last executing test programs:

5.408461872s ago: executing program 1 (id=1285):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000280)={0x0, 0xb81, 0x3080, 0x8003, 0x25f}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x68, 0x3, r0, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r0, 0x6e2, 0x620, 0x1, 0x0, 0x0)

4.417389892s ago: executing program 1 (id=1293):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10e, &(0x7f0000000280)={[{@init_itable_val={'init_itable', 0x3d, 0x957}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2a}}, {@stripe={'stripe', 0x3d, 0x8}}, {@orlov}, {@lazytime}]}, 0x4, 0x46b, &(0x7f00000009c0)="$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")
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x62)

3.516772496s ago: executing program 5 (id=1303):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000900), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000007c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000014c0)=ANY=[@ANYBLOB="c4000000", @ANYRES16=r1, @ANYBLOB="010026bd7000ffdbdf2518000000a80030800c00018008000100010000004c0001800800040082580000300003800c0004000203aaaaaaaaaaaa0c00040000000000000000000c0004000203aaaaaaaaaaaa08000200030000000800010003000000080001000000000014000400080f518bfed957b5df3ad24412268559240003000a240996ec4171aed0d1ad767b47e4ed5c4dd3ea1cd62b162f6dbd86f0e5c46e14000400da8abb4d62266b4e8f8e07dfb9e92a1908000300", @ANYRES32=r2], 0xc4}, 0x1, 0x0, 0x0, 0x8080}, 0x0)

3.429427055s ago: executing program 4 (id=1305):
r0 = socket$kcm(0x29, 0x5, 0x0)
sendmsg$rds(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000002980)=""/4112, 0x1010}], 0x1, 0x0, 0x0, 0x800}, 0x4000080)
syz_emit_ethernet(0x32, &(0x7f0000000000)={@random="e90c630faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x10, 0x0, @gue={{0x2, 0x1, 0x3, 0x2, 0x0, @val=0x80}}}}}}}, 0x0)
syz_emit_ethernet(0x31, &(0x7f00000000c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x23, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0xffff, 0xf, 0x0, @opaque="66b71b4468e24e"}}}}}, 0x0)

3.226815365s ago: executing program 5 (id=1308):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x103495, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
getcwd(&(0x7f0000000140)=""/157, 0x9d)

3.130060185s ago: executing program 1 (id=1309):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
bind$tipc(0xffffffffffffffff, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x200, 0xfffffffd}}, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000010c0)={0x0, 0x180, &(0x7f0000001080)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400070200000200080001000300000005000200030000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x80)

3.129702336s ago: executing program 4 (id=1310):
r0 = syz_open_dev$media(&(0x7f0000000100), 0x3, 0x101080)
r1 = syz_open_dev$media(&(0x7f00000012c0), 0x66, 0x180502)
ioctl$MEDIA_IOC_G_TOPOLOGY(r1, 0xc0487c04, &(0x7f0000002f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000019340)=[{}, {}, {0x0, 0x80000000, 0x0, {<r2=>0x0}}, {}], 0x0, 0x0, 0x0})
ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000300)={{0x80000000, 0x0, 0x4, [0xfffffffd, 0x4f]}, {0x80000000, r2, 0x5, [0x101, 0xf]}, 0x0, [0x4, 0x9]})

2.966622143s ago: executing program 5 (id=1312):
getsockopt$inet_sctp6_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000280)={0x0, 0x99, 0xb, 0x4, 0x5, 0x1ff, 0xfb9d, 0x9, {0x0, @in={{0x2, 0x4e22, @private=0xa010100}}, 0x81, 0x2, 0x80000001, 0x4b, 0x9}}, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000040900010073797a30000000009c000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d58001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c000280080001400000000014000180090001006cdbf80789f3f947dd000280080003"], 0xe4}, 0x1, 0x0, 0x0, 0x4000000}, 0x20050840)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f030041000b05d25a806c8c6394f90324fc60100000000a000200053582c137153e3704020180fc5409000c00", 0x33fe0}], 0x1}, 0x0)

2.797798925s ago: executing program 4 (id=1314):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x28, 0x2, [@TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x38}}, 0x44080)

2.749076735s ago: executing program 0 (id=1315):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
io_setup(0x6, &(0x7f0000000540)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f0000000880)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r1, 0x0}])

2.740799617s ago: executing program 2 (id=1316):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xe)
io_setup(0x3, &(0x7f0000000040))

2.565239314s ago: executing program 4 (id=1317):
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xafUD\x9dA\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x0, 0x0)
mq_unlink(&(0x7f0000000000)='eth0\x00')

2.542641645s ago: executing program 5 (id=1318):
r0 = mq_open(&(0x7f0000001880)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\x1c`\xbd\xe1e\x80\x7f\xd2&l0\xc1b\xac\x8b\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL%Jw\x99y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3\x05\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xc8\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xc7\xa7\x82\xb9V}`\xb7\xfc@\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5m\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v>\x9b\n0\xb2 h\xad5\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\'/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f9\xce\x1eYV\xa2\xc4\x03PV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x9b\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xd1\x06F\xef\xbd\xeb\xf0\'\f\f\x003\xecp\x18\x9e\x1d\xeaH\xdaQ%+\xf4\xae\xab0\b\x17W\xba\xaf4E\xe62\xefm\xdd+\xb2\x1b:\xc0cc\x97\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x97s\x03`\xba\xf1\xdb\x05\xe5C)\x8f\xbchyL1:\xc2\xea\x8a\xfc\tq\xfa\xec&\xc7\xde\xf4\xf2\xb9\xe1\xa1\x80)1\xbe@Bt\xb7\xce\xc9\xee\xa8v\t\xfa,\xa2\x9a\xa3\\\xfbM\xb5\xfd\xa9\xe3\x9f\xf7\x85\x87w\x1d]& 8\xb5\xba\xea\xad\xa9\xd4V\xf1\xe9\xaaT\xc8\xff\xaf\xef\x91\xca\x9c\x80\xbeYd]\xfb\x1a\x96?\xb6\xd7{X\xa1H\xeb\xce\xd7\xb7\xf7\x15\xd6\x88\x91\xef{\xf8K@\xb6ch\x1e\x16\xd5m@\xa8\x91\xa5\xc5@\xa7\x00\xab\xc5\xc8\xc8\x9c\xe3:\xac\x1eG\xa0e\'/\x15G\x8e\xe5\x16\xd5S ]\xf8\xa1\xa46\x9a\xf0d!\xc8\x81S\xbc\x18\xdf\xa0\xfek\xb0(\xf7\xba5\x8e\xe5A\xd5l\xfbp\xcb\xa8\xf0b\x91\xc4\xd3+)Sy\x81\xe3\r%C\x03enM\xf1\xdf\xe3b\xb7\x9b\f\x82\xb1z\xcf^\x06\xcd\xa2\x96\xe3\xd5\xbd@1\xbe\x02\xad\\\x89\xd0\xe0\xa8\x11\xb4B\\\x14\\\xed5\x9c\xd7n\x8d\xec\xb5\xcc\xf8q', 0x42, 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)
close(r0)
mq_unlink(&(0x7f0000000000)='eth0\x00')

2.41214121s ago: executing program 0 (id=1319):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x400, &(0x7f0000000180), 0x2, 0x786, &(0x7f0000000f80)="$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")
open(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0xfffffffffffffffd)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)

2.34578255s ago: executing program 1 (id=1320):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4000000010003b1500000000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="41000000015001001800128008000100677470000c00028008000100", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x40}}, 0x2400c080)
close(0x4)

2.286688299s ago: executing program 4 (id=1321):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x1e0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xc8)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)

2.286443741s ago: executing program 3 (id=1322):
r0 = io_uring_setup(0x46eb, &(0x7f0000000100)={0x0, 0x1e8a, 0x0, 0x2, 0x80db})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000480)=[{&(0x7f0000001700)=""/4095, 0xfff}], 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

2.250048925s ago: executing program 5 (id=1323):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = io_uring_setup(0x76fc, &(0x7f0000000340)={0x0, 0xafd4, 0x1000, 0x5, 0x2d2})
r1 = io_uring_setup(0x7625, &(0x7f00000002c0)={0x0, 0x653f, 0x10000, 0x0, 0x28e, 0x0, r0})
io_uring_register$IORING_REGISTER_FILES(r1, 0x1e, &(0x7f0000000000)=[r0], 0x1)

2.075578349s ago: executing program 2 (id=1324):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x30, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVKEY={0x14, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x4}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0x6}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000891}, 0x20004044)

1.828622332s ago: executing program 4 (id=1325):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000000040)={[{@clear_cache}, {@compress}, {@ssd_spread}]}, 0x0, 0x559e, &(0x7f0000005680)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
chdir(&(0x7f0000000100)='./file0\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

1.722062975s ago: executing program 0 (id=1326):
r0 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x1)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

1.617518792s ago: executing program 2 (id=1327):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000a80)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23d, 0x0, 0x0, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x4, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x960, 0x0, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x4, 0x0, 0x0, 0x800, 0x2000, 0x0, 0x0, 0x4], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x7d1, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5, 0x3, 0x3, 0x1010001, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x3, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9388, 0xffffffff], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1)

1.593277234s ago: executing program 3 (id=1328):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2, 0x15ad}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000400)={r1}, &(0x7f0000000240)=0x8)

1.443215262s ago: executing program 1 (id=1329):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000440)=[{0x20, 0x1, 0x81, 0xfffff034}, {0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=ANY=[], 0x6c}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)

1.245755379s ago: executing program 0 (id=1330):
r0 = socket(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0xfffffffd, @mcast2={0xff, 0x5}, 0x1ff}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x70bd27, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6, 0x5, 0x4e20}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x40800)

1.245447469s ago: executing program 2 (id=1331):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000280)={0x0, 0xb81, 0x3080, 0x8003, 0x25f}, &(0x7f0000000240)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x68, 0x3, r0, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r0, 0x6e2, 0x620, 0x1, 0x0, 0x0)

1.113994058s ago: executing program 3 (id=1332):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf253500000008000300", @ANYRES32=r2, @ANYBLOB="0600fd00050300001400d900562c3b9c620622fe7bf5fe7215185bae0a0034"], 0x44}, 0x1, 0x0, 0x0, 0x4040804}, 0x40000)

1.01501784s ago: executing program 1 (id=1333):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000000000)='^', 0x1, 0x80d, &(0x7f0000004ff0)={0x2, 0x4e24, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r0, 0xda90)
accept4(r0, &(0x7f0000000340)=@pppoe={0x18, 0x0, {0x0, @broadcast}}, 0x0, 0x80000)

799.137061ms ago: executing program 3 (id=1334):
openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000007c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="1a", 0x1}], 0x1})
io_uring_enter(r0, 0x4d10, 0x2, 0x2, 0x0, 0x0)

775.879428ms ago: executing program 2 (id=1335):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000003400)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f00000034c0)={0x0, 0x0, &(0x7f0000003480)={&(0x7f0000003440)={0x28, r1, 0x1, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x35}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x60004804)

713.623047ms ago: executing program 0 (id=1336):
io_setup(0x7, &(0x7f0000003000))
io_setup(0x434, &(0x7f0000003580)=<r0=>0x0)
io_destroy(r0)
io_cancel(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xd, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x800, 0x0, 0x5}, 0x0)

550.319513ms ago: executing program 5 (id=1337):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x1ffffdc1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000ff0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000600)="c9f7b98600"/14, 0x0, 0x7ffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

420.066106ms ago: executing program 3 (id=1338):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f00000001c0)={[{@barrier}, {@gid}, {@gid}, {@creator={'creator', 0x3d, "ff60f383"}}, {}, {@nls={'nls', 0x3d, 'maccroatian'}}, {@force}]}, 0x1, 0x6f0, &(0x7f0000000400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r0, 0x3, 0x1)
getdents64(r0, 0x0, 0x20)

353.777411ms ago: executing program 2 (id=1339):
syz_mount_image$btrfs(&(0x7f0000000280), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000000000)={[{@compress_algo={'compress', 0x3d, 'lzo'}}]}, 0x1, 0x55b1, &(0x7f0000005680)="$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")
creat(0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

276.262644ms ago: executing program 0 (id=1340):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000001d40)=[{{0x0, 0x0, 0x0}, 0x4}, {{0x0, 0x0, &(0x7f0000001400)=[{0x0}, {0x0, 0x33}, {0x0}, {&(0x7f0000001dc0)=""/4107, 0x1000}, {&(0x7f00000012c0)=""/189, 0xbd}, {0x0}], 0x6}, 0x1}], 0x2, 0x100, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001940)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4800)

0s ago: executing program 3 (id=1341):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x19, 0x4, 0x8, 0x5}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008900000b703000000000000850000003300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xd80, 0x0, 0x0, 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

kernel console output (not intermixed with test programs):

