last executing test programs:

22m45.535559741s ago: executing program 32 (id=1463):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000002c0)={r1, 0xffffffffffffffff, 0x21}, 0x69)

22m9.067925926s ago: executing program 33 (id=1724):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWRULE={0x80, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x40, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x2c, 0x3, "7339f2f10455afb9fdd672bad09dfb78c7699c74e891a0c7fffffff500"/40}, @NFTA_TARGET_REV={0x8}, @NFTA_TARGET_NAME={0x8, 0x1, 'LED\x00'}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040)

20m54.473097435s ago: executing program 34 (id=2407):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r1, 0x4018aebd, &(0x7f0000000040)={0x1})

17m59.266634193s ago: executing program 35 (id=4211):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0xfffff000)
r0 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
splice(r0, 0x0, r0, &(0x7f0000000280)=0xffff, 0x100, 0x4)

17m34.760187783s ago: executing program 36 (id=4359):
r0 = syz_io_uring_setup(0x2225, &(0x7f0000000380)={0x0, 0x1, 0x2, 0x0, 0xfffffffc}, &(0x7f0000000780), &(0x7f0000000740))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_io_uring_setup(0x3c5f, &(0x7f0000000240)={0x0, 0x100081, 0x27, 0x0, 0x0, 0x0, r0}, &(0x7f0000000200), &(0x7f0000000300))

16m53.648757043s ago: executing program 37 (id=4719):
r0 = inotify_init()
r1 = inotify_add_watch(r0, &(0x7f0000000400)='.\x00', 0x4000423)
inotify_rm_watch(r0, r1)

16m37.907504074s ago: executing program 38 (id=4826):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000380)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x1000000}, 0x1c)
setsockopt$packet_int(r0, 0x107, 0x13, &(0x7f0000000180)=0x10, 0x4)

13m14.923565222s ago: executing program 39 (id=6067):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x45, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40}}]}}, 0x0)
syz_usb_connect$printer(0x1, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000030020f003176c40000000000109022472510000000009040000120701030009050102000000000009058202"], 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100002aafee08f00a51678b75000000010902240001000000000904010102ff"], 0x0)

12m28.509092956s ago: executing program 40 (id=6200):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r1, &(0x7f00000039c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000100000883795c04a31ba377a1b2cc32b38d37400"/57, 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)
getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000080), &(0x7f00000000c0)=0x8)

11m53.241856463s ago: executing program 41 (id=6322):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=ANY=[@ANYBLOB="44000000090601020000000000000000050000000900020073797a310000000005000100070000001c0007800c00018008000140ffffffff0c000280080001407f"], 0x44}, 0x1, 0x0, 0x0, 0x10040047}, 0x240008c4)

10m31.321900824s ago: executing program 42 (id=6706):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c00000011000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="bf000000000000003c001a80380003"], 0x5c}}, 0x8000)

9m58.014613152s ago: executing program 43 (id=6783):
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000400)={[{@test_dummy_encryption_v1}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1}}, {@nogrpid}, {@block_validity}], [{@permit_directio}, {@seclabel, 0x22}, {@euid_gt}]}, 0x0, 0x533, &(0x7f0000001b40)="$eJzs3c9vI1cdAPDveO39mW1S4ACVaEtbtLuCtTeN2kYcSpEQnCoB5b6ExImideJV7LSbaEWz4g9AQgiQOMGFCxJ/ABKqxIUjQqoE5yJAIARbOIBEd9DYYzcktvPLsbPJ5yPNznvz3vj7XnZndt7MxC+AM+u1fHmUpumNiJjMtxfy5bkssxXxbES8//D+fLYkkaZv/D2JJN/W+ay05UJcae8SUYz42pcjvpnsjtvY2LwzV6tV1/J8pblyt9LY2Ly5vDK3VF2qrs7MTL88+8rsS7O3jtK9xSt54mpEvPrFP3//Oz/90qu//Oxbf7j91+vfStptfjt29OOAioMK210vxcU8fyNfrx0y2ElU3J64tL99HuT/RAAAGK3suvQj+XX+oz3qfjCiNgEAAADDlX5+Iv6bdJ7d7XK+z3YAAADgMVKIiIlICuX8fd+JKBTK5Wi9w/uxuFyo1RvNzyzW11cXsrKIqSgVFpdr1Vv5u8JTUUqy/HQr/WH+xR35mYh4MiK+N3mplS/P12sL4775AQAAAGfElR3j/39Ntsf/AAAAwCkzNe4GAAAAAMfO+B8AAABOP+N/AAAAONW+8vrr2ZJ25r9eeHNj/U79zZsL1cad8sr6fHm+vna3vFSvL7W+s29l4Id1J4JeXb9XaVYbzUpjY/P2Sn19tXl7uTsFNgAAADBiTz7zzu+TiNj63KXWkjm/rfw/+TwBY2sgcGy6t+wiydfnd1d674l2xT+Nrl3A8Ts37gYAY1M8UO2tY2sHMHqlcTcAGLtkj/K+L+/8Jl9/arjtAQAAhu/aJ/o//y8M3HNrcDFw4jmI4ezy/B/Ortbz/x6v/PXkYgFOlZIrADjzjvz8f09+hwgAAMZtorUkhXJ+e28iCoVyOeJqa1qAUrK4XKveiognIuJ3k6ULWX66tWey15ABAAAAAAAAAAAAAAAAAAAAAAAAAMilaRLpAM8NLAUAAAAeBxGFvyS/Slrzf12bfGFi5/2B88m/JyOfIvStH73xg3tzzebadLb9H93tzR/m21886N0Hcw8CAADAceiM0zvjeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYngf5+v78+w/vz48y8t++EBFTEVncztIuKcbF1vpilCLi8j+TKG7bL4mIc0OIv5V1/eO94idZs7ohe8W/dPzxYyr/KfSKf2UI8eEseyc7/7zW6/grxLOtde/jrxjxf/nD6n/+i+7571yf4//qPmM89e7PK33jP4h4qtj7/NOJn/SJ//w+43/j65ub/crSH0dci97xt8eqNFfuVhobmzeXV+aWqkvV1ZmZ6ZdnX5l9afZWZXG5Vs3/7Bnju5/8xaNB/b/cJ/7UHv1/YZ/9/+Ddew8/2k6WesW//nyP+L/+SV5jd/xC/n/fp/N0Vn6tk95qp7d7+me/fXpQ/xf69H+vv//r++z/ja9++4/7rAoAjEBjY/POXK1WXTuZiaR45M/JRun7qZxeOPE/DYkjJUq7try9u/IzcegQaZqm2TF1hKYmh4/eN/FeHKBy0t0y7jMTAAAwbB9e/Y+7JQAAAAAAAAAAAAAAAAAAAHB2jeB71y7sjPmgm0qG8RXaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABD8b8AAAD//x4S41s=")
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@bridge_newneigh={0x28, 0x1c, 0x401, 0x70bd29, 0x25dfdbfd, {0x7, 0x0, 0x0, r1, 0x40, 0x9ffac2705d37b0b7, 0x3}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040011}, 0x20000040)

9m40.837351563s ago: executing program 2 (id=6895):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000008c0)=0x2, 0x4)
getsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f0000000300), &(0x7f0000000340)=0x4)

9m39.762610514s ago: executing program 2 (id=6898):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x10, 0x0, @mcast2}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000000000000a00000000000000ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000020000000a00000000000000fe8000000000000000000000000000bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000fe8000000000000000000000000000bb"], 0x190)
syz_emit_ethernet(0x52, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x1c, 0x3a, 0xff, @remote, @mcast2, {[], @mlv2_query={0x82, 0x0, 0x0, 0x8, 0x3ff, @private2, 0x7, 0x1, 0x4, 0x7}}}}}}, 0x0)

9m39.337119444s ago: executing program 2 (id=6900):
syz_open_dev$sndctrl(&(0x7f00000000c0), 0x8, 0x0)
ioctl$CEC_RECEIVE(0xffffffffffffffff, 0xc0386106, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x6, 0x0, 0x0, "5debca561a5fbf61048955f6f876b2ff", 0x0, 0x0, 0x0, 0x0, 0x1})
r0 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000800)={r0, r0, r0}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha384\x00'}})

9m38.679172071s ago: executing program 2 (id=6903):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000400)={&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000440)=0x3b)

9m37.512419594s ago: executing program 2 (id=6909):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(&(0x7f0000005800)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000027000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000200)='./file0/bus\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)

9m37.236245143s ago: executing program 2 (id=6911):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)={0x1, 0x0, [{0x40000072, 0x0, 0x4}]})

9m22.071339519s ago: executing program 44 (id=6911):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000180)={0x1, 0x0, [{0x40000072, 0x0, 0x4}]})

4m8.49582933s ago: executing program 0 (id=9515):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c666c7573682c646d61736b3d30303030303030303030303030303030303137373737372c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c757466383d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c756e695f786c6174653d312c726f6469722c696f636861727365743d757466382c666d61736b3d30303030303030303030303030303030303030303030342c646d61736b3d30303030303030303030303030303030303030303030372c757466383d312c726f6469722c73686f72746e616d653d77696e39352c726f6469722c00743ccfec81d6c7d05b0f2a54ddce151ec4cbbaacb9552647fd950fedfdc024b3953e7669bc9d4f66e3beaecb80fe73633280b1d3e82023d4f5c7f5a4989406c0f0d0cf537f132dc1e63d84a17532cb78ae7a368bc0029207b9b166705972f4e8dad041e6be170bf43057b456d43f100c53b471aa6c8e3751", @ANYRES16], 0x1, 0x2c2, &(0x7f00000006c0)="$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")
syz_emit_ethernet(0x86, &(0x7f0000000000)=ANY=[@ANYBLOB="bbbbbbbbbbbbecbeba5e41010800450000784400000000119078ac1414bbe000000100004e220064907802000000020000000300000087404a1521cd01f9df5ed1edadd5f225602902d238b3605ef3d3776442bc6a4af34f90b9c395844234c7cdd78918f38e876f904f4b9b8b0be78ecf3ecf498db86fce414cc0adba1f2cb65d"], 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

4m7.975901984s ago: executing program 0 (id=9518):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x2}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ab0001", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x6, 0xc2, 0xa388, 0x0, 0x0, {[@generic={0x4, 0x3, "db"}]}}}}}}}}, 0x0)

4m7.68719676s ago: executing program 0 (id=9521):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x46, 0x0, "2431d0edd9b36cb74d7df7671eacf04be3b08353efa3641776f56c7556fd3713097bd0072577bc6fefb4cdc9e94e420b0ea4fbc5b07a32056eff5e6c42784b46ddab72b1b8fc87f208ad6db80d8dfe25"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, "aeb81d8ee3a82d67eea9e5bdf2247481041a5b9cddbc936efc471c56ae3d5f6945d296a285858a891a3b4e7bff572ef69992da867f406182d70f47773434b8349435f2ad628d62a3b45bb98872fb1900"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e24, 0x10000, @remote, 0x100}}, 0x0, 0x0, 0x8, 0x0, "f1faeda374dcb5cf6ed64d5a069f5db372c8325c9fad31e3b35115740a28e023ab1605fcb78848ed126a0cfa49f0a22ea069e1497fe42d3df5422e172b7b27eb958977262c33ea8737ea549a61c190a1"}, 0xd8)

4m7.570675358s ago: executing program 0 (id=9524):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x14711, &(0x7f00000003c0)={[{@lazytime}, {@inlinecrypt}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@dioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x222a}}, {@nouid32}, {@test_dummy_encryption}, {@bsdgroups}]}, 0x3, 0x453, &(0x7f0000000c40)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0)

4m6.782986082s ago: executing program 0 (id=9528):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000080)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x1, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x16, {0x2, 0x0, @private}, 'syz_tun\x00'})

4m6.006459877s ago: executing program 0 (id=9534):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x7, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

4m5.48693163s ago: executing program 45 (id=9534):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0x7, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x10, 0x38, &(0x7f00000006c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

3m31.33318449s ago: executing program 6 (id=9794):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x100, 0x65, 0x20, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0xe}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_RATE={0x6, 0x5, {0x8, 0x81}}, @filter_kind_options=@f_bpf={{0x8}, {0xc4, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0xac, 0x1, [@m_gact={0xa8, 0x12, 0x0, 0x0, {{0x9}, {0x7c, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0x186f, 0x6}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x213e}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1, 0x60000000, 0x7, 0x300, 0x9}}, @TCA_GACT_PARMS={0x18, 0x2, {0x1, 0x7, 0xffffffffffffffff, 0xfffffff0, 0x8}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1391, 0x2}}, @TCA_GACT_PARMS={0x18, 0x2, {0xffffffff, 0x101, 0x6, 0x3, 0x48000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x137, 0x6}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}}]}, 0x100}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

3m31.067054181s ago: executing program 6 (id=9797):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x3, 0x4, 0x4, 0x9, 0x0, 0x1}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x3, 0x4, 0x4, 0x98, 0x0, 0x1}, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x7, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000218100000", @ANYRES32=r0, @ANYBLOB="000000000000000018100000", @ANYRES32=r1, @ANYBLOB="000000000000000095"], &(0x7f0000000a00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000005c0)={r2, 0xd8, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000000034d, &(0x7f0000001d00), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

3m30.880824317s ago: executing program 6 (id=9801):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000002680)=[{{&(0x7f0000000000)={0xa, 0x0, 0x2, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)="18", 0x1}], 0x1}}, {{&(0x7f0000000140)={0xa, 0x4e20, 0x200, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x80000001}, 0x1c, &(0x7f0000000800)=[{&(0x7f0000000240)='\x00', 0x1}], 0x1}}], 0x2, 0x0)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0xfc36, 0x20}, &(0x7f0000000200)=0xc)

3m30.52816708s ago: executing program 6 (id=9803):
r0 = syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r1 = syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
syz_usb_disconnect(r0)
read(r1, 0x0, 0x0)

3m27.323225964s ago: executing program 6 (id=9818):
syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000b40)='./file2\x00', 0x1200400, &(0x7f0000000000)=ANY=[], 0x1, 0xa7c, &(0x7f0000000b80)="$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")
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
creat(&(0x7f0000000000)='./file2\x00', 0x12e)

3m26.899232255s ago: executing program 6 (id=9833):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
r1 = dup(r0)
sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f00000007c0)="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", 0x5c5}], 0x1, &(0x7f0000000080)=[@ip_retopts={{0x14, 0x0, 0x7, {[@noop]}}}], 0x18}, 0x0)

3m11.72559026s ago: executing program 46 (id=9833):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='veth1_virt_wifi\x00', 0x10)
r1 = dup(r0)
sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f00000007c0)="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", 0x5c5}], 0x1, &(0x7f0000000080)=[@ip_retopts={{0x14, 0x0, 0x7, {[@noop]}}}], 0x18}, 0x0)

2m31.174612129s ago: executing program 9 (id=10275):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x2)
syz_emit_ethernet(0x4e, &(0x7f0000000740)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "f900f5", 0x18, 0x6, 0x1, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x0, 0x0, 0x10, {[@mptcp=@ack={0x1e, 0x4, 0xffb}]}}}}}}}}, 0x0)

2m30.851233799s ago: executing program 9 (id=10277):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000500)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0xfffffffc, @loopback, 0x6}, {0xa, 0x4e21, 0x8000, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x401}, r1, 0x401}}, 0x48)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000900)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f00000008c0)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20)

2m30.684981318s ago: executing program 9 (id=10279):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000002200)={0x2020}, 0x2020)
pread64(r0, &(0x7f0000002180)=""/114, 0x72, 0x59)
read$FUSE(r0, &(0x7f0000004240)={0x2020}, 0x2020)

2m30.454981525s ago: executing program 9 (id=10280):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
rmdir(&(0x7f00000003c0)='./control\x00')

2m30.196242517s ago: executing program 9 (id=10283):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000000e40)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x3, 0x37, 0x28, 0xe5, 0x0, 0xc, 0x6, 0x0, @remote, @broadcast}, {{0x4e21, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x2, 0x0, 0x8}}}}}}, 0x0)

2m29.299113s ago: executing program 9 (id=10288):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r1}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x10, &(0x7f0000000640)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x54}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m28.679946375s ago: executing program 47 (id=10288):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000340)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r1}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x10, &(0x7f0000000640)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x54}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m23.864835736s ago: executing program 1 (id=10839):
unshare(0x22020600)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f00000002c0)='./file1\x00', 0x8c0, &(0x7f0000000340)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119, @ANYBLOB="2d81167ce471c0ae99b4f078ccbec85d44f5f66d8256815bc9a0e02b4b1d31ee59ea9d8cdbbaf25b00ff37cd9445027bc0a305f4d989c5758e0b8ee488f581da6ba9b38fa615955cb56b9d4eb6954e931ad460a2afe3c17aa3eb8737be3915cc778b2e6943a6faf4fb1eb9c82cd5", @ANYRESHEX], 0x1, 0x4421, &(0x7f0000004500)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000640)='./file1\x00', 0x105042, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{r0}, 0x0, 0x0, 0x100000})

1m21.857598532s ago: executing program 1 (id=10851):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0)
copy_file_range(r1, 0x0, r0, 0x0, 0xfffffffffffffff8, 0x0)

1m21.591383742s ago: executing program 1 (id=10853):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x258, &(0x7f0000000780)="$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")
r0 = open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='./file1\x00')

1m21.09487732s ago: executing program 1 (id=10858):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000280)={{0x0, 0x4, 0x0, 0x9}, 'syz1\x00', 0x3f})
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_FFBIT(r0, 0x4004556b, 0x51)

1m20.630919274s ago: executing program 1 (id=10864):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0xf0, 0x32, 0x205, 0x70bd2d, 0x25dfdbfc, {}, [{0xc9}]}, 0xf0}, 0x1, 0x0, 0x0, 0x85}, 0x8000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
fstat(r0, &(0x7f0000000340))

