6044] usb 7-1: USB disconnect, device number 17
[ 1528.648922][T13343] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1528.688119][T13323] NILFS (loop7): DAT doesn't have a block to manage vblocknr = 648518346341351424
[ 1528.757834][T13323] NILFS error (device loop7): nilfs_bmap_truncate: broken bmap (inode number=12)
[ 1528.831161][T13323] Remounting filesystem read-only
[ 1528.870609][T13323] NILFS (loop7): error -5 truncating bmap (ino=12)
[ 1528.991669][ T5826] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1529.076361][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1529.112607][T30537] NILFS (loop7): disposed unprocessed dirty file(s) when detaching log writer
[ 1529.592924][T13361] devpts: Bad value for 'max'
[ 1529.601658][T13362] loop7: detected capacity change from 0 to 64
[ 1529.608482][T13317] loop1: detected capacity change from 0 to 32768
[ 1529.721946][T13317] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1529.768330][T13345] loop2: detected capacity change from 0 to 32768
[ 1529.777357][T13345] BTRFS: device fsid 384aeb47-f1c2-4293-8350-e6dffa96895f devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.16377 (13345)
[ 1529.862073][T13345] BTRFS info (device loop2): first mount of filesystem 384aeb47-f1c2-4293-8350-e6dffa96895f
[ 1529.890350][T13345] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[ 1530.000354][T13374] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[ 1530.045216][T13317] XFS (loop1): Ending clean mount
[ 1530.477115][T13345] BTRFS info (device loop2): enabling ssd optimizations
[ 1530.481424][ T7669] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1530.488458][T13345] BTRFS info (device loop2): turning on async discard
[ 1530.508282][T13345] BTRFS info (device loop2): enabling free space tree
[ 1530.753949][   T30] audit: type=1800 audit(1445.126:3260): pid=13345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.16377" name="file1" dev="loop2" ino=260 res=0 errno=0
[ 1531.027977][T13407] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1531.143278][ T5830] BTRFS info (device loop2): last unmount of filesystem 384aeb47-f1c2-4293-8350-e6dffa96895f
[ 1531.246248][T13408] loop4: detected capacity change from 0 to 4096
[ 1531.289024][T13408] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[ 1531.446683][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1531.503110][T13408] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1531.574521][T13408] overlayfs: upper fs does not support tmpfile.
[ 1531.819446][T13392] loop7: detected capacity change from 0 to 32768
[ 1531.834490][T13408] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1532.679111][T13438] loop2: detected capacity change from 0 to 512
[ 1532.914234][T13438] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1533.064312][T13438] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.16413: bg 0: block 145: padding at end of block bitmap is not set
[ 1533.519339][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1533.692504][T23601] usb 7-1: new low-speed USB device number 18 using dummy_hcd
[ 1533.753043][T13421] loop0: detected capacity change from 0 to 40427
[ 1533.784170][T13421] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1533.792533][T13460] veth1_to_batadv: entered promiscuous mode
[ 1533.814666][T13421] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1533.823235][T13460] macsec1: entered promiscuous mode
[ 1533.832191][T13460] macsec1: entered allmulticast mode
[ 1533.837515][T13460] veth1_to_batadv: entered allmulticast mode
[ 1533.892365][T23601] usb 7-1: config 1 has an invalid interface descriptor of length 6, skipping
[ 1533.932498][T23601] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1533.963616][T13460] veth1_to_batadv: left allmulticast mode
[ 1533.985282][T13460] veth1_to_batadv: left promiscuous mode
[ 1533.995757][T23601] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1534.044751][T23601] usb 7-1: config 1 has no interface number 1
[ 1534.142437][T23601] usb 7-1: string descriptor 0 read error: -22
[ 1534.145410][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1534.148782][T23601] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1534.155287][ T6004] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[ 1534.184002][T23601] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1534.231532][T13421] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1534.252926][T23601] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1534.286084][T23601] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1534.296849][T13473] loop7: detected capacity change from 0 to 512
[ 1534.302095][T23601] usb 7-1: MIDIStreaming interface descriptor not found
[ 1534.322778][T13421] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1534.329831][T13421] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1534.359331][ T6004] usb 5-1: config 0 has an invalid interface number: 11 but max is 0
[ 1534.406479][ T6004] usb 5-1: config 0 has no interface number 0
[ 1534.430359][ T6004] usb 5-1: config 0 interface 11 altsetting 253 bulk endpoint 0x7 has invalid maxpacket 1024
[ 1534.447006][T13473] EXT4-fs (loop7): revision level too high, forcing read-only mode
[ 1534.462365][ T6004] usb 5-1: config 0 interface 11 has no altsetting 0
[ 1534.470176][ T6004] usb 5-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b
[ 1534.472715][T13473] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1534.479591][ T6004] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1534.531732][T13473] Quota error (device loop7): dq_insert_tree: Quota tree root isn't allocated!
[ 1534.557386][T13473] Quota error (device loop7): qtree_write_dquot: Error -5 occurred while creating quota
[ 1534.603856][T13421] fscrypt (loop0, inode 3): Error -61 getting encryption context
[ 1534.611480][T13473] EXT4-fs error (device loop7): ext4_acquire_dquot:6945: comm syz.7.16425: Failed to acquire dquot type 1
[ 1534.629085][T23601] usb 7-1: USB disconnect, device number 18
[ 1534.671922][ T6004] usb 5-1: config 0 descriptor??
[ 1534.704726][T13465] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1534.724897][T13473] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.16425: bg 0: block 40: padding at end of block bitmap is not set
[ 1534.800469][T13473] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6667: Corrupt filesystem
[ 1534.831788][ T6004] keyspan 5-1:0.11: Keyspan 2 port adapter converter detected
[ 1534.863638][T13473] EXT4-fs (loop7): 1 truncate cleaned up
[ 1534.895704][T13484] netlink: 16 bytes leftover after parsing attributes in process `syz.1.16428'.
[ 1534.912247][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 81
[ 1534.919234][T13473] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1534.920144][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 82
[ 1534.971244][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 1
[ 1534.979199][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 2
[ 1534.998068][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 85
[ 1535.041457][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 5
[ 1535.085394][ T6004] usb 5-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[ 1535.128136][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 83
[ 1535.150006][T30537] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1535.169777][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 84
[ 1535.177698][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 3
[ 1535.250306][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.267571][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 4
[ 1535.299004][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 86
[ 1535.318147][ T6004] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 6
[ 1535.329507][ T6004] usb 5-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[ 1535.358624][T13492] loop6: detected capacity change from 0 to 64
[ 1535.376029][ T6004] usb 5-1: USB disconnect, device number 13
[ 1535.402755][ T6004] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[ 1535.494738][T13494] loop1: detected capacity change from 0 to 1024
[ 1535.502779][ T6004] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[ 1535.553058][ T6004] keyspan 5-1:0.11: device disconnected
[ 1535.695518][T30962] hfsplus: b-tree write err: -5, ino 4
[ 1535.975968][T13503] loop6: detected capacity change from 0 to 2048
[ 1536.050930][T13503] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1536.918402][T13530] loop6: detected capacity change from 0 to 512
[ 1536.967195][T13498] loop2: detected capacity change from 0 to 32768
[ 1536.987635][T13530] EXT4-fs: Ignoring removed i_version option
[ 1536.994714][T13530] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1537.032092][T13498] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1537.051664][T13530] EXT4-fs (loop6): 1 truncate cleaned up
[ 1537.085930][T13530] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1537.111579][T13530] EXT4-fs warning (device loop6): ext4_group_extend:1891: can't read last block, resize aborted
[ 1537.211041][ T9275] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1537.242933][T13498] XFS (loop2): Ending clean mount
[ 1537.290269][T13498] XFS (loop2): Quotacheck needed: Please wait.
[ 1537.434027][T13498] XFS (loop2): Quotacheck: Done.
[ 1537.768752][ T5830] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1537.786959][T13521] loop0: detected capacity change from 0 to 32768
[ 1537.863063][T13521] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1537.951203][T13521] XFS (loop0): Ending clean mount
[ 1538.016830][T13521] XFS (loop0): Quotacheck needed: Please wait.
[ 1538.236479][T13521] XFS (loop0): Quotacheck: Done.
[ 1538.314215][   T30] audit: type=1800 audit(1452.207:3261): pid=13521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.16429" name="bus" dev="loop0" ino=4428 res=0 errno=0
[ 1538.355954][T13571] netlink: 96 bytes leftover after parsing attributes in process `syz.2.16458'.