4.075543][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.147720][ T6581] loop5: detected capacity change from 0 to 512
[  124.154662][ T5911] usb 1-1: config 150 has an invalid interface number: 204 but max is 2
[  124.171446][ T5911] usb 1-1: config 150 has an invalid descriptor of length 0, skipping remainder of the config
[  124.204051][ T6581] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.209918][ T5911] usb 1-1: config 150 has 1 interface, different from the descriptor's value: 3
[  124.242092][ T6581] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.319731][ T5911] usb 1-1: config 150 has no interface number 0
[  124.366606][ T5911] usb 1-1: config 150 interface 204 has no altsetting 0
[  124.392344][ T6581] EXT4-fs error (device loop5): ext4_group_add:1739: inode #7: comm syz.5.222: iget: checksum invalid
[  124.437600][ T5911] usb 1-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb
[  124.459036][ T6581] EXT4-fs warning (device loop5): ext4_group_add:1741: Error opening resize inode
[  124.466668][ T5911] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.514258][ T5911] usb 1-1: Product: syz
[  124.518464][ T5911] usb 1-1: Manufacturer: syz
[  124.544882][ T5911] usb 1-1: SerialNumber: syz
[  124.654186][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.854716][ T5911] usb 1-1: USB disconnect, device number 3
[  124.954482][ T6599] loop4: detected capacity change from 0 to 2048
[  125.024223][ T6599] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.294753][ T6617] loop3: detected capacity change from 0 to 1024
[  125.335203][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.347935][ T6617] hfsplus: bad catalog entry type
[  125.534183][ T1307] hfsplus: b-tree write err: -5, ino 25
[  125.554757][ T1307] hfsplus: b-tree write err: -5, ino 4
[  125.575015][ T1307] hfsplus: b-tree write err: -5, ino 2
[  125.649932][ T6625] netlink: 12 bytes leftover after parsing attributes in process `syz.0.242'.
[  125.897857][ T6629] loop3: detected capacity change from 0 to 1024
[  126.002875][ T6629] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  126.020546][ T6637] netlink: 184 bytes leftover after parsing attributes in process `syz.4.243'.
[  126.052587][ T6629] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.174679][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  126.783033][ T6656] loop5: detected capacity change from 0 to 4096
[  126.888216][ T5942] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  126.920020][ T6664] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  126.984849][ T6656] NILFS (loop5): unable to set label with more than 80 bytes
[  127.027137][ T6643] loop2: detected capacity change from 0 to 32768
[  127.053974][ T5942] usb 1-1: Using ep0 maxpacket: 8
[  127.074204][ T6643] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.248 (6643)
[  127.117569][ T5942] usb 1-1: unable to get BOS descriptor or descriptor too short
[  127.131034][ T5942] usb 1-1: config 4 interface 0 has no altsetting 0
[  127.146603][ T6643] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  127.196015][ T6643] BTRFS info (device loop2): using sha256 checksum algorithm
[  127.197189][ T5942] usb 1-1: string descriptor 0 read error: -22
[  127.224763][ T5942] usb 1-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  127.258127][ T5942] usb 1-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3
[  127.361673][ T5942] usb 1-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  127.473827][ T5942] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  127.492619][ T6643] BTRFS info (device loop2): enabling ssd optimizations
[  127.539544][ T6643] BTRFS info (device loop2): turning on async discard
[  127.568139][ T6691] mmap: syz.4.264 (6691) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  127.570966][ T5942] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  127.589521][ T6643] BTRFS info (device loop2): enabling free space tree
[  127.604107][ T5942] usb 1-1: media controller created
[  127.739158][ T5942] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  127.866149][ T6694] macsec1: entered promiscuous mode
[  127.902808][ T6694] macsec1: entered allmulticast mode
[  127.929329][ T5828] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  127.967340][ T6697] loop3: detected capacity change from 0 to 128
[  128.016180][ T6697] EXT4-fs (loop3): Test dummy encryption mode enabled
[  128.070515][ T6697] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  128.100927][ T6697] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  128.313430][ T6697] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  128.545933][ T5832] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  128.699684][ T5942] zl10353_read_register: readreg error (reg=127, ret==0)
[  128.841616][ T5839] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  128.850146][ T5839] Bluetooth: hci0: Injecting HCI hardware error event
[  128.858469][ T5839] Bluetooth: hci0: hardware error 0x00
[  128.931674][ T5942] usb 1-1: USB disconnect, device number 4
[  129.591974][ T6723] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  129.902057][ T6709] loop2: detected capacity change from 0 to 32768
[  129.923677][ T6709] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.271 (6709)
[  129.976341][ T6709] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  130.019256][ T6709] BTRFS info (device loop2): using crc32c checksum algorithm
[  130.033658][ T6734] loop1: detected capacity change from 0 to 2048
[  130.076746][ T6734] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=27485, location=27485
[  130.198804][ T6734] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  130.237989][ T6709] BTRFS info (device loop2): enabling ssd optimizations
[  130.257621][ T6752] loop3: detected capacity change from 0 to 1024
[  130.296927][ T6709] BTRFS info (device loop2): turning on flush-on-commit
[  130.365207][ T6709] BTRFS info (device loop2): enabling free space tree
[  130.400319][   T30] audit: type=1800 audit(1771483338.907:56): pid=6734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.281" name="file1" dev="loop1" ino=1367 res=0 errno=0
[  130.441453][ T6709] BTRFS info (device loop2): enabling auto defrag
[  130.447893][ T6709] BTRFS info (device loop2): use lzo compression, level 1
[  130.508630][ T6709] BTRFS info (device loop2): max_inline set to 4096
[  130.512453][ T6752] hfsplus: b-tree write err: -5, ino 2
[  130.579500][   T30] audit: type=1804 audit(1771483338.907:57): pid=6734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.281" name="/newroot/58/file0/file1" dev="loop1" ino=1367 res=1 errno=0
[  130.867618][   T13] hfsplus: b-tree write err: -5, ino 25
[  130.893982][   T13] hfsplus: b-tree write err: -5, ino 4
[  130.934465][   T13] hfsplus: b-tree write err: -5, ino 2
[  131.080905][ T5839] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  131.150437][ T5828] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  131.280192][ T6773] loop5: detected capacity change from 0 to 256
[  131.287525][ T6773] exfat: Deprecated parameter 'utf8'
[  131.345746][ T6773] exfat: Deprecated parameter 'namecase'
[  131.387808][ T6782] netlink: 'syz.1.296': attribute type 10 has an invalid length.
[  131.390100][ T6773] exfat: Deprecated parameter 'namecase'
[  131.431376][ T6783] loop4: detected capacity change from 0 to 512
[  131.458140][ T6773] exfat: Deprecated parameter 'utf8'
[  131.464481][ T6783] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 not in group (block 5)!
[  131.515585][ T6773] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  131.575178][ T6783] EXT4-fs (loop4): group descriptors corrupted!
[  131.592004][ T6773] exFAT-fs (loop5): failed to test first cluster bit of root dir(5)
[  131.646230][ T6789] capability: warning: `syz.3.299' uses deprecated v2 capabilities in a way that may be insecure
[  132.136731][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  132.143373][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  132.561170][ T6816] ALSA: mixer_oss: invalid OSS volume 'PHl�6��q
ӆ���ONEOUT'
[  132.568612][ T6816] ALSA: mixer_oss: invalid index 137438
[  133.027997][ T6830] bridge: RTM_NEWNEIGH with invalid state 0x0
[  133.540648][ T6848] netlink: 20 bytes leftover after parsing attributes in process `syz.3.324'.
[  133.575451][ T6848] tipc: Invalid UDP bearer configuration
[  133.575514][ T6848] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  133.667987][ T6814] loop0: detected capacity change from 0 to 32768
[  133.701060][ T6814] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.306 (6814)
[  133.728539][ T6854] netlink: 4 bytes leftover after parsing attributes in process `syz.1.325'.
[  133.758824][ T6814] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  133.762571][ T6854] netlink: 4 bytes leftover after parsing attributes in process `syz.1.325'.
[  133.815516][ T6814] BTRFS info (device loop0): using crc32c checksum algorithm
[  133.835884][ T6856] loop5: detected capacity change from 0 to 128
[  133.842307][ T5911] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  133.901313][ T6856] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  134.005640][ T6814] BTRFS info (device loop0): enabling ssd optimizations
[  134.058240][ T5911] usb 3-1: Using ep0 maxpacket: 8
[  134.063399][ T6814] BTRFS info (device loop0): turning on flush-on-commit
[  134.082668][ T5911] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  134.109615][ T6814] BTRFS info (device loop0): enabling free space tree
[  134.135794][ T5911] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.167024][ T6814] BTRFS info (device loop0): enabling auto defrag
[  134.179451][ T5911] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.190849][ T6814] BTRFS info (device loop0): use lzo compression, level 1
[  134.197981][ T6814] BTRFS info (device loop0): max_inline set to 4096
[  134.230409][ T5911] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  134.290296][ T5911] usb 3-1: New USB device found, idVendor=05ac, idProduct=8242, bcdDevice= 0.00
[  134.299350][ T5911] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.349016][ T5911] usb 3-1: config 0 descriptor??
[  134.422252][ T6885] loop5: detected capacity change from 0 to 2048
[  134.558100][ T6887] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  134.707051][ T5826] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  134.827196][ T5911] appleir 0003:05AC:8242.0007: item fetching failed at offset 10/11
[  134.872121][ T5911] appleir 0003:05AC:8242.0007: parse failed
[  134.907556][ T5911] appleir 0003:05AC:8242.0007: probe with driver appleir failed with error -22
[  135.085841][ T5911] usb 3-1: USB disconnect, device number 4
[  135.334540][ T6858] loop3: detected capacity change from 0 to 32768
[  135.387828][ T6902] netlink: 20 bytes leftover after parsing attributes in process `syz.5.340'.
[  135.851299][ T6915] loop0: detected capacity change from 0 to 64
[  136.003647][ T6921] loop5: detected capacity change from 0 to 8
[  136.274580][ T6925] loop4: detected capacity change from 0 to 1024
[  136.303370][ T6925] EXT4-fs: Ignoring removed nobh option
[  136.326253][ T6925] EXT4-fs: Ignoring removed nomblk_io_submit option
[  136.462341][ T6925] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.662410][ T6939] loop2: detected capacity change from 0 to 512
[  136.685045][ T6925] EXT4-fs (loop4): Online resizing not supported with bigalloc
[  136.710589][ T6939] EXT4-fs: quotafile must be on filesystem root
[  136.916342][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.329521][ T5942] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  137.512269][ T5942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  137.536390][ T5942] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  137.546718][ T5942] usb 6-1: New USB device found, idVendor=1d34, idProduct=0004, bcdDevice= 0.00
[  137.558061][ T5942] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  137.586861][ T6969] loop2: detected capacity change from 0 to 256
[  137.600942][ T5942] usb 6-1: config 0 descriptor??
[  137.955736][ T6984] netlink: 24 bytes leftover after parsing attributes in process `syz.1.375'.
[  137.964896][ T6984] netlink: 144 bytes leftover after parsing attributes in process `syz.1.375'.
[  137.983695][ T6984] netlink: 32 bytes leftover after parsing attributes in process `syz.1.375'.
[  138.041269][ T6985] loop2: detected capacity change from 0 to 1024
[  138.107959][ T6985] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  138.131516][ T5911] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  138.227890][ T5942] hid-led 0003:1D34:0004.0008: probe with driver hid-led failed with error -71
[  138.291595][ T5911] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  138.305429][ T5911] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  138.327960][ T5942] usb 6-1: USB disconnect, device number 5
[  138.653236][ T5828] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.055592][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz.4.385'.
[  139.101519][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz.4.385'.
[  139.300894][ T5911] usb 4-1: New USB device found, idVendor=0755, idProduct=2626, bcdDevice= 0.00
[  139.310436][ T5911] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  139.323279][ T5911] usb 4-1: config 0 descriptor??
[  139.405175][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz.4.385'.
[  139.424595][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz.4.385'.
[  140.349573][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.352749][ T5947] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  140.356561][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.356601][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.381662][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.388624][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.395674][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.580436][ T5947] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  140.620373][ T7013] loop5: detected capacity change from 0 to 32768
[  140.631500][ T5947] usb 5-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00
[  140.679224][ T5947] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.698326][ T5911] aureal 0003:0755:2626.0009: unknown main item tag 0x0
[  140.700400][   T30] audit: type=1800 audit(1771483349.217:58): pid=7013 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.388" name="file1" dev="loop5" ino=7 res=0 errno=0
[  140.731058][ T6998] loop1: detected capacity change from 0 to 262144
[  140.739465][ T6998] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.380 (6998)
[  140.783422][ T6998] BTRFS info (device loop1): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  140.794372][ T6998] BTRFS info (device loop1): using xxhash64 checksum algorithm
[  140.809255][ T5947] usb 5-1: config 0 descriptor??
[  140.816867][ T5911] aureal 0003:0755:2626.0009: hidraw0: USB HID v1.ff Device [HID 0755:2626] on usb-dummy_hcd.3-1/input0
[  140.864772][ T5911] usb 4-1: USB disconnect, device number 5
[  140.988157][ T6998] BTRFS info (device loop1): deleted orphan free space tree entries
[  140.996459][ T6998] BTRFS info (device loop1): checking UUID tree
[  141.009629][ T6998] BTRFS info (device loop1): enabling ssd optimizations
[  141.016605][ T6998] BTRFS info (device loop1): turning on async discard
[  141.023470][ T6998] BTRFS info (device loop1): enabling free space tree
[  141.117953][ T7041] fido_id[7041]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  141.263942][ T5947] hid_mf 0003:0079:1846.000A: hidraw0: USB HID v0.00 Device [HID 0079:1846] on usb-dummy_hcd.4-1/input0
[  141.296143][ T5947] hid_mf 0003:0079:1846.000A: Force feedback for HJZ Mayflash game controller adapters by Marcel Hasler <mahasler@gmail.com>
[  141.545864][ T5911] usb 5-1: USB disconnect, device number 3
[  141.571107][ T5831] BTRFS info (device loop1): last unmount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  142.119750][ T5947] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  142.310973][ T5947] usb 3-1: Using ep0 maxpacket: 32
[  142.323147][ T5947] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.360917][ T5947] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  142.439629][ T5947] usb 3-1: New USB device found, idVendor=11ff, idProduct=3331, bcdDevice= 0.00
[  142.448707][ T5947] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.464482][ T7066] loop3: detected capacity change from 0 to 128