1m20.29119421s ago: executing program 1 (id=10869):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000200)='bridge0\x00')

1m5.077751838s ago: executing program 48 (id=10869):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'erspan0\x00'})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000200)='bridge0\x00')

4.153441474s ago: executing program 8 (id=11442):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f80)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x3}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x4}}, @TCA_STAB={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x90}, 0x0)

3.86361246s ago: executing program 8 (id=11447):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{&(0x7f0000000280)={0x2, 0x4e22, @private=0xa010101}, 0x10, &(0x7f0000001140)=[{&(0x7f0000000200)="9c", 0x1}], 0x1}}, {{&(0x7f0000000080)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000300)="99", 0x1}], 0x1}}], 0x2, 0x48000)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r1=>0x0}, &(0x7f0000000000)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000017c0)={r1, 0x4}, 0x8)

3.65318766s ago: executing program 5 (id=11449):
r0 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r2, &(0x7f0000000180)='`', 0x2a, 0x0, &(0x7f0000000740)={0x6, 0x0, r1, 0x1, 0x0, 0x6, @random="4a99fee2084d"}, 0x14)

3.565447744s ago: executing program 8 (id=11451):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000101e040031000022000001090224000100000000090400000103000000092100000001220500090581030002"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000400)='\x00')

3.423479007s ago: executing program 5 (id=11453):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x0, 0x0, @local}}, 0x0, 0x0, 0x35, 0x0, "fd4e774e0f7cc8ba196d221230558161ad37e0ded15072b810a8ae11112cd0ab13e6b9fa08efdd93677c1b19fee75cb809252747680be8c480678c31768093f0d0cf5292de1a7505f7cc281300"}, 0xd8)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e22, 0x0, @empty}}, 0x0, 0x0, 0x17, 0x0, "d86ac46a073843d9f8060941f3d77262614c3cd1ba8b023fc00414f10c2b7974289520ce79fef70f5a2483620aef97999c7e0f07caa2360fa1374ae1dea4978f54b437d900"}, 0xd8)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)

3.251567846s ago: executing program 3 (id=11455):
ptrace$setregset(0x4205, 0x0, 0x1, &(0x7f0000000100)={&(0x7f0000000040)="dcef58b7f29c1f7c93d183044aedba283413e674c7719c33a4b17f028f68610a6c55bb2bf8282853f3e16f8394a8676ff55a3507e2ad50248c6130863b0f7433c7fbc9b978a39eae88bffd05d139cedbee444f7c98e1f92b0f64462b4b470bedced2125e0b1f38fbaa348c6d75aa1a4011e9cdae15ecb9309b0101edbf6dd6d111d6132f1821a4e4cbec8438c571a70e7ca7b0451a6cc5", 0x97})
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x1010000, &(0x7f0000000e40)=ANY=[@ANYBLOB='nobarrier,decompose,nls=cp936,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c626172726965722c756d61736b3d30303030303030303030303030303030303030343030342c0000a7b04339467661b236f69117d062071c62ba59c021917032b4bc3681eac13867d5802a6898aef3"], 0x0, 0x6e6, &(0x7f00000017c0)="$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")
setxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB='osx.'], 0x0, 0x0, 0x0)
listxattr(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)

3.161937349s ago: executing program 5 (id=11457):
r0 = fanotify_init(0x1a, 0x800)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0xa8)
fanotify_mark(r0, 0x641, 0x1028, r1, 0x0)
fanotify_mark(r0, 0x1, 0x48000038, r1, 0x0)

3.047819398s ago: executing program 3 (id=11458):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020002000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000002c0)={@random="ff6df1155bc4", @multicast, @void, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x4, 0x3c, 0x65, 0x0, 0x2, 0x6, 0x0, @multicast2, @empty}, @name_distributor={{0x28, 0x0, 0x0, 0x0, 0x0, 0xa, 0xb, 0x2, 0x7f, 0x0, 0x7, 0x3ff, 0x81, 0x0, 0x4e24, 0x4e21, 0x1, 0x2}}}}}}, 0x0)

2.894631809s ago: executing program 5 (id=11461):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40100, 0x8)
fcntl$notify(r0, 0x402, 0x25)
renameat2(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7\x00', 0x4)

2.711238845s ago: executing program 4 (id=11462):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f00000000c0)='./file1\x00', 0x1000812, &(0x7f0000001cc0)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYRES32, @ANYRES32=0x0, @ANYRESHEX=0x0, @ANYBLOB="0bffd5ece651e2a4648f9b08ce06626a8efcc3bee3ccef03f1e2279d8dc44bc4bd6a5d445b3f4f75b30ef3cc0a9d3c338a26ff996b57afbe65c46e61b66cf778b449292592952663ac34eb94f6fd4cfbda2af6c85c6e135955ca064c546ab638c56d2432e45e6d333181ee921f9f26a8ef"], 0x1, 0x305, &(0x7f0000000340)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x0)
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f0000000340)='./file1\x00', 0x20fffbfffc)

2.62726066s ago: executing program 5 (id=11463):
r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000010d804dd00000000000001090224000100000000090402000103000000092105000001220500090581030002"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f0000000040)="10")

2.627030639s ago: executing program 3 (id=11464):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ip6gretap0\x00', <r1=>0x0})
sendmsg(r0, &(0x7f00000019c0)={&(0x7f0000001840)=@ll={0x11, 0x3, r1, 0x1, 0x4, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x28}}, 0x80, &(0x7f0000001980)=[{&(0x7f0000000040)="cf74fcee1af1", 0x6}, {&(0x7f00000018c0)="9484352ad5", 0x5}], 0x2}, 0x24004045)

2.382337694s ago: executing program 4 (id=11466):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e24, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000300)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x68, 0x0, 0x0, 0x88, 0x0, @remote, @local}, {0xfffe, 0x4e24, 0x4d, 0x0, @wg=@initiation={0x1, 0x4, "497a1d08fd3d0ee007022798bb6374ed840b4f36f41fc4d035e9ebe414aa958d", "4bbef5e4007898221aa606d083cd59745493938f1e2de8fdadd3823fedd2c01b2aff03050a4ca5d10fd1b6b06f47ea42", "ef679d6a98e3943f6892078bb952854743fe4dddd2e7c0ce7100ac7d", {"a851525b16af17fe87acbae2ab0b233d", "01422d01cd53c3abe94331d0b7918724"}}}}}}}, 0x0)

2.320347962s ago: executing program 3 (id=11467):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x3, 0x300)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f0000000100)={0x7, 0x0, 0x0, 0x0, 0x800, 0x200000000, 0x0, 0x3ff}, 0x0, &(0x7f0000000240)={0x1f, 0xfffffffffffffffc, 0x2, 0x5, 0x80000, 0x8, 0x40, 0x4}, 0x0, 0x0)

2.143767249s ago: executing program 4 (id=11469):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400010000000000000000000a00a100", @ANYRES32=r2, @ANYBLOB="14000100fff1ffffffffffffff00000000000001080008000204"], 0x34}}, 0x0)

2.089615539s ago: executing program 7 (id=11470):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008032, 0xffffffffffffffff, 0xebd53000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)

1.791258124s ago: executing program 4 (id=11471):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000003c0)={0xfff9, 0xe38b, 0xffff, 0x40}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f00000001c0)='N', 0x1}], 0x1, 0x0, 0x0, 0xc005}, 0x4000890)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, &(0x7f0000000000), &(0x7f0000000040)=0x4)

1.485533377s ago: executing program 4 (id=11472):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0)
close(r1)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000540)=""/215, 0xd7}], 0x1}, 0x40)

1.380822747s ago: executing program 4 (id=11473):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119, @ANYRES32=0x0], 0x1, 0x4441, &(0x7f0000004480)="$eJzs3cFvG1UaAPA3k+w27bbdpNtDV1ppLW2lRYCipCcglUjTtGnShqJCK8QldRK3DThxlTiIQw/hVokTEgfEoQIJDiinKgeOlD+BCzfKuRIcuCBVQgTZniSesU3cKE5o9ftJ9Xjem/fmsz/P85tKzosT5VtzS7m5pVx+IVeaubF0Kvdeqbg8XwjxHtnv89OeTuRJ7vfP5bPn37h2KoRvZ79/tL6+vh4qukNTg3XPf/3lzkz9dkOcaVPpt3lvu+XtEMLxhrgqukIIb30dQhRCOJOUjSTbgyGEo6FWd+3Oh9dzdT3+8Hjn0dx/WDgdwuTdtaGTE6v31lq/9iiET4v/fvHm/E//6xr68fmdnxEAAAAAAAAAAAAAAAAAgGfJ2JXLV18fGAwPotC9GjX+Xncs2eZatF/fNf/t/IsFAAAAAAAAAAAAAAAAAACAv6it3//nomNNfv8/mmyHW7Rff7Vu56vOxUlnjL92efTcwGCy/nvUUP9SUvTzma7Q12Td9+z672cy7Zuv/954np2qxte1td8borg/iePLbyr7cdzfH8LnycLvJ6JDcbG0VH7hRml5YXbXwnhqpfNfW70/lZ1kQf928z+S6b/z6///q+HTVNm/vnsfsWdaOv9dLY/74oOorfyfzbTbi/yzc+n8d1fLDtYfMFwbACr5/6h7+/yPZvrvVP6PhhByUSXWXGoEqMxhKuWt5iukpfP/t2pZauhM3shW1//jTP7PZfrfr/F/JftFRFPp/P+9WtaTOmLr+u+Lt7/+z2f634/8V+JfSRd2dzaGp1c6/wdqhel3q/pOtjv+j2X671T+r8bVOKsTlvpPwGpUi7/V36sjLZ3/nob6rfu/uK3534VM+z25/6s778b938bw/1xUu/+juSeZ/7dz/Y9n2nV6/B+uzv/YqXT+D1XL0nPn3upju/mfyPTfqfxXZyU9G/nfGk9+P1Ar/8z8ry3p/P+jVhjXH7FSeeipzv+i7ef/FzP9/0n+d+lLoHH+V4l/Jd6d3p916fwfbnlcJf/ftfH9fynTrvPz/xAG/F/fjqXzf6TlcdXrv2f7/E9m2nU6///vZOcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAT4GRZNsborg/tR/H/f0hnE32T4RD0XR+dmq6WJp5dymE0aQ8F45FN4ul6Xxxam6hNFuYyheLpZkQziX1x0NPtFQslafm87fPb/Z1MLpVyC+Wpwv5cghhLCn/Tziy0df0XHk+fzuEcGGz7p9xafH2rfzC1Ozc4isDAwMDYXwzhr6o8H65sFCunb1WG8LEZtveqC64avXFzVgOR++UlhcX8sVq+aW6NsXSTL5Y12Yyqfs49EXlxeWFmXy5MFUs3dw4334aTraj41fevHJpsKH+elTbjuxtWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8oQdDL38SQuiu7cUhhFyUPImSfyn3HxZOT/02eXdt6OTE6r21R82OAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAPduBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrBL/ygNBFEcgN+MhZYew2rZ7WxXFNHCFcET6DE8jB7FS3gHixRpU4RAMgth/8A2SfV9zYP5MfMezAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFju8a17f62biBRX28uI38+//+P8udTvu+n7F2eYkdN5eunuH+qm/Hsa5bflaNXmfbpZf33ERO39DPZkuE8H4z5Dc/s2N1/f9zpSriKiLflNyrmqlr0FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALBjBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCjtwLAAAAAAgzN86ir4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAXwEAAP//xX0hlw==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

1.270666027s ago: executing program 3 (id=11474):
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f0000000500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r1, 0x0, r0, 0x0, 0xffffffffffff8000, 0x0)
close(r2)

1.268233846s ago: executing program 8 (id=11475):
r0 = socket$kcm(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x0, 0x4, 0x0, 0x0)
sendmsg$inet(r0, &(0x7f0000000340)={&(0x7f0000000140)={0x2, 0x4e22, @dev}, 0x10, 0x0}, 0x400c080)
close(r0)

947.153767ms ago: executing program 3 (id=11476):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000003c0)={[{@memory_low}, {@background_gc_off}, {@noquota}, {@inline_dentry}, {@data_flush}, {@discard_unit_segment}, {@noinline_xattr}, {@discard}, {@checkpoint_diasble}, {@user_xattr}, {@resgid}, {@noinline_xattr}, {@jqfmt_vfsv1}, {@noflush_merge}]}, 0xff, 0x5512, &(0x7f00000079c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x143041, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f0000000140)={0x17c04, 0xffffffffffffffff, 0x84, 0x75ea, 0x800004})

947.052457ms ago: executing program 8 (id=11477):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x1, 0x800, 0x2}, 0x0, &(0x7f0000000240)={0x1f, 0x3, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x2)

946.867327ms ago: executing program 7 (id=11478):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x2b, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

757.580391ms ago: executing program 7 (id=11479):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x490d, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000000)=[{{&(0x7f0000000040)={0xa, 0x5e24, 0x800, @loopback={0xff00000000000000}}, 0x1c, 0x0}}], 0x1, 0x24004040)

577.968818ms ago: executing program 7 (id=11480):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000018010000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

376.560111ms ago: executing program 7 (id=11481):
r0 = msgget(0x2, 0x600)
setresgid(0xee00, 0xee01, 0x0)
setreuid(0xee01, 0xee00)
msgrcv(r0, 0x0, 0x0, 0x0, 0x2000)

321.04485ms ago: executing program 5 (id=11482):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = io_uring_setup(0x7d1, &(0x7f0000000580)={0x0, 0xddf9, 0x2, 0xfffffffe, 0x183})
close_range(r1, r1, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001380)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x101, @private0, 0x7fffffff}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000600)='r', 0x1}], 0x1}}, {{&(0x7f0000000400)={0xa, 0x4e20, 0x8, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8}, 0x1c, &(0x7f0000000f80)=[{&(0x7f0000000480)='l', 0x1}], 0x1}}], 0x2, 0x0)

319.92363ms ago: executing program 7 (id=11483):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'gretap0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x5}, {0xffff, 0xffff}, {0xe}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x18, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x80000000}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x48}}, 0x0)

0s ago: executing program 8 (id=11484):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x20)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000300)=0x5876, 0x4)
recvmmsg(r0, &(0x7f0000000980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)=""/73, 0x49}, 0x6}], 0x1, 0x40010082, 0x0)

kernel console output (not intermixed with test programs):

atadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1424.725423][ T4353] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1424.925437][ T4353] usb 5-1: Using ep0 maxpacket: 32
[ 1424.933703][ T4353] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[ 1424.986672][ T4353] usb 5-1: config 0 has no interface number 0
[ 1424.993067][ T4353] usb 5-1: config 0 interface 184 has no altsetting 0
[ 1425.021859][ T4353] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1425.023485][ T4569] device hsr_slave_0 entered promiscuous mode
[ 1425.044439][ T4353] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1425.053661][ T4284] Bluetooth: hci4: command 0x041b tx timeout
[ 1425.065092][ T4353] usb 5-1: Product: syz
[ 1425.069782][ T4353] usb 5-1: Manufacturer: syz
[ 1425.076213][ T4569] device hsr_slave_1 entered promiscuous mode
[ 1425.076403][ T4353] usb 5-1: SerialNumber: syz
[ 1425.093091][ T4569] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1425.103584][ T4353] usb 5-1: config 0 descriptor??
[ 1425.103835][ T4569] Cannot create hsr debugfs directory
[ 1425.112401][ T4353] smsc75xx v1.0.0
[ 1425.125116][ T4668] netlink: 87 bytes leftover after parsing attributes in process `syz.3.10323'.
[ 1425.287481][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1425.383276][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1425.527898][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1425.727221][ T4682] program syz.1.10327 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1425.751951][ T4679] loop5: detected capacity change from 0 to 8192
[ 1425.764580][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1425.775114][ T4679] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1425.790828][ T4679] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[ 1425.800334][ T4679] REISERFS (device loop5): using ordered data mode
[ 1425.808182][ T4679] reiserfs: using flush barriers
[ 1425.821153][ T4679] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1425.839120][ T4679] REISERFS (device loop5): checking transaction log (loop5)
[ 1425.945710][ T4353] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71
[ 1425.962466][ T4353] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1425.972489][ T4353] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1425.983912][ T4353] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1426.001120][ T4679] REISERFS (device loop5): Using tea hash to sort names
[ 1426.014106][ T4679] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[ 1426.035190][ T4353] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[ 1426.095375][ T4353] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1426.135534][ T4353] smsc75xx: probe of 5-1:0.184 failed with error -71
[ 1426.183092][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1426.185515][ T4687] __sock_release: fasync list not empty!
[ 1426.197598][ T4353] usb 5-1: USB disconnect, device number 21
[ 1427.044453][ T4511] device hsr_slave_0 left promiscuous mode
[ 1427.079344][ T4511] device hsr_slave_1 left promiscuous mode
[ 1427.125446][T28628] Bluetooth: hci4: command 0x040f tx timeout
[ 1427.153484][ T4511] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1427.167746][ T4511] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1427.246871][ T4511] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1427.259552][ T4511] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1427.276206][ T4511] device bridge_slave_1 left promiscuous mode
[ 1427.294746][ T4511] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1427.323017][ T4511] device bridge_slave_0 left promiscuous mode
[ 1427.338813][ T4511] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1427.444267][ T4511] device veth1_macvtap left promiscuous mode
[ 1427.467913][ T4511] device veth0_macvtap left promiscuous mode
[ 1427.482819][ T4511] device veth1_vlan left promiscuous mode
[ 1427.504282][ T4511] device veth0_vlan left promiscuous mode
[ 1427.582651][ T4703] loop4: detected capacity change from 0 to 32768
[ 1427.903925][ T4713] loop5: detected capacity change from 0 to 32768
[ 1427.988805][ T4713] XFS (loop5): Mounting V5 Filesystem
[ 1428.063484][ T4713] XFS (loop5): Ending clean mount
[ 1428.247733][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1428.282496][ T3484] XFS (loop5): Unmounting Filesystem
[ 1428.965464][ T1897] usb 4-1: new high-speed USB device number 59 using dummy_hcd
[ 1429.167852][ T1897] usb 4-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[ 1429.185373][ T1897] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1429.194089][ T1897] usb 4-1: Product: syz
[ 1429.199004][ T1897] usb 4-1: Manufacturer: syz
[ 1429.203752][ T1897] usb 4-1: SerialNumber: syz
[ 1429.209854][T28628] Bluetooth: hci4: command 0x0419 tx timeout
[ 1429.218901][ T1897] usb 4-1: config 0 descriptor??
[ 1429.428607][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1429.483314][ T1897] usb 4-1: ignoring: probably an ADSL modem
[ 1429.729413][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1429.922310][ T1897] cxacru 4-1:0.0: usbatm_usb_probe: bind failed: -19!
[ 1429.959045][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1429.995813][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.061110][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.091765][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.154591][ T4312] usb 4-1: USB disconnect, device number 59
[ 1430.241530][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.257207][ T4511] team0 (unregistering): Port device team_slave_1 removed
[ 1430.312868][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.352151][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.397452][ T4511] team0 (unregistering): Port device team_slave_0 removed
[ 1430.405500][    C1] icmp: detected local route for 172.20.20.12 during ICMP sending, src 4.0.0.0
[ 1430.448270][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.534324][ T4511] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1430.649722][ T4511] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1430.834111][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.891336][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1430.982678][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.046685][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.168718][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.244918][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.280181][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.326314][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.405262][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1431.450733][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.037384][ T4511] bond0 (unregistering): Released all slaves
[ 1432.331202][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.412745][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.493580][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.635698][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.682799][ T4767] input: syz1 as /devices/virtual/input/input74
[ 1432.749250][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.783671][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1432.899805][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1433.062206][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1433.730860][ T4790] netlink: 56 bytes leftover after parsing attributes in process `syz.4.10364'.
[ 1433.928821][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1434.114168][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1434.286592][ T4815] loop4: detected capacity change from 0 to 256
[ 1434.359990][ T4815] exfat: Deprecated parameter 'namecase'
[ 1434.371765][ T4815] exfat: Deprecated parameter 'utf8'
[ 1434.403133][ T4569] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1434.436301][ T4815] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d)
[ 1434.446885][ T4569] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1434.503007][ T4569] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1434.548209][ T4569] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1434.584199][ T4825] netlink: 'syz.3.10376': attribute type 8 has an invalid length.
[ 1434.625888][ T4825] sch_fq: defrate 0 ignored.
[ 1434.971745][ T4569] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1435.069657][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1435.093389][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1435.142279][ T4569] 8021q: adding VLAN 0 to HW filter on device team0
[ 1435.172881][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1435.204077][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1435.224994][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1435.232512][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1435.261705][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1435.288030][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1435.329574][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1435.347042][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1435.354216][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1435.492743][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1435.508818][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1435.542682][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1435.543456][ T4829] loop5: detected capacity change from 0 to 32768
[ 1435.590095][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1435.629525][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1435.659705][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1435.685717][ T4851] device vlan0 entered promiscuous mode
[ 1435.744015][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1435.769341][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1435.806240][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1435.837256][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1435.870758][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1435.904536][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1435.944511][ T4284] Bluetooth: hci1: ISO packet too small
[ 1435.993450][ T4865] loop1: detected capacity change from 0 to 1024
[ 1436.116065][ T4865] hfsplus: bad catalog entry type
[ 1436.695503][T27029] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 1436.823568][ T4891] loop5: detected capacity change from 0 to 512
[ 1436.865053][ T4891] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[ 1436.887974][T27029] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1436.910132][ T4891] UDF-fs: Scanning with blocksize 512 failed
[ 1436.929910][T27029] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1436.977330][ T4897] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10398'.
[ 1436.994803][T27029] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1437.007205][ T4891] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[ 1437.021882][ T4569] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1437.029944][ T4891] UDF-fs: Scanning with blocksize 1024 failed
[ 1437.048650][T27029] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1437.067739][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1437.076685][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1437.084864][ T4891] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[ 1437.098356][ T4891] UDF-fs: Scanning with blocksize 2048 failed
[ 1437.110589][T27029] usb 2-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[ 1437.120979][ T4891] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[ 1437.141740][T27029] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1437.160446][ T4891] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1437.170381][T27029] usb 2-1: Product: syz
[ 1437.186156][T27029] usb 2-1: Manufacturer: syz
[ 1437.191136][T27029] usb 2-1: SerialNumber: syz
[ 1437.211031][T27029] usb 2-1: config 0 descriptor??
[ 1437.249074][   T26] audit: type=1800 audit(2000000554.357:608): pid=4891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.10397" name="file1" dev="loop5" ino=26 res=0 errno=0
[ 1437.456889][T27029] adutux 2-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[ 1437.571819][ T4912] device vlan2 entered promiscuous mode
[ 1437.605666][ T4912] device wlan0 entered promiscuous mode
[ 1437.701037][ T4353] usb 2-1: USB disconnect, device number 51
[ 1438.134151][ T4933] loop5: detected capacity change from 0 to 1024
[ 1438.176222][ T4933] EXT4-fs: inline encryption not supported
[ 1438.224051][ T4933] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1438.243673][ T4933] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1438.358949][ T4933] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1438.384503][ T4945] loop4: detected capacity change from 0 to 128
[ 1438.420087][ T4316] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1438.430392][ T4316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1438.490380][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1438.551988][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1438.569138][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1438.579590][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1438.615963][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1438.650186][ T4569] device veth0_vlan entered promiscuous mode
[ 1438.691016][ T4569] device veth1_vlan entered promiscuous mode
[ 1438.697409][ T4312] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1438.765682][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1438.794029][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1438.812773][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1438.824519][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1438.840809][ T4569] device veth0_macvtap entered promiscuous mode
[ 1438.874159][ T4569] device veth1_macvtap entered promiscuous mode
[ 1438.891272][ T4312] usb 2-1: Using ep0 maxpacket: 16
[ 1438.899262][ T4312] usb 2-1: config 0 has an invalid interface number: 4 but max is 0
[ 1438.919293][ T4312] usb 2-1: config 0 has no interface number 0
[ 1438.938654][ T4312] usb 2-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1438.955049][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1438.968262][ T4312] usb 2-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1438.996689][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1438.998166][ T4312] usb 2-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1439.032495][ T4312] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1439.035341][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1439.045431][ T4312] usb 2-1: config 0 descriptor??
[ 1439.091354][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.111949][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1439.136121][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.150587][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1439.193391][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.228702][ T4569] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1439.260177][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1439.298659][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1439.320445][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1439.342758][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1439.382791][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1439.425068][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.466162][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1439.499394][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.502750][ T4312] hid (null): unknown global tag 0xd
[ 1439.563913][ T4976] loop5: detected capacity change from 0 to 256
[ 1439.565052][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1439.636018][ T4976] exfat: Deprecated parameter 'utf8'
[ 1439.644175][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.675391][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1439.723798][ T1897] usb 2-1: USB disconnect, device number 52
[ 1439.745564][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.753462][ T4976] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1439.807298][ T4569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: ipvlan2
[ 1439.837964][ T4569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1439.885452][ T4569] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1439.921850][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1439.946287][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1439.986988][ T4569] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1440.026654][ T4569] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1440.077692][ T4569] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1440.123802][ T4569] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1440.352601][ T4996] syzkaller1: tun_chr_ioctl cmd 1074025675
[ 1440.379180][ T4996] syzkaller1: persist disabled
[ 1440.509360][ T4316] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1440.521139][ T4316] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1440.617147][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1440.696501][ T4511] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1440.704728][ T4511] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1440.739813][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1441.636774][ T5002] loop5: detected capacity change from 0 to 32768
[ 1441.755371][ T5002] XFS (loop5): Mounting V5 Filesystem
[ 1441.817125][ T5002] XFS (loop5): Ending clean mount
[ 1441.974230][ T3484] XFS (loop5): Unmounting Filesystem
[ 1442.247911][ T5064] loop7: detected capacity change from 0 to 128
[ 1442.281717][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1442.347097][ T5064] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1442.364154][ T5064] ext4 filesystem being mounted at /5/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1442.375282][ T4312] usb 4-1: new high-speed USB device number 60 using dummy_hcd
[ 1442.390227][ T5064] fscrypt (loop7, inode 12): Direct key flag not allowed with different contents and filenames modes
[ 1442.442634][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1442.506565][ T5072] loop4: detected capacity change from 0 to 1024
[ 1442.508359][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1442.538780][ T5068] loop1: detected capacity change from 0 to 4096
[ 1442.567100][ T5072] EXT4-fs: Ignoring removed bh option
[ 1442.595354][ T4312] usb 4-1: Using ep0 maxpacket: 32
[ 1442.602929][ T5072] EXT4-fs: Ignoring removed oldalloc option
[ 1442.603193][ T4312] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[ 1442.623278][ T4569] EXT4-fs (loop7): unmounting filesystem.
[ 1442.685181][ T4312] usb 4-1: config 0 has no interface number 0
[ 1442.703961][ T4312] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1442.729198][ T5072] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1442.742104][ T4312] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1442.747875][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1442.794388][ T4312] usb 4-1: Product: syz
[ 1442.822070][ T4312] usb 4-1: Manufacturer: syz
[ 1442.843112][ T4312] usb 4-1: SerialNumber: syz
[ 1442.864009][ T5072] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1442.886734][T25892] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[ 1442.895882][T25892] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[ 1442.910793][ T4312] usb 4-1: config 0 descriptor??
[ 1442.958192][ T4312] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1443.175846][ T5057] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1443.184969][ T5057] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1443.257009][ T2044] EXT4-fs (loop4): unmounting filesystem.
[ 1443.582149][ T4312] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1443.623533][ T5099] loop1: detected capacity change from 0 to 512
[ 1443.642942][ T4312] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1443.681594][ T5099] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1443.695594][ T5100] sctp: [Deprecated]: syz.5.10457 (pid 5100) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1443.695594][ T5100] Use struct sctp_sack_info instead
[ 1443.760357][ T5099] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1443.801308][    C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1443.801587][ T1897] usb 4-1: USB disconnect, device number 60
[ 1443.868183][ T5099] EXT4-fs (loop1): 1 truncate cleaned up
[ 1443.878089][ T5099] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1443.888595][ T1897] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1443.920128][ T1897] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1443.942130][ T1897] quatech2 4-1:0.51: device disconnected
[ 1444.369037][T25892] EXT4-fs (loop1): unmounting filesystem.
[ 1445.072987][ T5141] loop7: detected capacity change from 0 to 2048
[ 1445.267373][ T5141] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1445.456096][ T5141] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1445.579860][ T5139] loop5: detected capacity change from 0 to 131072