[ 1538.462963][ T4739] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1538.467553][T13544] loop4: detected capacity change from 0 to 32768
[ 1538.493766][T23601] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[ 1538.628762][T13544] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1538.738920][T23601] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1538.761039][T13544] XFS (loop4): Ending clean mount
[ 1538.770567][T23601] usb 7-1: not running at top speed; connect to a high speed hub
[ 1538.805663][T23601] usb 7-1: config 17 has an invalid interface number: 8 but max is 1
[ 1538.826030][T23601] usb 7-1: config 17 has 1 interface, different from the descriptor's value: 2
[ 1538.855912][T23601] usb 7-1: config 17 has no interface number 0
[ 1538.862139][T23601] usb 7-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 12080, setting to 64
[ 1538.945119][T23601] usb 7-1: config 17 interface 8 has no altsetting 0
[ 1538.994169][ T5826] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1538.995885][T23601] usb 7-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff
[ 1539.015224][T23601] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1539.023436][T23601] usb 7-1: Product: syz
[ 1539.027759][T23601] usb 7-1: Manufacturer: syz
[ 1539.032382][T23601] usb 7-1: SerialNumber: syz
[ 1539.064209][T13569] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1539.104814][T13585] loop2: detected capacity change from 0 to 512
[ 1539.108461][T13585] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1539.123216][T13585] EXT4-fs (loop2): 1 truncate cleaned up
[ 1539.125388][T13585] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1539.330229][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1539.362576][T23601] usb 7-1: selecting invalid altsetting 0
[ 1539.419253][T13573] loop7: detected capacity change from 0 to 32768
[ 1539.460561][T23601] usb 7-1: USB disconnect, device number 19
[ 1539.467773][T13573] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.16461 (13573)
[ 1539.542948][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1539.589721][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1539.602815][ T6103] udevd[6103]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:17.8/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1539.717644][T13573] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1539.753892][T13573] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[ 1540.074274][ T6004] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[ 1540.091553][T13573] BTRFS info (device loop7): enabling ssd optimizations
[ 1540.138760][T13573] BTRFS info (device loop7): turning on async discard
[ 1540.145595][T13573] BTRFS info (device loop7): enabling free space tree
[ 1540.186889][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1540.213175][T13573] BTRFS info (device loop7): use zlib compression, level 3
[ 1540.233364][T13621] loop0: detected capacity change from 0 to 512
[ 1540.266119][T23601] hid-generic 0000:0004:0000.0020: unknown main item tag 0x0
[ 1540.278422][ T6004] usb 3-1: Using ep0 maxpacket: 32
[ 1540.289220][T13621] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[ 1540.300133][T23601] hid-generic 0000:0004:0000.0020: unknown main item tag 0x0
[ 1540.306917][ T6004] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1540.319533][T23601] hid-generic 0000:0004:0000.0020: unknown main item tag 0x0
[ 1540.372286][T13621] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1540.372465][T23601] hid-generic 0000:0004:0000.0020: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1540.379448][ T6004] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1540.411829][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1540.466107][ T6004] usb 3-1: New USB device found, idVendor=0123, idProduct=0001, bcdDevice=4a.fe
[ 1540.482207][ T6004] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1540.501617][ T6004] usb 3-1: Product: syz
[ 1540.544974][T13621] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem
[ 1540.547890][ T6004] usb 3-1: Manufacturer: syz
[ 1540.565820][T13621] EXT4-fs (loop0): 1 orphan inode deleted
[ 1540.586299][ T6004] usb 3-1: SerialNumber: syz
[ 1540.629872][T13633] loop4: detected capacity change from 0 to 164
[ 1540.643354][T13632] loop1: detected capacity change from 0 to 128
[ 1540.682502][ T6004] usb 3-1: config 0 descriptor??
[ 1540.692074][T13621] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1540.756931][T13629] fido_id[13629]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1540.771878][T30537] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1540.856855][T13621] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[ 1540.923556][T13621] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[ 1540.955899][ T6004] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input106
[ 1540.996464][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1541.037320][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1541.162825][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1541.166626][ T6004] usb 3-1: USB disconnect, device number 13
[ 1541.229979][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1541.416950][   T30] audit: type=1326 audit(1455.107:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1541.435054][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1541.505304][T13621] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.16472: Block bitmap for bg 0 marked uninitialized
[ 1541.527191][   T30] audit: type=1326 audit(1455.163:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1541.559991][T13643] loop1: detected capacity change from 0 to 4096
[ 1541.608416][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1541.624672][   T30] audit: type=1326 audit(1455.163:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1541.687589][ T4739] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1541.688448][T13643] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1541.756809][   T30] audit: type=1326 audit(1455.172:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1541.876290][   T30] audit: type=1326 audit(1455.172:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1541.905594][T13643] ntfs3(loop1): Failed to load $Extend (-22).
[ 1541.912299][T13643] ntfs3(loop1): Failed to initialize $Extend.
[ 1541.944626][   T30] audit: type=1326 audit(1455.172:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1542.054950][   T30] audit: type=1326 audit(1455.238:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1542.108543][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1542.184414][   T30] audit: type=1326 audit(1455.238:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13645 comm="syz.6.16482" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaa198f6c9 code=0x7ffc0000
[ 1542.340073][T13657] loop2: detected capacity change from 0 to 1024
[ 1542.588010][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1542.596389][T13662] loop6: detected capacity change from 0 to 2048
[ 1542.697851][T13666] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1542.748794][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1542.833100][ T6044] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[ 1542.962602][T13640] loop4: detected capacity change from 0 to 32768
[ 1542.997720][T13640] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1543.038718][ T6044] usb 1-1: too many endpoints for config 0 interface 0 altsetting 7: 34, using maximum allowed: 30
[ 1543.057353][ T6044] usb 1-1: config 0 interface 0 altsetting 7 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1543.069895][ T6044] usb 1-1: config 0 interface 0 altsetting 7 has 1 endpoint descriptor, different from the interface descriptor's value: 34
[ 1543.082959][ T6044] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1543.094729][ T6044] usb 1-1: New USB device found, idVendor=056a, idProduct=0094, bcdDevice= 0.00
[ 1543.104174][ T6044] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1543.133443][ T6044] usb 1-1: config 0 descriptor??
[ 1543.146864][T13640] XFS (loop4): Ending clean mount
[ 1543.206640][T13685] loop6: detected capacity change from 0 to 64
[ 1543.490816][ T5826] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1543.648182][ T6044] wacom 0003:056A:0094.0021: Using device in hidraw-only mode
[ 1543.678915][ T6044] wacom 0003:056A:0094.0021: hidraw0: USB HID v0.00 Device [HID 056a:0094] on usb-dummy_hcd.0-1/input0
[ 1543.759862][T13697] input input107: cannot allocate more than FF_MAX_EFFECTS effects
[ 1543.833910][ T6044] usb 1-1: USB disconnect, device number 10
[ 1543.956326][T13695] loop6: detected capacity change from 0 to 764
[ 1543.991466][T13695] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1544.055574][T13695] Symlink component flag not implemented
[ 1544.061334][T13695] Symlink component flag not implemented (7)
[ 1544.102558][T13703] openvswitch: netlink: nsh attr 0 has unexpected len 46 expected 0
[ 1544.125019][T13699] fido_id[13699]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[ 1544.126408][T13703] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1544.651063][T13712] loop7: detected capacity change from 0 to 4096
[ 1544.658349][ T9477] Bluetooth: hci5: ACL packet for unknown connection handle 201
[ 1544.687963][T13719] loop2: detected capacity change from 0 to 128
[ 1544.746801][T13723] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1544.780109][T13719] EXT4-fs: Ignoring removed nobh option
[ 1544.793312][T13724] loop6: detected capacity change from 0 to 128
[ 1544.825820][T13724] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1544.863771][T13724] hpfs: filesystem error: improperly stopped
[ 1544.866276][T13719] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1544.869788][T13724] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1544.914540][ T9477] Bluetooth: hci5: ACL packet for unknown connection handle 201
[ 1545.026933][T13724] 
[ 1545.029311][T13724] hpfs: You really don't want any checks? You are crazy...
[ 1545.094346][T13724] hpfs: hpfs_map_sector(): read error
[ 1545.102691][ T5830] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1545.109598][T13724] hpfs: code page support is disabled
[ 1545.117163][T13724] hpfs: hpfs_map_4sectors(): unaligned read
[ 1545.166423][T13724] hpfs: hpfs_map_4sectors(): unaligned read
[ 1545.236096][T13724] hpfs: filesystem error: unable to find root dir
[ 1545.592314][T13743] loop4: detected capacity change from 0 to 1024
[ 1545.635705][   T30] audit: type=1800 audit(1459.054:3270): pid=13743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16524" name="file1" dev="loop4" ino=20 res=0 errno=0
[ 1545.717664][T13747] Bluetooth: MGMT ver 1.23
[ 1545.731566][T13749] loop2: detected capacity change from 0 to 512
[ 1545.754362][ T1146] hfsplus: b-tree write err: -5, ino 4
[ 1545.785968][T13749] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1545.894381][T13749] EXT4-fs (loop2): 1 truncate cleaned up
[ 1545.917281][T13749] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1546.258312][T13741] loop7: detected capacity change from 0 to 32768
[ 1546.274367][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1546.404682][T13741] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1546.518865][T13741] (syz.7.16523,13741,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=16, inode=65, rec_len=12, name_len=0
[ 1546.595559][T13741] (syz.7.16523,13741,1):__ocfs2_delete_entry:1170 ERROR: status = -5
[ 1546.604293][T13741] (syz.7.16523,13741,1):ocfs2_unlink:993 ERROR: status = -5
[ 1546.637129][T13741] (syz.7.16523,13741,1):ocfs2_unlink:1046 ERROR: status = -5
[ 1546.767013][   T24] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[ 1546.811085][T30537] ocfs2: Unmounting device (7,7) on (node local)
[ 1546.959285][ T6004] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1546.983131][   T24] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[ 1547.015878][   T24] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1547.034898][   T24] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1547.066968][   T24] usb 1-1: config 220 has no interface number 2
[ 1547.078442][T13787] IPVS: set_ctl: invalid protocol: 50 172.20.20.47:20000
[ 1547.088048][   T24] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1547.115420][T13785] loop7: detected capacity change from 0 to 1024
[ 1547.123577][   T24] usb 1-1: config 220 interface 0 has no altsetting 0
[ 1547.141161][ T6004] usb 2-1: Using ep0 maxpacket: 16
[ 1547.152416][   T24] usb 1-1: config 220 interface 76 has no altsetting 0
[ 1547.163291][ T6004] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1547.183548][   T24] usb 1-1: config 220 interface 1 has no altsetting 0
[ 1547.190601][ T6004] usb 2-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00
[ 1547.234948][ T6004] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1547.245703][   T24] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1547.269599][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1547.300568][ T6004] usb 2-1: config 0 descriptor??