[  142.515915][ T7066] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  142.553789][ T7066] ext4 filesystem being mounted at /78/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  142.602573][ T5947] usb 3-1: config 0 descriptor??
[  142.773667][   T10] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  142.804670][ T5832] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  142.949484][   T10] usb 6-1: Using ep0 maxpacket: 8
[  142.981760][   T10] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  143.019880][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.050901][ T5947] gembird 0003:11FF:3331.000B: unknown main item tag 0x0
[  143.082545][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.115332][ T5947] gembird 0003:11FF:3331.000B: unknown main item tag 0x0
[  143.154292][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  143.187774][ T5947] gembird 0003:11FF:3331.000B: unknown main item tag 0x0
[  143.234077][   T10] usb 6-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  143.245687][ T5947] gembird 0003:11FF:3331.000B: hidraw0: USB HID v0.00 Device [HID 11ff:3331] on usb-dummy_hcd.2-1/input0
[  143.271021][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.309926][   T10] usb 6-1: config 0 descriptor??
[  143.327612][ T5947] usb 3-1: USB disconnect, device number 5
[  143.359496][  T791] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  143.409516][ T5942] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  143.549044][  T791] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.566606][ T7082] fido_id[7082]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  143.599586][  T791] usb 4-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00
[  143.608639][  T791] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.649551][ T5942] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  143.668893][ T5942] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.678989][  T791] usb 4-1: config 0 descriptor??
[  143.710708][ T5942] usb 5-1: config 0 descriptor??
[  143.743852][ T7086] loop1: detected capacity change from 0 to 16
[  143.766350][   T10] itetech 0003:258A:6A88.000C: unbalanced collection at end of report description
[  143.818532][ T7086] erofs (device loop1): mounted with root inode @ nid 36.
[  143.818674][   T10] itetech 0003:258A:6A88.000C: probe with driver itetech failed with error -22
[  143.859883][ T5942] gspca_main: cpia1-2.14.0 probing 0813:0001
[  143.877167][ T7086] erofs (device loop1): bogus dirent @ nid 36
[  143.973690][ T7088] loop0: detected capacity change from 0 to 1024
[  144.056838][ T5930] usb 6-1: USB disconnect, device number 6
[  144.057620][ T7088] hfsplus: b-tree write err: -5, ino 2
[  144.134754][ T5942] gspca_cpia1: usb_control_msg 03, error -32
[  144.163595][ T5942] gspca_cpia1: usb_control_msg 03, error -71
[  144.182820][  T791] elo 0003:04E7:0009.000D: hidraw0: USB HID v0.02 Device [HID 04e7:0009] on usb-dummy_hcd.3-1/input0
[  144.204727][ T5942] gspca_cpia1: usb_control_msg 01, error -71
[  144.252888][ T5942] cpia1 5-1:0.0: only firmware version 1 is supported (got: 0)
[  144.314473][ T5942] usb 5-1: USB disconnect, device number 4
[  144.398865][  T165] hfsplus: b-tree write err: -5, ino 25
[  144.399869][ T5947] usb 4-1: USB disconnect, device number 6
[  144.426829][  T165] hfsplus: b-tree write err: -5, ino 4
[  144.439215][ T7092] loop1: detected capacity change from 0 to 2048
[  144.450748][  T165] hfsplus: b-tree write err: -5, ino 2
[  144.470617][  T165] hfsplus: b-tree write err: -5, ino 26
[  144.495512][ T7092] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  144.563084][ T7096] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  144.620079][ T7093] fido_id[7093]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  145.065002][ T7106] netlink: 8 bytes leftover after parsing attributes in process `syz.4.419'.
[  145.166533][ T7106] ipvlan2: entered promiscuous mode
[  145.181963][ T7111] IPv6: addrconf: prefix option has invalid lifetime
[  145.202052][ T7115] loop3: detected capacity change from 0 to 256
[  145.217607][ T7114] loop5: detected capacity change from 0 to 256
[  145.226964][ T7106] ipvlan2: entered allmulticast mode
[  145.254111][ T7115] exfat: Deprecated parameter 'namecase'
[  145.271413][ T7106] dummy0: entered allmulticast mode
[  145.289743][ T7115] exfat: Deprecated parameter 'utf8'
[  145.339558][ T7114] FAT-fs (loop5): Directory bread(block 64) failed
[  145.365128][ T7114] FAT-fs (loop5): Directory bread(block 65) failed
[  145.385675][ T7115] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x3f800a9b, utbl_chksum : 0xe619d30d)
[  145.429592][ T7114] FAT-fs (loop5): Directory bread(block 66) failed
[  145.434048][ T7117] tipc: Enabling of bearer <�dp:s> rejected, media not registered
[  145.436145][ T7114] FAT-fs (loop5): Directory bread(block 67) failed
[  145.559667][ T7114] FAT-fs (loop5): Directory bread(block 68) failed
[  145.566221][ T7114] FAT-fs (loop5): Directory bread(block 69) failed
[  145.590896][ T7121] loop1: detected capacity change from 0 to 256
[  145.598238][ T7121] exfat: Deprecated parameter 'namecase'
[  145.620370][ T7114] FAT-fs (loop5): Directory bread(block 70) failed
[  145.626904][ T7114] FAT-fs (loop5): Directory bread(block 71) failed
[  145.689238][ T7114] FAT-fs (loop5): Directory bread(block 72) failed
[  145.729494][ T7121] exfat: Deprecated parameter 'namecase'
[  145.735414][ T7114] FAT-fs (loop5): Directory bread(block 73) failed
[  145.781138][ T7121] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  146.219730][ T7134] loop4: detected capacity change from 0 to 512
[  146.262235][ T7135] sctp: [Deprecated]: syz.3.432 (pid 7135) Use of struct sctp_assoc_value in delayed_ack socket option.
[  146.262235][ T7135] Use struct sctp_sack_info instead
[  146.264898][ T7134] EXT4-fs (loop4): Test dummy encryption mode enabled
[  146.286377][ T7138] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  146.360666][ T7134] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  146.387143][ T7134] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[  146.402630][ T7134] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.642095][ T7134] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  146.652875][ T7134] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1312: group 0, block bitmap and bg descriptor inconsistent: 212 vs 220 free clusters
[  146.700940][ T7127] loop0: detected capacity change from 0 to 32768
[  146.720963][ T7134] EXT4-fs (loop4): Remounting filesystem read-only
[  146.743939][ T7127] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.427 (7127)
[  146.826341][ T7127] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  146.869269][ T7127] BTRFS info (device loop0): using sha256 checksum algorithm
[  146.974797][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.244990][ T7127] BTRFS info (device loop0): enabling ssd optimizations
[  147.252676][ T7127] BTRFS info (device loop0): turning on async discard
[  147.260984][ T7127] BTRFS info (device loop0): enabling free space tree
[  147.536581][ T5942] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  147.696270][ T5826] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  147.752086][ T5942] usb 5-1: config 1 has an invalid interface number: 7 but max is 0
[  147.769766][ T5942] usb 5-1: config 1 has no interface number 0
[  147.780507][ T5942] usb 5-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[  147.802533][ T5942] usb 5-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  147.856845][ T7180] loop3: detected capacity change from 0 to 4096
[  147.879567][ T5942] usb 5-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.914245][ T5942] usb 5-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  147.924407][ T5942] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.983530][ T5942] usb 5-1: Product: syz
[  147.987724][ T5942] usb 5-1: Manufacturer: syz
[  147.999135][ T7186] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  148.015527][ T5942] usb 5-1: SerialNumber: syz
[  148.094180][ T7172] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  148.198304][ T7188] 8021q: adding VLAN 0 to HW filter on device bond1
[  148.225776][ T7188] bond0: (slave bond1): Enslaving as an active interface with an up link
[  148.385475][ T7172] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  148.450016][ T7193] netlink: 4 bytes leftover after parsing attributes in process `syz.2.452'.
[  148.556101][ T7177] loop1: detected capacity change from 0 to 32768
[  148.604386][ T7200] loop3: detected capacity change from 0 to 256
[  148.681889][ T7200] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  148.746318][ T5942] sierra_net 5-1:1.7 wwan0: register 'sierra_net' at usb-dummy_hcd.4-1, Sierra Wireless USB-to-WWAN Modem, 00:00:00:00:01:07
[  148.844318][ T5942] sierra_net 5-1:1.7 wwan0: Submit SYNC failed -71
[  148.899724][ T5942] sierra_net 5-1:1.7 wwan0: Send SYNC failed, status -71
[  148.928087][ T5942] sierra_net 5-1:1.7 wwan0: Submit SYNC failed -71
[  148.954058][ T5942] sierra_net 5-1:1.7 wwan0: Send SYNC failed, status -71
[  149.006277][ T5942] usb 5-1: USB disconnect, device number 5
[  149.036333][ T5942] sierra_net 5-1:1.7 wwan0: unregister 'sierra_net' usb-dummy_hcd.4-1, Sierra Wireless USB-to-WWAN Modem
[  149.251032][ T5942] sierra_net 5-1:1.7 wwan0 (unregistered): usb_control_msg failed, status -19
[  149.568894][ T7212] loop3: detected capacity change from 0 to 4096
[  149.712822][ T7212] ntfs3(loop3): ino=3, ntfs_set_state failed, -22.
[  149.735231][ T7212] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  149.877419][ T7227] netlink: 'syz.0.466': attribute type 11 has an invalid length.
[  149.924496][   T13] ntfs3(loop3): ino=3, ntfs3_write_inode failed, -22.
[  149.954093][ T5832] ntfs3(loop3): ino=3, ntfs_set_state failed, -22.
[  149.954949][ T7222] bond1: invalid ARP target 0.0.0.0 specified for addition
[  149.963222][ T5832] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  149.982853][ T7222] bond1: option arp_ip_target: invalid value (0)
[  149.993221][ T5947] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  150.004097][ T5832] ntfs3(loop3): ino=3, ntfs_set_state failed, -22.
[  150.015953][   T49] ntfs3(loop3): ino=3, ntfs3_write_inode failed, -22.
[  150.023466][ T7222] bond1 (unregistering): Released all slaves
[  150.161989][ T5947] usb 6-1: Using ep0 maxpacket: 8
[  150.192060][ T5947] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.240238][ T5947] usb 6-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6
[  150.264047][ T5947] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.332442][ T5947] usb 6-1: config 0 descriptor??
[  150.605536][ T5930] usb 6-1: USB disconnect, device number 7
[  151.197534][ T7261] loop0: detected capacity change from 0 to 2048
[  151.263301][ T7261] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  151.627816][ T7274] netlink: 40 bytes leftover after parsing attributes in process `syz.3.489'.
[  151.663458][ T7277] netlink: 8 bytes leftover after parsing attributes in process `syz.5.490'.
[  151.692370][ T7274] sch_fq: defrate 0 ignored.
[  151.724310][ T7278] batadv_slave_1: entered promiscuous mode
[  151.757105][ T7276] batadv_slave_1: left promiscuous mode
[  152.621946][ T7306] loop3: detected capacity change from 0 to 512
[  152.646173][ T7306] EXT4-fs: inline encryption not supported
[  152.662751][ T7301] loop1: detected capacity change from 0 to 4096
[  152.721707][ T7306] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  152.758106][ T7301] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  152.783019][ T7306] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  152.786150][ T7301] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  152.845460][ T7306] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  152.862125][ T7306] System zones: 1-12
[  152.889030][ T7306] EXT4-fs (loop3): 1 truncate cleaned up
[  152.915326][ T7306] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.063290][ T7306] EXT4-fs warning (device loop3): verify_group_input:136: Cannot add at group 16778241 (only 1 groups)
[  153.105009][   T13] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[  153.120258][ T5831] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  153.136968][ T5831] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  153.177416][ T5831] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[  153.216784][   T13] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[  153.259028][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.614402][ T7337] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  153.932944][ T7348] loop3: detected capacity change from 0 to 256
[  153.989583][ T7348] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x6f4cd389, utbl_chksum : 0xe619d30d)
[  154.020889][ T7350] loop2: detected capacity change from 0 to 64
[  154.059767][ T7348] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff)
[  154.074581][ T5930] kernel read not supported for file /dsp (pid: 5930 comm: kworker/1:7)
[  154.119649][ T7352] netlink: 190972 bytes leftover after parsing attributes in process `syz.5.523'.
[  154.232758][ T7354] netlink: 64 bytes leftover after parsing attributes in process `syz.4.524'.
[  154.549519][ T5930] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  154.721703][ T5930] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  154.739487][ T5930] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  154.773338][ T5930] usb 2-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  154.789459][ T5930] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.809760][ T5930] usb 2-1: Product: syz
[  154.818586][ T5930] usb 2-1: Manufacturer: syz
[  154.836381][ T5930] usb 2-1: SerialNumber: syz
[  154.850202][ T5947] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  154.923003][ T5930] usb 2-1: config 0 descriptor??
[  154.938950][ T7356] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  154.954801][ T7356] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  155.015029][ T7377] netlink: 27 bytes leftover after parsing attributes in process `syz.5.535'.
[  155.030672][ T5947] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.054299][ T5947] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  155.092181][ T5947] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00
[  155.123754][ T5947] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.154094][ T5947] usb 4-1: config 0 descriptor??
[  155.208931][ T7356] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  155.236911][ T7356] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  155.327002][ T7383] netlink: 4 bytes leftover after parsing attributes in process `syz.5.536'.
[  155.535256][ T5839] Bluetooth: hci5: link tx timeout
[  155.541813][ T5839] Bluetooth: hci5: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.552556][ T5839] Bluetooth: hci5: link tx timeout
[  155.557690][ T5839] Bluetooth: hci5: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.565710][ T5839] Bluetooth: hci5: link tx timeout
[  155.571059][ T5839] Bluetooth: hci5: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.578851][ T5839] Bluetooth: hci5: link tx timeout
[  155.584861][ T5839] Bluetooth: hci5: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.670088][ T5930] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  155.675576][ T5947] kovaplus 0003:1E7D:2D50.000E: hidraw0: USB HID v0.00 Device [HID 1e7d:2d50] on usb-dummy_hcd.3-1/input0
[  155.875220][ T5930] dm9601 2-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  155.910112][ T5930] usb 2-1: USB disconnect, device number 2
[  156.056800][ T5947] kovaplus 0003:1E7D:2D50.000E: couldn't init struct kovaplus_device
[  156.067222][ T5947] kovaplus 0003:1E7D:2D50.000E: couldn't install mouse
[  156.082037][ T5947] kovaplus 0003:1E7D:2D50.000E: probe with driver kovaplus failed with error -71
[  156.097398][ T5947] usb 4-1: USB disconnect, device number 7
[  156.510706][   T30] audit: type=1326 audit(1771483365.017:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7387 comm="syz.5.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68bb19c629 code=0x7fc00000
[  156.859831][ T7413] loop3: detected capacity change from 0 to 64
[  156.928668][ T7413] hfs: request for non-existent node 393216 in B*Tree
[  156.979828][ T7413] hfs: request for non-existent node 393216 in B*Tree