[ 1445.587668][ T4346] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1445.626362][ T5141] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28
[ 1445.639755][ T5139] F2FS-fs (loop5): Invalid log sectorsize (67108873)
[ 1445.646776][ T5139] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[ 1445.656132][ T5139] F2FS-fs (loop5): invalid crc value
[ 1445.671354][ T5141] EXT4-fs (loop7): This should not happen!! Data will be lost
[ 1445.671354][ T5141] 
[ 1445.689345][ T5141] EXT4-fs (loop7): Total free blocks count 0
[ 1445.695736][ T5141] EXT4-fs (loop7): Free/Dirty block details
[ 1445.701847][ T5141] EXT4-fs (loop7): free_blocks=2415919104
[ 1445.708219][ T5141] EXT4-fs (loop7): dirty_blocks=64
[ 1445.714320][ T5141] EXT4-fs (loop7): Block reservation details
[ 1445.721693][ T5141] EXT4-fs (loop7): i_reserved_data_blocks=4
[ 1445.733674][ T5139] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1445.798681][ T5139] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[ 1445.806175][ T5139] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[ 1445.814644][ T4346] usb 5-1: Using ep0 maxpacket: 16
[ 1445.846919][ T4346] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1445.905312][ T4346] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1445.965203][ T4346] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1445.984990][T16117] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1446.006118][ T4346] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1446.019768][ T4346] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1446.098724][ T4346] usb 5-1: config 0 descriptor??
[ 1446.190245][ T5170] loop7: detected capacity change from 0 to 256
[ 1446.287075][ T5170] FAT-fs (loop7): Directory bread(block 64) failed
[ 1446.322356][ T5170] FAT-fs (loop7): Directory bread(block 65) failed
[ 1446.355265][ T5170] FAT-fs (loop7): Directory bread(block 66) failed
[ 1446.382410][ T5170] FAT-fs (loop7): Directory bread(block 67) failed
[ 1446.406001][ T5170] FAT-fs (loop7): Directory bread(block 68) failed
[ 1446.411039][ T5167] loop1: detected capacity change from 0 to 4096
[ 1446.443264][ T5170] FAT-fs (loop7): Directory bread(block 69) failed
[ 1446.501611][ T5170] FAT-fs (loop7): Directory bread(block 70) failed
[ 1446.513093][ T4346] microsoft 0003:045E:07DA.0050: ignoring exceeding usage max
[ 1446.531893][ T5170] FAT-fs (loop7): Directory bread(block 71) failed
[ 1446.552201][ T5170] FAT-fs (loop7): Directory bread(block 72) failed
[ 1446.557109][ T4346] microsoft 0003:045E:07DA.0050: unsupported Resolution Multiplier 0
[ 1446.575702][ T5170] FAT-fs (loop7): Directory bread(block 73) failed
[ 1446.627449][ T4346] microsoft 0003:045E:07DA.0050: implement() called with n (152) > 32! (kworker/0:8)
[ 1446.715343][ T4346] microsoft 0003:045E:07DA.0050: unsupported Resolution Multiplier 0
[ 1446.724288][ T4346] microsoft 0003:045E:07DA.0050: No inputs registered, leaving
[ 1446.807102][ T4346] microsoft 0003:045E:07DA.0050: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[ 1446.818139][   T26] audit: type=1800 audit(2000000563.927:609): pid=5170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.10478" name="bus" dev="loop7" ino=1049244 res=0 errno=0
[ 1446.841695][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1446.885351][ T4346] microsoft 0003:045E:07DA.0050: no inputs found
[ 1446.949277][ T4346] microsoft 0003:045E:07DA.0050: could not initialize ff, continuing anyway
[ 1447.032388][ T4346] usb 5-1: USB disconnect, device number 22
[ 1447.371441][ T5188] fido_id[5188]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[ 1447.520738][ T5201] netlink: 'syz.7.10489': attribute type 11 has an invalid length.
[ 1447.545258][ T5201] netlink: 36 bytes leftover after parsing attributes in process `syz.7.10489'.
[ 1448.186726][ T5185] loop1: detected capacity change from 0 to 32768
[ 1448.188853][ T5215] loop4: detected capacity change from 0 to 16
[ 1448.302091][ T5215] erofs: (device loop4): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 143300)
[ 1448.353039][ T5185] XFS (loop1): Mounting V5 Filesystem
[ 1448.401136][T26846] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1448.426350][ T5185] XFS (loop1): Ending clean mount
[ 1448.761505][T25892] XFS (loop1): Unmounting Filesystem
[ 1448.848733][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1448.890476][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1449.522863][ T5255] loop5: detected capacity change from 0 to 2048
[ 1449.696636][ T5263] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1449.791052][ T5264] NILFS (loop5): unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿš@­LqE�:†‹� á艞Õt}²0ü�$‰"
[ 1450.602437][ T5294] binder: 5292:5294 ioctl c0306201 2000000003c0 returned -14
[ 1450.637037][ T5296] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10518'.
[ 1450.805239][ T4284] Bluetooth: hci3: command 0x0406 tx timeout
[ 1451.013669][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1451.449401][ T5290] loop1: detected capacity change from 0 to 32768
[ 1452.381514][ T5353] sctp: [Deprecated]: syz.1.10538 (pid 5353) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1452.381514][ T5353] Use struct sctp_sack_info instead
[ 1452.485527][ T1897] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1452.690679][ T1897] usb 5-1: Using ep0 maxpacket: 16
[ 1452.702266][ T1897] usb 5-1: config 0 has an invalid interface number: 4 but max is 0
[ 1452.751878][ T1897] usb 5-1: config 0 has no interface number 0
[ 1452.772204][ T1897] usb 5-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1452.835206][ T1897] usb 5-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1452.890463][ T1897] usb 5-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1452.938214][ T1897] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1452.968482][ T1897] usb 5-1: config 0 descriptor??
[ 1453.389443][ T1897] hid (null): unknown global tag 0xd
[ 1453.448794][ T5392] loop5: detected capacity change from 0 to 256
[ 1453.527091][ T5392] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1453.651171][ T1897] usb 5-1: USB disconnect, device number 23
[ 1453.812621][ T5399] loop7: detected capacity change from 0 to 4096
[ 1454.651524][ T5431] loop7: detected capacity change from 0 to 512
[ 1454.808167][ T5437] loop1: detected capacity change from 0 to 256
[ 1455.328401][ T5447] lo speed is unknown, defaulting to 1000
[ 1455.365230][ T5488] usb 4-1: new high-speed USB device number 61 using dummy_hcd
[ 1455.558475][ T5430] loop5: detected capacity change from 0 to 32768
[ 1455.565257][ T5488] usb 4-1: Using ep0 maxpacket: 16
[ 1455.576338][ T5488] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1455.593132][ T5430] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 scanned by syz.5.10568 (5430)
[ 1455.619176][ T5488] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1455.631484][ T5437] loop1: detected capacity change from 0 to 32768
[ 1455.652794][ T5488] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[ 1455.667649][ T5488] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1455.687985][ T5488] usb 4-1: config 0 descriptor??
[ 1455.698325][ T4346] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[ 1455.711348][ T5430] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1455.730796][   T26] audit: type=1800 audit(2000000572.837:610): pid=5437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.10570" name="file1" dev="loop1" ino=4 res=0 errno=0
[ 1455.752185][ T5437] ERROR: (device loop1): dbAllocBits: leaf page corrupt
[ 1455.752185][ T5437] 
[ 1455.776311][ T5437] ERROR: (device loop1): remounting filesystem as read-only
[ 1455.785718][ T5430] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[ 1455.805841][ T5437] syz.1.10570: attempt to access beyond end of device
[ 1455.805841][ T5437] loop1: rw=34817, sector=4687872, nr_sectors = 6 limit=32768
[ 1455.821780][ T5430] BTRFS info (device loop5): enabling auto defrag
[ 1455.835442][ T5430] BTRFS info (device loop5): use no compression
[ 1455.842503][ T5430] BTRFS info (device loop5): max_inline at 4096
[ 1455.864945][ T5437] syz.1.10570: attempt to access beyond end of device
[ 1455.864945][ T5437] loop1: rw=34817, sector=4687878, nr_sectors = 2048 limit=32768
[ 1455.880748][ T5430] BTRFS info (device loop5): using free space tree
[ 1455.906953][ T4346] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1455.932995][ T5437] syz.1.10570: attempt to access beyond end of device
[ 1455.932995][ T5437] loop1: rw=34817, sector=4689926, nr_sectors = 2048 limit=32768
[ 1455.959181][ T4346] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1455.980064][ T4346] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1455.986632][ T5437] syz.1.10570: attempt to access beyond end of device
[ 1455.986632][ T5437] loop1: rw=34817, sector=4691974, nr_sectors = 2048 limit=32768
[ 1455.990422][ T4346] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1456.015400][ T4346] usb 5-1: Product: syz
[ 1456.020964][ T4346] usb 5-1: Manufacturer: syz
[ 1456.027235][ T4346] usb 5-1: SerialNumber: syz
[ 1456.037182][ T4346] usb 5-1: config 0 descriptor??
[ 1456.045605][ T5437] syz.1.10570: attempt to access beyond end of device
[ 1456.045605][ T5437] loop1: rw=34817, sector=4694022, nr_sectors = 2042 limit=32768
[ 1456.064928][ T4346] usb 5-1: selecting invalid altsetting 0
[ 1456.107713][  T106] blkno = 8f100, nblocks = 400
[ 1456.113372][  T106] ERROR: (device loop1): dbFree: block to be freed is outside the map
[ 1456.113372][  T106] 
[ 1456.126518][ T5488] konepure 0003:1E7D:2DB4.0052: unknown main item tag 0x0
[ 1456.176206][ T5488] konepure 0003:1E7D:2DB4.0052: unknown main item tag 0x0
[ 1456.218590][ T5488] konepure 0003:1E7D:2DB4.0052: unknown main item tag 0x0
[ 1456.255338][ T5430] BTRFS info (device loop5): enabling ssd optimizations
[ 1456.258446][ T5488] konepure 0003:1E7D:2DB4.0052: unknown main item tag 0x0
[ 1456.323067][ T5488] konepure 0003:1E7D:2DB4.0052: hidraw0: USB HID v0.00 Device [HID 1e7d:2db4] on usb-dummy_hcd.3-1/input0
[ 1456.440382][ T5488] usb 4-1: USB disconnect, device number 61
[ 1456.454821][ T4346] usb 5-1: USB disconnect, device number 24
[ 1456.688521][ T5484] fido_id[5484]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1456.724309][ T3484] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1456.830546][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1456.927175][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.057210][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.113937][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.165160][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.276823][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.394664][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.577364][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.713080][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1457.857140][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1458.076212][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1458.397161][ T5538] program syz.3.10589 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1458.576664][ T5541] netlink: 48 bytes leftover after parsing attributes in process `syz.7.10591'.
[ 1459.028718][ T5554] device erspan0 entered promiscuous mode
[ 1459.451102][ T5569] netlink: 40 bytes leftover after parsing attributes in process `syz.1.10602'.
[ 1459.523665][ T5572] af_packet: tpacket_rcv: packet too big, clamped from 28 to 4294967272. macoff=96
[ 1459.633609][ T5569] netlink: 40 bytes leftover after parsing attributes in process `syz.1.10602'.
[ 1460.080696][ T5592] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10609'.
[ 1460.239026][ T5594] loop1: detected capacity change from 0 to 2048
[ 1460.286117][ T5599] loop4: detected capacity change from 0 to 256
[ 1460.288225][ T5594] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1460.293529][ T5599] exfat: Deprecated parameter 'utf8'
[ 1460.345417][ T5488] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[ 1460.399227][   T26] audit: type=1800 audit(2000000577.507:611): pid=5594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.10610" name="file1" dev="loop1" ino=1346 res=0 errno=0
[ 1460.545226][ T5488] usb 6-1: Using ep0 maxpacket: 32
[ 1460.554072][ T5488] usb 6-1: New USB device found, idVendor=1039, idProduct=2120, bcdDevice= 2.a7
[ 1460.605285][ T5488] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1460.613478][ T5488] usb 6-1: Product: syz
[ 1460.633798][ T5488] usb 6-1: Manufacturer: syz
[ 1460.670114][ T5488] usb 6-1: SerialNumber: syz
[ 1460.698791][ T5488] usb 6-1: config 0 descriptor??
[ 1460.721346][ T5607] netlink: 64 bytes leftover after parsing attributes in process `syz.3.10617'.
[ 1460.940280][ T5488] usb 6-1: [ueagle-atm] ADSL device founded vid (0X1039) pid (0X2120) Rev (0X2A7): Eagle II
[ 1461.221200][ T5627] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10624'.
[ 1461.465451][ T1906] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1461.655582][ T5488] usb 6-1: reset high-speed USB device number 37 using dummy_hcd
[ 1461.667083][ T1906] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1461.688133][ T1906] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1461.713958][ T1906] usb 5-1: config 0 descriptor??
[ 1461.730767][ T1906] cp210x 5-1:0.0: cp210x converter detected
[ 1462.071616][ T5488] usb 6-1: [UEAGLE-ATM] interface 1 not found
[ 1462.084080][ T5488] ueagle-atm 6-1:0.0: usbatm_usb_probe: bind failed: -19!
[ 1462.277182][ T5488] usb 6-1: USB disconnect, device number 37
[ 1462.350257][ T1906] cp210x 5-1:0.0: failed to get vendor val 0x000e size 678: -71
[ 1462.376058][ T1906] cp210x 5-1:0.0: GPIO initialisation failed: -71
[ 1462.392783][ T1906] usb 5-1: cp210x converter now attached to ttyUSB0
[ 1462.402130][ T1906] usb 5-1: USB disconnect, device number 25
[ 1462.430460][ T1906] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1462.467844][ T1906] cp210x 5-1:0.0: device disconnected
[ 1462.895009][ T1898] usb 4-1: new high-speed USB device number 62 using dummy_hcd
[ 1463.096115][ T1898] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1463.151695][ T1898] usb 4-1: config 0 has no interfaces?
[ 1463.178299][ T1898] usb 4-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1463.222032][ T1898] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1463.254955][ T1898] usb 4-1: config 0 descriptor??
[ 1463.427373][ T5695] lo speed is unknown, defaulting to 1000
[ 1463.793597][ T1898] usb 4-1: USB disconnect, device number 62
[ 1463.919968][ T5691] loop5: detected capacity change from 0 to 32768
[ 1464.103505][ T5712] netlink: 56 bytes leftover after parsing attributes in process `syz.1.10645'.
[ 1464.416246][ T5715] loop4: detected capacity change from 0 to 8192
[ 1464.464075][ T5715] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1464.512578][ T5715] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[ 1464.541850][ T5715] REISERFS (device loop4): using ordered data mode
[ 1464.564559][ T5718] loop1: detected capacity change from 0 to 8192
[ 1464.591110][ T5715] reiserfs: using flush barriers
[ 1464.606291][ T5718] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1464.621378][ T5718] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[ 1464.631807][ T5718] REISERFS (device loop1): using ordered data mode
[ 1464.635481][ T5715] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1464.639242][ T5718] reiserfs: using flush barriers
[ 1464.672975][ T5718] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1464.736480][ T5718] REISERFS (device loop1): checking transaction log (loop1)
[ 1464.775594][ T5715] REISERFS (device loop4): checking transaction log (loop4)
[ 1464.826550][ T5715] REISERFS (device loop4): Using r5 hash to sort names
[ 1464.834406][ T5715] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[ 1465.199317][ T5718] REISERFS (device loop1): Using tea hash to sort names
[ 1465.237676][ T5718] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[ 1465.509820][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1465.795635][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1465.886619][ T5748] netlink: 12 bytes leftover after parsing attributes in process `syz.5.10657'.
[ 1466.920451][ T5783] loop7: detected capacity change from 0 to 512
[ 1466.963582][ T5783] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found
[ 1467.031794][ T5783] UDF-fs: Scanning with blocksize 512 failed
[ 1467.106922][ T5783] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found
[ 1467.114616][ T5783] UDF-fs: Scanning with blocksize 1024 failed
[ 1467.200543][ T5783] UDF-fs: warning (device loop7): udf_load_vrs: No VRS found
[ 1467.215247][ T5783] UDF-fs: Scanning with blocksize 2048 failed
[ 1467.260522][ T5783] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1467.296718][ T5783] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1467.389559][   T26] audit: type=1800 audit(2000000584.497:612): pid=5783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.10668" name="file1" dev="loop7" ino=26 res=0 errno=0
[ 1467.576810][ T5805] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1467.590636][ T5805] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1467.789367][ T5810] loop5: detected capacity change from 0 to 512
[ 1467.845481][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1468.000608][ T5810] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1468.033992][ T5813] xt_CT: No such helper "pptp"
[ 1468.080944][ T5810] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1468.229027][ T5810] EXT4-fs error (device loop5): ext4_do_update_inode:5272: inode #2: comm syz.5.10679: corrupted inode contents
[ 1468.342421][ T5810] EXT4-fs error (device loop5): ext4_dirty_inode:6137: inode #2: comm syz.5.10679: mark_inode_dirty error
[ 1468.435094][ T5841] Bluetooth: MGMT ver 1.22
[ 1468.461369][ T5810] EXT4-fs error (device loop5): ext4_do_update_inode:5272: inode #2: comm syz.5.10679: corrupted inode contents
[ 1468.504514][ T5832] loop7: detected capacity change from 0 to 4096
[ 1468.572058][ T5833] EXT4-fs error (device loop5): ext4_do_update_inode:5272: inode #2: comm syz.5.10679: corrupted inode contents
[ 1468.690710][ T5833] EXT4-fs error (device loop5): ext4_dirty_inode:6137: inode #2: comm syz.5.10679: mark_inode_dirty error
[ 1468.756577][ T5833] EXT4-fs error (device loop5): ext4_do_update_inode:5272: inode #2: comm syz.5.10679: corrupted inode contents
[ 1468.911020][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1468.960211][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1469.963213][ T5857] loop7: detected capacity change from 0 to 32768
[ 1470.138239][ T5857] XFS (loop7): Mounting V5 Filesystem
[ 1470.277027][ T1898] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[ 1470.385789][ T5857] XFS (loop7): Ending clean mount
[ 1470.485442][ T4284] Bluetooth: hci2: command 0x0401 tx timeout
[ 1470.485567][T28628] Bluetooth: hci2: Opcode 0x0401 failed: -110
[ 1470.499754][ T1898] usb 2-1: Using ep0 maxpacket: 8
[ 1470.515263][ T1898] usb 2-1: config 0 has an invalid interface number: 30 but max is 0
[ 1470.516320][ T5902] misc userio: Can't change port type on an already running userio instance
[ 1470.524244][ T1898] usb 2-1: config 0 has no interface number 0
[ 1470.544068][ T1898] usb 2-1: too many endpoints for config 0 interface 30 altsetting 222: 254, using maximum allowed: 30
[ 1470.556145][ T1898] usb 2-1: config 0 interface 30 altsetting 222 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1470.568257][ T1898] usb 2-1: config 0 interface 30 altsetting 222 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1470.579336][ T1898] usb 2-1: config 0 interface 30 altsetting 222 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[ 1470.593224][ T1898] usb 2-1: config 0 interface 30 has no altsetting 0
[ 1470.600748][ T1898] usb 2-1: New USB device found, idVendor=256c, idProduct=006e, bcdDevice= 0.00
[ 1470.615485][ T1898] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1470.636230][ T1898] usb 2-1: config 0 descriptor??
[ 1470.789775][ T4569] XFS (loop7): Unmounting Filesystem
[ 1470.905502][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1470.941119][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1471.029553][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1471.067398][ T1898] uclogic 0003:256C:006E.0053: interface is invalid, ignoring
[ 1471.135336][T27022] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[ 1471.141087][ T5913] lo speed is unknown, defaulting to 1000
[ 1471.183352][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1471.271215][T27029] usb 2-1: USB disconnect, device number 53
[ 1471.310290][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1471.387194][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1471.425666][T27022] usb 6-1: Using ep0 maxpacket: 16