[ 1547.309139][   T24] usb 1-1: Product: syz
[ 1547.327622][ T3484] hfsplus: b-tree write err: -5, ino 4
[ 1547.335693][   T24] usb 1-1: Manufacturer: syz
[ 1547.347128][   T24] usb 1-1: SerialNumber: syz
[ 1547.633509][   T24] usb 1-1: selecting invalid altsetting 0
[ 1547.679530][   T24] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1547.701093][   T24] uvcvideo 1-1:220.0: No valid video chain found.
[ 1547.725171][T13795] loop4: detected capacity change from 0 to 512
[ 1547.734517][T13795] EXT4-fs (loop4): external journal device major/minor numbers have changed
[ 1547.747319][T13795] EXT4-fs (loop4): external journal has bad superblock
[ 1547.762834][   T24] usb 1-1: selecting invalid altsetting 0
[ 1547.796488][   T24] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[ 1547.830621][ T6004] lenovo 0003:17EF:60A3.0022: hidraw0: USB HID v0.00 Device [HID 17ef:60a3] on usb-dummy_hcd.1-1/input0
[ 1547.871460][   T24] usb 1-1: USB disconnect, device number 11
[ 1548.001318][ T6044] usb 2-1: USB disconnect, device number 21
[ 1548.089926][T13800] fido_id[13800]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[ 1548.144602][T13781] loop2: detected capacity change from 0 to 32768
[ 1548.326700][T13804] loop4: detected capacity change from 0 to 4096
[ 1548.352359][T13804] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1548.527005][ T6044] kernel write not supported for file /uhid (pid: 6044 comm: kworker/0:8)
[ 1548.574627][T13814] delete_channel: no stack
[ 1548.586248][T13804] ntfs3(loop4): failed to convert "c46c" to cp866
[ 1548.593622][T13813] delete_channel: no stack
[ 1548.946543][T13824] loop7: detected capacity change from 0 to 512
[ 1549.008993][T13824] EXT4-fs: Ignoring removed nobh option
[ 1549.069696][T13824] EXT4-fs (loop7): Test dummy encryption mode enabled
[ 1549.115798][T13824] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[ 1549.140946][ T9477] Bluetooth: unknown link type 97
[ 1549.146105][ T9477] Bluetooth: hci1: connection err: -111
[ 1549.151876][T13824] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.16562: invalid indirect mapped block 2683928664 (level 1)
[ 1549.182986][T13824] EXT4-fs (loop7): Remounting filesystem read-only
[ 1549.193872][T13824] EXT4-fs (loop7): 1 truncate cleaned up
[ 1549.233890][T13824] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1549.300475][T13837] netlink: 'syz.4.16568': attribute type 1 has an invalid length.
[ 1549.355690][T13837] nbd: illegal input index -2147418100
[ 1549.374874][T13841] loop2: detected capacity change from 0 to 256
[ 1549.422203][T13835] loop0: detected capacity change from 0 to 4096
[ 1549.442063][T13841] FAT-fs (loop2): Directory bread(block 64) failed
[ 1549.460073][T30537] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1549.470158][T13841] FAT-fs (loop2): Directory bread(block 65) failed
[ 1549.471987][T13835] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[ 1549.541463][T13841] FAT-fs (loop2): Directory bread(block 66) failed
[ 1549.574781][T13841] FAT-fs (loop2): Directory bread(block 67) failed
[ 1549.596049][T13835] ntfs3(loop0): ino=18, mi_enum_attr
[ 1549.608269][T13835] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1549.617474][T13841] FAT-fs (loop2): Directory bread(block 68) failed
[ 1549.664597][T13841] FAT-fs (loop2): Directory bread(block 69) failed
[ 1549.698611][T13841] FAT-fs (loop2): Directory bread(block 70) failed
[ 1549.705293][T13841] FAT-fs (loop2): Directory bread(block 71) failed
[ 1549.761086][T13841] FAT-fs (loop2): Directory bread(block 72) failed
[ 1549.767813][T13841] FAT-fs (loop2): Directory bread(block 73) failed
[ 1550.626062][   T24] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1550.816619][   T24] usb 2-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64
[ 1550.833119][T13888] loop2: detected capacity change from 0 to 128
[ 1550.849330][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1550.874490][   T24] usb 2-1: Product: syz
[ 1550.878707][   T24] usb 2-1: Manufacturer: syz
[ 1550.888582][T13888] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1550.903449][T13890] overlay: filesystem on ./file0 is read-only
[ 1550.911315][   T24] usb 2-1: SerialNumber: syz
[ 1550.937996][T13888] hpfs: filesystem error: improperly stopped
[ 1550.939937][   T24] usb 2-1: config 0 descriptor??
[ 1550.970249][T13888] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1550.975349][   T24] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state.
[ 1550.988981][T13888] hpfs: You really don't want any checks? You are crazy...
[ 1551.015891][T13888] hpfs: hpfs_map_sector(): read error
[ 1551.036246][   T24] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1551.045732][T13888] hpfs: code page support is disabled
[ 1551.047037][T13888] hpfs: hpfs_map_4sectors(): unaligned read
[ 1551.047116][T13888] hpfs: hpfs_map_4sectors(): unaligned read
[ 1551.047130][T13888] hpfs: filesystem error: unable to find root dir
[ 1551.122078][   T24] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0))
[ 1551.153576][   T24] usb 2-1: media controller created
[ 1551.256042][   T24] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1551.347085][T13900] loop2: detected capacity change from 0 to 256
[ 1551.379718][T13900] exfat: Deprecated parameter 'namecase'
[ 1551.430313][T13900] exfat: Deprecated parameter 'namecase'
[ 1551.457528][T13903] loop0: detected capacity change from 0 to 1024
[ 1551.507458][T13900] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[ 1551.533164][   T24] DVB: Unable to find symbol mt352_attach()
[ 1551.699245][T13881] loop7: detected capacity change from 0 to 32768
[ 1551.722843][   T60] hfsplus: b-tree write err: -5, ino 4
[ 1551.736747][   T24] DVB: Unable to find symbol nxt6000_attach()
[ 1551.773230][T13881] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.16589 (13881)
[ 1551.793994][   T24] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)'
[ 1551.852270][   T24] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input108
[ 1551.869921][T13881] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1551.913810][   T24] dvb-usb: schedule remote query interval to 1000 msecs.
[ 1551.925551][   T24] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected.
[ 1551.929912][T13881] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[ 1551.943266][T13915] loop0: detected capacity change from 0 to 1024
[ 1551.953940][   T24] dvb-usb: bulk message failed: -22 (7/0)
[ 1551.975066][T13915] EXT4-fs: Ignoring removed nobh option
[ 1552.019224][   T24] dvb-usb: bulk message failed: -22 (7/0)
[ 1552.058623][T13915] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1552.062507][   T24] usb 2-1: USB disconnect, device number 22
[ 1552.141907][T13915] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.16602: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[ 1552.237102][T13915] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.16602: couldn't read orphan inode 11 (err -117)
[ 1552.316495][   T24] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected.
[ 1552.330129][T13915] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1552.385090][T13938] loop1: detected capacity change from 0 to 512
[ 1552.422375][T13881] BTRFS info (device loop7): rebuilding free space tree
[ 1552.515099][ T4739] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1552.539760][T13881] BTRFS info (device loop7): disabling free space tree
[ 1552.540757][T13938] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1552.557631][T13881] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1552.569151][T13881] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1552.590208][T13881] BTRFS info (device loop7): checking UUID tree
[ 1552.614460][T13881] BTRFS info (device loop7): setting nodatasum
[ 1552.628734][T13881] BTRFS info (device loop7): enabling ssd optimizations
[ 1552.657586][T13881] BTRFS info (device loop7): turning off barriers
[ 1552.664605][T13881] BTRFS info (device loop7): disabling tree log
[ 1552.737657][T13881] BTRFS info (device loop7): turning on flush-on-commit
[ 1552.777160][T13881] BTRFS info (device loop7): force clearing of disk cache
[ 1552.784336][T13881] BTRFS info (device loop7): max_inline set to 0
[ 1552.854966][ T7669] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1553.129466][T13955] netlink: 16 bytes leftover after parsing attributes in process `syz.1.16611'.
[ 1553.180094][T13957] loop4: detected capacity change from 0 to 1024
[ 1553.200115][T13959] loop0: detected capacity change from 0 to 164
[ 1553.215110][T30537] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1553.751211][T13973] loop0: detected capacity change from 0 to 128
[ 1553.825069][T13973] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1554.068528][T13953] loop6: detected capacity change from 0 to 32768
[ 1554.134014][T13953] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.16612 (13953)
[ 1554.150297][ T4739] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1554.238210][T13953] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1554.266669][T13953] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[ 1554.706926][T13953] BTRFS info (device loop6): enabling ssd optimizations
[ 1554.731095][T13953] BTRFS info (device loop6): turning on async discard
[ 1554.738163][T13953] BTRFS info (device loop6): enabling free space tree
[ 1554.828347][T14007] netlink: 'syz.2.16628': attribute type 1 has an invalid length.