[  156.987352][ T7413] hfs: request for non-existent node 393216 in B*Tree
[  157.029292][ T7413] hfs: request for non-existent node 393216 in B*Tree
[  157.124034][ T7418] hfs: request for non-existent node 393216 in B*Tree
[  157.179791][ T7418] hfs: request for non-existent node 393216 in B*Tree
[  157.452132][ T1307] hfs: request for non-existent node 393216 in B*Tree
[  157.459091][ T1307] hfs: request for non-existent node 393216 in B*Tree
[  157.541339][ T7428] netlink: 16 bytes leftover after parsing attributes in process `syz.2.557'.
[  157.639539][ T5841] Bluetooth: hci5: command 0x0406 tx timeout
[  157.948664][ T7443] loop2: detected capacity change from 0 to 256
[  157.993700][ T7445] input: syz1 as /devices/virtual/input/input6
[  158.118216][ T7451] loop4: detected capacity change from 0 to 256
[  158.184530][ T7443] FAT-fs (loop2): Directory bread(block 64) failed
[  158.191224][ T7443] FAT-fs (loop2): Directory bread(block 65) failed
[  158.237216][ T7443] FAT-fs (loop2): Directory bread(block 66) failed
[  158.340283][ T7443] FAT-fs (loop2): Directory bread(block 67) failed
[  158.346931][ T7443] FAT-fs (loop2): Directory bread(block 68) failed
[  158.409544][ T7443] FAT-fs (loop2): Directory bread(block 69) failed
[  158.420661][ T7443] FAT-fs (loop2): Directory bread(block 70) failed
[  158.457039][ T7443] FAT-fs (loop2): Directory bread(block 71) failed
[  158.479636][ T7443] FAT-fs (loop2): Directory bread(block 72) failed
[  158.486175][ T7443] FAT-fs (loop2): Directory bread(block 73) failed
[  158.712365][ T7463] loop1: detected capacity change from 0 to 64
[  159.019538][ T5947] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  159.078457][ T7475] loop2: detected capacity change from 0 to 256
[  159.146953][ T7475] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4711949a, utbl_chksum : 0xe619d30d)
[  159.203369][ T5947] usb 6-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  159.265300][ T5947] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.317870][ T5947] usb 6-1: config 0 descriptor??
[  159.344961][ T5947] gspca_main: cpia1-2.14.0 probing 0813:0001
[  159.708136][ T5930] hid_parser_main: 3 callbacks suppressed
[  159.708171][ T5930] hid-generic 0005:10CF:4155.000F: unknown main item tag 0x0
[  159.753273][ T5930] hid-generic 0005:10CF:4155.000F: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  159.768324][ T5947] gspca_cpia1: usb_control_msg 03, error -32
[  159.798406][ T7493] tipc: Started in network mode
[  159.806826][ T5947] cpia1 6-1:0.0: unexpected state after lo power cmd: 01
[  159.814260][ T7493] tipc: Node identity ac14140f, cluster identity 4711
[  159.814753][ T7493] tipc: New replicast peer: 255.255.255.255
[  159.879154][ T7493] tipc: Enabled bearer <udp:syz2>, priority 10
[  160.030281][ T5947] gspca_cpia1: usb_control_msg 01, error -71
[  160.036310][ T5947] cpia1 6-1:0.0: only firmware version 1 is supported (got: 0)
[  160.100537][ T5947] usb 6-1: USB disconnect, device number 8
[  160.151050][ T7501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.591'.
[  160.231876][   T10] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  160.244059][ T7505] loop1: detected capacity change from 0 to 128
[  160.244067][ T7501] bond0: (slave bond_slave_0): Releasing backup interface
[  160.312239][ T7505] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  160.349221][ T7509] loop0: detected capacity change from 0 to 1024
[  160.367452][ T7505] ext4 filesystem being mounted at /110/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  160.413855][   T10] usb 5-1: New USB device found, idVendor=0f30, idProduct=0111, bcdDevice= 0.00
[  160.424030][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.440939][   T10] usb 5-1: config 0 descriptor??
[  160.497016][   T13] hfsplus: b-tree write err: -5, ino 25
[  160.508450][   T13] hfsplus: b-tree write err: -5, ino 4
[  160.516858][   T13] hfsplus: b-tree write err: -5, ino 2
[  160.524325][ T5831] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  160.539173][   T13] hfsplus: b-tree write err: -5, ino 20
[  160.562013][   T13] hfsplus: b-tree write err: -5, ino 22
[  160.850099][ T7517] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  160.857606][ T7517] IPv6: NLM_F_CREATE should be set when creating new route
[  160.864860][ T7517] IPv6: NLM_F_CREATE should be set when creating new route
[  160.873634][ T5930] tipc: Node number set to 2886997007
[  160.882288][ T7517] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  160.889744][ T7517] Zero length message leads to an empty skb
[  160.942040][   T10] pantherlord 0003:0F30:0111.0010: hidraw0: USB HID v0.02 Device [HID 0f30:0111] on usb-dummy_hcd.4-1/input0
[  160.974110][   T10] pantherlord 0003:0F30:0111.0010: Force feedback for PantherLord/GreenAsia devices by Anssi Hannula <anssi.hannula@gmail.com>
[  161.154479][ T5930] usb 5-1: USB disconnect, device number 6
[  161.258659][ T7520] fido_id[7520]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  161.430836][ T7530] loop3: detected capacity change from 0 to 1024
[  161.464134][ T7530] EXT4-fs: inline encryption not supported
[  161.517118][ T7530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.612079][ T7540] loop0: detected capacity change from 0 to 1024
[  161.620311][ T7540] EXT4-fs: Ignoring removed orlov option
[  161.631334][ T7540] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  161.685464][ T7540] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.815033][ T7547] loop1: detected capacity change from 0 to 16
[  161.824129][ T7547] erofs (device loop1): mounted with root inode @ nid 36.
[  161.841671][ T7547] erofs (device loop1): readahead error at folio 2 @ nid 89
[  161.859875][ T7547] erofs (device loop1): readahead error at folio 1 @ nid 89
[  161.877065][ T7547] erofs (device loop1): readahead error at folio 0 @ nid 89
[  161.902334][ T7547] erofs (device loop1): read error -117 @ 0 of nid 89
[  161.928058][   T30] audit: type=1800 audit(1771483370.437:60): pid=7547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.609" name="file2" dev="loop1" ino=89 res=0 errno=0
[  161.947206][ T7544] EXT4-fs error (device loop3): mb_free_blocks:2044: group 0, inode 15: block 433:freeing already freed block (bit 27); block bitmap corrupt.
[  162.025223][ T7554] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  162.034983][ T7544] EXT4-fs (loop3): Remounting filesystem read-only
[  162.052242][ T7555] loop4: detected capacity change from 0 to 64
[  162.129004][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.160054][   T30] audit: type=1800 audit(1771483370.667:61): pid=7555 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.611" name="file1" dev="loop4" ino=22 res=0 errno=0
[  162.182981][ T7555] syz.4.611: attempt to access beyond end of device
[  162.182981][ T7555] loop4: rw=8423425, sector=57, nr_sectors = 8 limit=64
[  162.330483][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.457165][ T7561] netlink: 20 bytes leftover after parsing attributes in process `syz.0.612'.
[  162.654381][ T7563] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.064531][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.129809][ T7584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.624'.
[  163.425650][ T7590] set_capacity_and_notify: 1 callbacks suppressed
[  163.425675][ T7590] loop5: detected capacity change from 0 to 1024
[  163.441913][ T7596] loop3: detected capacity change from 0 to 64
[  163.485536][ T7595] netlink: 64 bytes leftover after parsing attributes in process `syz.1.628'.
[  163.593129][ T7590] hfsplus: request for non-existent node 211 in B*Tree
[  163.657405][ T7590] hfsplus: request for non-existent node 211 in B*Tree
[  163.819989][ T7602] loop4: detected capacity change from 0 to 512
[  163.827252][ T7602] EXT4-fs: Ignoring removed oldalloc option
[  163.906603][   T13] hfsplus: b-tree write err: -5, ino 8
[  163.960433][ T7602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.104424][ T7611] loop1: detected capacity change from 0 to 256
[  164.150687][ T7611] exfat: Deprecated parameter 'namecase'
[  164.197493][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.218073][ T7611] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xd8f5bb5e, utbl_chksum : 0xe619d30d)
[  164.290534][ T5930] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  164.482656][ T5930] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  164.510086][ T5930] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.531767][ T5930] usb 4-1: config 0 descriptor??
[  164.762823][ T5930] udl 4-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  164.987544][ T5930] [drm] Initialized udl 0.0.1 for 4-1:0.0 on minor 2
[  165.006254][ T5930] [drm] Initialized udl on minor 2
[  165.259530][  T791] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  165.367789][ T5930] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 1 failed err ffffffb9
[  165.412213][ T5930] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  165.421270][ T5911] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  165.459811][  T791] usb 5-1: Using ep0 maxpacket: 8
[  165.466886][ T5911] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  165.489533][ T5930] usb 4-1: USB disconnect, device number 8
[  165.509516][  T791] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  165.534495][ T5911] udl 4-1:0.0: [drm] Cannot find any crtc or sizes
[  165.549595][  T791] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  165.580947][  T791] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.610551][  T791] usb 5-1: config 0 descriptor??
[  165.931572][  T791] iowarrior 5-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  165.988991][ T7649] loop5: detected capacity change from 0 to 2048
[  166.022638][ T7649] udf: Unknown parameter 'vo'
[  166.148541][ T7651] loop1: detected capacity change from 0 to 128
[  166.188007][ T7651] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  166.211652][ T5947] usb 5-1: USB disconnect, device number 7
[  166.242364][ T7651] ext4 filesystem being mounted at /127/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  166.278352][ T7660] loop5: detected capacity change from 0 to 512
[  166.388996][ T7660] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.440741][ T7660] ext4 filesystem being mounted at /90/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.522543][   T30] audit: type=1800 audit(1771483375.037:62): pid=7660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.659" name="file1" dev="loop5" ino=15 res=0 errno=0
[  166.572122][ T5831] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  166.633996][   T30] audit: type=1800 audit(1771483375.037:63): pid=7660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.659" name="file2" dev="loop5" ino=16 res=0 errno=0
[  166.664352][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.981004][ T7676] netlink: 40 bytes leftover after parsing attributes in process `syz.4.665'.
[  167.209579][ T7685] netlink: 64 bytes leftover after parsing attributes in process `syz.1.669'.
[  167.313807][ T7691] loop2: detected capacity change from 0 to 2048
[  167.330730][ T7691] udf: Unknown parameter 'vo'
[  167.799303][ T7702] netlink: 4 bytes leftover after parsing attributes in process `syz.2.677'.
[  167.899917][ T7702] bond0: (slave bond_slave_0): Releasing backup interface
[  168.073296][ T7708] netlink: 8 bytes leftover after parsing attributes in process `syz.3.681'.
[  168.090511][ T7708] netlink: 'syz.3.681': attribute type 5 has an invalid length.
[  168.284743][ T7710] loop5: detected capacity change from 0 to 4096
[  168.449054][ T7710] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  168.502675][ T7710] ntfs3(loop5): ino=1a, mi_enum_attr
[  168.508125][ T7710] ntfs3(loop5): ino=1a, mi_enum_attr
[  168.580398][ T7710] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  168.812984][ T7723] loop2: detected capacity change from 0 to 2048
[  168.866014][ T7721] loop3: detected capacity change from 0 to 32768
[  168.885415][ T7723] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  168.952014][ T7721] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.068867][ T7721] XFS (loop3): Ending clean mount
[  169.083004][ T7721] XFS (loop3): Quotacheck needed: Please wait.
[  169.165313][ T7721] XFS (loop3): Quotacheck: Done.
[  169.277438][ T5832] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  169.644696][ T7742] loop4: detected capacity change from 0 to 128
[  169.711938][ T7742] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.796486][ T7742] ext4 filesystem being mounted at /117/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  169.988340][ T7753] netlink: 4 bytes leftover after parsing attributes in process `syz.5.697'.
[  170.090588][ T5833] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  170.120839][ T5841] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  170.135575][ T5841] Bluetooth: hci2: Injecting HCI hardware error event
[  170.144872][ T5841] Bluetooth: hci2: hardware error 0x00
[  170.163700][ T7753] bond0: (slave bond_slave_0): Releasing backup interface
[  170.314768][ T7757] loop3: detected capacity change from 0 to 2048
[  170.414076][ T7757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.693208][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.859480][ T5839] Bluetooth: hci2: unexpected event for opcode 0x202f
[  170.946097][ T7754] loop1: detected capacity change from 0 to 32768
[  171.040188][ T5947] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  171.053659][ T7754] JBD2: Ignoring recovery information on journal
[  171.218589][ T7754] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  171.270290][ T5947] usb 5-1: Using ep0 maxpacket: 32
[  171.296576][ T5947] usb 5-1: New USB device found, idVendor=04b4, idProduct=ed81, bcdDevice= 0.00
[  171.336785][ T5947] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.380578][ T5947] usb 5-1: config 0 descriptor??
[  171.410131][ T7786] netlink: 148 bytes leftover after parsing attributes in process `syz.3.708'.
[  171.480494][ T5839] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  171.489103][ T5839] Bluetooth: hci1: Injecting HCI hardware error event
[  171.500283][ T5839] Bluetooth: hci1: hardware error 0x00
[  171.764073][ T5831] ocfs2: Unmounting device (7,1) on (node local)
[  171.776461][ T7790] fuse: Unknown parameter 'acerPid:	0
[  171.776461][ T7790] Uid:	0	0	0	0
[  171.776461][ T7790] Gid:	0	0	0	0
[  171.776461][ T7790] FDSize:	256
[  171.776461][ T7790] Groups:	0 10 
[  171.776461][ T7790] NStgid:	277
[  171.776461][ T7790] NSpid:	278
[  171.776461][ T7790] NSpgid:	277
[  171.776461][ T7790] NSsid:	0
[  171.776461][ T7790] Kthread:	0
[  171.776461][ T7790] VmPeak:	  104272 kB
[  171.776461][ T7790] VmSize:	  104272 kB
[  171.776461][ T7790] VmLck:	       0 kB
[  171.776461][ T7790] VmPin:	       0 kB
[  171.776461][ T7790] VmHWM:	   24092 kB
[  171.776461][ T7790] VmRSS:	   24092 kB
[  171.776461][ T7790] RssAnon:	    1412 kB
[  171.776461][ T7790] RssFile:	   22680 kB
[  171.776461][ T7790] RssShmem:	       0 kB
[  171.776461][ T7790] VmData:	   36584 kB
[  171.776461][ T7790] VmStk:	     132 kB
[  171.776461][ T7790] VmExe:	    1772 kB
[  171.776461][ T7790] VmLib:	       8 kB
[  171.776461][ T7790] VmPTE:	     136 kB
[  171.776461][ T7790] VmSwap:	       0 kB
[  171.776461][ T7790] HugetlbPages:	       0 kB
[  171.776461][ T7790] CoreDumping:	0
[  171.776461][ T7790] THP_enabled:	1
[  171.776461][ T7790] untag_mask:	0xffffffffffffffff
[  171.776461][ T7790] Threads:	2
[  171.776461][ T7790] SigQ:	0/12960
[  171.776461][ T7790] SigPnd:	0000000000000000
[  171.776461][ T7790] ShdPnd:	0000000000000000
[  171.776461][ T7790] SigBlk:	0000000000000000
[  171.776461][ T7790] SigIgn:	fffffffefffaba35
[  171.776461][ T7790] SigCgt:	0000000100010440
[  171.776461][ T7790] CapInh:	0000000000000000
[  171.776461][ T7790] CapPrm:	000001ffff77ffff
[  171.776461][ T7790] CapEff:	000001ffff77ffff
[  171.776461][ T7790] CapBnd:	000001ffffffffff
[  171.776461][ T7790] CapAmb:	0000000000000000
[  171.776461][ T7790] NoNewPrivs:	0
[  171.776461][ T7790] Seccomp:	0
[  171.776461][ T7790] Seccomp_filters:	0
[  171.776461][ T7790] Speculation_Store_Bypass:	thread vulnerable
[  171.776461][ T7790] SpeculationIndirectBranch:	conditional enabled
[  171.776461][ T7790] Cpus_allowed:	3
[  172.001497][ T5947] cypress 0003:04B4:ED81.0011: item fetching failed at offset 5/7