[ 1471.433224][T27022] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1471.477715][T27022] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1471.481036][ T5488] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1471.515472][T27022] usb 6-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[ 1471.543958][T27022] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1471.577739][T27022] usb 6-1: config 0 descriptor??
[ 1471.661165][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1471.705196][ T5488] usb 5-1: Using ep0 maxpacket: 32
[ 1471.712869][ T5488] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1471.757781][ T5488] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1471.818237][ T5488] usb 5-1: New USB device found, idVendor=1f71, idProduct=3306, bcdDevice=1b.23
[ 1471.869628][ T5488] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1471.915164][ T5488] usb 5-1: Product: syz
[ 1471.919485][ T5488] usb 5-1: Manufacturer: syz
[ 1471.944958][ T5488] usb 5-1: SerialNumber: syz
[ 1471.973923][ T5488] usb 5-1: config 0 descriptor??
[ 1472.018991][T27022] cougar 0003:060B:500A.0054: usage count exceeds max: fixing up report descriptor
[ 1472.061895][T27022] cougar 0003:060B:500A.0054: unexpected long global item
[ 1472.090962][T27022] cougar 0003:060B:500A.0054: parse failed
[ 1472.119266][T27022] cougar: probe of 0003:060B:500A.0054 failed with error -22
[ 1472.253185][T27022] usb 6-1: USB disconnect, device number 38
[ 1472.323265][ T5935] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1472.380605][ T5488] usb 5-1: USB disconnect, device number 26
[ 1472.542572][ T5941] loop7: detected capacity change from 0 to 1024
[ 1472.642796][ T5941] hfsplus: bad catalog entry type
[ 1472.747700][T26122] hfsplus: b-tree write err: -5, ino 25
[ 1472.760367][T26122] hfsplus: b-tree write err: -5, ino 4
[ 1472.780014][T26122] hfsplus: b-tree write err: -5, ino 2
[ 1472.807578][T26122] hfsplus: b-tree write err: -5, ino 26
[ 1473.698326][ T5981] A link change request failed with some changes committed already. Interface ip6gretap0 may have been left with an inconsistent configuration, please check.
[ 1473.735512][ T5488] usb 4-1: new high-speed USB device number 63 using dummy_hcd
[ 1473.925436][ T5488] usb 4-1: Using ep0 maxpacket: 16
[ 1473.954835][ T5488] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1474.012203][ T5488] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1474.086870][ T5488] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1474.118439][ T5488] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1474.135261][ T5488] usb 4-1: Product: syz
[ 1474.155226][ T5488] usb 4-1: Manufacturer: syz
[ 1474.160036][ T5488] usb 4-1: SerialNumber: syz
[ 1474.295565][ T6005] loop1: detected capacity change from 0 to 256
[ 1474.370384][ T6005] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d)
[ 1474.398448][ T5488] usb 4-1: 0:2 : does not exist
[ 1474.424489][ T5488] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[ 1474.526184][ T5488] usb 4-1: USB disconnect, device number 63
[ 1474.830019][T26846] udevd[26846]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1474.853908][ T6026] netlink: 7 bytes leftover after parsing attributes in process `syz.7.10743'.
[ 1475.781332][ T6048] lo speed is unknown, defaulting to 1000
[ 1476.047816][ T6049] loop7: detected capacity change from 0 to 8192
[ 1476.325483][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1476.439241][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1476.557227][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1477.705756][ T6105] block nbd2: server does not support multiple connections per device.
[ 1477.726668][ T6105] block nbd2: shutting down sockets
[ 1477.845758][T28628] Bluetooth: hci2: command 0x0401 tx timeout
[ 1477.851831][ T4284] Bluetooth: hci2: Opcode 0x0401 failed: -110
[ 1477.967182][ T6114] IPv6: addrconf: prefix option has invalid lifetime
[ 1478.285981][ T4346] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[ 1478.489293][ T4346] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[ 1478.509256][ T4346] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1478.552686][ T4346] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1478.604739][ T4346] usb 5-1: config 220 has no interface number 2
[ 1478.628377][ T4346] usb 5-1: config 220 interface 1 altsetting 5 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1478.641657][ T6138] misc userio: Begin command sent, but we're already running
[ 1478.649389][ T4346] usb 5-1: config 220 interface 1 altsetting 5 bulk endpoint 0x1 has invalid maxpacket 0
[ 1478.649420][ T4346] usb 5-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[ 1478.649443][ T4346] usb 5-1: config 220 interface 0 has no altsetting 0
[ 1478.649475][ T4346] usb 5-1: config 220 interface 76 has no altsetting 0
[ 1478.649492][ T4346] usb 5-1: config 220 interface 1 has no altsetting 0
[ 1478.667259][ T4346] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1478.722239][ T4346] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1478.737062][ T4346] usb 5-1: Product: syz
[ 1478.741670][ T4346] usb 5-1: Manufacturer: syz
[ 1478.750536][ T4346] usb 5-1: SerialNumber: syz
[ 1478.994302][ T4346] uvcvideo 5-1:220.1: Unknown video format 00000000-0000-0000-0000-000000000000
[ 1479.018037][ T4346] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[ 1479.032711][ T4346] usb 5-1: No valid video chain found.
[ 1479.085207][ T4346] usb 5-1: selecting invalid altsetting 0
[ 1479.145413][ T4346] usb 5-1: selecting invalid altsetting 0
[ 1479.151985][ T4346] usbtest: probe of 5-1:220.1 failed with error -22
[ 1479.184617][ T4346] usb 5-1: USB disconnect, device number 27
[ 1479.275965][ T6140] loop5: detected capacity change from 0 to 32768
[ 1479.419072][ T6156] netlink: 220 bytes leftover after parsing attributes in process `syz.3.10786'.
[ 1479.511743][ T6159] lo speed is unknown, defaulting to 1000
[ 1479.775536][ T1897] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1479.975282][ T1897] usb 2-1: Using ep0 maxpacket: 16
[ 1479.982679][ T1897] usb 2-1: config 0 has no interfaces?
[ 1479.991810][ T1897] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1480.025173][ T1897] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1480.034476][ T6172] lo speed is unknown, defaulting to 1000
[ 1480.055655][ T1897] usb 2-1: Manufacturer: syz
[ 1480.082379][ T1897] usb 2-1: config 0 descriptor??
[ 1480.247560][ T6181] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10794'.
[ 1480.263026][ T6174] loop5: detected capacity change from 0 to 8192
[ 1480.270299][ T6181] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10794'.
[ 1480.290993][ T6181] netlink: 'syz.4.10794': attribute type 18 has an invalid length.
[ 1480.420773][ T1897] usb 2-1: USB disconnect, device number 54
[ 1481.579781][ T6218] vcan0: tx drop: invalid da for name 0x00000000000000f0
[ 1481.921765][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1482.064188][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1483.067995][ T6279] loop1: detected capacity change from 0 to 4096
[ 1483.136617][ T6283] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1483.181818][   T26] audit: type=1800 audit(2000000600.287:613): pid=6279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.10826" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1483.339208][ T6285] loop5: detected capacity change from 0 to 136
[ 1483.381038][ T6285] Attempt to read inode for relocated directory
[ 1483.503835][ T6290] loop4: detected capacity change from 0 to 256
[ 1483.620601][ T6290] FAT-fs (loop4): Directory bread(block 64) failed
[ 1483.635457][ T6290] FAT-fs (loop4): Directory bread(block 65) failed
[ 1483.673045][ T6290] FAT-fs (loop4): Directory bread(block 66) failed
[ 1483.741377][ T6290] FAT-fs (loop4): Directory bread(block 67) failed
[ 1483.767009][ T6290] FAT-fs (loop4): Directory bread(block 68) failed
[ 1483.794159][ T6290] FAT-fs (loop4): Directory bread(block 69) failed
[ 1483.823594][ T6290] FAT-fs (loop4): Directory bread(block 70) failed
[ 1483.850672][ T6290] FAT-fs (loop4): Directory bread(block 71) failed
[ 1483.868376][ T6290] FAT-fs (loop4): Directory bread(block 72) failed
[ 1483.880831][ T6290] FAT-fs (loop4): Directory bread(block 73) failed
[ 1484.025257][ T5488] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[ 1484.080058][ T6276] loop7: detected capacity change from 0 to 40427
[ 1484.137824][ T6276] F2FS-fs (loop7): build fault injection attr: rate: 771, type: 0x3ffff
[ 1484.206724][ T6276] F2FS-fs (loop7): invalid crc value
[ 1484.231344][ T5488] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1484.256939][ T6276] F2FS-fs (loop7): Found nat_bits in checkpoint
[ 1484.261034][ T5488] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1484.365257][ T5488] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1484.409555][ T5488] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1484.428265][ T6276] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1484.475521][ T5488] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1484.556509][ T5488] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1484.568454][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.568500][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.615226][ T5488] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1484.623859][ T5488] usb 6-1: Product: syz
[ 1484.650047][ T5488] usb 6-1: Manufacturer: syz
[ 1484.717501][ T5488] cdc_wdm 6-1:1.0: skipping garbage
[ 1484.723304][ T5488] cdc_wdm 6-1:1.0: skipping garbage
[ 1484.806685][ T5488] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[ 1484.813963][ T5488] cdc_wdm 6-1:1.0: Unknown control protocol
[ 1484.850849][ T4569] syz-executor: attempt to access beyond end of device
[ 1484.850849][ T4569] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1485.721259][ T6318] loop1: detected capacity change from 0 to 32768
[ 1485.792171][ T6318] JBD2: Ignoring recovery information on journal
[ 1485.936228][ T6318] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1485.970094][   T26] audit: type=1800 audit(2000000603.077:614): pid=6318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.10839" name="file1" dev="loop1" ino=17058 res=0 errno=0
[ 1486.151738][ T6318] ocfs2: Unmounting device (7,1) on (node local)
[ 1486.208410][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1486.383882][ T6357] loop4: detected capacity change from 0 to 512
[ 1486.439521][ T6357] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1486.477256][ T6357] EXT4-fs error (device loop4): ext4_iget_extra_inode:4756: inode #15: comm syz.4.10850: corrupted in-inode xattr
[ 1486.530141][ T6357] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.10850: couldn't read orphan inode 15 (err -117)
[ 1486.575567][ T6357] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1486.735695][ T1897] usb 6-1: USB disconnect, device number 39
[ 1486.781660][ T2044] EXT4-fs (loop4): unmounting filesystem.
[ 1486.932303][ T6370] loop1: detected capacity change from 0 to 128
[ 1486.974629][ T6370] EXT4-fs: Ignoring removed nobh option
[ 1487.027837][ T6370] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1487.080837][ T6370] ext4 filesystem being mounted at /701/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1487.382036][T25892] EXT4-fs (loop1): unmounting filesystem.
[ 1487.508502][ T6384] netlink: 40 bytes leftover after parsing attributes in process `syz.7.10857'.
[ 1487.612429][ T6388] input: syz1 as /devices/virtual/input/input77
[ 1487.659374][ T6390] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1487.666953][ T6390] IPv6: NLM_F_CREATE should be set when creating new route
[ 1487.866975][ T6393] tap0: tun_chr_ioctl cmd 1074025677
[ 1487.885972][ T6393] tap0: linktype set to 804
[ 1487.940931][ T6396] netlink: 340 bytes leftover after parsing attributes in process `syz.5.10863'.
[ 1488.150884][ T6406] Falling back ldisc for ttyS3.
[ 1488.634763][ T6423] lo speed is unknown, defaulting to 1000
[ 1488.879923][ T6432] netlink: 52 bytes leftover after parsing attributes in process `syz.4.10876'.
[ 1488.945254][ T1907] usb 4-1: new high-speed USB device number 64 using dummy_hcd
[ 1489.014100][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1489.156944][ T1907] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1489.202293][ T1907] usb 4-1: New USB device found, idVendor=056e, idProduct=010d, bcdDevice= 0.00
[ 1489.244193][ T1907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1489.285716][ T1907] usb 4-1: config 0 descriptor??
[ 1489.298443][ T1907] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1489.515051][T27443] usb 4-1: USB disconnect, device number 64
[ 1489.541472][ T6443] loop5: detected capacity change from 0 to 8192
[ 1489.602765][ T6443] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1489.669758][ T6443] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[ 1489.745441][ T6443] REISERFS (device loop5): using ordered data mode
[ 1489.752270][ T6443] reiserfs: using flush barriers
[ 1489.781853][ T6443] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1489.815623][ T6443] REISERFS (device loop5): checking transaction log (loop5)
[ 1490.125622][ T6443] REISERFS (device loop5): Using tea hash to sort names
[ 1490.162685][ T6443] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[ 1490.244993][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1490.260145][ T6443] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[ 1490.371975][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1490.660011][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1490.987306][ T6452] loop4: detected capacity change from 0 to 32768
[ 1491.023652][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1491.726845][ T6480] loop4: detected capacity change from 0 to 4096
[ 1491.786485][ T6484] loop7: detected capacity change from 0 to 128
[ 1491.893698][ T6480] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[ 1492.203921][T21980] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22.
[ 1492.215772][ T2044] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[ 1492.222356][ T2044] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1492.236720][ T6491] loop7: detected capacity change from 0 to 1024
[ 1492.294392][ T2044] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[ 1492.303293][ T4511] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22.
[ 1492.321724][ T2044] ntfs3: loop4: ntfs_evict_inode r=3 failed, -22.
[ 1492.639137][   T26] audit: type=1326 audit(2000000609.747:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6498 comm="syz.7.10895" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f284c79c799 code=0x0
[ 1494.319429][ T6545] loop7: detected capacity change from 0 to 256
[ 1494.353046][ T6543] syzkaller0: tun_chr_ioctl cmd 1074025678
[ 1494.392404][ T6543] syzkaller0: group set to 0
[ 1494.429551][ T6545] FAT-fs (loop7): Directory bread(block 64) failed
[ 1494.444604][ T6545] FAT-fs (loop7): Directory bread(block 65) failed
[ 1494.472051][ T6545] FAT-fs (loop7): Directory bread(block 66) failed
[ 1494.501989][ T6545] FAT-fs (loop7): Directory bread(block 67) failed
[ 1494.533434][ T6545] FAT-fs (loop7): Directory bread(block 68) failed
[ 1494.576946][ T6545] FAT-fs (loop7): Directory bread(block 69) failed
[ 1494.625410][ T6545] FAT-fs (loop7): Directory bread(block 70) failed
[ 1494.632098][ T6545] FAT-fs (loop7): Directory bread(block 71) failed
[ 1494.657843][ T6545] FAT-fs (loop7): Directory bread(block 72) failed
[ 1494.664750][ T6545] FAT-fs (loop7): Directory bread(block 73) failed
[ 1494.736907][ T6550] netlink: 52 bytes leftover after parsing attributes in process `syz.5.10910'.
[ 1495.338637][ T6567] loop7: detected capacity change from 0 to 128
[ 1495.400348][ T6567] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1495.455633][ T6567] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1495.920832][ T6585] loop5: detected capacity change from 0 to 256
[ 1496.227810][ T4569] EXT4-fs (loop7): unmounting filesystem.
[ 1497.085441][T27029] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[ 1497.286991][T27029] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1497.310079][T27029] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1497.341542][T27029] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1497.378445][T27029] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1497.401597][T27029] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1497.460281][T27029] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1497.473140][T27029] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1497.504192][T27029] usb 5-1: Product: syz
[ 1497.522510][T27029] usb 5-1: Manufacturer: syz
[ 1497.557940][T27029] cdc_wdm 5-1:1.0: skipping garbage
[ 1497.574510][T27029] cdc_wdm 5-1:1.0: skipping garbage
[ 1497.618868][T27029] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1497.651285][T27029] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1498.554738][ T6648] loop5: detected capacity change from 0 to 128
[ 1498.632616][ T6648] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1498.643584][ T6648] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1498.756258][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1499.010948][ T6658] loop5: detected capacity change from 0 to 4096
[ 1499.050358][ T6658] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1499.089337][ T6658] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 4096)
[ 1499.193075][ T6660] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1499.814130][T27029] usb 5-1: USB disconnect, device number 28
[ 1499.958801][ T6675] loop5: detected capacity change from 0 to 512
[ 1500.149404][ T6675] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.10946: bg 0: block 393: padding at end of block bitmap is not set
[ 1500.216205][ T6675] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6179: Corrupt filesystem
[ 1500.251019][ T6675] EXT4-fs (loop5): 2 truncates cleaned up
[ 1500.265515][ T6675] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1500.318159][ T6675] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1450: inode #12: block 7: comm syz.5.10946: path /176/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[ 1500.341039][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1500.485278][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1500.553551][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1501.021353][ T6681] loop4: detected capacity change from 0 to 40427
[ 1501.050602][ T6681] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x3ffff
[ 1501.086247][ T6681] F2FS-fs (loop4): invalid crc value
[ 1501.114144][ T6681] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1501.222564][ T6681] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1501.525647][ T2044] syz-executor: attempt to access beyond end of device
[ 1501.525647][ T2044] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1502.005274][ T4284] Bluetooth: hci1: command 0x0406 tx timeout
[ 1503.216033][ T6732] loop4: detected capacity change from 0 to 128
[ 1503.235191][ T4312] usb 4-1: new high-speed USB device number 65 using dummy_hcd
[ 1503.332900][ T6705] loop5: detected capacity change from 0 to 262144
[ 1503.355860][ T6705] F2FS-fs (loop5): invalid crc value
[ 1503.363296][ T6732] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1503.385395][ T6732] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1503.447411][ T6705] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1503.456990][ T4312] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1503.500996][ T6705] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[ 1503.525867][ T4312] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1503.591984][ T4312] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1503.683347][ T4312] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[ 1503.730230][ T4312] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[ 1503.784328][ T4312] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1503.828923][ T4312] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1503.879301][ T4312] usb 4-1: Product: syz
[ 1503.914581][ T4312] usb 4-1: Manufacturer: syz
[ 1503.965720][ T4312] cdc_wdm 4-1:1.0: skipping garbage
[ 1503.971156][ T4312] cdc_wdm 4-1:1.0: skipping garbage
[ 1503.988041][ T6747] IPVS: persistence engine module ip_vs_pe_À not found
[ 1503.999630][ T2044] EXT4-fs (loop4): unmounting filesystem.
[ 1504.053398][ T4312] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1504.093290][ T4312] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1504.264533][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1504.387728][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1504.598540][ T4284] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1504.659214][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1504.666528][ T4283] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1504.677756][ T4283] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1504.686831][ T4283] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1504.700111][ T4284] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1504.710761][ T4284] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1504.773263][ T6759] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10967'.