[ 1555.011147][T14013] loop2: detected capacity change from 0 to 512
[ 1555.016813][ T9275] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1555.029438][T14013] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1555.109342][T14013] EXT4-fs (loop2): 1 truncate cleaned up
[ 1555.192669][T14013] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1555.487186][T14009] loop0: detected capacity change from 0 to 32768
[ 1555.496353][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1555.571022][T14009] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.16629 (14009)
[ 1555.685325][T14009] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1555.748150][T14009] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[ 1555.901494][T14022] sp0: Synchronizing with TNC
[ 1556.120572][T14042] loop2: detected capacity change from 0 to 512
[ 1556.177967][T14042] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1556.208689][T14009] BTRFS info (device loop0): enabling ssd optimizations
[ 1556.253540][T14042] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.16637: invalid indirect mapped block 4294967295 (level 0)
[ 1556.290296][T14009] BTRFS info (device loop0): turning on async discard
[ 1556.380488][T14009] BTRFS info (device loop0): enabling free space tree
[ 1556.387326][T14009] BTRFS info (device loop0): enabling auto defrag
[ 1556.397700][T14042] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.16637: invalid indirect mapped block 4294967295 (level 1)
[ 1556.443099][T14042] EXT4-fs (loop2): 1 orphan inode deleted
[ 1556.448855][T14042] EXT4-fs (loop2): 1 truncate cleaned up
[ 1556.475992][T14009] BTRFS info (device loop0): max_inline set to 4096
[ 1556.527077][T14050] loop1: detected capacity change from 0 to 256
[ 1556.532377][T14047] loop6: detected capacity change from 0 to 1024
[ 1556.535302][T14042] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1556.566544][T14050] exfat: Deprecated parameter 'utf8'
[ 1556.588661][T14009] /dev/loop0: Can't open blockdev
[ 1556.606356][T14047] hfsplus: request for non-existent node 211 in B*Tree
[ 1556.616742][T14050] exfat: Deprecated parameter 'namecase'
[ 1556.660416][T14047] hfsplus: request for non-existent node 211 in B*Tree
[ 1556.704395][T14050] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5be3a17, utbl_chksum : 0xe619d30d)
[ 1556.768965][T14011] loop7: detected capacity change from 0 to 40427
[ 1556.784485][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1556.796876][ T4739] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1556.822451][T14011] F2FS-fs (loop7): invalid crc value
[ 1557.033062][T14018] loop4: detected capacity change from 0 to 32768
[ 1557.122615][T14018] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16635 (14018)
[ 1557.257505][T14018] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1557.332942][T14011] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 1557.409656][T14018] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[ 1557.443692][T14011] F2FS-fs (loop7): Start checkpoint disabled!
[ 1557.510759][T14011] F2FS-fs (loop7): f2fs_disable_checkpoint() finish, err:0
[ 1557.561513][T14011] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[ 1557.664177][T14011] F2FS-fs (loop7): Skipping Checkpoint. Checkpoints currently disabled.
[ 1557.745973][T23601] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1557.779875][T14018] BTRFS info (device loop4): enabling ssd optimizations
[ 1557.790983][T14018] BTRFS info (device loop4): turning on async discard
[ 1557.797890][T14018] BTRFS info (device loop4): enabling free space tree
[ 1557.861553][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1557.861553][   T36] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1557.928915][   T36] CPU: 0 UID: 0 PID: 36 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[ 1557.928964][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1557.928983][   T36] Workqueue: writeback wb_workfn (flush-7:7)
[ 1557.929030][   T36] Call Trace:
[ 1557.929041][   T36]  <TASK>
[ 1557.929053][   T36]  dump_stack_lvl+0x189/0x250
[ 1557.929098][   T36]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1557.929134][   T36]  ? __pfx_queue_work_on+0x10/0x10
[ 1557.929164][   T36]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1557.929201][   T36]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1557.929247][   T36]  f2fs_handle_critical_error+0x37c/0x540
[ 1557.929297][   T36]  f2fs_write_end_io+0x886/0xb60
[ 1557.929344][   T36]  __submit_merged_bio+0x27a/0x6a0
[ 1557.929389][   T36]  __submit_merged_write_cond+0x255/0x530
[ 1557.929435][   T36]  f2fs_write_data_pages+0x261d/0x3000
[ 1557.929499][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1557.929540][   T36]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 1557.929609][   T36]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 1557.929647][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.929677][   T36]  ? look_up_lock_class+0x74/0x170
[ 1557.929720][   T36]  ? trace_f2fs_writepages+0x7f/0x200
[ 1557.929756][   T36]  ? f2fs_write_node_pages+0x478/0x6e0
[ 1557.929796][   T36]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 1557.929835][   T36]  ? __lock_acquire+0xab9/0xd20
[ 1557.929870][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1557.929896][   T36]  do_writepages+0x32e/0x550
[ 1557.929936][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.929974][   T36]  ? reacquire_held_locks+0x127/0x1d0
[ 1557.930001][   T36]  ? writeback_sb_inodes+0x384/0x1010
[ 1557.930048][   T36]  __writeback_single_inode+0x145/0xff0
[ 1557.930084][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.930112][   T36]  ? do_raw_spin_unlock+0x122/0x240
[ 1557.930155][   T36]  writeback_sb_inodes+0x6c7/0x1010
[ 1557.930222][   T36]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1557.930308][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.930337][   T36]  ? rcu_is_watching+0x15/0xb0
[ 1557.930369][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.930409][   T36]  wb_writeback+0x43b/0xaf0
[ 1557.930454][   T36]  ? queue_io+0x3d1/0x590
[ 1557.930493][   T36]  ? __pfx_wb_writeback+0x10/0x10
[ 1557.930540][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1557.930578][   T36]  wb_workfn+0x409/0xef0
[ 1557.930628][   T36]  ? __pfx_wb_workfn+0x10/0x10
[ 1557.930664][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.930692][   T36]  ? __lock_acquire+0xab9/0xd20
[ 1557.930731][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.930764][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.930797][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1557.930825][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[ 1557.930852][   T36]  ? process_scheduled_works+0x9ef/0x17b0
[ 1557.930881][   T36]  process_scheduled_works+0xae1/0x17b0
[ 1557.930945][   T36]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1557.930987][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.931025][   T36]  worker_thread+0x8a0/0xda0
[ 1557.931086][   T36]  kthread+0x711/0x8a0
[ 1557.931125][   T36]  ? __pfx_worker_thread+0x10/0x10
[ 1557.931152][   T36]  ? __pfx_kthread+0x10/0x10
[ 1557.931183][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.931214][   T36]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1557.931243][   T36]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1557.931270][   T36]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1557.931300][   T36]  ? __pfx_kthread+0x10/0x10
[ 1557.931336][   T36]  ret_from_fork+0x4bc/0x870
[ 1557.931368][   T36]  ? __pfx_ret_from_fork+0x10/0x10
[ 1557.931403][   T36]  ? __switch_to_asm+0x39/0x70
[ 1557.931425][   T36]  ? __switch_to_asm+0x33/0x70
[ 1557.931445][   T36]  ? __pfx_kthread+0x10/0x10
[ 1557.931480][   T36]  ret_from_fork_asm+0x1a/0x30
[ 1557.931524][   T36]  </TASK>
[ 1557.931536][   T36] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1558.390768][T23601] usb 2-1: Using ep0 maxpacket: 32
[ 1558.417316][T23601] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1558.427637][T23601] usb 2-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1558.440933][T23601] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1558.447730][T23601] usb 2-1: New USB device found, idVendor=0458, idProduct=5014, bcdDevice= 0.00
[ 1558.463404][ T5826] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1558.515483][T23601] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1558.584460][T23601] usb 2-1: config 0 descriptor??
[ 1558.644852][T14087] loop0: detected capacity change from 0 to 8192
[ 1558.650871][T14095] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1559.044131][T23601] kye 0003:0458:5014.0023: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[ 1559.088838][T23601] kye 0003:0458:5014.0023: ignoring exceeding usage max
[ 1559.175370][T23601] kye 0003:0458:5014.0023: hidraw0: USB HID v0.00 Device [HID 0458:5014] on usb-dummy_hcd.1-1/input0
[ 1559.239039][T23601] kye 0003:0458:5014.0023: tablet-enabling feature report not found
[ 1559.285820][T23601] kye 0003:0458:5014.0023: tablet enabling failed
[ 1559.345039][T23601] usb 2-1: USB disconnect, device number 23
[ 1559.625672][T14107] fido_id[14107]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[ 1559.976230][T23601] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1560.132005][T14130] loop1: detected capacity change from 0 to 22
[ 1560.157269][T14130] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 1560.183253][T23601] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1560.226934][T23601] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1560.240097][T14130] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1560.268090][T23601] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1560.334200][T23601] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1560.343387][T23601] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1560.389316][T23601] usb 5-1: config 0 descriptor??
[ 1560.631050][T14146] loop7: detected capacity change from 0 to 512
[ 1560.696472][T14146] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1560.756914][T14146] EXT4-fs (loop7): 1 truncate cleaned up
[ 1560.769428][T14146] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1560.815222][T14150] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[ 1560.892396][T23601] plantronics 0003:047F:FFFF.0024: unknown main item tag 0x0
[ 1560.901806][T23601] plantronics 0003:047F:FFFF.0024: unknown main item tag 0x0
[ 1560.909373][T23601] plantronics 0003:047F:FFFF.0024: unknown main item tag 0x0
[ 1560.923265][T23601] plantronics 0003:047F:FFFF.0024: unbalanced collection at end of report description
[ 1560.937429][T23601] plantronics 0003:047F:FFFF.0024: parse failed
[ 1560.953554][T23601] plantronics 0003:047F:FFFF.0024: probe with driver plantronics failed with error -22
[ 1561.082086][T30537] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1561.161843][ T5911] usb 5-1: USB disconnect, device number 14
[ 1561.174743][T14159] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1561.603843][T14134] loop0: detected capacity change from 0 to 32768
[ 1561.673605][T14134] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1561.756061][T14172] pim6reg: entered allmulticast mode
[ 1561.767092][T14134] XFS (loop0): Ending clean mount
[ 1561.807208][T14134] XFS (loop0): Quotacheck needed: Please wait.
[ 1561.814555][T14182] pim6reg: left allmulticast mode
[ 1562.030662][T14186] netlink: 1 bytes leftover after parsing attributes in process `syz.1.16688'.