[  172.041366][ T5947] cypress 0003:04B4:ED81.0011: parse failed
[  172.068668][ T5947] cypress 0003:04B4:ED81.0011: probe with driver cypress failed with error -22
[  172.108732][ T7795] loop1: detected capacity change from 0 to 512
[  172.135800][ T7795] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  172.202208][ T7795] EXT4-fs (loop1): 1 truncate cleaned up
[  172.253010][ T7795] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.359631][ T5841] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  172.503927][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.915530][ T7817] sp0: Synchronizing with TNC
[  172.969892][ T5930] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  173.051569][ T7819] loop3: detected capacity change from 0 to 4096
[  173.129766][ T5930] usb 2-1: Using ep0 maxpacket: 16
[  173.141556][ T5930] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.167358][ T5930] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.202822][ T5930] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  173.232358][ T5930] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.281225][ T5930] usb 2-1: config 0 descriptor??
[  173.355335][ T5814] IPVS: starting estimator thread 0...
[  173.450250][ T7828] IPVS: using max 22 ests per chain, 52800 per kthread
[  173.708004][ T5930] apple 0003:05AC:024B.0012: fixing up MacBook JIS keyboard report descriptor
[  173.726555][ T5839] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  173.727378][ T5930] apple 0003:05AC:024B.0012: unknown global tag 0xe
[  173.776891][ T5930] apple 0003:05AC:024B.0012: item 0 1 1 14 parsing failed
[  173.789268][ T7838] netlink: 4 bytes leftover after parsing attributes in process `syz.0.730'.
[  173.833609][ T5930] apple 0003:05AC:024B.0012: parse failed
[  173.866716][ T5930] apple 0003:05AC:024B.0012: probe with driver apple failed with error -22
[  173.906261][ T5911] usb 5-1: USB disconnect, device number 8
[  173.906567][ T7838] bond0: (slave bond_slave_0): Releasing backup interface
[  173.965562][ T5930] usb 2-1: USB disconnect, device number 3
[  174.049469][  T791] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  174.093588][ T7847] Falling back ldisc for ttyS3.
[  174.116352][ T7845] netlink: 'syz.2.734': attribute type 33 has an invalid length.
[  174.156872][ T7845] netlink: 152 bytes leftover after parsing attributes in process `syz.2.734'.
[  174.260179][  T791] usb 6-1: Using ep0 maxpacket: 8
[  174.288064][  T791] usb 6-1: config index 0 descriptor too short (expected 5924, got 36)
[  174.324262][  T791] usb 6-1: config 250 has an invalid interface number: 228 but max is -1
[  174.363253][  T791] usb 6-1: config 250 has 1 interface, different from the descriptor's value: 0
[  174.399534][  T791] usb 6-1: config 250 has no interface number 0
[  174.426369][  T791] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  174.466075][  T791] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  174.489463][  T791] usb 6-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  174.558130][  T791] usb 6-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  174.611712][  T791] usb 6-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  174.695212][  T791] usb 6-1: config 250 interface 228 has no altsetting 0
[  174.723600][   T30] audit: type=1326 audit(1771483383.237:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd80f39c629 code=0x7ffc0000
[  174.781157][ T7860] loop1: detected capacity change from 0 to 512
[  174.812583][  T791] usb 6-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  174.835860][  T791] usb 6-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  174.850079][  T791] usb 6-1: Product: syz
[  174.854251][  T791] usb 6-1: SerialNumber: syz
[  174.859237][   T30] audit: type=1326 audit(1771483383.237:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd80f39c629 code=0x7ffc0000
[  174.943544][ T7860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.969665][  T791] hub 6-1:250.228: bad descriptor, ignoring hub
[  175.012753][  T791] hub 6-1:250.228: probe with driver hub failed with error -5
[  175.018390][   T30] audit: type=1326 audit(1771483383.247:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd80f39c629 code=0x7ffc0000
[  175.034168][ T7860] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.043293][   T30] audit: type=1326 audit(1771483383.247:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd80f39c392 code=0x7ffc0000
[  175.134356][   T30] audit: type=1326 audit(1771483383.277:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd80f35cece code=0x7ffc0000
[  175.221237][  T791] usblp 6-1:250.228: usblp0: USB Bidirectional printer dev 9 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  175.236773][   T30] audit: type=1326 audit(1771483383.277:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fd80f39c457 code=0x7ffc0000
[  175.276089][   T30] audit: type=1326 audit(1771483383.277:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd80f35cece code=0x7ffc0000
[  175.330308][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.387539][   T30] audit: type=1326 audit(1771483383.277:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd80f39c2bb code=0x7ffc0000
[  175.426619][ T7871] 9p: Unknown uid 00000000004294967295
[  175.464162][   T30] audit: type=1326 audit(1771483383.307:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd80f35cece code=0x7ffc0000
[  175.575959][   T30] audit: type=1326 audit(1771483383.307:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7859 comm="syz.1.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fd80f35cece code=0x7ffc0000
[  175.626190][ T5947] usb 6-1: USB disconnect, device number 9
[  175.723353][ T5947] usblp0: removed
[  175.999891][ T5942] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  176.209505][ T5942] usb 5-1: Using ep0 maxpacket: 16
[  176.238277][ T5942] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.273680][ T5942] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  176.318364][ T5942] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.385882][ T5942] usb 5-1: config 0 descriptor??
[  176.469043][ T7886] netlink: 4 bytes leftover after parsing attributes in process `syz.1.751'.
[  176.496273][ T7888] loop2: detected capacity change from 0 to 1024
[  176.526071][ T7888] EXT4-fs: Ignoring removed orlov option
[  176.530587][ T7886] bond0: (slave bond_slave_0): Releasing backup interface
[  176.570428][ T7888] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  176.679529][ T7888] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.693534][ T7878] loop0: detected capacity change from 0 to 32768
[  176.779811][ T7878] XFS (loop0): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  176.841439][ T5942] mcp2221 0003:04D8:00DD.0013: unexpected long global item
[  176.851512][ T5942] mcp2221 0003:04D8:00DD.0013: can't parse reports
[  176.858461][ T5942] mcp2221 0003:04D8:00DD.0013: probe with driver mcp2221 failed with error -22
[  176.968016][ T7878] XFS (loop0): Ending clean mount
[  177.045051][ T5942] usb 5-1: USB disconnect, device number 9
[  177.128495][ T5826] XFS (loop0): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  177.443451][ T5828] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.914565][ T7921] netlink: 40 bytes leftover after parsing attributes in process `syz.1.763'.
[  178.212735][ T7929] loop5: detected capacity change from 0 to 7
[  178.309663][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x880700 phys_seg 1 prio class 2
[  178.323500][ T7935] option changes via remount are deprecated (pid=7933 comm=syz.2.781)
[  178.342009][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  178.351643][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  178.366979][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  178.376593][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  178.380928][ T7935] cgroup: option or name mismatch, new: 0x0 "kmem_cache_free", old: 0x0 ""
[  178.411143][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  178.420775][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  178.429426][    C0] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  178.439026][    C0] Buffer I/O error on dev loop5, logical block 0, async page read
[  178.453088][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  178.462702][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  179.336248][ T7951] Bluetooth: MGMT ver 1.23
[  179.934594][    T9] IPVS: starting estimator thread 0...
[  180.029497][ T7968] IPVS: using max 22 ests per chain, 52800 per kthread
[  180.103861][ T7969] loop4: detected capacity change from 0 to 2048
[  180.181384][ T7977] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  180.382365][ T7981] loop3: detected capacity change from 0 to 1024
[  180.420239][ T7981] EXT4-fs: Ignoring removed orlov option
[  180.449843][ T7981] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  180.534246][ T7981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.538624][ T7977] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  180.724148][ T7977] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4)
[  180.815603][ T7977] Remounting filesystem read-only
[  180.889571][ T5833] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer
[  180.986116][ T8003] loop5: detected capacity change from 0 to 512
[  181.034037][ T8003] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  181.098408][ T8003] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz.5.798: bad orphan inode 11
[  181.115737][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.150760][ T8003] loop5: lost filesystem error report for type 5 error -117
[  181.155711][ T8003] ext4_test_bit(bit=10, block=4) = 1
[  181.163193][    C0] EXT4-fs (loop5): error count since last fsck: 1
[  181.163224][    C0] EXT4-fs (loop5): initial error at time 1771483389: ext4_orphan_get:1417
[  181.163265][    C0] EXT4-fs (loop5): last error at time 1771483389: ext4_orphan_get:1417
[  181.193558][ T8003] is_bad_inode(inode)=0
[  181.197713][ T8003] NEXT_ORPHAN(inode)=2080374784
[  181.224860][ T8003] max_ino=32
[  181.228273][ T8003] i_nlink=0
[  181.261143][ T8003] EXT4-fs (loop5): 1 truncate cleaned up
[  181.336127][ T8003] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.390651][ T8003] EXT4-fs (loop5): shut down requested (0)
[  181.557984][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.278713][ T8036] loop0: detected capacity change from 0 to 2048
[  182.336978][ T8036] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  182.402695][ T8036] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  182.806655][ T8046] loop1: detected capacity change from 0 to 2048
[  182.905020][ T8046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.014943][ T8049] loop5: detected capacity change from 0 to 512
[  183.094925][ T8049] EXT4-fs (loop5): 1 truncate cleaned up
[  183.101572][    T9] kernel write not supported for file /sequencer2 (pid: 9 comm: kworker/0:0)
[  183.102825][ T8049] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.144242][ T8054] loop0: detected capacity change from 0 to 2048
[  183.190151][ T8054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.202436][ T8054] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.217901][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.299857][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  183.299882][   T30] audit: type=1800 audit(1771483391.787:87): pid=8049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.819" name="file1" dev="loop5" ino=13 res=0 errno=0
[  183.329664][ T8054] EXT4-fs (loop0): Online defrag not supported with bigalloc
[  183.404093][   T30] audit: type=1800 audit(1771483391.797:88): pid=8054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.816" name="file1" dev="loop0" ino=15 res=0 errno=0
[  183.510967][   T30] audit: type=1800 audit(1771483391.847:89): pid=8054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.816" name="file2" dev="loop0" ino=16 res=0 errno=0
[  183.558868][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  183.601517][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.012876][ T8071] loop3: detected capacity change from 0 to 2048
[  184.065899][ T8071] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  184.276883][ T8081] loop5: detected capacity change from 0 to 7
[  184.416283][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x880700 phys_seg 1 prio class 2
[  184.429463][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  184.439043][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  184.453235][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  184.462858][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  184.483200][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  184.492802][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  184.510122][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  184.519714][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  184.534158][    C1] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  184.543761][    C1] Buffer I/O error on dev loop5, logical block 0, async page read
[  184.850151][ T8097] loop3: detected capacity change from 0 to 256
[  184.930378][ T8097] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  185.072302][ T8101] netem: invalid attributes len -1
[  185.077451][ T8101] netem: change failed
[  185.346451][ T8104] loop0: detected capacity change from 0 to 4096
[  185.820042][ T5911] kernel read not supported for file /usbmon7 (pid: 5911 comm: kworker/1:4)
[  185.891565][ T8126] team0: Device ipvlan1 failed to register rx_handler
[  185.916966][ T8122] loop1: detected capacity change from 0 to 2048
[  185.991545][ T8122] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  186.190760][ T8132] netlink: 12 bytes leftover after parsing attributes in process `syz.5.852'.
[  186.236235][ T8132] netlink: 12 bytes leftover after parsing attributes in process `syz.5.852'.
[  186.988519][ T8151] loop4: detected capacity change from 0 to 256
[  187.052029][ T8151] exfat: Deprecated parameter 'utf8'
[  187.093138][ T8151] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  187.676532][ T8135] loop3: detected capacity change from 0 to 40427
[  187.703896][ T8135] F2FS-fs: heap/no_heap options were deprecated
[  187.734585][ T8135] F2FS-fs: heap/no_heap options were deprecated
[  187.805143][ T8135] F2FS-fs (loop3): Image doesn't support compression
[  187.859511][    T9] usb 5-1: new full-speed USB device number 10 using dummy_hcd
[  187.870013][ T8135] F2FS-fs (loop3): invalid crc value
[  188.054379][    T9] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.063984][ T8168] netlink: 104 bytes leftover after parsing attributes in process `syz.1.867'.
[  188.079841][    T9] usb 5-1: config 0 interface 0 has no altsetting 0
[  188.110233][    T9] usb 5-1: New USB device found, idVendor=258a, idProduct=0033, bcdDevice= 0.00
[  188.145982][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.213553][ T8135] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  188.223668][    T9] usb 5-1: config 0 descriptor??
[  188.275645][ T8135] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  188.451994][ T8162] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  188.494825][ T8162] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.561254][ T5832] syz-executor: attempt to access beyond end of device
[  188.561254][ T5832] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  188.605120][ T5832] CPU: 0 UID: 0 PID: 5832 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  188.605176][ T5832] Tainted: [L]=SOFTLOCKUP
[  188.605194][ T5832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  188.605216][ T5832] Call Trace:
[  188.605228][ T5832]  <TASK>
[  188.605241][ T5832]  dump_stack_lvl+0x100/0x190
[  188.605302][ T5832]  f2fs_handle_critical_error+0x5d7/0x970
[  188.605359][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.605407][ T5832]  ? f2fs_build_fault_attr+0x53/0x280
[  188.605464][ T5832]  f2fs_write_end_io+0xc3f/0xf30
[  188.605524][ T5832]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  188.605594][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.605649][ T5832]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  188.605705][ T5832]  bio_endio+0x7a3/0x910
[  188.605771][ T5832]  submit_bio_noacct+0x64c/0x2010
[  188.605820][ T5832]  f2fs_submit_write_bio+0x133/0x350
[  188.605875][ T5832]  __submit_merged_bio+0x331/0x7b0
[  188.605939][ T5832]  __submit_merged_write_cond+0x3fe/0x510
