last executing test programs:

3.249135377s ago: executing program 3 (id=2161):
syz_mount_image$romfs(&(0x7f0000000140), &(0x7f0000000280)='./file0\x00', 0x208008, &(0x7f0000000240)=ANY=[], 0x2, 0x162, &(0x7f00000005c0)="$eJzs2rFKw0AYB/BPGi3UzdGpUKkONkkTrbNjcXNzLG2uDV5sSQRpX0CcBIVz8CUEn8BHyOimi4MvEUlzhCQWzSDkhP9vyR++NPlyV77pOv7U67KgQ7Q/uzv92PKnXrNnHw1Zlw0o0SeiZhzCKHrQ6Zu3tB5GpK+4oVo7n8m1tTcWJzfM5Y5VdUsAAAAAAAAAAAAAAAAAAAAAAFBSuyFDYyK8a+Zyp5upBi3tfMC54wcVtVe5dlOe4SIm+GO8Pnb+hrNNGVxx7Md1M//7exl2J4K/F9fXuPRmRjBfdFxvMHbGzoVl2T3zwDQPLWP5LKP4xPaT7InC6NnUKZLSeua82WuZ82Zy/7VtV9xeFd8WzBdy/xUIa2q0UTLUiEiBNlQKfU2xf9S/CTVSoo1MSEfExsqpov06d1TRWE+uo7rdeonnnz6c8pEsLr+1Tn+0ZvJNlC9V9eEA8LOvAAAA//8Jlzfq")
lremovexattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_default\x00')

2.944791693s ago: executing program 3 (id=2166):
r0 = syz_open_dev$sndctrl(&(0x7f0000000280), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, 0x0)

2.746298984s ago: executing program 3 (id=2170):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x9, 0x3, 0x20000000000081, 0x3, 0x1, 0x0, 0x80, 0x369, 0x6a72})

2.745701584s ago: executing program 0 (id=2172):
setresgid(0xee00, 0xee01, 0x0)
setregid(0x0, 0x0)

2.526873921s ago: executing program 0 (id=2175):
r0 = syz_io_uring_setup(0x8d6, &(0x7f00000000c0)={0x0, 0x1, 0x400, 0x0, 0x37d}, &(0x7f0000000040), &(0x7f0000000080))
io_uring_register$IORING_REGISTER_FILES2(r0, 0xd, &(0x7f0000000bc0)={0x1, 0x1, 0x0, &(0x7f0000000b00)=[{0x0}], 0x0}, 0x20)

2.349385225s ago: executing program 0 (id=2177):
setrlimit(0x2, &(0x7f00000000c0)={0x2000000, 0xffffffffffffffff})
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffe000/0x2000)=nil)

2.24608924s ago: executing program 0 (id=2179):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3004017, &(0x7f0000000300)={[{@orlov}, {@minixdf}]}, 0x43, 0x4ee, &(0x7f0000000800)="$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")
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x17f)

1.56134504s ago: executing program 0 (id=2181):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="3400000039000900000000000000000001000000040000000c0001802e00000005470000080002"], 0x34}}, 0x0)

1.180335973s ago: executing program 1 (id=2185):
r0 = socket(0xa, 0x1, 0x0)
ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f00000010c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x7, @default, @bpq0, 0x6, [@null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})

1.149277929s ago: executing program 3 (id=2186):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x13, &(0x7f00000003c0)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x400}, {0x85, 0x0, 0x0, 0x72}}, @printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}]}, &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x60, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

1.120326545s ago: executing program 2 (id=2187):
r0 = syz_open_dev$video(&(0x7f00000001c0), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x1, @pix_mp={0x8000, 0x1, 0x56555941, 0xb, 0x1, [{0x9, 0x10001}, {0x54, 0x5}, {0x4, 0x7}, {0x2, 0x4003}, {0x9, 0x5}, {0x2, 0x10000}, {0x5, 0x400}, {0xc, 0x3000000}], 0xd, 0x3, 0x3, 0x1, 0x7}})