[ 1562.044090][T14134] XFS (loop0): Quotacheck: Done.
[ 1562.173422][T14190] MTD: Attempt to mount non-MTD device "/dev/nullb0"
[ 1562.238798][T14190] VFS: Can't find a romfs filesystem on dev nullb0.
[ 1562.238798][T14190] 
[ 1562.313583][ T4739] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1562.344696][T14161] loop7: detected capacity change from 0 to 32768
[ 1562.491540][T14161] (syz.7.16679,14161,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1562.545610][T14161] (syz.7.16679,14161,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1562.665920][T14161] JBD2: Ignoring recovery information on journal
[ 1562.962895][   T24] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1562.978822][T14161] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1563.024064][T14195] loop1: detected capacity change from 0 to 32768
[ 1563.085776][T14195]  loop1: p1 p2 p3 < p5 p6 >
[ 1563.104098][T14195] loop1: p2 size 16775168 extends beyond EOD, truncated
[ 1563.165492][T14195] loop1: p5 start 4294970168 is beyond EOD, truncated
[ 1563.185003][   T24] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1563.219800][   T24] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1563.239548][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1563.259247][T14209] loop2: detected capacity change from 0 to 4096
[ 1563.315650][   T24] usb 7-1: New USB device found, idVendor=056a, idProduct=00ba, bcdDevice= 0.00
[ 1563.356852][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1563.379223][T14209] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1563.465746][   T24] usb 7-1: config 0 descriptor??
[ 1563.567191][T30537] ocfs2: Unmounting device (7,7) on (node local)
[ 1563.604722][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1564.150434][ T5911] usb 7-1: USB disconnect, device number 20
[ 1564.329173][ T7308] udevd[7308]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[ 1564.346015][ T6003] udevd[6003]: inotify_add_watch(7, /dev/loop1p6, 10) failed: No such file or directory
[ 1564.367880][ T6057] udevd[6057]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[ 1564.388735][ T6103] udevd[6103]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[ 1564.920304][T14244] loop1: detected capacity change from 0 to 8192
[ 1565.330183][T14266] mkiss: ax0: crc mode is auto.
[ 1565.343141][T14269] loop0: detected capacity change from 0 to 8
[ 1565.354648][T14232] loop4: detected capacity change from 0 to 32768
[ 1565.401639][T14232] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.16709 (14232)
[ 1565.483849][T14232] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1565.532878][T14232] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[ 1565.536617][T14275] xt_l2tp: v2 tid > 0xffff: 1114244
[ 1565.916031][T14232] BTRFS info (device loop4): enabling ssd optimizations
[ 1565.923048][T14232] BTRFS info (device loop4): turning on async discard
[ 1565.992514][T14232] BTRFS info (device loop4): enabling free space tree
[ 1566.161397][   T30] audit: type=1800 audit(1478.249:3271): pid=14232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16709" name="file1" dev="loop4" ino=260 res=0 errno=0
[ 1566.277450][ T5826] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1566.452248][T14315] loop6: detected capacity change from 0 to 128
[ 1566.527285][T14315] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1566.556048][T14323] loop0: detected capacity change from 0 to 128
[ 1566.815030][T14330] loop1: detected capacity change from 0 to 64
[ 1566.898130][T14330] hfs: small file entry
[ 1566.973162][ T9275] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1567.340795][T14338] bridge0: entered promiscuous mode
[ 1567.355895][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1567.476010][T14338] macvlan2: entered promiscuous mode
[ 1567.481844][T14303] loop7: detected capacity change from 0 to 32768
[ 1567.515346][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1567.530704][T14340] mkiss: ax0: crc mode is auto.
[ 1567.609889][T14345] loop2: detected capacity change from 0 to 512
[ 1567.765346][T14345] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1567.819210][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1567.887170][T14345] EXT4-fs error (device loop2): ext4_get_first_dir_block:3537: inode #12: block 32: comm syz.2.16754: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[ 1568.007334][T14345] EXT4-fs (loop2): Remounting filesystem read-only
[ 1568.048398][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1568.268269][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1568.285676][T14334] loop4: detected capacity change from 0 to 32768
[ 1568.335910][T14361] loop0: detected capacity change from 0 to 512
[ 1568.363391][T14358] loop7: detected capacity change from 0 to 2048
[ 1568.410679][T14334] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1568.443837][T14361] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1568.461760][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1568.462943][T14358] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1568.609990][T14361] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1568.675473][T14334] XFS (loop4): Ending clean mount
[ 1568.740650][T14361] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.16760: bad orphan inode 131083
[ 1568.853101][T14361] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1568.874274][T30537] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1568.927283][ T5826] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1568.971547][   T24] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[ 1569.145050][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1569.163403][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1569.211832][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1569.238363][   T24] usb 2-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1569.253645][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1569.340658][ T4739] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1569.388175][   T24] usb 2-1: config 0 descriptor??
[ 1569.703236][T14388] batadv0: entered promiscuous mode
[ 1569.719794][T14388] macvtap1: entered promiscuous mode
[ 1569.732189][T14388] 8021q: adding VLAN 0 to HW filter on device macvtap1
[ 1569.811022][T14388] batadv0: left promiscuous mode
[ 1569.884660][   T24] isku 0003:1E7D:319C.0026: report_id 0 is invalid
[ 1569.933437][   T24] isku 0003:1E7D:319C.0026: item 0 4 1 8 parsing failed
[ 1569.944597][   T24] isku 0003:1E7D:319C.0026: parse failed
[ 1569.950361][   T24] isku 0003:1E7D:319C.0026: probe with driver isku failed with error -22
[ 1570.126073][   T24] usb 2-1: USB disconnect, device number 24
[ 1570.289998][T14397] loop6: detected capacity change from 0 to 4096
[ 1570.368422][T14403] loop0: detected capacity change from 0 to 1024
[ 1570.420644][T14397] ntfs3(loop6): ino=b, mi_enum_attr
[ 1570.432863][T14403] hfsplus: bad catalog entry type
[ 1570.441002][T14397] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1570.470051][T14397] ntfs3(loop6): Failed to load $Extend (-22).
[ 1570.499026][T14397] ntfs3(loop6): Failed to initialize $Extend.
[ 1570.582804][T14397] ntfs3(loop6): ino=1e, "file1" attr_set_size
[ 1570.596633][ T1146] hfsplus: b-tree write err: -5, ino 4
[ 1571.219443][T14420] loop6: detected capacity change from 0 to 16
[ 1571.271811][T14420] erofs (device loop6): mounted with root inode @ nid 36.
[ 1571.315364][T14422] loop4: detected capacity change from 0 to 64
[ 1571.413366][   T30] audit: type=1800 audit(1483.160:3272): pid=14422 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.16785" name="file1" dev="loop4" ino=5 res=0 errno=0
[ 1571.981537][T14413] loop1: detected capacity change from 0 to 32768
[ 1571.992136][T14409] loop0: detected capacity change from 0 to 32768
[ 1572.656173][T14448] loop4: detected capacity change from 0 to 512
[ 1572.756305][T14448] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #3: comm syz.4.16798: corrupted inode contents
[ 1572.756759][T14451] loop0: detected capacity change from 0 to 256
[ 1572.830277][T14448] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #3: comm syz.4.16798: mark_inode_dirty error
[ 1572.904333][T14448] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.16798: bg 0: block 112: padding at end of block bitmap is not set
[ 1572.976411][T14448] Quota error (device loop4): write_blk: dquota write failed
[ 1573.024649][T14448] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[ 1573.127501][T14448] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.16798: Failed to acquire dquot type 0
[ 1573.178853][T14448] EXT4-fs (loop4): 1 truncate cleaned up
[ 1573.200852][T14448] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1573.428135][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1573.503322][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1573.891610][T14470] loop4: detected capacity change from 0 to 64
[ 1574.031211][T14456] loop6: detected capacity change from 0 to 32768
[ 1574.139900][T14456] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[ 1574.262831][   T24] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1574.330340][ T9275] (syz-executor,9275,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76
[ 1574.402597][ T9275] ocfs2: Unmounting device (7,6) on (node local)
[ 1574.466318][   T24] usb 3-1: Using ep0 maxpacket: 16
[ 1574.477195][T14466] loop1: detected capacity change from 0 to 32768
[ 1574.492297][   T24] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1574.520437][   T24] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1574.531545][   T24] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1574.541489][   T24] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 576
[ 1574.543208][T14466] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1574.551434][   T24] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[ 1574.552925][   T24] usb 3-1: New USB device found, idVendor=0505, idProduct=a4a1, bcdDevice= 0.40
[ 1574.615630][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1574.623909][   T24] usb 3-1: SerialNumber: syz
[ 1574.633934][T14472] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1574.646930][   T24] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[ 1574.658462][   T24] cdc_acm 3-1:1.0: probe with driver cdc_acm failed with error -12
[ 1574.721829][T14462] loop0: detected capacity change from 0 to 32768
[ 1574.810045][T14462] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[ 1574.869110][   T24] usb 3-1: USB disconnect, device number 14
[ 1574.886869][T14466] XFS (loop1): Ending clean mount
[ 1574.932704][T14466] XFS (loop1): Quotacheck needed: Please wait.
[ 1575.012101][T14462] XFS (loop0): Ending clean mount
[ 1575.049436][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.049436][   T36] loop4: rw=1, sector=161, nr_sectors = 1 limit=64
[ 1575.099131][   T36] Buffer I/O error on dev loop4, logical block 161, lost async page write
[ 1575.171655][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.171655][   T36] loop4: rw=1, sector=162, nr_sectors = 1 limit=64
[ 1575.208529][   T36] Buffer I/O error on dev loop4, logical block 162, lost async page write
[ 1575.217274][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.217274][   T36] loop4: rw=1, sector=163, nr_sectors = 1 limit=64
[ 1575.233361][T14466] XFS (loop1): Quotacheck: Done.