[  188.606007][ T5832]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  188.606076][ T5832]  ? __pfx___might_resched+0x10/0x10
[  188.606112][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.606167][ T5832]  f2fs_write_cache_pages+0x21c0/0x2720
[  188.606231][ T5832]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  188.606277][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.606326][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.606371][ T5832]  ? find_held_lock+0x2b/0x80
[  188.606412][ T5832]  ? is_bpf_text_address+0x8a/0x1a0
[  188.606454][ T5832]  ? is_bpf_text_address+0x8a/0x1a0
[  188.606539][ T5832]  ? check_irq_usage+0xe5/0x810
[  188.606645][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.606690][ T5832]  ? rcu_is_watching+0x12/0xc0
[  188.606734][ T5832]  f2fs_write_data_pages+0x799/0x16d0
[  188.606787][ T5832]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  188.606841][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.606887][ T5832]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  188.606930][ T5832]  do_writepages+0x278/0x600
[  188.606988][ T5832]  ? __pfx_do_writepages+0x10/0x10
[  188.607037][ T5832]  ? do_raw_spin_unlock+0x145/0x1e0
[  188.607074][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.607118][ T5832]  ? _raw_spin_unlock+0x28/0x50
[  188.607159][ T5832]  filemap_writeback+0x22d/0x2e0
[  188.607215][ T5832]  ? __pfx_filemap_writeback+0x10/0x10
[  188.607265][ T5832]  ? check_noncircular+0x97/0x160
[  188.607364][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.607409][ T5832]  ? find_held_lock+0x2b/0x80
[  188.607449][ T5832]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  188.607490][ T5832]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  188.607532][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.607589][ T5832]  f2fs_sync_dirty_inodes+0x452/0x990
[  188.607646][ T5832]  block_operations+0x2a6/0xfc0
[  188.607685][ T5832]  ? check_noncircular+0x97/0x160
[  188.607742][ T5832]  ? __pfx_block_operations+0x10/0x10
[  188.607781][ T5832]  ? check_noncircular+0x97/0x160
[  188.607879][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.607927][ T5832]  ? ktime_get+0x200/0x300
[  188.607971][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608019][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608064][ T5832]  ? rcu_is_watching+0x12/0xc0
[  188.608109][ T5832]  f2fs_write_checkpoint+0x582/0x5550
[  188.608170][ T5832]  ? f2fs_stop_gc_thread+0x79/0xd0
[  188.608215][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608263][ T5832]  ? kasan_quarantine_put+0x104/0x240
[  188.608302][ T5832]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  188.608342][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608396][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608441][ T5832]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  188.608492][ T5832]  kill_f2fs_super+0x3e5/0x490
[  188.608537][ T5832]  ? __pfx_kill_f2fs_super+0x10/0x10
[  188.608599][ T5832]  ? lockdep_hardirqs_on+0x78/0x100
[  188.608641][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608687][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.608747][ T5832]  deactivate_locked_super+0xc1/0x1b0
[  188.608788][ T5832]  deactivate_super+0xe7/0x110
[  188.608829][ T5832]  cleanup_mnt+0x21f/0x450
[  188.608879][ T5832]  task_work_run+0x150/0x240
[  188.608945][ T5832]  ? __pfx_task_work_run+0x10/0x10
[  188.609006][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.609053][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  188.609106][ T5832]  exit_to_user_mode_loop+0x100/0x4a0
[  188.609168][ T5832]  do_syscall_64+0x67c/0xf80
[  188.609209][ T5832]  ? irqentry_exit+0x138/0x670
[  188.609256][ T5832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.609294][ T5832] RIP: 0033:0x7f008c59d897
[  188.609322][ T5832] Code: a2 c7 05 5c ee 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  188.609358][ T5832] RSP: 002b:00007ffdb5c2f9d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  188.609393][ T5832] RAX: 0000000000000000 RBX: 00007f008c631ef0 RCX: 00007f008c59d897
[  188.609418][ T5832] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdb5c2fa90
[  188.609441][ T5832] RBP: 00007ffdb5c2fa90 R08: 00007ffdb5c30a90 R09: 00000000ffffffff
[  188.609465][ T5832] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdb5c30b20
[  188.609489][ T5832] R13: 00007f008c631ef0 R14: 000000000002e038 R15: 00007ffdb5c30b60
[  188.609543][ T5832]  </TASK>
[  188.680185][ T5911] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  188.714167][ T5832] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  188.935609][ T5911] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  188.944661][    T9] hid (null): bogus close delimiter
[  189.006001][ T5911] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  189.006068][ T5911] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[  189.056438][ T5911] usb 2-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  189.253304][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.254331][ T5911] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  189.268937][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.279269][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.297768][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.305994][ T5911] usb 2-1: Product: syz
[  189.316093][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.319649][ T5911] usb 2-1: Manufacturer: syz
[  189.331692][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.338059][ T5911] usb 2-1: SerialNumber: syz
[  189.351583][ T5911] usb 2-1: config 0 descriptor??
[  189.358363][ T8173] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  189.365915][ T8173] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  189.380371][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.389242][ T5911] usb 2-1: ucan: probing device on interface #0
[  189.396120][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.413666][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.422793][    T9] glorious 0003:258A:0033.0014: unknown main item tag 0x0
[  189.458526][    T9] glorious 0003:258A:0033.0014: bogus close delimiter
[  189.475818][    T9] glorious 0003:258A:0033.0014: item 0 0 2 10 parsing failed
[  189.529937][    T9] glorious 0003:258A:0033.0014: probe with driver glorious failed with error -22
[  189.551728][    T9] usb 5-1: USB disconnect, device number 10
[  189.703909][ T8182] mac80211_hwsim hwsim7 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  189.708993][ T8180] loop4: detected capacity change from 0 to 2048
[  189.749587][ T8181] vxcan2: entered allmulticast mode
[  189.785814][ T8180] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  190.010828][ T5911] ucan 2-1:0.0: probe with driver ucan failed with error -22
[  190.263979][ T8194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.878'.
[  190.344150][ T5911] usb 2-1: USB disconnect, device number 4
[  191.404462][ T8228] loop2: detected capacity change from 0 to 4096
[  191.447774][ T8237] loop4: detected capacity change from 0 to 64
[  191.696458][ T8242] loop1: detected capacity change from 0 to 64
[  191.863506][ T8242] hfs: node is corrupted: leaf_head 11, leaf_tail 6
[  191.950323][ T8246] netlink: 8 bytes leftover after parsing attributes in process `syz.3.903'.
[  191.979129][ T8248] loop4: detected capacity change from 0 to 512
[  192.121350][   T13] wlan1: Trigger new scan to find an IBSS to join
[  192.158913][ T8248] EXT4-fs error (device loop4): ext4_ext_check_inode:521: inode #16: comm syz.4.904: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 2052(4), depth 0(0)
[  192.231643][ T8248] loop4: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  192.239426][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  192.248592][    C1] EXT4-fs (loop4): initial error at time 1771483400: ext4_ext_check_inode:521: inode 16
[  192.264759][    C1] EXT4-fs (loop4): last error at time 1771483400: ext4_ext_check_inode:521: inode 16
[  192.292663][ T8248] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.904: couldn't read orphan inode 16 (err -117)
[  192.372931][ T8248] loop4: lost filesystem error report for type 5 error -117
[  192.391268][ T8248] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  192.453077][ T8248] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.807068][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  193.299574][  T791] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  193.313023][ T8288] netlink: 'syz.3.920': attribute type 2 has an invalid length.
[  193.352598][ T8288] !��9: entered promiscuous mode
[  193.394391][ T8288] netlink: 'syz.3.920': attribute type 2 has an invalid length.
[  193.439728][ T8288] !��9: left promiscuous mode
[  193.473005][  T791] usb 3-1: Using ep0 maxpacket: 32
[  193.490542][  T791] usb 3-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  193.505712][  T791] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.537725][ T8297] loop0: detected capacity change from 0 to 256
[  193.555532][  T791] usb 3-1: config 0 descriptor??
[  193.566808][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  193.566893][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  193.597614][  T791] gspca_main: sunplus-2.14.0 probing 041e:400b
[  193.608061][ T8297] FAT-fs (loop0): Directory bread(block 64) failed
[  193.655836][ T8297] FAT-fs (loop0): Directory bread(block 65) failed
[  193.682873][ T8297] FAT-fs (loop0): Directory bread(block 66) failed
[  193.739275][ T8297] FAT-fs (loop0): Directory bread(block 67) failed
[  193.769562][ T8297] FAT-fs (loop0): Directory bread(block 68) failed
[  193.776169][ T8297] FAT-fs (loop0): Directory bread(block 69) failed
[  193.872787][ T8297] FAT-fs (loop0): Directory bread(block 70) failed
[  193.912205][ T8297] FAT-fs (loop0): Directory bread(block 71) failed
[  193.939618][ T8297] FAT-fs (loop0): Directory bread(block 72) failed
[  193.958083][ T8297] FAT-fs (loop0): Directory bread(block 73) failed
[  194.260809][ T8313] loop5: detected capacity change from 0 to 256
[  194.283905][ T8311] loop3: detected capacity change from 0 to 4096
[  194.305577][ T8311] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  194.470623][  T791] gspca_sunplus: reg_r err -71
[  194.489371][  T791] sunplus 3-1:0.0: probe with driver sunplus failed with error -71
[  194.543708][   T30] audit: type=1800 audit(1771483403.057:90): pid=8311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.931" name="file1" dev="loop3" ino=30 res=0 errno=0
[  194.573372][  T791] usb 3-1: USB disconnect, device number 6
[  194.952043][ T8325] netlink: 4 bytes leftover after parsing attributes in process `syz.1.937'.
[  195.002077][ T8331] lo: Master is either lo or non-ether device
[  195.161006][   T13] wlan1: Trigger new scan to find an IBSS to join
[  195.252455][ T8337] netlink: 4 bytes leftover after parsing attributes in process `syz.5.943'.
[  195.325357][ T8344] loop8: detected capacity change from 0 to 7
[  195.349061][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.358732][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.377661][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.387286][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.399707][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.409339][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.420564][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.430198][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.439433][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.449030][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.457806][    C1] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.467461][    C1] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.487781][    C1] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.497384][    C1] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.512752][ T8344] ldm_validate_partition_table(): Disk read failed.
[  195.540559][    C1] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.550214][    C1] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.570547][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.580171][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.598414][    C0] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2
[  195.608031][    C0] Buffer I/O error on dev loop8, logical block 0, async page read
[  195.617061][ T8344] Dev loop8: unable to read RDB block 0
[  195.669161][ T8344]  loop8: unable to read partition table
[  195.680008][ T8344] loop8: partition table beyond EOD, truncated
[  195.704853][ T8344] loop_reread_partitions: partition scan of loop8 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  196.036765][ T8365] input: syz0 as /devices/virtual/input/input8
[  196.315939][ T8373] vcan0: tx address claim with dlc 0
[  196.625308][ T8384] loop3: detected capacity change from 0 to 64
[  196.685650][ T8387] netlink: 20 bytes leftover after parsing attributes in process `syz.0.964'.
[  196.740516][ T8387] netlink: 44 bytes leftover after parsing attributes in process `syz.0.964'.
[  196.776696][ T8384] hfs: node is corrupted: leaf_head 11, leaf_tail 6
[  197.105431][ T8402] netlink: 36 bytes leftover after parsing attributes in process `syz.0.969'.
[  197.323445][   T58] Bluetooth: hci6: Frame reassembly failed (-84)
[  197.344029][ T8405] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  198.120394][  T165] wlan1: Creating new IBSS network, BSSID 8e:58:a0:0b:06:12
[  198.310005][ T8430] netlink: 'syz.1.983': attribute type 8 has an invalid length.
[  198.341221][ T8430] netlink: 8 bytes leftover after parsing attributes in process `syz.1.983'.
[  199.097467][ T8451] netlink: 'syz.1.993': attribute type 5 has an invalid length.
[  199.265978][ T8453] loop1: detected capacity change from 0 to 128
[  199.313696][ T8453] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  199.339874][ T8453] ext4 filesystem being mounted at /186/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  199.352645][ T5839] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  199.534365][ T5831] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  199.617136][ T8463] loop2: detected capacity change from 0 to 2048
[  199.692621][ T8463] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.739571][ T8463] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.763465][   T30] audit: type=1800 audit(1771483408.277:91): pid=8463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1000" name="file0" dev="loop2" ino=13 res=0 errno=0
[  199.789956][ T8463] fs-verity (loop2, inode 13): Error -22 reading file data
[  199.855954][ T8463] fs-verity (loop2, inode 13): Error -22 building Merkle tree
[  199.962305][ T8475] loop4: detected capacity change from 0 to 512
[  200.004922][ T8475] EXT4-fs (loop4): 1 truncate cleaned up
[  200.063273][ T5828] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.074747][ T8475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.250598][ T8484] loop5: detected capacity change from 0 to 512
[  200.282096][ T8484] EXT4-fs: Ignoring removed nomblk_io_submit option
[  200.312734][ T8484] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  200.330232][ T8484] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[  200.338471][ T8484] EXT4-fs (loop5): orphan cleanup on readonly fs
[  200.354388][ T8484] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=0
[  200.365426][ T8484] EXT4-fs warning (device loop5): ext4_enable_quotas:7234: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  200.380911][ T8484] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  200.383917][ T8486] macvtap1: entered promiscuous mode
[  200.397604][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.407354][ T8484] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.1009: bg 0: block 40: padding at end of block bitmap is not set
[  200.426913][ T8484] loop5: lost filesystem error report for type 5 error -117
[  200.428465][ T8486] macvtap1: entered allmulticast mode
[  200.435815][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  200.435847][    C1] EXT4-fs (loop5): initial error at time 1771483408: ext4_validate_block_bitmap:440
[  200.435892][    C1] EXT4-fs (loop5): last error at time 1771483408: ext4_validate_block_bitmap:440
[  200.457275][ T8484] EXT4-fs (loop5): Remounting filesystem read-only
[  200.457422][ T8484] EXT4-fs (loop5): 1 truncate cleaned up