1.118283904s ago: executing program 0 (id=2188):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)={[{@acl}, {@heartbeat_none}, {@dir_resv_level={'dir_resv_level', 0x3d, 0x3}}, {@coherency_full}, {@resv_level}, {@localflocks}, {@coherency_full}, {@inode64}]}, 0x1, 0x4428, &(0x7f000000c300)="$eJzs3c9PHGUfAPBnBt630LftC7WHmpi4iU00agj0pNJESmkptFhTbWP0sF1g26IL28BiPPSAtyaeTDwYD40m3jg1HLzWP8GLx3puogcvJiaNmN2dBWbYDSthwTafT1Jm5vm9+5159pnDdOJE5fbcUm5uKVdYyJVnbi6dzn1aLi3PF0O8Tw66f9rTiTjV2/woiP3+u3LuwnvXT4fw4+zPj9fX19dDVXdoamjL/h+/353Zum2IM3Wq7TZvba98GEI4sW1cVV0hhA9+qO+fTdJGk21vCOFYCCEKIVy/+8WN3B6N5sGj4pn8k6l7a8OnJlfvr7X+7FEI35Sef/3W/K8vdQ3/8uoedQ8AAAAAAAAAAAAAAAAAwFNu/OqVa+8ODoWHUehejbY/rzuebFs9H7u+Z17s/IcFAAAAAAAAAAAAAAAAAACAf6nN5/9z0fEmz/+PJduRFvXX3+78GOmciXeujJ0fHEre/x5ty38jSfrtbFfob/Le9+z7389m6jd///v2fnarMb5Gv30higdSx3E8MBDCd8mL309Gh+NSeany2s3y8sLsng3jqdUs/qnoJC/0bzf+o5n2O//+/+e2nU3V4xt7d4o909Lx72pZ7vvPo7bify5Tbz/iz+6l499dS+vdWmCkPgFU4/9l987xH8u036n4Hwsh5KLqWHOpGaC6hqmmt1qvkJaO/39qaampM/kiW13/f2bifz7T/kHN/yvZHyKaSsf/v7W0nlSJzeu/P975+r+Qaf8g4l8d/4rf/7ak43+ontidKlL7Jtud/8cz7Xcq/tfiZJzHotQZsBrV01v9f3WkpePfsy1/8/4vbmv9dzFTf7/u/xr9Nu7/GtP/K1H9/o/m0vHvbVmu3et/IlOv0/P/SG39x26l43+4lpZeO/fV/rYb/8nN3drJ1Kn411YlPY34b84nfx2qp39r/deWdPz/V0+Mt5ZYqf2trf+indf/lzLtH8T6rzr+lbizvT4r0vE/0rJcNf4/tfH7fzlTr/PxD2HQWn/X0vE/2rJc7frv2Tn+U5l6nY7/y51sHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOApMJps+0IUD6SO43hgIIRzyfHJcDiaLszmp0vlmU+WQhhL0nPheHSrVJ4ulPJzC+XZYr5QKpVnQjif5J8IPdFSqVzJzxfuXNhoqze6XSwsVqaLhUoIYTxJfyEcbbQ1PVeZL9wJIVzcyPt/XF68c7uwkJ+dW3xrcHBwMExsjKE/Kn5WKS5U6r3Xc0OY3KjbF20ZXC370sZYjkQfl5cXFwqlWvrlLXVK5ZlCaUudqSTvq9AfVRaXF2YKlWK+VL7V6O8gjSTbsYmr71+9PLQt/0ZU347u77AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+IceDr/5dQihu34UhxByUbITJf9SHjwqnsk/mbq3NnxqcvX+2uNmZQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPibHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzSP0oDQRQH4DdjoY3gMayW3c52RREtXBE8gR7Dw+hRvIR3sLBImyIEklkI+we2Sarvax7Mj5n3YB4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAcg+v3dtL3USky4vNecTPx+/fYf5U6tft9P2zE8zI8Tw+d3f3dVP+PY3ym3L03+Zdul59vsdE7X0P9mS4T3vjPkNz+zY3X9/3KlKuIqIt+XXKuaqWvQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwZQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoq+DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBfAQAA//9cuB8u")
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)

934.255097ms ago: executing program 1 (id=2189):
r0 = socket(0x25, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000480)={'ip6tnl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x4, 0x13, 0x8, 0x1, 0x2, @mcast2, @loopback, 0x8000, 0x10, 0x6, 0x6}})

933.598757ms ago: executing program 2 (id=2190):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000000)=0x59, 0x4)

768.885123ms ago: executing program 2 (id=2191):
mmap(&(0x7f0000003000/0x3000)=nil, 0x3000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
capset(&(0x7f0000002ffa)={0x20080522, 0xffffffffffffffff}, 0x0)

764.451062ms ago: executing program 1 (id=2192):
prctl$PR_SET_NAME(0xf, &(0x7f0000000500)='//(\x00')
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)

623.661572ms ago: executing program 2 (id=2193):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup.net/devices.allow\x00', 0x2, 0x48)
open_by_handle_at(r0, &(0x7f0000000080)=@ocfs2={0xc, 0x1, {0x2, 0x9bc3, 0x26198136}}, 0x400000)