[ 1575.273429][   T36] Buffer I/O error on dev loop4, logical block 163, lost async page write
[ 1575.302937][ T4739] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[ 1575.314500][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.314500][   T36] loop4: rw=1, sector=167, nr_sectors = 1 limit=64
[ 1575.343423][   T36] Buffer I/O error on dev loop4, logical block 167, lost async page write
[ 1575.353503][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.353503][   T36] loop4: rw=1, sector=169, nr_sectors = 1 limit=64
[ 1575.367014][   T36] Buffer I/O error on dev loop4, logical block 169, lost async page write
[ 1575.375825][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.375825][   T36] loop4: rw=1, sector=171, nr_sectors = 1 limit=64
[ 1575.389659][   T36] Buffer I/O error on dev loop4, logical block 171, lost async page write
[ 1575.405008][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.405008][   T36] loop4: rw=1, sector=172, nr_sectors = 1 limit=64
[ 1575.422776][   T36] Buffer I/O error on dev loop4, logical block 172, lost async page write
[ 1575.422824][ T7669] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1575.431598][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.431598][   T36] loop4: rw=1, sector=173, nr_sectors = 1 limit=64
[ 1575.464878][   T36] Buffer I/O error on dev loop4, logical block 173, lost async page write
[ 1575.504316][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.504316][   T36] loop4: rw=1, sector=174, nr_sectors = 1 limit=64
[ 1575.518045][   T36] Buffer I/O error on dev loop4, logical block 174, lost async page write
[ 1575.527221][   T36] kworker/u8:2: attempt to access beyond end of device
[ 1575.527221][   T36] loop4: rw=1, sector=175, nr_sectors = 1 limit=64
[ 1575.598735][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1575.624874][   T36] Buffer I/O error on dev loop4, logical block 175, lost async page write
[ 1576.176094][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1576.386867][T14506] netlink: 40 bytes leftover after parsing attributes in process `syz.1.16813'.
[ 1576.413077][T14506] netlink: 56 bytes leftover after parsing attributes in process `syz.1.16813'.
[ 1576.479430][ T5911] hid-generic 0000:0000:0000.0027: unknown main item tag 0x0
[ 1576.529916][T14494] loop6: detected capacity change from 0 to 32768
[ 1576.535036][ T5911] hid-generic 0000:0000:0000.0027: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1576.642280][   T30] audit: type=1800 audit(1488.014:3273): pid=14494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.16810" name="file1" dev="loop6" ino=4 res=0 errno=0
[ 1576.993410][T14513] fido_id[14513]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[ 1577.238898][T14525] veth0_to_team: entered promiscuous mode
[ 1577.269597][T14525] veth0_to_team: entered allmulticast mode
[ 1578.006165][T14512] loop0: detected capacity change from 0 to 32768
[ 1578.051006][T14512] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.16818 (14512)
[ 1578.122854][T14539] loop6: detected capacity change from 0 to 1024
[ 1578.140668][T14538] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1578.238377][T14539] EXT4-fs (loop6): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1578.489965][ T9275] EXT4-fs (loop6): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[ 1578.537490][T14512] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1578.655587][T14529] loop2: detected capacity change from 0 to 131072
[ 1578.669696][T14512] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[ 1578.678358][T14529] F2FS-fs (loop2): Allow to mount readonly mode only
[ 1578.890089][T14512] BTRFS info (device loop0): rebuilding free space tree
[ 1578.953132][T14512] BTRFS info (device loop0): disabling free space tree
[ 1578.973308][T14512] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1579.010275][T14512] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1579.053966][T14512] BTRFS info (device loop0): checking UUID tree
[ 1579.087701][T14512] BTRFS info (device loop0): setting nodatasum
[ 1579.107198][T14512] BTRFS info (device loop0): enabling ssd optimizations
[ 1579.136627][T14512] BTRFS info (device loop0): turning off barriers
[ 1579.173537][T14512] BTRFS info (device loop0): disabling tree log
[ 1579.237088][T14512] BTRFS info (device loop0): turning on flush-on-commit
[ 1579.244326][T14512] BTRFS info (device loop0): force clearing of disk cache
[ 1579.276827][T14512] BTRFS info (device loop0): max_inline set to 0
[ 1579.307898][  T114] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1579.492595][  T114] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1579.513712][  T114] usb 2-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[ 1579.536499][ T4739] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1579.547066][  T114] usb 2-1: New USB device found, idVendor=0cf3, idProduct=1010, bcdDevice=26.db
[ 1579.561682][  T114] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1579.570657][  T114] usb 2-1: Product: syz
[ 1579.574960][  T114] usb 2-1: Manufacturer: syz
[ 1579.589698][  T114] usb 2-1: SerialNumber: syz
[ 1580.322225][ T5911] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1580.467496][T14582] loop0: detected capacity change from 0 to 256
[ 1580.488324][  T114] usb 2-1: reset high-speed USB device number 25 using dummy_hcd
[ 1580.495596][ T5911] usb 7-1: Using ep0 maxpacket: 32
[ 1580.508624][ T5911] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1580.541837][ T5911] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1580.570484][T14582] FAT-fs (loop0): Directory bread(block 64) failed
[ 1580.574157][ T5911] usb 7-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00
[ 1580.577044][T14582] FAT-fs (loop0): Directory bread(block 65) failed
[ 1580.613884][ T5911] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1580.625771][T14582] FAT-fs (loop0): Directory bread(block 66) failed
[ 1580.632321][T14582] FAT-fs (loop0): Directory bread(block 67) failed
[ 1580.647539][ T5911] usb 7-1: config 0 descriptor??
[ 1580.686421][T14582] FAT-fs (loop0): Directory bread(block 68) failed
[ 1580.698511][T14582] FAT-fs (loop0): Directory bread(block 69) failed
[ 1580.705236][T14582] FAT-fs (loop0): Directory bread(block 70) failed
[ 1580.750419][  T114] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1580.762649][T14582] FAT-fs (loop0): Directory bread(block 71) failed
[ 1580.769300][T14582] FAT-fs (loop0): Directory bread(block 72) failed
[ 1580.795988][T14582] FAT-fs (loop0): Directory bread(block 73) failed
[ 1581.050671][  T114] usb 2-1: USB disconnect, device number 25
[ 1581.137900][ T5911] greenasia 0003:0E8F:0012.0028: item fetching failed at offset 0/3
[ 1581.148354][ T5911] greenasia 0003:0E8F:0012.0028: parse failed
[ 1581.154534][ T5911] greenasia 0003:0E8F:0012.0028: probe with driver greenasia failed with error -22
[ 1581.354799][ T5911] usb 7-1: USB disconnect, device number 21
[ 1581.410895][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[ 1581.438062][T14580] loop2: detected capacity change from 0 to 32768
[ 1581.470661][T14580] (syz.2.16842,14580,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1581.497913][T14580] (syz.2.16842,14580,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1581.530757][T14592] loop0: detected capacity change from 0 to 4096
[ 1581.569336][T14580] JBD2: Ignoring recovery information on journal
[ 1581.721212][T14580] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1581.831063][T14592] ntfs3(loop0): ino=21, "file1" fallocate(0x40) is not supported
[ 1582.116696][ T5830] ocfs2: Unmounting device (7,2) on (node local)
[ 1582.256560][   T30] audit: type=1800 audit(1493.309:3274): pid=14602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.16850" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1582.390031][   T30] audit: type=1326 audit(1493.430:3275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14606 comm="syz.6.16855" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feaa198f6c9 code=0x0
[ 1582.644546][T14613] netlink: 320 bytes leftover after parsing attributes in process `syz.1.16857'.
[ 1583.007713][ T5911] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1583.192114][ T5911] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[ 1583.210165][T14629] netlink: 'syz.0.16864': attribute type 10 has an invalid length.
[ 1583.211948][ T5911] usb 3-1: config 0 has no interface number 0
[ 1583.235622][ T5911] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[ 1583.254549][ T5911] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1583.262602][ T5911] usb 3-1: Product: syz
[ 1583.297097][ T5911] usb 3-1: Manufacturer: syz
[ 1583.301756][ T5911] usb 3-1: SerialNumber: syz
[ 1583.377453][ T5911] usb 3-1: config 0 descriptor??
[ 1583.636225][T14638] netlink: 'syz.6.16870': attribute type 11 has an invalid length.
[ 1583.649760][ T5911] uvcvideo 3-1:0.64: Found UVC 0.08 device syz (046d:0823)
[ 1583.659582][ T5911] uvcvideo 3-1:0.64: No valid video chain found.
[ 1583.667307][T14638] netlink: 199820 bytes leftover after parsing attributes in process `syz.6.16870'.
[ 1583.682497][ T5911] usb 3-1: USB disconnect, device number 15
[ 1583.694833][T14639] netlink: 20 bytes leftover after parsing attributes in process `syz.0.16868'.
[ 1583.715272][T14639] netlink: 20 bytes leftover after parsing attributes in process `syz.0.16868'.
[ 1584.107483][T14650] loop6: detected capacity change from 0 to 1024
[ 1584.270875][T30962] hfsplus: b-tree write err: -5, ino 4
[ 1584.893045][T14665] loop1: detected capacity change from 0 to 4096
[ 1584.944009][T14665] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[ 1585.030370][T14679] loop4: detected capacity change from 0 to 16
[ 1585.072414][T14679] erofs (device loop4): mounted with root inode @ nid 36.
[ 1585.434543][   T24] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1585.586156][T23601] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[ 1585.618682][T14689] netlink: 'syz.4.16894': attribute type 1 has an invalid length.