[  200.468117][ T8486] dummy0: entered promiscuous mode
[  200.499181][ T8484] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  200.514408][ T8486] dummy0: entered allmulticast mode
[  200.522768][ T8486] team0: Device macvtap1 failed to register rx_handler
[  200.532187][ T8486] dummy0: left allmulticast mode
[  200.537399][ T8486] dummy0: left promiscuous mode
[  200.754086][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.764358][ T8495] loop2: detected capacity change from 0 to 1024
[  200.847707][ T8495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  200.923892][ T8495] ext4 filesystem being mounted at /176/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.027072][ T8495] EXT4-fs error (device loop2): ext4_free_blocks:6725: comm syz.2.1012: Freeing blocks not in datazone - block = 0, count = 16
[  201.137222][ T8511] loop3: detected capacity change from 0 to 128
[  201.191096][ T8512] geneve2: entered promiscuous mode
[  201.237987][ T1307] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm kworker/u8:8: bg 0: block 112: padding at end of block bitmap is not set
[  201.333699][ T1307] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  201.372324][ T1307] EXT4-fs (loop2): This should not happen!! Data will be lost
[  201.372324][ T1307] 
[  201.406704][ T1307] EXT4-fs (loop2): Total free blocks count 0
[  201.454542][ T1307] EXT4-fs (loop2): Free/Dirty block details
[  201.484877][ T1307] EXT4-fs (loop2): free_blocks=16
[  201.505346][ T1307] EXT4-fs (loop2): dirty_blocks=16
[  201.519467][ T1307] EXT4-fs (loop2): Block reservation details
[  201.545223][ T1307] EXT4-fs (loop2): i_reserved_data_blocks=1
[  201.550576][ T8518] Set syz0 is full, maxelem 0 reached
[  201.570084][ T5828] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  202.003374][ T8538] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1030'.
[  202.074275][ T8538] batman_adv: batadv0: Adding interface: macvtap1
[  202.085802][ T8538] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  202.131492][ T8538] batman_adv: batadv0: Not using interface macvtap1 (retrying later): interface not active
[  202.382846][ T8552] netlink: 104 bytes leftover after parsing attributes in process `syz.1.1036'.
[  202.760774][    T9] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  202.940289][    T9] usb 4-1: Using ep0 maxpacket: 32
[  202.948720][    T9] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[  202.981466][    T9] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  203.002837][    T9] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  203.036610][    T9] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  203.084485][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  203.122526][    T9] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  203.145652][    T9] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  203.185034][    T9] usb 4-1: Product: syz
[  203.210233][    T9] usb 4-1: Manufacturer: syz
[  203.214842][    T9] usb 4-1: SerialNumber: syz
[  203.243844][    T9] usb 4-1: config 0 descriptor??
[  203.267815][    T9] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  203.282948][ T8580] loop2: detected capacity change from 0 to 128
[  203.312016][    T9] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  203.327752][ T8580] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.403311][ T8580] ext4 filesystem being mounted at /180/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  203.537771][ T8586] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1053'.
[  203.539755][ T8580] fscrypt (loop2, inode 12): Unsupported encryption flags (0x08)
[  203.593743][    T9] usb 4-1: USB disconnect, device number 9
[  203.599723][    C0] ldusb 4-1:0.0: usb_submit_urb failed (-19)
[  203.626375][    T9] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[  203.753866][ T5828] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  203.777656][ T8554] ldusb: No device or device unplugged -19
[  203.829618][ T8591] loop4: detected capacity change from 0 to 512
[  204.885109][ T8614] loop1: detected capacity change from 0 to 1024
[  204.899766][ T8615] tap0: tun_chr_ioctl cmd 1074025676
[  204.901435][ T5947] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  204.911464][ T8614] EXT4-fs: inline encryption not supported
[  204.918421][ T8615] tap0: owner set to 0
[  204.936034][ T8617] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.944781][ T8617] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.997289][ T8614] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  205.115713][   T30] audit: type=1800 audit(1771483413.617:92): pid=8614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1065" name="file1" dev="loop1" ino=15 res=0 errno=0
[  205.131450][ T5947] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  205.186283][ T5947] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  205.237092][ T5947] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  205.265280][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.278104][ T5947] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  205.329495][ T5947] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  205.384000][ T5947] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  205.424016][ T5947] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  205.454382][ T5947] usb 3-1: Product: syz
[  205.458560][ T5947] usb 3-1: Manufacturer: syz
[  205.469173][ T8628] loop4: detected capacity change from 0 to 512
[  205.508459][ T8628] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  205.553801][ T8628] EXT4-fs (loop4): 1 truncate cleaned up
[  205.580085][ T5947] cdc_wdm 3-1:1.0: skipping garbage
[  205.585387][ T5947] cdc_wdm 3-1:1.0: skipping garbage
[  205.603467][ T5947] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  205.617239][ T8628] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  205.617964][ T5947] cdc_wdm 3-1:1.0: Unknown control protocol
[  205.761875][    T9] usb 3-1: USB disconnect, device number 7
[  205.829021][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.389748][    T9] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  206.426848][ T8657] netlink: 120 bytes leftover after parsing attributes in process `syz.2.1084'.
[  206.572031][    T9] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  206.614146][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.651676][    T9] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  206.663859][    T9] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  206.686342][    T9] usb 5-1: Manufacturer: syz
[  206.740368][    T9] usb 5-1: config 0 descriptor??
[  206.920844][    T9] rc_core: IR keymap rc-hauppauge not found
[  206.942890][    T9] Registered IR keymap rc-empty
[  206.955132][    T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0
[  206.973267][    T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input9
[  207.038965][ T8673] loop5: detected capacity change from 0 to 4096
[  207.040341][    C0] igorplugusb 5-1:0.0: Error: urb status = -32
[  207.125173][ T8673] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0102]
[  207.152036][ T8673] System zones: 0-5
[  207.188624][ T8673] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  207.454405][ T5942] usb 5-1: USB disconnect, device number 11
[  207.484144][ T8683] loop3: detected capacity change from 0 to 4096
[  207.506140][ T8683] EXT4-fs: Ignoring removed mblk_io_submit option
[  207.562804][ T8683] EXT4-fs: Ignoring removed orlov option
[  207.583721][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.624152][ T8683] EXT4-fs (loop3): Test dummy encryption mode enabled
[  207.729317][ T8683] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.105334][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.167818][ T8699] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  208.188325][ T8697] loop2: detected capacity change from 0 to 4096
[  208.245831][ T8703] program syz.4.1103 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  208.271421][ T8704] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  208.409246][ T8706] loop3: detected capacity change from 0 to 64
[  208.510310][ T8708] input: syz1 as /devices/virtual/input/input11
[  209.156642][ T8729] loop1: detected capacity change from 0 to 256
[  209.198278][ T8729] exfat: Deprecated parameter 'namecase'
[  209.219869][ T8729] exfat: Deprecated parameter 'namecase'
[  209.245396][ T8737] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1118'.
[  209.273393][ T8729] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  209.553660][ T8742] loop4: detected capacity change from 0 to 1024
[  209.619938][ T8742] hfsplus: xattr search failed
[  209.861822][ T8754] loop5: detected capacity change from 0 to 8
[  209.885563][ T8754] SQUASHFS error: zlib decompression failed, data probably corrupt
[  209.907602][ T8754] SQUASHFS error: Failed to read block 0x9b: -5
[  209.922549][ T8754] SQUASHFS error: Unable to read metadata cache entry [99]
[  209.943919][ T8754] SQUASHFS error: Unable to read inode 0x127
[  210.096129][ T8754] loop5: detected capacity change from 0 to 2048
[  210.166213][ T8754] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  211.486745][ T8789] loop5: detected capacity change from 0 to 1024
[  211.535259][ T8789] EXT4-fs: inline encryption not supported
[  211.570180][ T8789] EXT4-fs: Ignoring removed nobh option
[  211.609427][ T8789] EXT4-fs: Ignoring removed bh option
[  211.631293][ T8795] tipc: Started in network mode
[  211.659675][ T8795] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  211.680928][ T8789] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.691294][ T8792] loop2: detected capacity change from 0 to 4096
[  211.710064][ T8795] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  211.856781][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.862051][ T8800] loop1: detected capacity change from 0 to 1024
[  211.898726][ T8800] EXT4-fs: Ignoring removed orlov option
[  211.993438][ T8792] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  211.998959][ T8804] loop3: detected capacity change from 0 to 1024
[  212.032887][ T8792] ntfs3(loop2): Failed to load $Extend (-22).
[  212.039850][ T8800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.094212][ T8792] ntfs3(loop2): Failed to initialize $Extend.
[  212.184872][ T8804] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.337355][ T8804] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1312: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  212.371293][ T8804] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 1 with error 28
[  212.387115][ T8804] EXT4-fs (loop3): This should not happen!! Data will be lost
[  212.387115][ T8804] 
[  212.398072][ T8804] EXT4-fs (loop3): Total free blocks count 0
[  212.408829][ T8804] EXT4-fs (loop3): Free/Dirty block details
[  212.416422][ T8804] EXT4-fs (loop3): free_blocks=20480
[  212.426286][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.435693][ T8804] EXT4-fs (loop3): dirty_blocks=16
[  212.443301][ T8804] EXT4-fs (loop3): Block reservation details
[  212.465232][ T8804] EXT4-fs (loop3): i_reserved_data_blocks=1
[  212.483416][ T8802] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  212.997872][ T8834] loop2: detected capacity change from 0 to 256
[  213.012549][ T8833] capability: warning: `syz.5.1157' uses 32-bit capabilities (legacy support in use)
[  213.022637][ T8835] faux_driver vgem: [drm] Unknown color mode 135165; guessing buffer size.
[  213.050105][ T8836] program syz.5.1157 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  213.080224][ T8834] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  213.305070][ T8841] input: syz1 as /devices/virtual/input/input12
[  213.692658][ T8851] loop0: detected capacity change from 0 to 512
[  213.778754][ T8851] syz.0.1167: attempt to access beyond end of device
[  213.778754][ T8851] loop0: rw=8390659, sector=12608, nr_sectors = 16128 limit=512
[  213.837238][ T8856] loop4: detected capacity change from 0 to 512
[  213.867772][ T8856] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1170: inode has both inline data and extents flags
[  213.889998][ T8856] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  213.898754][ T8856] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1170: couldn't read orphan inode 15 (err -117)
[  213.908011][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  213.908046][    C1] EXT4-fs (loop4): initial error at time 1771483422: ext4_orphan_get:1391: inode 15
[  213.908098][    C1] EXT4-fs (loop4): last error at time 1771483422: ext4_orphan_get:1391: inode 15
[  213.931263][ T8851] FAT-fs (loop0): FAT read failed (blocknr 128)
[  213.961164][ T8856] loop4: lost filesystem error report for type 5 error -117
[  213.963563][ T8856] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.109653][ T5947] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  214.174783][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.266544][ T8862] netlink: 'syz.3.1171': attribute type 12 has an invalid length.
[  214.308945][ T8862] netlink: 'syz.3.1171': attribute type 28 has an invalid length.
[  214.319043][ T5947] usb 3-1: Using ep0 maxpacket: 8
[  214.350958][ T5947] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  214.369629][ T8862] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1171'.
[  214.380920][ T8863] loop5: detected capacity change from 0 to 2048
[  214.394913][ T5947] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  214.411215][ T5947] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  214.422370][ T5947] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  214.435960][ T5947] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  214.461323][ T8863] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  214.492112][ T5947] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  214.546458][   T30] audit: type=1800 audit(1771483423.057:93): pid=8863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1172" name="file1" dev="loop5" ino=1346 res=0 errno=0
[  214.641938][   T30] audit: type=1800 audit(1771483423.057:94): pid=8863 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1172" name="file1" dev="loop5" ino=1346 res=0 errno=0
[  214.669637][ T8872] loop1: detected capacity change from 0 to 512
[  214.797762][ T8872] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  214.880025][ T8872] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  214.937774][ T5947] usb 3-1: GET_CAPABILITIES returned 0
[  214.947023][ T5947] usbtmc 3-1:16.0: can't read capabilities
[  214.993865][ T8872] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  215.002125][ T8872] System zones: 0-2, 18-18, 34-35
[  215.022337][ T8872] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.045534][ T8872] fscrypt (loop1, inode 12): Error -61 getting encryption context
[  215.168176][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.181465][ T5947] usb 3-1: USB disconnect, device number 8
[  215.270656][ T8889] loop5: detected capacity change from 0 to 256
[  215.382133][ T8891] loop1: detected capacity change from 0 to 512
[  215.396129][ T8889] FAT-fs (loop5): Directory bread(block 64) failed
[  215.416052][ T8889] FAT-fs (loop5): Directory bread(block 65) failed
[  215.433031][ T8889] FAT-fs (loop5): Directory bread(block 66) failed
[  215.464743][ T8889] FAT-fs (loop5): Directory bread(block 67) failed
[  215.491663][ T8891] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.515619][ T8889] FAT-fs (loop5): Directory bread(block 68) failed
[  215.579358][ T8889] FAT-fs (loop5): Directory bread(block 69) failed
[  215.586109][ T8891] ext4 filesystem being mounted at /217/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.607476][ T8889] FAT-fs (loop5): Directory bread(block 70) failed
[  215.658568][ T8889] FAT-fs (loop5): Directory bread(block 71) failed
[  215.692408][ T8897] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1185'.
[  215.701728][ T8889] FAT-fs (loop5): Directory bread(block 72) failed
[  215.710774][ T8889] FAT-fs (loop5): Directory bread(block 73) failed
[  215.711909][ T8891] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.1184: corrupted inode contents
[  215.772633][ T8891] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #2: comm syz.1.1184: mark_inode_dirty error
[  215.841173][ T8891] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.1184: corrupted inode contents
[  215.898297][ T8898] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.1184: corrupted inode contents