[ 1504.924374][ T6766] lo speed is unknown, defaulting to 1000
[ 1504.988303][ T6776] syzkaller0: tun_chr_ioctl cmd 1074025678
[ 1504.994957][ T6776] syzkaller0: group set to 0
[ 1505.316828][ T6754] loop4: detected capacity change from 0 to 32768
[ 1505.326224][ T6783] loop7: detected capacity change from 0 to 256
[ 1505.425907][ T6783] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[ 1505.470065][ T6754] XFS (loop4): Mounting V5 Filesystem
[ 1505.646363][ T6754] XFS (loop4): Ending clean mount
[ 1505.665794][ T6754] XFS (loop4): Quotacheck needed: Please wait.
[ 1505.728051][ T6766] chnl_net:caif_netlink_parms(): no params data found
[ 1505.842589][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1505.930192][ T6754] XFS (loop4): Quotacheck: Done.
[ 1505.953041][ T5488] usb 4-1: USB disconnect, device number 65
[ 1506.187008][ T6766] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1506.201212][ T2044] XFS (loop4): Unmounting Filesystem
[ 1506.226251][ T6766] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1506.234728][ T6766] device bridge_slave_0 entered promiscuous mode
[ 1506.282380][ T6766] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1506.336223][ T6766] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1506.374853][ T6766] device bridge_slave_1 entered promiscuous mode
[ 1506.475065][ T6766] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1506.515939][ T6766] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1506.631466][ T6766] team0: Port device team_slave_0 added
[ 1506.677764][ T6766] team0: Port device team_slave_1 added
[ 1506.739780][ T6766] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1506.757376][ T6766] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1506.806208][ T4284] Bluetooth: hci2: command 0x0409 tx timeout
[ 1506.866344][ T6766] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1506.923479][ T6766] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1506.931347][ T6766] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1506.958281][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1506.966210][ T6766] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1507.023498][ T6766] device hsr_slave_0 entered promiscuous mode
[ 1507.030985][ T6766] device hsr_slave_1 entered promiscuous mode
[ 1507.075531][ T6766] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1507.093590][ T6766] Cannot create hsr debugfs directory
[ 1507.136118][ T6816] loop7: detected capacity change from 0 to 32768
[ 1507.217219][ T6816] XFS (loop7): Mounting V5 Filesystem
[ 1507.455015][ T6816] XFS (loop7): Ending clean mount
[ 1507.561539][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1507.672779][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1507.819828][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1507.833113][ T4569] XFS (loop7): Unmounting Filesystem
[ 1507.994013][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1508.061502][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1508.321169][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1508.402721][ T6850] loop4: detected capacity change from 0 to 4096
[ 1508.427592][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1508.432215][ T6850] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1508.772573][ T2044] EXT4-fs (loop4): unmounting filesystem.
[ 1508.888724][T28628] Bluetooth: hci2: command 0x041b tx timeout
[ 1509.186446][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1509.252754][ T1897] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[ 1509.279178][ T1897] hid-generic 0000:0000:0000.0055: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1509.883207][ T6872] loop7: detected capacity change from 0 to 32768
[ 1509.974967][ T6872] JBD2: Ignoring recovery information on journal
[ 1510.167002][ T6872] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[ 1510.265933][ T6766] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1510.297161][ T6766] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1510.324450][   T26] audit: type=1800 audit(2000000627.427:616): pid=6872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.10991" name="file1" dev="loop7" ino=17058 res=0 errno=0
[ 1510.348645][ T6766] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1510.405511][ T4284] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1510.448209][ T6766] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1510.482427][ T6872] ocfs2: Unmounting device (7,7) on (node local)
[ 1510.636194][ T6893] loop4: detected capacity change from 0 to 128
[ 1510.703550][ T6894] device erspan0 entered promiscuous mode
[ 1510.746659][ T6893] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1510.873144][ T6893] hpfs: filesystem error: improperly stopped
[ 1510.914664][ T6893] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1510.961557][ T6893] hpfs: You really don't want any checks? You are crazy...
[ 1510.970042][ T4284] Bluetooth: hci2: command 0x040f tx timeout
[ 1510.983219][ T6893] hpfs: hpfs_map_sector(): read error
[ 1510.991650][ T6893] hpfs: code page support is disabled
[ 1511.033986][ T6893] hpfs: hpfs_map_4sectors(): unaligned read
[ 1511.040766][ T6766] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1511.071751][ T6893] hpfs: hpfs_map_4sectors(): unaligned read
[ 1511.105397][ T6893] hpfs: filesystem error: unable to find root dir
[ 1511.135442][T27029] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[ 1511.142256][ T6766] 8021q: adding VLAN 0 to HW filter on device team0
[ 1511.219651][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1511.238855][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1511.291304][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1511.326942][T27029] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1511.342578][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1511.357752][T27029] usb 6-1: New USB device found, idVendor=056a, idProduct=0045, bcdDevice= 0.00
[ 1511.369229][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1511.399526][T27029] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1511.418822][T16117] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1511.426089][T16117] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1511.449658][T27029] usb 6-1: config 0 descriptor??
[ 1511.471795][T27029] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[ 1511.472775][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1511.496765][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1511.509841][T16117] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1511.517381][T16117] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1511.551127][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1511.574836][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1511.591248][ T6911] loop4: detected capacity change from 0 to 128
[ 1511.591354][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1511.610663][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1511.632236][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1511.641596][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1511.667716][ T6898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1511.682134][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1511.695346][ T1897] usb 4-1: new high-speed USB device number 66 using dummy_hcd
[ 1511.705406][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1511.714819][ T6898] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1511.723667][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1511.733263][ T4346] usb 6-1: USB disconnect, device number 40
[ 1511.746357][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1511.758656][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1511.767804][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1511.779989][ T6766] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1511.895581][ T1897] usb 4-1: Using ep0 maxpacket: 16
[ 1511.902677][ T1897] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1511.954588][ T1897] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1511.979833][ T1897] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[ 1512.014843][ T1897] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1512.046668][ T1897] usb 4-1: config 0 descriptor??
[ 1512.299237][ T4346] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[ 1512.379646][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1512.392887][ T4511] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1512.424237][ T6766] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1512.471537][ T1897] nzxt-smart2 0003:1E71:2009.0056: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.3-1/input0
[ 1512.486275][ T4346] usb 6-1: Using ep0 maxpacket: 8
[ 1512.492661][ T6914] loop4: detected capacity change from 0 to 32768
[ 1512.493468][ T4346] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1512.539989][ T4346] usb 6-1: config 0 has no interface number 0
[ 1512.557876][ T4346] usb 6-1: config 0 interface 1 altsetting 1 endpoint 0xA has invalid maxpacket 256, setting to 64
[ 1512.583053][ T6914] JBD2: Ignoring recovery information on journal
[ 1512.594479][ T4346] usb 6-1: config 0 interface 1 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1512.689548][ T4346] usb 6-1: config 0 interface 1 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1512.690029][ T6914] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1512.778667][ T4346] usb 6-1: config 0 interface 1 has no altsetting 0
[ 1512.813147][ T4346] usb 6-1: New USB device found, idVendor=0af0, idProduct=6751, bcdDevice=75.8b
[ 1512.851447][   T26] audit: type=1800 audit(2000000629.957:617): pid=6914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.11009" name="file1" dev="loop4" ino=17058 res=0 errno=0
[ 1512.883349][ T1907] usb 4-1: USB disconnect, device number 66
[ 1512.892310][ T4346] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1512.953396][ T4346] usb 6-1: config 0 descriptor??
[ 1512.989731][ T4346] hso 6-1:0.1: Failed to find BULK IN ep
[ 1513.045368][ T4284] Bluetooth: hci2: command 0x0419 tx timeout
[ 1513.062108][ T6934] fido_id[6934]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[ 1513.095736][ T6914] ocfs2: Unmounting device (7,4) on (node local)
[ 1513.144293][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1513.191300][ T4346] usb 6-1: USB disconnect, device number 41
[ 1513.844041][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1513.902002][T16117] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1513.948135][ T6961] netlink: 71 bytes leftover after parsing attributes in process `syz.5.11018'.
[ 1514.200745][ T6766] device veth0_vlan entered promiscuous mode
[ 1514.276323][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1514.296784][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1514.326131][ T6766] device veth1_vlan entered promiscuous mode
[ 1514.335913][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1514.354335][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1514.372704][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1514.450663][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1514.471403][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1514.497646][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1514.542597][ T6766] device veth0_macvtap entered promiscuous mode
[ 1514.572903][ T6766] device veth1_macvtap entered promiscuous mode
[ 1514.637445][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1514.685204][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1514.734482][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1514.776069][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1514.815170][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1514.846498][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1514.888381][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1514.919924][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1514.955202][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1514.995176][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.034478][ T6766] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1515.097123][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1515.129076][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.165166][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1515.194431][ T6973] loop5: detected capacity change from 0 to 32768
[ 1515.202147][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.250496][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1515.273550][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.277657][ T6973] JBD2: Ignoring recovery information on journal
[ 1515.284353][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1515.304183][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.314852][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: ipvlan2
[ 1515.325588][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.336609][ T6766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1515.355141][ T6766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1515.367245][ T6766] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1515.376469][T21980] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1515.420038][T21980] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1515.476298][T21980] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1515.504253][ T6973] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1515.518568][T21980] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1515.576979][T21980] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1515.636636][T21980] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1515.677302][ T6766] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.708289][   T26] audit: type=1800 audit(2000000632.817:618): pid=6973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.11023" name="file1" dev="loop5" ino=17058 res=0 errno=0
[ 1515.721084][ T6995] loop7: detected capacity change from 0 to 2048
[ 1515.735158][ T6766] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.785207][ T6766] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.845442][ T6766] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1515.926636][ T6973] ocfs2: Unmounting device (7,5) on (node local)
[ 1515.929496][ T6999] loop4: detected capacity change from 0 to 512
[ 1516.030120][ T6995] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1516.267627][   T46] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[ 1516.434828][   T46] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1516.516260][T21980] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1516.545543][T21980] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1516.557221][   T46] EXT4-fs (loop7): This should not happen!! Data will be lost
[ 1516.557221][   T46] 
[ 1516.578221][ T4319] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1516.611606][   T46] EXT4-fs (loop7): Total free blocks count 0
[ 1516.635260][   T46] EXT4-fs (loop7): Free/Dirty block details
[ 1516.641611][   T46] EXT4-fs (loop7): free_blocks=4096
[ 1516.647425][ T7013] program syz.4.11032 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1516.712604][   T46] EXT4-fs (loop7): dirty_blocks=512
[ 1516.725472][   T46] EXT4-fs (loop7): Block reservation details
[ 1516.731604][   T46] EXT4-fs (loop7): i_reserved_data_blocks=32
[ 1516.738941][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1516.765342][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1516.773146][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1516.815971][   T46] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28
[ 1517.476867][ T7037] loop7: detected capacity change from 0 to 2048
[ 1517.545057][ T7042] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1517.703726][ T7042] NILFS (loop7): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1517.719820][ T7042] NILFS error (device loop7): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1517.745411][ T7042] Remounting filesystem read-only
[ 1517.758468][ T4569] NILFS (loop7): disposed unprocessed dirty file(s) when stopping log writer
[ 1517.955388][T27443] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1518.067017][ T7055] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1518.168850][T27443] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1518.198158][T27443] usb 9-1: unable to read config index 0 descriptor/start: -71
[ 1518.228300][T27443] usb 9-1: can't read configurations, error -71
[ 1518.364003][ T7065] loop7: detected capacity change from 0 to 1024
[ 1518.542810][ T7065] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1518.585578][ T7065] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1518.844866][ T4569] EXT4-fs (loop7): unmounting filesystem.
[ 1519.157481][ T7095] tun0: tun_chr_ioctl cmd 1074025677
[ 1519.163139][ T7095] tun0: linktype set to 6
[ 1519.535241][T27443] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1519.745411][T27443] usb 9-1: Using ep0 maxpacket: 8
[ 1519.752426][T27443] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1519.794589][T27443] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1519.818651][ T7119] loop4: detected capacity change from 0 to 128
[ 1519.826479][T27443] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1519.847461][ T7121] netlink: 16 bytes leftover after parsing attributes in process `syz.3.11065'.
[ 1519.866422][T27443] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1519.882103][ T7119] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1519.898498][T27443] usb 9-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00
[ 1519.934416][ T7119] hpfs: filesystem error: improperly stopped
[ 1519.939889][T27443] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1519.963288][ T7119] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1519.972994][T27443] usb 9-1: config 0 descriptor??
[ 1519.992160][ T7119] hpfs: You really don't want any checks? You are crazy...
[ 1520.015768][ T7119] hpfs: hpfs_map_sector(): read error
[ 1520.050795][ T7119] hpfs: code page support is disabled
[ 1520.090689][ T7119] hpfs: hpfs_map_4sectors(): unaligned read
[ 1520.135493][ T7119] hpfs: hpfs_map_4sectors(): unaligned read
[ 1520.164667][ T7119] hpfs: filesystem error: unable to find root dir
[ 1520.409582][T27443] redragon 0003:0C45:760B.0057: unknown main item tag 0x6
[ 1520.428056][T27443] redragon 0003:0C45:760B.0057: item fetching failed at offset 7/133
[ 1520.466150][T27443] redragon: probe of 0003:0C45:760B.0057 failed with error -22
[ 1520.609484][T20149] usb 9-1: USB disconnect, device number 6
[ 1520.713409][ T7140] io-wq is not configured for unbound workers
[ 1521.107723][ T7159] loop5: detected capacity change from 0 to 512
[ 1521.341289][ T7159] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1521.386086][ T7159] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1521.409206][ T7169] tap0: tun_chr_ioctl cmd 1074025677
[ 1521.476868][ T7169] tap0: linktype set to 1
[ 1521.508663][ T7159] EXT4-fs error (device loop5): ext4_lookup:1858: inode #12: comm syz.5.11080: iget: bad i_size value: 2533274857506816
[ 1521.723803][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1522.012548][ T7190] loop4: detected capacity change from 0 to 2048
[ 1522.053015][ T7190] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1522.184217][ T7197] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1523.353647][ T7207] loop4: detected capacity change from 0 to 40427
[ 1523.382876][ T7207] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x3ffff
[ 1523.445972][ T7207] F2FS-fs (loop4): invalid crc value
[ 1523.469084][ T7207] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1523.568520][ T7207] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1523.644021][ T7207] syz.4.11095: attempt to access beyond end of device
[ 1523.644021][ T7207] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1523.791915][ T7239] netlink: 24 bytes leftover after parsing attributes in process `syz.8.11104'.
[ 1523.805755][ T7237] F2FS-fs (loop4): switch extent_cache option is not allowed
[ 1524.056178][   T26] audit: type=1326 audit(2000000641.167:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7243 comm="syz.3.11105" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3e2119c799 code=0x0
[ 1524.118717][ T2044] syz-executor: attempt to access beyond end of device
[ 1524.118717][ T2044] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[ 1524.355579][T27443] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[ 1524.577076][T27443] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1524.603627][T27443] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1524.636927][T27443] usb 9-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01
[ 1524.673221][T27443] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1524.706834][T27443] usb 9-1: config 0 descriptor??
[ 1524.773428][ T7265] netlink: 'syz.7.11112': attribute type 1 has an invalid length.