[ 1585.631149][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1585.654948][T14689] nbd: error processing sock list
[ 1585.665716][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1585.701826][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1585.755398][   T24] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1585.786940][T23601] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1585.805502][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1585.817224][T23601] usb 7-1: config 0 has no interface number 0
[ 1585.828070][T23601] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1585.842051][   T24] usb 1-1: config 0 descriptor??
[ 1585.916357][T23601] usb 7-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1585.939864][T23601] usb 7-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[ 1585.967935][T23601] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1586.003352][T23601] usb 7-1: config 0 descriptor??
[ 1586.194510][T14678] loop2: detected capacity change from 0 to 32768
[ 1586.322237][   T24] plantronics 0003:047F:FFFF.0029: collection stack underflow
[ 1586.329784][   T24] plantronics 0003:047F:FFFF.0029: item 0 2 0 12 parsing failed
[ 1586.359669][T14678] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1586.360798][   T24] plantronics 0003:047F:FFFF.0029: parse failed
[ 1586.396781][   T24] plantronics 0003:047F:FFFF.0029: probe with driver plantronics failed with error -22
[ 1586.493897][T23601] prodikeys 0003:041E:2801.002A: item fetching failed at offset 3/7
[ 1586.502704][T23601] prodikeys 0003:041E:2801.002A: hid parse failed
[ 1586.515722][T14678] OCFS2: ERROR (device loop2): int ocfs2_validate_xattr_block(struct super_block *, struct buffer_head *): Extended attribute block #2304 has bad signature 
[ 1586.569588][T23601] prodikeys 0003:041E:2801.002A: probe with driver prodikeys failed with error -22
[ 1586.587655][ T3050] usb 1-1: USB disconnect, device number 12
[ 1586.593994][T14678] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1586.634330][T14678] OCFS2: File system is now read-only.
[ 1586.639912][T14678] (syz.2.16888,14678,0):ocfs2_xattr_block_find:2831 ERROR: status = -30
[ 1586.705535][ T6004] usb 7-1: USB disconnect, device number 22
[ 1586.799248][ T5830] ocfs2: Unmounting device (7,2) on (node local)
[ 1587.022728][T14709] loop1: detected capacity change from 0 to 256
[ 1587.168931][ T5832] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1587.186189][ T5832] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1587.197960][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1587.238752][ T5832] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1587.248374][ T5832] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1587.371125][T14710] vxcan1 speed is unknown, defaulting to 1000
[ 1587.758106][T14726] loop2: detected capacity change from 0 to 2048
[ 1587.793869][   T36] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1587.809389][T14726] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1587.869357][T14726] EXT4-fs error (device loop2): ext4_ext_precache:632: inode #2: comm syz.2.16910: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[ 1587.933210][T14726] EXT4-fs (loop2): Remounting filesystem read-only
[ 1587.996160][T14733] loop4: detected capacity change from 0 to 2048
[ 1588.102166][T14733] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1588.134264][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1588.280205][T30962] 
[ 1588.282575][T30962] ======================================================
[ 1588.289592][T30962] WARNING: possible circular locking dependency detected
[ 1588.296619][T30962] syzkaller #0 Not tainted
[ 1588.301039][T30962] ------------------------------------------------------
[ 1588.308060][T30962] kworker/u8:8/30962 is trying to acquire lock:
[ 1588.314294][T30962] ffff88807e672708 (&ei->xattr_sem){++++}-{4:4}, at: ext4_destroy_inline_data+0x28/0xe0
[ 1588.324111][T30962] 
[ 1588.324111][T30962] but task is already holding lock:
[ 1588.331477][T30962] ffff8880277c4b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 1588.341537][T30962] 
[ 1588.341537][T30962] which lock already depends on the new lock.
[ 1588.341537][T30962] 
[ 1588.351957][T30962] 
[ 1588.351957][T30962] the existing dependency chain (in reverse order) is:
[ 1588.360985][T30962] 
[ 1588.360985][T30962] -> #1 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[ 1588.369450][T30962]        lock_acquire+0x120/0x360
[ 1588.374494][T30962]        percpu_down_read_internal+0x48/0x1c0
[ 1588.380572][T30962]        ext4_writepages+0x1cc/0x350
[ 1588.385862][T30962]        do_writepages+0x32e/0x550
[ 1588.391072][T30962]        __writeback_single_inode+0x145/0xff0
[ 1588.397149][T30962]        writeback_single_inode+0x1f9/0x6a0
[ 1588.403125][T30962]        write_inode_now+0x160/0x1d0
[ 1588.408414][T30962]        iput+0x830/0xc50
[ 1588.412739][T30962]        ext4_xattr_block_set+0x1fce/0x2ac0
[ 1588.418654][T30962]        ext4_expand_extra_isize_ea+0x12da/0x1ea0
[ 1588.425088][T30962]        __ext4_expand_extra_isize+0x30d/0x400
[ 1588.431331][T30962]        __ext4_mark_inode_dirty+0x46c/0x700
[ 1588.437328][T30962]        ext4_evict_inode+0x80d/0xee0
[ 1588.442714][T30962]        evict+0x504/0x9c0
[ 1588.447143][T30962]        ext4_orphan_cleanup+0xc20/0x1460
[ 1588.452963][T30962]        ext4_fill_super+0x5920/0x61e0
[ 1588.458466][T30962]        get_tree_bdev_flags+0x40e/0x4d0
[ 1588.464209][T30962]        vfs_get_tree+0x92/0x2b0
[ 1588.469156][T30962]        do_new_mount+0x302/0xa10
[ 1588.474200][T30962]        __se_sys_mount+0x313/0x410
[ 1588.479408][T30962]        do_syscall_64+0xfa/0xfa0
[ 1588.484445][T30962]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1588.490857][T30962] 
[ 1588.490857][T30962] -> #0 (&ei->xattr_sem){++++}-{4:4}:
[ 1588.498423][T30962]        validate_chain+0xb9b/0x2140
[ 1588.503713][T30962]        __lock_acquire+0xab9/0xd20
[ 1588.508912][T30962]        lock_acquire+0x120/0x360
[ 1588.513925][T30962]        down_write+0x96/0x1f0
[ 1588.518679][T30962]        ext4_destroy_inline_data+0x28/0xe0
[ 1588.524577][T30962]        ext4_do_writepages+0x526/0x4610
[ 1588.530216][T30962]        ext4_writepages+0x205/0x350
[ 1588.535672][T30962]        do_writepages+0x32e/0x550
[ 1588.540783][T30962]        __writeback_single_inode+0x145/0xff0
[ 1588.546859][T30962]        writeback_sb_inodes+0x6c7/0x1010
[ 1588.552584][T30962]        wb_writeback+0x43b/0xaf0
[ 1588.557613][T30962]        wb_workfn+0x409/0xef0
[ 1588.562374][T30962]        process_scheduled_works+0xae1/0x17b0
[ 1588.568438][T30962]        worker_thread+0x8a0/0xda0
[ 1588.573549][T30962]        kthread+0x711/0x8a0
[ 1588.578139][T30962]        ret_from_fork+0x4bc/0x870
[ 1588.583243][T30962]        ret_from_fork_asm+0x1a/0x30
[ 1588.588521][T30962] 
[ 1588.588521][T30962] other info that might help us debug this:
[ 1588.588521][T30962] 
[ 1588.598742][T30962]  Possible unsafe locking scenario:
[ 1588.598742][T30962] 
[ 1588.606276][T30962]        CPU0                    CPU1
[ 1588.611642][T30962]        ----                    ----
[ 1588.617092][T30962]   rlock(&sbi->s_writepages_rwsem);
[ 1588.622371][T30962]                                lock(&ei->xattr_sem);
[ 1588.629216][T30962]                                lock(&sbi->s_writepages_rwsem);
[ 1588.636942][T30962]   lock(&ei->xattr_sem);
[ 1588.641281][T30962] 
[ 1588.641281][T30962]  *** DEADLOCK ***
[ 1588.641281][T30962] 
[ 1588.649406][T30962] 3 locks held by kworker/u8:8/30962:
[ 1588.654762][T30962]  #0: ffff88801c69b948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 1588.666024][T30962]  #1: ffffc9000b36fba0 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 1588.678492][T30962]  #2: ffff8880277c4b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[ 1588.688957][T30962] 
[ 1588.688957][T30962] stack backtrace:
[ 1588.694846][T30962] CPU: 0 UID: 0 PID: 30962 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 1588.694872][T30962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1588.694890][T30962] Workqueue: writeback wb_workfn (flush-7:4)
[ 1588.694929][T30962] Call Trace:
[ 1588.694942][T30962]  <TASK>
[ 1588.694955][T30962]  dump_stack_lvl+0x189/0x250
[ 1588.695000][T30962]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1588.695032][T30962]  ? __pfx__printk+0x10/0x10
[ 1588.695057][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695083][T30962]  ? print_lock_name+0xde/0x100
[ 1588.695106][T30962]  print_circular_bug+0x2ee/0x310
[ 1588.695137][T30962]  check_noncircular+0x134/0x160
[ 1588.695169][T30962]  validate_chain+0xb9b/0x2140
[ 1588.695199][T30962]  ? ret_from_fork_asm+0x1a/0x30
[ 1588.695220][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695248][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695275][T30962]  __lock_acquire+0xab9/0xd20
[ 1588.695299][T30962]  ? ext4_destroy_inline_data+0x28/0xe0
[ 1588.695329][T30962]  lock_acquire+0x120/0x360
[ 1588.695349][T30962]  ? ext4_destroy_inline_data+0x28/0xe0
[ 1588.695379][T30962]  ? worker_thread+0x8a0/0xda0
[ 1588.695409][T30962]  down_write+0x96/0x1f0
[ 1588.695430][T30962]  ? ext4_destroy_inline_data+0x28/0xe0
[ 1588.695459][T30962]  ? __pfx_down_write+0x10/0x10
[ 1588.695494][T30962]  ? ext4_journal_check_start+0x1cf/0x2b0
[ 1588.695531][T30962]  ext4_destroy_inline_data+0x28/0xe0
[ 1588.695563][T30962]  ext4_do_writepages+0x526/0x4610
[ 1588.695599][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695624][T30962]  ? __lock_acquire+0xab9/0xd20
[ 1588.695648][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695675][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695702][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695726][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695754][T30962]  ? __lock_acquire+0xab9/0xd20
[ 1588.695777][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695806][T30962]  ? __pfx_ext4_do_writepages+0x10/0x10
[ 1588.695841][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695866][T30962]  ? look_up_lock_class+0x74/0x170
[ 1588.695896][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695920][T30962]  ? register_lock_class+0x51/0x320
[ 1588.695944][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.695968][T30962]  ? __lock_acquire+0xab9/0xd20