[  215.946725][ T8876] loop3: detected capacity change from 0 to 32768
[  215.983325][ T8898] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #2: comm syz.1.1184: mark_inode_dirty error
[  215.983567][ T8876] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1178 (8876)
[  216.054250][ T8898] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.1184: corrupted inode contents
[  216.108619][ T8898] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1184: mark_inode_dirty error
[  216.122426][ T5849] Bluetooth: hci4: command 0x0406 tx timeout
[  216.128482][ T5849] Bluetooth: hci3: command 0x0406 tx timeout
[  216.150019][ T8898] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.1184: corrupted inode contents
[  216.163819][ T8876] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  216.209850][ T8898] EXT4-fs error (device loop1): ext4_dirty_inode:6450: inode #2: comm syz.1.1184: mark_inode_dirty error
[  216.220251][ T8876] BTRFS info (device loop3): using sha256 checksum algorithm
[  216.383297][ T8876] BTRFS info (device loop3): rebuilding free space tree
[  216.460989][ T8891] EXT4-fs warning (device loop1): ext4_es_cache_extent:1079: inode #2: comm syz.1.1184: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  216.460989][ T8891] 
[  216.488402][ T8891] EXT4-fs error (device loop1): ext4_do_update_inode:5569: inode #2: comm syz.1.1184: corrupted inode contents
[  216.511984][ T8876] BTRFS info (device loop3): disabling free space tree
[  216.554292][ T8876] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  216.602291][ T8876] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  216.687448][ T8876] BTRFS info (device loop3): setting nodatasum
[  216.719834][ T8876] BTRFS info (device loop3): setting nodatacow
[  216.726010][ T8876] BTRFS info (device loop3): turning off barriers
[  216.776077][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.785503][ T8876] BTRFS info (device loop3): force clearing of disk cache
[  216.927755][ T8876] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  217.160669][ T5832] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  217.652919][ T8954] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  217.740947][ T8958] loop4: detected capacity change from 0 to 4096
[  217.989277][ T5841] Bluetooth: hci5: connection err: -111
[  218.287224][ T8972] loop5: detected capacity change from 0 to 256
[  218.315397][ T8972] exfat: Deprecated parameter 'namecase'
[  218.352165][ T8972] exfat: Deprecated parameter 'namecase'
[  218.447062][ T8972] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  218.761691][ T5947] kernel write not supported for file /input/event2 (pid: 5947 comm: kworker/0:6)
[  218.988644][ T8990] netlink: 388 bytes leftover after parsing attributes in process `syz.4.1223'.
[  219.376958][ T9002] loop1: detected capacity change from 0 to 1024
[  219.380897][   T10] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  219.541236][ T1330] hfsplus: b-tree write err: -5, ino 25
[  219.547083][ T1330] hfsplus: b-tree write err: -5, ino 4
[  219.563073][   T10] usb 4-1: Using ep0 maxpacket: 32
[  219.568479][ T1330] hfsplus: b-tree write err: -5, ino 2
[  219.580412][   T10] usb 4-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  219.591597][ T9009] can0: slcan on ttyS3.
[  219.623289][ T1330] hfsplus: b-tree write err: -5, ino 17
[  219.634382][   T10] usb 4-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  219.676698][   T10] usb 4-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  219.720635][   T10] usb 4-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  219.761306][ T9006] can0 (unregistered): slcan off ttyS3.
[  219.793329][   T10] usb 4-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  219.826958][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.861875][   T10] usb 4-1: Product: syz
[  219.866050][   T10] usb 4-1: Manufacturer: syz
[  219.891430][   T10] usb 4-1: SerialNumber: syz
[  219.907269][    C0] imon 4-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  219.931544][   T10] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:155.0/input/input13
[  219.970685][ T8986] loop5: detected capacity change from 0 to 32768
[  220.194718][   T10] imon:send_packet: packet tx failed (-71)
[  220.266592][   T10] imon 4-1:155.0: panel buttons/knobs setup failed
[  220.299826][   T10] imon 4-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  220.349961][   T10]  (id 0x00)
[  220.529446][   T10] rc_core: IR keymap rc-imon-pad not found
[  220.551035][   T10] Registered IR keymap rc-empty
[  220.555960][   T10] imon 4-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  220.604279][ T9033] loop5: detected capacity change from 0 to 512
[  220.615846][   T10] imon 4-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  220.656918][   T10] imon:send_packet: packet tx failed (-71)
[  220.680222][   T10] imon 4-1:155.0: remote input dev register failed
[  220.686892][   T10] imon 4-1:155.0: imon_init_intf0: rc device setup failed
[  220.730244][ T9033] EXT4-fs (loop5): 1 truncate cleaned up
[  220.761067][ T9033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.880943][ T5947] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  220.912621][   T10] imon 4-1:155.0: unable to initialize intf0, err 0
[  220.920231][ T9033] EXT4-fs (loop5): shut down requested (1)
[  220.941492][   T10] imon:imon_probe: failed to initialize context!
[  220.953914][   T10] imon 4-1:155.0: unable to register, err -19
[  221.022097][   T10] usb 4-1: USB disconnect, device number 10
[  221.050947][ T5947] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  221.091385][ T9050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1245'.
[  221.109432][ T5947] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.140642][ T5947] usb 5-1: config 0 descriptor??
[  221.247269][ T5947] gspca_main: cpia1-2.14.0 probing 0813:0001
[  221.295500][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.557756][ T9061] loop3: detected capacity change from 0 to 128
[  221.834520][ T5947] gspca_cpia1: usb_control_msg 01, error -71
[  221.845882][ T9071] syz.0.1254 uses obsolete (PF_INET,SOCK_PACKET)
[  221.849558][ T5947] cpia1 5-1:0.0: only firmware version 1 is supported (got: 0)
[  221.940219][ T5947] usb 5-1: USB disconnect, device number 12
[  222.100266][ T9077] IPv6: NLM_F_CREATE should be specified when creating new route
[  222.348396][ T9084] loop3: detected capacity change from 0 to 1024
[  222.393738][ T9084] EXT4-fs: Ignoring removed orlov option
[  222.490419][ T9084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.066339][ T9109] loop2: detected capacity change from 0 to 2048
[  223.124739][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.145339][ T9113] loop5: detected capacity change from 0 to 256
[  223.163817][ T9113] exfat: Deprecated parameter 'utf8'
[  223.185881][ T9109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.230748][ T9113] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  223.251547][ T9109] ext4 filesystem being mounted at /225/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.528919][ T9126] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.1266: bg 0: block 345: padding at end of block bitmap is not set
[  223.649449][ T9126] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 127 with error 117
[  223.677732][ T9126] EXT4-fs (loop2): This should not happen!! Data will be lost
[  223.677732][ T9126] 
[  223.868727][ T9085] loop0: detected capacity change from 0 to 32768
[  223.951282][ T9085] (syz.0.1259,9085,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  223.984605][   T13] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  224.016308][ T9085] (syz.0.1259,9085,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  224.054891][   T13] EXT4-fs (loop2): This should not happen!! Data will be lost
[  224.054891][   T13] 
[  224.089784][   T13] EXT4-fs (loop2): Total free blocks count 0
[  224.100899][ T9085] JBD2: Ignoring recovery information on journal
[  224.112100][   T13] EXT4-fs (loop2): Free/Dirty block details
[  224.122214][   T13] EXT4-fs (loop2): free_blocks=0
[  224.149442][   T13] EXT4-fs (loop2): dirty_blocks=96
[  224.160991][   T13] EXT4-fs (loop2): Block reservation details
[  224.219936][ T9141] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1277'.
[  224.422740][ T9085] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  224.928186][ T5826] ocfs2: Unmounting device (7,0) on (node local)
[  225.217054][ T9128] loop4: detected capacity change from 0 to 32768
[  226.024543][ T9174] loop0: detected capacity change from 0 to 1024
[  226.394592][ T9184] loop1: detected capacity change from 0 to 512
[  226.453341][ T9184] EXT4-fs: Ignoring removed orlov option
[  226.493104][ T9184] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  226.711995][ T9184] EXT4-fs (loop1): 1 orphan inode deleted
[  226.717867][ T9184] EXT4-fs (loop1): 1 truncate cleaned up
[  226.754681][ T9184] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.897967][ T9184] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.1293: bad entry in directory: rec_len is too small for name_len - offset=0, inode=13, rec_len=16, size=124 fake=0
[  227.359825][ T9213] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1307'.
[  227.386564][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.562212][ T9219] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check.
[  227.737546][ T9223] netlink: 211856 bytes leftover after parsing attributes in process `syz.5.1312'.
[  227.748760][ T9225] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1314'.
[  227.909105][ T9227] netlink: 100 bytes leftover after parsing attributes in process `syz.1.1309'.
[  228.001021][   T30] audit: type=1326 audit(1771483436.517:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.071928][   T30] audit: type=1326 audit(1771483436.517:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.151377][   T30] audit: type=1326 audit(1771483436.547:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.278949][   T30] audit: type=1326 audit(1771483436.547:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.305216][   T30] audit: type=1326 audit(1771483436.547:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.331280][   T30] audit: type=1326 audit(1771483436.547:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.353914][   T30] audit: type=1326 audit(1771483436.547:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.378822][   T30] audit: type=1326 audit(1771483436.547:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.406144][ T9238] loop0: detected capacity change from 0 to 2048
[  228.419638][   T30] audit: type=1326 audit(1771483436.547:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.504154][   T30] audit: type=1326 audit(1771483436.547:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9233 comm="syz.4.1317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fb0d559c629 code=0x7ffc0000
[  228.542692][ T9238] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.737408][ T9251] netlink: 'syz.2.1324': attribute type 2 has an invalid length.
[  228.776762][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.034942][ T9256] input: syz1 as /devices/virtual/input/input15
[  229.453414][ T9265] geneve2: entered promiscuous mode
[  229.499467][ T9265] geneve2: entered allmulticast mode
[  230.015670][ T9254] loop4: detected capacity change from 0 to 32768
[  230.044771][ T9254] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1325 (9254)
[  230.187191][ T9254] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  230.261205][ T9254] BTRFS info (device loop4): using sha256 checksum algorithm
[  230.303560][ T9286] loop3: detected capacity change from 0 to 1024
[  230.418617][ T9286] hfsplus: bad catalog entry type
[  230.528663][ T1330] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] SMP KASAN NOPTI
[  230.537604][ T9254] BTRFS info (device loop4): rebuilding free space tree
[  230.540752][ T1330] KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]
[  230.540789][ T1330] CPU: 1 UID: 0 PID: 1330 Comm: kworker/u8:9 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  230.540843][ T1330] Tainted: [L]=SOFTLOCKUP
[  230.540858][ T1330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  230.540883][ T1330] Workqueue: krdsd rds_tcp_accept_worker
[  230.580875][ T1307] hfsplus: b-tree write err: -5, ino 25
[  230.581553][ T1330] RIP: 0010:rds_tcp_accept_one+0x9aa/0xd90
[  230.587298][ T1307] hfsplus: b-tree write err: -5, ino 4
[  230.592665][ T1330] Code: fa 48 c1 ea 03 80 3c 02 00 0f 85 b1 03 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 64 24 18 49 8d 7c 24 12 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 76 03 00 00
[  230.592704][ T1330] RSP: 0018:ffffc900055cfb68 EFLAGS: 00010212
[  230.592733][ T1330] RAX: dffffc0000000000 RBX: ffff88803232bc00 RCX: 0000000000000000
[  230.637477][ T1330] RDX: 0000000000000002 RSI: ffffffff8ad9f3fa RDI: 0000000000000012
[  230.645444][ T1330] RBP: ffff88802bfe8780 R08: 0000000000000001 R09: 0000000000000000
[  230.653409][ T1330] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[  230.661382][ T1330] R13: ffff88805663c000 R14: ffff88805255c000 R15: ffff88805663c020
[  230.669353][ T1330] FS:  0000000000000000(0000) GS:ffff88812444a000(0000) knlGS:0000000000000000
[  230.678286][ T1330] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  230.684866][ T1330] CR2: 00007f55f03ac000 CR3: 000000005b82d000 CR4: 0000000000350ef0
[  230.692836][ T1330] Call Trace:
[  230.696103][ T1330]  <TASK>
[  230.699026][ T1330]  ? __pfx_rds_tcp_accept_one+0x10/0x10
[  230.704576][ T1330]  ? srso_alias_return_thunk+0x5/0xfbef5
[  230.710224][ T1330]  ? preempt_schedule_thunk+0x16/0x30
[  230.715609][ T1330]  rds_tcp_accept_worker+0x41/0x60
[  230.720741][ T1330]  process_one_work+0x9d7/0x1920
[  230.725713][ T1330]  ? __pfx_process_one_work+0x10/0x10
[  230.731106][ T1330]  ? srso_alias_return_thunk+0x5/0xfbef5
[  230.736756][ T1330]  ? srso_alias_return_thunk+0x5/0xfbef5
[  230.742401][ T1330]  worker_thread+0x5da/0xe40
[  230.747026][ T1330]  ? __pfx_worker_thread+0x10/0x10
[  230.752159][ T1330]  ? kthread+0x13a/0x450
[  230.756418][ T1330]  ? __pfx_worker_thread+0x10/0x10
[  230.761551][ T1330]  kthread+0x370/0x450
[  230.765638][ T1330]  ? __pfx_kthread+0x10/0x10
[  230.770247][ T1330]  ret_from_fork+0x754/0xd80
[  230.774857][ T1330]  ? __pfx_ret_from_fork+0x10/0x10
[  230.779988][ T1330]  ? srso_alias_return_thunk+0x5/0xfbef5
[  230.785629][ T1330]  ? __switch_to+0x7b4/0x1120
[  230.790313][ T1330]  ? __pfx_kthread+0x10/0x10
[  230.794929][ T1330]  ret_from_fork_asm+0x1a/0x30
[  230.799710][ T1330]  </TASK>
[  230.802717][ T1330] Modules linked in:
[  230.808084][ T1330] ---[ end trace 0000000000000000 ]---
[  230.820920][ T1307] hfsplus: b-tree write err: -5, ino 2
[  230.839485][ T1330] RIP: 0010:rds_tcp_accept_one+0x9aa/0xd90
[  230.845316][ T1330] Code: fa 48 c1 ea 03 80 3c 02 00 0f 85 b1 03 00 00 48 b8 00 00 00 00 00 fc ff df 4d 8b 64 24 18 49 8d 7c 24 12 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 76 03 00 00
[  230.866454][ T1330] RSP: 0018:ffffc900055cfb68 EFLAGS: 00010212
[  230.872587][ T1330] RAX: dffffc0000000000 RBX: ffff88803232bc00 RCX: 0000000000000000
[  230.880641][ T1330] RDX: 0000000000000002 RSI: ffffffff8ad9f3fa RDI: 0000000000000012
[  230.891434][ T1330] RBP: ffff88802bfe8780 R08: 0000000000000001 R09: 0000000000000000
[  230.899501][ T1330] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000000
[  230.907485][ T1330] R13: ffff88805663c000 R14: ffff88805255c000 R15: ffff88805663c020
[  230.920725][   T49] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  230.920847][ T1330] FS:  0000000000000000(0000) GS:ffff88812434a000(0000) knlGS:0000000000000000
[  230.975599][ T9254] BTRFS info (device loop4): enabling ssd optimizations
[  231.001530][ T9254] BTRFS info (device loop4): using spread ssd allocation scheme
[  231.013405][ T1330] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  231.039562][ T9254] BTRFS info (device loop4): turning on async discard
[  231.046181][ T1330] CR2: 00005614e7d195f8 CR3: 0000000028c6d000 CR4: 0000000000350ef0
[  231.050786][ T9254] BTRFS info (device loop4): enabling free space tree
[  231.071251][ T1330] Kernel panic - not syncing: Fatal exception
[  231.077636][ T1330] Kernel Offset: disabled
[  231.081950][ T1330] Rebooting in 86400 seconds..