[ 1524.805710][ T7265] netlink: 96 bytes leftover after parsing attributes in process `syz.7.11112'.
[ 1525.017054][ T7273] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1525.130457][   T46] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1525.195070][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.211974][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.248353][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.265927][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.274385][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.310642][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.365734][T27443] arvo 0003:1E7D:30D4.0058: unknown main item tag 0x0
[ 1525.392224][T27443] arvo 0003:1E7D:30D4.0058: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.8-1/input0
[ 1525.416500][T27443] arvo 0003:1E7D:30D4.0058: couldn't init struct arvo_device
[ 1525.424140][T27443] arvo 0003:1E7D:30D4.0058: couldn't install keyboard
[ 1525.435853][T27443] arvo: probe of 0003:1E7D:30D4.0058 failed with error -71
[ 1525.464551][T27443] usb 9-1: USB disconnect, device number 7
[ 1525.687555][ T7292] fido_id[7292]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[ 1525.895225][ T4353] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[ 1526.075329][ T4353] usb 6-1: Using ep0 maxpacket: 16
[ 1526.082558][ T4353] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[ 1526.125933][ T4353] usb 6-1: config 0 has no interface number 0
[ 1526.149070][ T4353] usb 6-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1526.178809][ T4353] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1526.214666][ T4353] usb 6-1: Product: syz
[ 1526.220944][ T4353] usb 6-1: Manufacturer: syz
[ 1526.230240][ T4353] usb 6-1: SerialNumber: syz
[ 1526.253137][ T4353] usb 6-1: config 0 descriptor??
[ 1526.281067][ T4353] gspca_main: spca1528-2.14.0 probing 04fc:1528
[ 1527.045380][T28628] Bluetooth: hci5: command 0x1003 tx timeout
[ 1527.059414][ T4284] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1527.139185][ T4353] gspca_spca1528: reg_w err -71
[ 1527.165313][ T4353] spca1528: probe of 6-1:0.1 failed with error -71
[ 1527.201027][ T4353] usb 6-1: USB disconnect, device number 42
[ 1528.080566][ T7360] loop4: detected capacity change from 0 to 4096
[ 1528.099766][ T7360] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512)
[ 1528.481311][ T7378] loop5: detected capacity change from 0 to 128
[ 1528.499318][ T7380] loop4: detected capacity change from 0 to 512
[ 1528.554297][ T7378] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1528.604649][ T7378] hpfs: filesystem error: improperly stopped
[ 1528.626937][ T7378] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1528.648721][ T7382] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1528.661208][ T7378] hpfs: You really don't want any checks? You are crazy...
[ 1528.672657][ T7380] syz.4.11145: attempt to access beyond end of device
[ 1528.672657][ T7380] loop4: rw=524288, sector=17179852706, nr_sectors = 16 limit=512
[ 1528.703451][ T7378] hpfs: hpfs_map_sector(): read error
[ 1528.715465][ T7378] hpfs: code page support is disabled
[ 1528.722168][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1528.737193][ T7380] syz.4.11145: attempt to access beyond end of device
[ 1528.737193][ T7380] loop4: rw=0, sector=17179852706, nr_sectors = 8 limit=512
[ 1528.759583][ T7378] hpfs: hpfs_map_4sectors(): unaligned read
[ 1528.812698][ T7378] hpfs: hpfs_map_4sectors(): unaligned read
[ 1528.829073][   T26] audit: type=1800 audit(2000000645.937:620): pid=7380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.11145" name="file2" dev="loop4" ino=1049260 res=0 errno=0
[ 1528.870818][ T7378] hpfs: filesystem error: unable to find root dir
[ 1529.641368][ T7412] loop4: detected capacity change from 0 to 64
[ 1529.755243][ T1907] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1529.947442][ T1907] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1529.978415][ T1907] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1530.035872][ T1907] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1530.074523][ T1907] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1530.083112][ T1907] usb 9-1: Product: syz
[ 1530.095228][ T1907] usb 9-1: Manufacturer: syz
[ 1530.110387][ T1907] usb 9-1: SerialNumber: syz
[ 1530.216415][ T7426] tap0: tun_chr_ioctl cmd 1074025677
[ 1530.222019][ T7426] tap0: linktype set to 823
[ 1530.348994][ T7408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1530.365605][ T7408] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1530.425031][ T1907] cdc_ether: probe of 9-1:1.0 failed with error -22
[ 1530.465479][ T1907] usb 9-1: USB disconnect, device number 8
[ 1530.725695][ T4284] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1530.770996][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1530.881203][ T7445] loop5: detected capacity change from 0 to 2048
[ 1530.991122][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1531.065181][ T1907] usb 9-1: new full-speed USB device number 9 using dummy_hcd
[ 1531.073688][ T7445] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1531.252594][ T4319] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[ 1531.266925][ T1907] usb 9-1: config index 0 descriptor too short (expected 301, got 72)
[ 1531.282085][ T1907] usb 9-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[ 1531.293742][ T4319] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1531.293846][ T4319] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1531.293846][ T4319] 
[ 1531.293860][ T4319] EXT4-fs (loop5): Total free blocks count 0
[ 1531.293872][ T4319] EXT4-fs (loop5): Free/Dirty block details
[ 1531.293884][ T4319] EXT4-fs (loop5): free_blocks=4096
[ 1531.293897][ T4319] EXT4-fs (loop5): dirty_blocks=512
[ 1531.314795][ T1907] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1531.371119][ T1907] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 1024, setting to 64
[ 1531.385652][ T1907] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1531.397850][ T4319] EXT4-fs (loop5): Block reservation details
[ 1531.397873][ T4319] EXT4-fs (loop5): i_reserved_data_blocks=32
[ 1531.412425][ T1907] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1531.413158][ T4319] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28
[ 1531.424354][ T1907] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1531.424383][ T1907] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1531.646243][ T1907] usb 9-1: usb_control_msg returned -71
[ 1531.662814][ T1907] usbtmc 9-1:16.0: can't read capabilities
[ 1531.670826][ T1907] usbtmc 9-1:16.0: Failed to submit iin_urb
[ 1531.683585][ T1907] usbtmc: probe of 9-1:16.0 failed with error -90
[ 1531.707338][ T1907] usb 9-1: USB disconnect, device number 9
[ 1532.782377][ T7505] loop4: detected capacity change from 0 to 65
[ 1532.830608][ T7505] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[ 1533.148337][ T7513] loop8: detected capacity change from 0 to 128
[ 1533.263779][   T26] audit: type=1800 audit(2000000650.357:621): pid=7513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.11178" name=3830322E31352E34204D4143 dev="loop8" ino=1049261 res=0 errno=0
[ 1533.287723][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1533.462052][T27029] kernel write not supported for file /snd/pcmC0D0p (pid: 27029 comm: kworker/1:6)
[ 1533.786344][ T7537] loop8: detected capacity change from 0 to 16
[ 1533.814511][ T7537] erofs: (device loop8): mounted with root inode @ nid 36.
[ 1534.336234][ T7549] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11191'.
[ 1534.635910][ T7532] loop4: detected capacity change from 0 to 32768
[ 1534.679749][ T7532] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.11185 (7532)
[ 1534.701714][ T7556] No such timeout policy "syz1"
[ 1534.743028][ T7532] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1534.788195][ T7532] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[ 1534.835197][ T7532] BTRFS info (device loop4): using free space tree
[ 1534.871065][ T7538] loop5: detected capacity change from 0 to 32768
[ 1535.014145][ T7538] XFS (loop5): Mounting V5 Filesystem
[ 1535.115055][ T7538] XFS (loop5): Ending clean mount
[ 1535.156888][ T7587] loop7: detected capacity change from 0 to 4096
[ 1535.165758][ T7538] XFS (loop5): Quotacheck needed: Please wait.
[ 1535.176320][ T7532] BTRFS info (device loop4): enabling ssd optimizations
[ 1535.207382][ T7587] ntfs3: loop7: Different NTFS' sector size (1024) and media sector size (512)
[ 1535.385773][ T7587] ntfs3: loop7: ino=5, "/" directory corrupted
[ 1535.393927][ T7587] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[ 1535.425526][ T7538] XFS (loop5): Quotacheck: Done.
[ 1535.456617][ T7538] XFS (loop5): User initiated shutdown received.
[ 1535.500253][ T7587] ntfs3: loop7: ino=5, "/" directory corrupted
[ 1535.518004][ T7538] XFS (loop5): Metadata I/O Error (0x4) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:495).  Shutting down filesystem.
[ 1535.540431][ T2044] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1535.545445][ T7587] ntfs3: loop7: ino=5, "/" directory corrupted
[ 1535.607717][ T7538] XFS (loop5): Please unmount the filesystem and rectify the problem(s)
[ 1535.668665][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.806171][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1535.956822][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.091929][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.170614][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.308814][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.332085][ T7614] program syz.8.11205 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1536.391896][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.432179][ T7616] netlink: 36 bytes leftover after parsing attributes in process `syz.3.11206'.
[ 1536.502123][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.572915][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.752624][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.862030][ T3484] XFS (loop5): Unmounting Filesystem
[ 1536.923062][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1536.936086][ T7628] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11199'.
[ 1536.958523][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1537.102024][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1537.309784][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1537.423921][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1537.479691][ T7644] loop4: detected capacity change from 0 to 2048
[ 1537.550620][ T7646] netlink: 60 bytes leftover after parsing attributes in process `syz.3.11213'.
[ 1537.611332][ T7644] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 1537.706537][ T7656] netlink: 68 bytes leftover after parsing attributes in process `syz.7.11216'.
[ 1537.739206][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1538.136065][T16117] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[ 1538.201766][T16117] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1538.259847][T16117] EXT4-fs (loop4): This should not happen!! Data will be lost
[ 1538.259847][T16117] 
[ 1538.313334][T16117] EXT4-fs (loop4): Total free blocks count 0
[ 1538.332907][T16117] EXT4-fs (loop4): Free/Dirty block details
[ 1538.355257][T16117] EXT4-fs (loop4): free_blocks=4096
[ 1538.371412][T16117] EXT4-fs (loop4): dirty_blocks=512
[ 1538.387300][T16117] EXT4-fs (loop4): Block reservation details
[ 1538.422702][T16117] EXT4-fs (loop4): i_reserved_data_blocks=32
[ 1538.448644][T16117] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28
[ 1539.135639][ T7699] loop5: detected capacity change from 0 to 256
[ 1539.239218][ T7702] loop8: detected capacity change from 0 to 2048
[ 1539.252586][ T7699] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[ 1539.372186][ T7702] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[ 1539.592022][ T7708] loop4: detected capacity change from 0 to 4096
[ 1539.846413][T16117] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1111: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[ 1539.935278][T16117] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1540.015603][T16117] EXT4-fs (loop8): This should not happen!! Data will be lost
[ 1540.015603][T16117] 
[ 1540.082603][ T2044] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22.
[ 1540.085135][T16117] EXT4-fs (loop8): Total free blocks count 0
[ 1540.115685][T16117] EXT4-fs (loop8): Free/Dirty block details
[ 1540.121811][T16117] EXT4-fs (loop8): free_blocks=4096
[ 1540.135206][ T2044] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1540.185505][T16117] EXT4-fs (loop8): dirty_blocks=512
[ 1540.216604][T16117] EXT4-fs (loop8): Block reservation details
[ 1540.222729][T16117] EXT4-fs (loop8): i_reserved_data_blocks=32
[ 1540.249020][ T7726] loop5: detected capacity change from 0 to 8192
[ 1540.278706][T16117] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28
[ 1540.655430][ T1907] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[ 1540.740954][ T7748] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11250'.
[ 1540.798762][ T7748] sit0: Master is either lo or non-ether device
[ 1540.829103][ T7748] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11250'.
[ 1540.855360][ T1907] usb 4-1: Using ep0 maxpacket: 16
[ 1540.862860][ T1907] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1540.874736][ T7748] sit0: Master is either lo or non-ether device
[ 1540.893771][ T1907] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1540.907873][T27029] usb 5-1: new full-speed USB device number 29 using dummy_hcd
[ 1540.953612][ T1907] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1540.988154][ T1907] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1541.001743][ T7752] loop8: detected capacity change from 0 to 4096
[ 1541.014675][ T1907] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1541.031684][ T1907] usb 4-1: config 0 descriptor??
[ 1541.036917][ T7752] ntfs3: loop8: Different NTFS' sector size (1024) and media sector size (512)
[ 1541.119590][T27029] usb 5-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[ 1541.132098][ T7752] ntfs3: loop8: ino=5, "/" directory corrupted
[ 1541.132130][T27029] usb 5-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[ 1541.159561][T27029] usb 5-1: Product: syz
[ 1541.163988][T27029] usb 5-1: Manufacturer: syz
[ 1541.170642][ T7752] ntfs3: loop8: Mark volume as dirty due to NTFS errors
[ 1541.172219][T27029] usb 5-1: SerialNumber: syz
[ 1541.195720][T27029] usb 5-1: config 0 descriptor??
[ 1541.233232][ T7760] ntfs3: loop8: ino=5, "/" directory corrupted
[ 1541.273470][ T7760] ntfs3: loop8: ino=5, "/" directory corrupted
[ 1541.461358][ T1907] microsoft 0003:045E:07DA.0059: unknown main item tag 0x0
[ 1541.484279][ T1907] microsoft 0003:045E:07DA.0059: ignoring exceeding usage max
[ 1541.500146][ T1907] microsoft 0003:045E:07DA.0059: unbalanced collection at end of report description
[ 1541.514544][ T1907] microsoft 0003:045E:07DA.0059: parse failed
[ 1541.521916][ T1907] microsoft: probe of 0003:045E:07DA.0059 failed with error -22
[ 1541.554302][T27029] usb 5-1: USB disconnect, device number 29
[ 1541.664577][ T4353] usb 4-1: USB disconnect, device number 67
[ 1542.297583][ T7789] netlink: 4 bytes leftover after parsing attributes in process `syz.8.11254'.
[ 1542.326588][ T7790] netlink: 56 bytes leftover after parsing attributes in process `syz.4.11262'.
[ 1542.552885][ T7799] loop7: detected capacity change from 0 to 64
[ 1542.906930][ T7808] loop7: detected capacity change from 0 to 8
[ 1543.445600][    C1] icmp: detected local route for 172.30.0.5 during ICMP sending, src 172.30.1.5
[ 1545.501832][ T7857] loop7: detected capacity change from 0 to 32768
[ 1545.739722][ T7857] XFS (loop7): Mounting V5 Filesystem
[ 1545.873646][ T7857] XFS (loop7): Ending clean mount
[ 1545.908173][ T7857] XFS (loop7): Quotacheck needed: Please wait.
[ 1546.008607][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.015701][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.115670][ T7857] XFS (loop7): Quotacheck: Done.
[ 1546.378430][ T7906] loop4: detected capacity change from 0 to 40427
[ 1546.382080][ T4569] XFS (loop7): Unmounting Filesystem
[ 1546.520056][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1546.529433][ T7906] F2FS-fs (loop4): invalid crc value
[ 1546.609726][ T7906] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1546.786319][ T7906] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1546.822777][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1546.858862][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1546.993608][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1547.387630][ T7947] loop8: detected capacity change from 0 to 8192
[ 1547.754699][ T2044] syz-executor: attempt to access beyond end of device
[ 1547.754699][ T2044] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1547.800730][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1547.994486][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1548.054547][ T7962] netlink: 4 bytes leftover after parsing attributes in process `syz.8.11311'.
[ 1548.892421][ T7990] netlink: 104 bytes leftover after parsing attributes in process `syz.7.11320'.
[ 1549.520095][ T8006] loop4: detected capacity change from 0 to 1024
[ 1549.603717][ T8006] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1549.739570][ T7995] loop5: detected capacity change from 0 to 32768
[ 1549.774407][ T7995] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop5 scanned by syz.5.11321 (7995)
[ 1549.881306][ T7995] BTRFS info (device loop5): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1549.961201][ T7995] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[ 1550.009216][ T8018] loop8: detected capacity change from 0 to 128
[ 1550.026458][ T7995] BTRFS info (device loop5): using free space tree
[ 1550.066473][ T8018] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1550.140516][ T8018] hpfs: filesystem error: improperly stopped
[ 1550.155359][ T8018] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1550.204683][ T8018] hpfs: You really don't want any checks? You are crazy...
[ 1550.225547][ T8018] hpfs: hpfs_map_sector(): read error
[ 1550.231001][ T8018] hpfs: code page support is disabled
[ 1550.324033][ T8018] hpfs: hpfs_map_4sectors(): unaligned read
[ 1550.372733][ T8018] hpfs: hpfs_map_4sectors(): unaligned read
[ 1550.403225][ T7995] BTRFS info (device loop5): enabling ssd optimizations
[ 1550.414760][ T8018] hpfs: filesystem error: unable to find root dir
[ 1550.499380][ T8018] hpfs: hpfs_map_4sectors(): unaligned read
[ 1550.544378][ T8018] hpfs: hpfs_map_sector(): read error
[ 1550.970092][ T3484] BTRFS info (device loop5): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[ 1551.012846][ T8057] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11337'.
[ 1551.774491][ T8052] loop8: detected capacity change from 0 to 32768
[ 1551.830242][ T8052] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 scanned by syz.8.11334 (8052)
[ 1551.992261][ T8052] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1552.054843][ T8052] BTRFS info (device loop8): using sha256 (sha256-avx2) checksum algorithm
[ 1552.112644][ T8052] BTRFS info (device loop8): enabling auto defrag
[ 1552.149885][ T8052] BTRFS info (device loop8): use no compression
[ 1552.179039][ T8052] BTRFS info (device loop8): max_inline at 4096
[ 1552.212493][ T8052] BTRFS info (device loop8): using free space tree
[ 1552.391729][ T8079] tipc: Started in network mode
[ 1552.449286][ T8079] tipc: Node identity 2dcddc, cluster identity 4711
[ 1552.509288][ T8079] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1552.745506][ T8052] BTRFS info (device loop8): enabling ssd optimizations
[ 1553.080963][ T6766] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1553.101755][ T8114] loop5: detected capacity change from 0 to 64
[ 1553.156991][ T8117] netlink: 32 bytes leftover after parsing attributes in process `syz.7.11350'.
[ 1553.160247][ T8116] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11349'.
[ 1553.207683][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.372227][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.487629][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.550463][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.603181][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.639920][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.673905][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.708137][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.750999][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.822561][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1553.926393][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1554.019942][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1554.054755][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1554.433900][ T8150] loop5: detected capacity change from 0 to 1024