[ 1588.695995][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696023][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696048][T30962]  ? rcu_read_lock_any_held+0xb3/0x120
[ 1588.696085][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696113][T30962]  ext4_writepages+0x205/0x350
[ 1588.696139][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696166][T30962]  ? __pfx_ext4_writepages+0x10/0x10
[ 1588.696198][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696225][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696250][T30962]  ? do_raw_spin_unlock+0x122/0x240
[ 1588.696280][T30962]  ? __pfx_ext4_writepages+0x10/0x10
[ 1588.696306][T30962]  do_writepages+0x32e/0x550
[ 1588.696338][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696363][T30962]  ? reacquire_held_locks+0x127/0x1d0
[ 1588.696387][T30962]  ? writeback_sb_inodes+0x384/0x1010
[ 1588.696423][T30962]  __writeback_single_inode+0x145/0xff0
[ 1588.696455][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696479][T30962]  ? do_raw_spin_unlock+0x122/0x240
[ 1588.696512][T30962]  writeback_sb_inodes+0x6c7/0x1010
[ 1588.696542][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696582][T30962]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 1588.696636][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696663][T30962]  ? rcu_is_watching+0x15/0xb0
[ 1588.696689][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696722][T30962]  wb_writeback+0x43b/0xaf0
[ 1588.696760][T30962]  ? queue_io+0x3d1/0x590
[ 1588.696793][T30962]  ? __pfx_wb_writeback+0x10/0x10
[ 1588.696827][T30962]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1588.696857][T30962]  wb_workfn+0x409/0xef0
[ 1588.696889][T30962]  ? __pfx_wb_workfn+0x10/0x10
[ 1588.696916][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.696940][T30962]  ? __lock_acquire+0xab9/0xd20
[ 1588.696967][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.697000][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.697027][T30962]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1588.697052][T30962]  ? process_scheduled_works+0x9ef/0x17b0
[ 1588.697074][T30962]  ? process_scheduled_works+0x9ef/0x17b0
[ 1588.697098][T30962]  process_scheduled_works+0xae1/0x17b0
[ 1588.697137][T30962]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1588.697165][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.697194][T30962]  worker_thread+0x8a0/0xda0
[ 1588.697219][T30962]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1588.697251][T30962]  ? __kthread_parkme+0x7b/0x200
[ 1588.697282][T30962]  kthread+0x711/0x8a0
[ 1588.697314][T30962]  ? __pfx_worker_thread+0x10/0x10
[ 1588.697338][T30962]  ? __pfx_kthread+0x10/0x10
[ 1588.697367][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.697395][T30962]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1588.697423][T30962]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1588.697449][T30962]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1588.697479][T30962]  ? __pfx_kthread+0x10/0x10
[ 1588.697511][T30962]  ret_from_fork+0x4bc/0x870
[ 1588.697540][T30962]  ? __pfx_ret_from_fork+0x10/0x10
[ 1588.697568][T30962]  ? __switch_to_asm+0x39/0x70
[ 1588.697587][T30962]  ? __switch_to_asm+0x33/0x70
[ 1588.697604][T30962]  ? __pfx_kthread+0x10/0x10
[ 1588.697633][T30962]  ret_from_fork_asm+0x1a/0x30
[ 1588.697662][T30962]  </TASK>
[ 1589.228932][T30962] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[ 1589.269021][T30962] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1589.283725][T30962] EXT4-fs (loop4): This should not happen!! Data will be lost
[ 1589.283725][T30962] 
[ 1589.293413][T30962] EXT4-fs (loop4): Total free blocks count 0
[ 1589.299815][T30962] EXT4-fs (loop4): Free/Dirty block details
[ 1589.305752][T30962] EXT4-fs (loop4): free_blocks=66060288
[ 1589.309421][T14716] loop1: detected capacity change from 0 to 32768
[ 1589.311304][T30962] EXT4-fs (loop4): dirty_blocks=64
[ 1589.323046][T30962] EXT4-fs (loop4): Block reservation details
[ 1589.333646][T30962] EXT4-fs (loop4): i_reserved_data_blocks=4
[ 1589.366760][T30962] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 44 with error 28
[ 1589.391089][T14716] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.16906 (14716)
[ 1589.443584][ T5832] Bluetooth: hci2: command tx timeout
[ 1589.456301][T14716] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1589.467209][T14716] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[ 1589.482856][   T36] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1589.606542][   T36] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1589.609547][T14716] BTRFS info (device loop1): enabling ssd optimizations
[ 1589.671588][T14716] BTRFS info (device loop1): turning on async discard
[ 1589.699990][T14716] BTRFS info (device loop1): enabling free space tree
[ 1589.706859][T14716] BTRFS info (device loop1): use lzo compression, level 1
[ 1589.804197][   T36] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1589.832605][ T7669] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1589.979647][   T36] bridge_slave_1: left allmulticast mode
[ 1589.985325][   T36] bridge_slave_1: left promiscuous mode
[ 1589.992070][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1590.002584][   T36] bridge_slave_0: left allmulticast mode
[ 1590.008246][   T36] bridge_slave_0: left promiscuous mode
[ 1590.023772][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1590.332978][   T36] dvmrp8 (unregistering): left allmulticast mode
[ 1590.808782][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1590.819413][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1590.832331][   T36] bond0 (unregistering): Released all slaves
[ 1591.086122][   T36] bond1 (unregistering): Released all slaves
[ 1591.185136][T14710] chnl_net:caif_netlink_parms(): no params data found
[ 1591.222560][   T36] IPVS: stopping master sync thread 10622 ...
[ 1591.305995][T14710] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1591.313271][T14710] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1591.322492][T14710] bridge_slave_0: entered allmulticast mode
[ 1591.335682][T14710] bridge_slave_0: entered promiscuous mode
[ 1591.379436][T14710] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1591.386743][T14710] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1591.396188][T14710] bridge_slave_1: entered allmulticast mode
[ 1591.403842][T14710] bridge_slave_1: entered promiscuous mode
[ 1591.472110][T14710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1591.487734][T14710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1591.584846][T14710] team0: Port device team_slave_0 added
[ 1591.599645][T14710] team0: Port device team_slave_1 added
[ 1591.670997][ T5832] Bluetooth: hci2: command tx timeout
[ 1591.751547][T14710] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1591.758734][T14710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1591.786139][T14710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1591.806505][   T36] hsr_slave_0: left promiscuous mode
[ 1591.812460][   T36] hsr_slave_1: left promiscuous mode
[ 1591.818472][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1591.825844][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1591.833768][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1591.841299][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1591.853539][   T36] veth1_macvtap: left promiscuous mode
[ 1591.859079][   T36] veth0_macvtap: left promiscuous mode
[ 1591.864898][   T36] veth1_vlan: left promiscuous mode
[ 1591.870607][   T36] veth0_vlan: left promiscuous mode
[ 1592.149998][   T36] team0 (unregistering): Port device team_slave_1 removed
[ 1592.193384][   T36] team0 (unregistering): Port device team_slave_0 removed
[ 1592.504015][T14710] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1592.511013][T14710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1592.540647][T14710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1592.584102][T14710] hsr_slave_0: entered promiscuous mode
[ 1592.590946][T14710] hsr_slave_1: entered promiscuous mode
[ 1592.597013][T14710] debugfs: 'hsr0' already exists in 'hsr'
[ 1592.602936][T14710] Cannot create hsr debugfs directory
[ 1593.134200][T14710] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1593.146278][T14710] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1593.156891][T14710] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1593.166276][T14710] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1593.244692][T14710] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1593.268744][T14710] 8021q: adding VLAN 0 to HW filter on device team0
[ 1593.280977][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1593.288158][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1593.318353][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1593.325695][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1593.509358][T14710] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1593.755123][T14710] veth0_vlan: entered promiscuous mode
[ 1593.766843][T14710] veth1_vlan: entered promiscuous mode
[ 1593.801750][T14710] veth0_macvtap: entered promiscuous mode
[ 1593.812877][T14710] veth1_macvtap: entered promiscuous mode
[ 1593.832151][T14710] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1593.850239][T14710] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1593.865002][   T13] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.880461][   T13] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.889214][   T13] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.900417][ T5832] Bluetooth: hci2: command tx timeout
[ 1593.916275][   T13] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1593.939697][T14710] ieee80211 phy84: Selected rate control algorithm 'minstrel_ht'
[ 1593.978901][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1593.992098][T14710] ieee80211 phy85: Selected rate control algorithm 'minstrel_ht'
[ 1594.000037][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1594.034528][T23578] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1594.043215][T23578] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1596.114561][ T5832] Bluetooth: hci2: command tx timeout