[ 1554.470416][ T8150] EXT4-fs: Ignoring removed bh option
[ 1554.586446][ T8150] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1554.797984][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1555.934954][ T8214] loop4: detected capacity change from 0 to 1024
[ 1555.996504][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1556.445401][ T1906] usb 4-1: new high-speed USB device number 68 using dummy_hcd
[ 1556.635345][ T1906] usb 4-1: Using ep0 maxpacket: 8
[ 1556.642970][ T1906] usb 4-1: config 0 has no interfaces?
[ 1556.666174][ T1906] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1556.705481][ T1906] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1556.736302][ T1906] usb 4-1: config 0 descriptor??
[ 1556.761901][ T8238] loop5: detected capacity change from 0 to 512
[ 1556.813958][ T8208] loop8: detected capacity change from 0 to 40427
[ 1556.843204][ T8238] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1556.873340][ T8238] ext4 filesystem being mounted at /265/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1556.878029][ T8208] F2FS-fs (loop8): invalid crc value
[ 1556.952017][ T1906] usb 4-1: USB disconnect, device number 68
[ 1556.981698][ T8208] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1557.045738][ T8208] F2FS-fs (loop8): Start checkpoint disabled!
[ 1557.060931][ T8208] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[ 1557.113669][ T3484] EXT4-fs (loop5): unmounting filesystem.
[ 1557.175468][ T8208] syz.8.11379: attempt to access beyond end of device
[ 1557.175468][ T8208] loop8: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[ 1557.186533][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1557.503209][   T11] kworker/u4:1: attempt to access beyond end of device
[ 1557.503209][   T11] loop8: rw=1, sector=77824, nr_sectors = 8 limit=40427
[ 1557.526930][ T8263] netlink: 464 bytes leftover after parsing attributes in process `syz.5.11395'.
[ 1557.557417][   T11] kworker/u4:1: attempt to access beyond end of device
[ 1557.557417][   T11] loop8: rw=1, sector=77880, nr_sectors = 8 limit=40427
[ 1557.646206][   T11] kworker/u4:1: attempt to access beyond end of device
[ 1557.646206][   T11] loop8: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1558.175194][ T1907] usb 4-1: new high-speed USB device number 69 using dummy_hcd
[ 1558.369483][ T1907] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1558.404853][ T1907] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1558.435387][ T1907] usb 4-1: Product: syz
[ 1558.439714][ T1907] usb 4-1: Manufacturer: syz
[ 1558.444347][ T1907] usb 4-1: SerialNumber: syz
[ 1558.494443][ T1907] usb 4-1: config 0 descriptor??
[ 1558.540480][ T8273] loop4: detected capacity change from 0 to 32768
[ 1558.702925][ T8273] XFS (loop4): Mounting V5 Filesystem
[ 1558.791128][ T8273] XFS (loop4): Ending clean mount
[ 1559.028985][ T2044] XFS (loop4): Unmounting Filesystem
[ 1559.075648][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1559.121523][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1559.224678][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1559.373609][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1559.386788][ T1907] usb 4-1: Firmware version (0.0) predates our first public release.
[ 1559.394920][ T1907] usb 4-1: Please update to version 0.2 or newer
[ 1559.487199][ T1907] usb 4-1: USB disconnect, device number 69
[ 1559.720763][ T8303] loop7: detected capacity change from 0 to 32768
[ 1559.783539][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1559.917878][ T8303] XFS (loop7): Mounting V5 Filesystem
[ 1560.126914][ T8303] XFS (loop7): Ending clean mount
[ 1560.329581][ T4569] XFS (loop7): Unmounting Filesystem
[ 1560.473659][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1560.641252][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1560.673609][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1560.801497][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1560.933115][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1561.108077][ T8324] loop5: detected capacity change from 0 to 40427
[ 1561.155533][ T8324] F2FS-fs (loop5): Invalid SB checksum offset: 0
[ 1561.162216][ T8324] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[ 1561.237812][ T8324] F2FS-fs (loop5): invalid crc value
[ 1561.288302][ T8324] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 1561.557264][ T8324] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[ 1561.585688][ T8324] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1561.654111][ T8324] syz.5.11410: attempt to access beyond end of device
[ 1561.654111][ T8324] loop5: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[ 1561.737367][ T8363] loop7: detected capacity change from 0 to 1024
[ 1561.790826][ T8363] EXT4-fs: Ignoring removed orlov option
[ 1561.856831][ T8363] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002]
[ 1561.868056][ T8363] System zones: 0-1, 3-12
[ 1561.874675][ T8363] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[ 1562.028806][ T3484] syz-executor: attempt to access beyond end of device
[ 1562.028806][ T3484] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1562.081080][ T4569] EXT4-fs (loop7): unmounting filesystem.
[ 1562.489988][ T1907] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[ 1562.695204][ T1907] usb 5-1: Using ep0 maxpacket: 16
[ 1562.724615][ T1907] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1562.767506][ T1907] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1562.820227][ T1907] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1562.825337][ T8402] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.11429'.
[ 1562.867060][ T1907] usb 5-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1562.915465][ T1907] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1562.946807][ T1907] usb 5-1: config 0 descriptor??
[ 1563.090963][ T8413] loop7: detected capacity change from 0 to 128
[ 1563.156866][ T8413] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[ 1563.224370][ T8413] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1563.420318][ T1907] hid (null): invalid report_count -127887439
[ 1563.448233][ T1907] hid (null): unknown global tag 0xc
[ 1563.617238][ T1907] usb 5-1: USB disconnect, device number 30
[ 1563.779376][ T8424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11438'.
[ 1564.011660][ T8431] loop8: detected capacity change from 0 to 2048
[ 1564.043714][ T8431] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1564.956675][ T8463] loop7: detected capacity change from 0 to 1024
[ 1565.014656][ T8463] EXT4-fs: Ignoring removed oldalloc option
[ 1565.042065][ T8463] EXT4-fs: Ignoring removed orlov option
[ 1565.139412][ T8463] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[ 1565.235255][ T5488] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[ 1565.455120][ T5488] usb 9-1: Using ep0 maxpacket: 16
[ 1565.463957][ T5488] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1565.483149][ T4569] EXT4-fs (loop7): unmounting filesystem.
[ 1565.521668][ T5488] usb 9-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[ 1565.533191][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1565.599129][ T5488] usb 9-1: New USB device strings: Mfr=34, Product=0, SerialNumber=0
[ 1565.632139][ T5488] usb 9-1: Manufacturer: syz
[ 1565.665728][ T5488] usb 9-1: config 0 descriptor??
[ 1565.902042][ T8497] loop4: detected capacity change from 0 to 64
[ 1566.006579][   T26] audit: type=1800 audit(2000000683.117:622): pid=8497 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.11462" name="file1" dev="loop4" ino=21 res=0 errno=0
[ 1566.104337][ T5488] input: syz as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:041E:3100.005B/input/input79
[ 1566.235592][T12370] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[ 1566.280798][ T5488] creative-sb0540 0003:041E:3100.005B: input,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.8-1/input0
[ 1566.446099][T12370] usb 6-1: Using ep0 maxpacket: 16
[ 1566.453517][T12370] usb 6-1: config 0 has an invalid interface number: 2 but max is 0
[ 1566.490980][T12370] usb 6-1: config 0 has no interface number 0
[ 1566.511961][T12370] usb 6-1: config 0 interface 2 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1566.553395][T12370] usb 6-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1566.583590][T12370] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1566.604913][ T5488] usb 9-1: USB disconnect, device number 10
[ 1566.639003][T12370] usb 6-1: config 0 descriptor??
[ 1567.069993][T12370] mcp2221 0003:04D8:00DD.005C: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.5-1/input2
[ 1567.474708][T12370] usb 6-1: USB disconnect, device number 43
[ 1567.956678][ T8535] loop4: detected capacity change from 0 to 32768
[ 1568.018760][ T8535] JBD2: Ignoring recovery information on journal
[ 1568.074574][ T8535] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1568.292649][ T8535] overlayfs: upper fs does not support tmpfile.
[ 1568.404010][ T8535] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1568.446582][ T8535] 
[ 1568.448956][ T8535] ======================================================
[ 1568.456855][ T8535] WARNING: possible circular locking dependency detected
[ 1568.464074][ T8535] syzkaller #0 Not tainted
[ 1568.468509][ T8535] ------------------------------------------------------
[ 1568.475799][ T8535] syz.4.11473/8535 is trying to acquire lock:
[ 1568.481928][ T8535] ffff88804efb5f48 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#2){+.+.}-{3:3}, at: ocfs2_xattr_set+0xba0/0x13e0
[ 1568.494494][ T8535] 
[ 1568.494494][ T8535] but task is already holding lock:
[ 1568.502043][ T8535] ffff88804efb2378 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x472/0x13e0
[ 1568.511816][ T8535] 
[ 1568.511816][ T8535] which lock already depends on the new lock.
[ 1568.511816][ T8535] 
[ 1568.522376][ T8535] 
[ 1568.522376][ T8535] the existing dependency chain (in reverse order) is:
[ 1568.531661][ T8535] 
[ 1568.531661][ T8535] -> #2 (&oi->ip_xattr_sem){++++}-{3:3}:
[ 1568.539605][ T8535]        down_read+0x42/0x2d0
[ 1568.544406][ T8535]        ocfs2_init_acl+0x307/0x770
[ 1568.549830][ T8535]        ocfs2_mknod+0x15e8/0x25b0
[ 1568.555057][ T8535]        ocfs2_mkdir+0x1b6/0x4b0
[ 1568.560099][ T8535]        vfs_mkdir+0x387/0x570
[ 1568.564879][ T8535]        do_mkdirat+0x1d8/0x440
[ 1568.569744][ T8535]        __x64_sys_mkdirat+0x85/0x90
[ 1568.575229][ T8535]        do_syscall_64+0x4c/0xa0
[ 1568.580193][ T8535]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1568.586805][ T8535] 
[ 1568.586805][ T8535] -> #1 (jbd2_handle){++++}-{0:0}:
[ 1568.594136][ T8535]        jbd2_journal_lock_updates+0xa8/0x390
[ 1568.600318][ T8535]        __ocfs2_flush_truncate_log+0x2cf/0x1220
[ 1568.606856][ T8535]        ocfs2_flush_truncate_log+0x4b/0x60
[ 1568.613041][ T8535]        ocfs2_sync_fs+0x119/0x330
[ 1568.618970][ T8535]        sync_filesystem+0x1be/0x220
[ 1568.624284][ T8535]        generic_shutdown_super+0x6b/0x340
[ 1568.630378][ T8535]        kill_block_super+0x7c/0xe0
[ 1568.635931][ T8535]        deactivate_locked_super+0x93/0xf0
[ 1568.641765][ T8535]        cleanup_mnt+0x42c/0x4b0
[ 1568.646997][ T8535]        task_work_run+0x1d0/0x260
[ 1568.652218][ T8535]        exit_to_user_mode_loop+0xe6/0x110
[ 1568.658050][ T8535]        exit_to_user_mode_prepare+0xee/0x180
[ 1568.664404][ T8535]        syscall_exit_to_user_mode+0x16/0x40
[ 1568.670496][ T8535]        do_syscall_64+0x58/0xa0
[ 1568.675497][ T8535]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1568.682030][ T8535] 
[ 1568.682030][ T8535] -> #0 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#2){+.+.}-{3:3}:
[ 1568.693102][ T8535]        __lock_acquire+0x2d07/0x7d10
[ 1568.698505][ T8535]        lock_acquire+0x1bb/0x4a0
[ 1568.703646][ T8535]        down_write+0x36/0x60
[ 1568.708516][ T8535]        ocfs2_xattr_set+0xba0/0x13e0
[ 1568.714299][ T8535]        __vfs_setxattr+0x3e0/0x420
[ 1568.719924][ T8535]        __vfs_setxattr_noperm+0x129/0x5e0
[ 1568.725952][ T8535]        vfs_setxattr+0x167/0x2e0
[ 1568.731203][ T8535]        ovl_get_workdir+0xce9/0x1610
[ 1568.736611][ T8535]        ovl_fill_super+0x1824/0x2a30
[ 1568.742272][ T8535]        mount_nodev+0x52/0xe0
[ 1568.747230][ T8535]        legacy_get_tree+0xe6/0x180
[ 1568.752620][ T8535]        vfs_get_tree+0x88/0x270
[ 1568.757591][ T8535]        do_new_mount+0x24a/0xa40
[ 1568.762821][ T8535]        __se_sys_mount+0x2e3/0x3d0
[ 1568.768043][ T8535]        do_syscall_64+0x4c/0xa0
[ 1568.773272][ T8535]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1568.779722][ T8535] 
[ 1568.779722][ T8535] other info that might help us debug this:
[ 1568.779722][ T8535] 
[ 1568.790314][ T8535] Chain exists of:
[ 1568.790314][ T8535]   &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#2 --> jbd2_handle --> &oi->ip_xattr_sem
[ 1568.790314][ T8535] 
[ 1568.806487][ T8535]  Possible unsafe locking scenario:
[ 1568.806487][ T8535] 
[ 1568.814207][ T8535]        CPU0                    CPU1
[ 1568.819769][ T8535]        ----                    ----
[ 1568.825241][ T8535]   lock(&oi->ip_xattr_sem);
[ 1568.829939][ T8535]                                lock(jbd2_handle);
[ 1568.836622][ T8535]                                lock(&oi->ip_xattr_sem);
[ 1568.844155][ T8535]   lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#2);
[ 1568.851607][ T8535] 
[ 1568.851607][ T8535]  *** DEADLOCK ***
[ 1568.851607][ T8535] 
[ 1568.860093][ T8535] 4 locks held by syz.4.11473/8535:
[ 1568.865537][ T8535]  #0: ffff8880785480e0 (&type->s_umount_key#95/1){+.+.}-{3:3}, at: alloc_super+0x1fa/0x930
[ 1568.876064][ T8535]  #1: ffff888053918460 (sb_writers#25){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[ 1568.885986][ T8535]  #2: ffff88804efb2648 (&sb->s_type->i_mutex_key#38){+.+.}-{3:3}, at: vfs_setxattr+0x140/0x2e0
[ 1568.896516][ T8535]  #3: ffff88804efb2378 (&oi->ip_xattr_sem){++++}-{3:3}, at: ocfs2_xattr_set+0x472/0x13e0
[ 1568.906527][ T8535] 
[ 1568.906527][ T8535] stack backtrace:
[ 1568.912679][ T8535] CPU: 1 PID: 8535 Comm: syz.4.11473 Not tainted syzkaller #0
[ 1568.920326][ T8535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1568.930582][ T8535] Call Trace:
[ 1568.934154][ T8535]  <TASK>
[ 1568.937184][ T8535]  dump_stack_lvl+0x188/0x24e
[ 1568.942325][ T8535]  ? load_image+0x400/0x400
[ 1568.947277][ T8535]  ? show_regs_print_info+0x12/0x12
[ 1568.952572][ T8535]  ? print_circular_bug+0x12b/0x1a0
[ 1568.958143][ T8535]  check_noncircular+0x296/0x330
[ 1568.963109][ T8535]  ? look_up_lock_class+0x75/0x140
[ 1568.968394][ T8535]  ? add_chain_block+0x940/0x940
[ 1568.973330][ T8535]  ? lockdep_lock+0xf1/0x1f0
[ 1568.977918][ T8535]  ? lockdep_unlock+0x142/0x2e0
[ 1568.983027][ T8535]  ? _find_first_zero_bit+0xcf/0x100
[ 1568.989009][ T8535]  __lock_acquire+0x2d07/0x7d10
[ 1568.993904][ T8535]  ? verify_lock_unused+0x140/0x140
[ 1568.999339][ T8535]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1569.005976][ T8535]  ? verify_lock_unused+0x140/0x140
[ 1569.011453][ T8535]  ? rcu_is_watching+0x11/0xa0
[ 1569.016228][ T8535]  ? asm_common_interrupt+0x22/0x40
[ 1569.021886][ T8535]  ? lockdep_hardirqs_on+0x94/0x140
[ 1569.027360][ T8535]  ? asm_common_interrupt+0x22/0x40
[ 1569.032556][ T8535]  lock_acquire+0x1bb/0x4a0
[ 1569.037221][ T8535]  ? ocfs2_xattr_set+0xba0/0x13e0
[ 1569.042504][ T8535]  ? _raw_spin_unlock+0x24/0x40
[ 1569.047616][ T8535]  ? ocfs2_xattr_block_find+0x157/0x4d0
[ 1569.053176][ T8535]  ? __might_sleep+0xd0/0xd0
[ 1569.057911][ T8535]  ? read_lock_is_recursive+0x10/0x10
[ 1569.063394][ T8535]  ? rwsem_write_trylock+0x135/0x1c0
[ 1569.068921][ T8535]  ? ocfs2_xattr_ibody_find+0x7c0/0x7c0
[ 1569.074557][ T8535]  ? ocfs2_xattr_ibody_find+0xcb/0x7c0
[ 1569.080187][ T8535]  down_write+0x36/0x60
[ 1569.084435][ T8535]  ? ocfs2_xattr_set+0xba0/0x13e0
[ 1569.089542][ T8535]  ocfs2_xattr_set+0xba0/0x13e0
[ 1569.094673][ T8535]  ? __schedule+0x119d/0x40e0
[ 1569.099740][ T8535]  ? __ocfs2_xattr_set_handle+0xf30/0xf30
[ 1569.105497][ T8535]  ? __sched_text_start+0x8/0x8
[ 1569.110372][ T8535]  ? llist_add_batch+0x12b/0x180
[ 1569.115315][ T8535]  ? preempt_schedule+0xbc/0xd0
[ 1569.120177][ T8535]  ? aa_get_newest_label+0xf9/0x5b0
[ 1569.125390][ T8535]  ? posix_xattr_acl+0x8f/0xb0
[ 1569.130181][ T8535]  ? evm_protect_xattr+0x333/0x9d0
[ 1569.135461][ T8535]  ? ocfs2_xattr_trusted_get+0x40/0x40
[ 1569.141200][ T8535]  __vfs_setxattr+0x3e0/0x420
[ 1569.146085][ T8535]  __vfs_setxattr_noperm+0x129/0x5e0
[ 1569.151379][ T8535]  vfs_setxattr+0x167/0x2e0
[ 1569.156082][ T8535]  ? xattr_permission+0x500/0x500
[ 1569.161126][ T8535]  ? up_write+0x1bb/0x420
[ 1569.165557][ T8535]  ovl_get_workdir+0xce9/0x1610
[ 1569.170614][ T8535]  ? do_raw_spin_unlock+0x11d/0x230
[ 1569.175938][ T8535]  ? ovl_get_upper+0x600/0x600
[ 1569.180707][ T8535]  ? ovl_get_upper+0x456/0x600
[ 1569.185573][ T8535]  ? ovl_fill_super+0x2a30/0x2a30
[ 1569.190616][ T8535]  ? ovl_fill_super+0x13c9/0x2a30
[ 1569.195821][ T8535]  ? rcu_is_watching+0x11/0xa0
[ 1569.200865][ T8535]  ? ovl_fill_super+0x13c9/0x2a30
[ 1569.206301][ T8535]  ? __kmalloc+0xe1/0x240
[ 1569.210678][ T8535]  ovl_fill_super+0x1824/0x2a30
[ 1569.215811][ T8535]  ? ovl_mount+0x30/0x30
[ 1569.220314][ T8535]  ? sget+0x461/0x490
[ 1569.224609][ T8535]  ? free_anon_bdev+0x20/0x20
[ 1569.229548][ T8535]  ? ovl_mount+0x30/0x30
[ 1569.234038][ T8535]  mount_nodev+0x52/0xe0
[ 1569.238576][ T8535]  legacy_get_tree+0xe6/0x180
[ 1569.243541][ T8535]  ? virtio_fs_zero_page_range+0x130/0x130
[ 1569.249666][ T8535]  vfs_get_tree+0x88/0x270
[ 1569.254553][ T8535]  do_new_mount+0x24a/0xa40
[ 1569.259269][ T8535]  __se_sys_mount+0x2e3/0x3d0
[ 1569.264145][ T8535]  ? __x64_sys_mount+0xc0/0xc0
[ 1569.269095][ T8535]  ? lockdep_hardirqs_on+0x94/0x140
[ 1569.274386][ T8535]  ? __x64_sys_mount+0x1c/0xc0
[ 1569.279480][ T8535]  do_syscall_64+0x4c/0xa0
[ 1569.284074][ T8535]  ? clear_bhb_loop+0x60/0xb0
[ 1569.288934][ T8535]  ? clear_bhb_loop+0x60/0xb0
[ 1569.294338][ T8535]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1569.300334][ T8535] RIP: 0033:0x7f315b99c799
[ 1569.304739][ T8535] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1569.325044][ T8535] RSP: 002b:00007f315c825028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1569.333969][ T8535] RAX: ffffffffffffffda RBX: 00007f315bc15fa0 RCX: 00007f315b99c799
[ 1569.342429][ T8535] RDX: 0000200000000440 RSI: 0000200000000100 RDI: 0000000000000000
[ 1569.350682][ T8535] RBP: 00007f315ba32c99 R08: 0000200000000300 R09: 0000000000000000
[ 1569.358915][ T8535] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000000
[ 1569.366968][ T8535] R13: 00007f315bc16038 R14: 00007f315bc15fa0 R15: 00007fffcabc0698
[ 1569.374951][ T8535]  </TASK>
[ 1569.378077][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1569.392853][ T8535] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_parent(struct super_block *, struct ocfs2_dinode *, struct buffer_head *, int): Group descriptor #32 has bit count of 1024
[ 1569.411100][ T8535] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1569.422095][ T8535] OCFS2: File system is now read-only.
[ 1569.427734][ T8535] (syz.4.11473,8535,1):ocfs2_search_chain:1761 ERROR: status = -30
[ 1569.436467][ T8535] (syz.4.11473,8535,1):ocfs2_search_chain:1871 ERROR: status = -30
[ 1569.444642][ T8535] (syz.4.11473,8535,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[ 1569.457799][ T8535] (syz.4.11473,8535,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[ 1569.472123][ T8535] (syz.4.11473,8535,1):__ocfs2_claim_clusters:2365 ERROR: status = -30
[ 1569.481358][ T8535] (syz.4.11473,8535,1):__ocfs2_claim_clusters:2373 ERROR: status = -30
[ 1569.490001][ T8535] (syz.4.11473,8535,1):ocfs2_block_group_alloc_contig:433 ERROR: status = -30
[ 1569.500930][ T8535] (syz.4.11473,8535,1):ocfs2_block_group_alloc:705 ERROR: status = -30
[ 1569.513365][ T8535] (syz.4.11473,8535,1):ocfs2_block_group_alloc:758 ERROR: status = -30
[ 1569.521802][ T8535] (syz.4.11473,8535,1):ocfs2_reserve_suballoc_bits:833 ERROR: status = -30
[ 1569.531057][ T8535] (syz.4.11473,8535,1):ocfs2_reserve_suballoc_bits:850 ERROR: status = -30
[ 1569.540673][ T8535] (syz.4.11473,8535,1):ocfs2_reserve_new_metadata_blocks:990 ERROR: status = -30
[ 1569.550191][ T8535] (syz.4.11473,8535,1):ocfs2_reserve_new_metadata_blocks:1013 ERROR: status = -30
[ 1569.559802][ T8535] (syz.4.11473,8535,1):ocfs2_init_xattr_set_ctxt:3284 ERROR: status = -30
[ 1569.568989][ T8535] (syz.4.11473,8535,1):ocfs2_xattr_set:3641 ERROR: status = -30
[ 1569.577131][ T8535] overlayfs: failed to set xattr on upper
[ 1569.583153][ T8535] overlayfs: ...falling back to index=off,metacopy=off.
[ 1569.592793][ T8535] overlayfs: upper fs missing required features.
[ 1569.619940][ T2044] ocfs2: Unmounting device (7,4) on (node local)
[ 1569.651155][    C1] vkms_vblank_simulate: vblank timer overrun