596.421988ms ago: executing program 1 (id=2194):
syz_mount_image$cramfs(&(0x7f00000001c0), &(0x7f00000003c0)='./file2\x00', 0x2010088, &(0x7f00000000c0)=ANY=[], 0x2, 0x160, &(0x7f0000000440)="$eJzs0M+LEmEcx/H3/EitNAcysA4VdWhIzHHEbhEZSUI2UHTtkhMFmqIXb/2iW4f+gDmUQifxEB0jdt29uKuwuP/EXoQ9LOzR5ZlndmGve35el4HP8+H5zvd58mBuY4GB9Ljd6nT9Xs9v3Hzh1asv//z9d0nkcSwSYaPV6YpyQ/bXHsE78TVh+VnGGyl4+77p33vTbjbAFD2b/3uViyLXcZDdC0AlI7talNm3YXJFZm6Y6aeyUtS7ZkIlLTNx3+oX3AF0ZFYEDrgVbfV8Nq3l7/5+bfCtlrtxWYN+kBuPtowwv+5/d6tXh8nsV2BzEK7ZD3YL0/xOYTxazGf1Z17dm5dc937JKTpOeeFtz2rlTz8wnybPAyf3yTmxGPAKvmgQaDAKz5frWgqY/BxEP8X+Bwu0frBcSR8PIR3PHJ8kxDNnzw0fZiwdwxZTFEVRFEVRFEVRFOVsjgIAAP//YeFmYQ==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x82000, 0x0)

380.731146ms ago: executing program 3 (id=2195):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="66696c655f756d61736b3d30303030303030303030303030303030303030373737372c6469725f756d61736b3d30303030303030303030303030303030303030303030302c696f636861727365743d69736f383835392d362c636f6465706167653d63703835352c63726561746f723d4ddd71752c00eeabc72a9832436950c6116498dda8be60a94746ea68766f63d1d63944fbda2a9337439b37b6f2a694ba98f40070d09c3890bd28a2018f1adfe1e0a630020a9cac1a43800a70a9328ddb2a2f2e207da7cd3caf243b39eaff4966b7aa97cb6cc7d2cfc59e7a976de0a00d23c7ffaaa056cc4f8bc7b4c0f9a21db642b3e832e30a90ba1b9e7933b77c60f6a1b9ca9128f0a2d0e23373c9d15c79865bae97ddd82b98001b6aa9c5390e4deaf5f0ee492c6842b1c08486e479a889491459a257e9d4083634dac6cd58520f72e6c2f11bbd5b03655bb1863b16f3", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)

366.913444ms ago: executing program 2 (id=2196):
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f0000006380))
mount$cgroup(0x0, &(0x7f0000004300)='./file0\x00', &(0x7f0000004340), 0x200002, &(0x7f00000043c0)={[{@noprefix}]})

252.437487ms ago: executing program 1 (id=2197):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f08000340000000074c0000000c0a01020000000000000000010000000900020073797a3200000000200003801c0000800400018008000340000000010c00044000000000000000000900010073797a3000"], 0x110}}, 0x0)

5.37925ms ago: executing program 2 (id=2198):
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x5, 0x12, r0, 0x100000000)

5.232661ms ago: executing program 3 (id=2199):
r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x7fff, 0x48b03)
ioctl$VIDIOC_G_STD(r0, 0x80085617, 0x0)

0s ago: executing program 1 (id=2200):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x20, 0xff, 0x0, 0xfffff02c}, {0x6, 0xf0, 0x4, 0x1}]}, 0x10)

kernel console output (not intermixed with test programs):

 quotas: error -22
[  147.527257][ T7212] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.627: bg 0: block 40: padding at end of block bitmap is not set
[  147.551208][ T7212] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  147.588803][ T7212] EXT4-fs (loop3): 1 truncate cleaned up
[  147.599840][ T7212] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  147.713310][ T7212] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.627: bad symlink.
[  147.769337][ T5757] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  147.791317][ T5757] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  147.824843][ T5757] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  147.839245][ T5768] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.850746][ T5757] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  147.870470][ T5757] usb 3-1: Manufacturer: syz
[  147.885628][ T5757] usb 3-1: config 0 descriptor??
[  147.916721][ T5757] igorplugusb 3-1:0.0: endpoint incorrect
[  148.087563][   T23] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  148.149861][ T5805] usb 3-1: USB disconnect, device number 9
[  148.246654][ T7230] IPv6: sit1: Disabled Multicast RS
[  148.257910][ T7230] sit1: entered allmulticast mode
[  148.297937][   T23] usb 1-1: Using ep0 maxpacket: 8
[  148.315706][   T23] usb 1-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76
[  148.326682][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.341040][   T23] usb 1-1: Product: syz
[  148.345353][   T23] usb 1-1: Manufacturer: syz
[  148.355567][   T23] usb 1-1: SerialNumber: syz
[  148.374540][   T23] usb 1-1: config 0 descriptor??
[  148.391127][   T23] gspca_main: ALi m5602-2.14.0 probing 0402:5602
[  148.473489][ T7228] loop1: detected capacity change from 0 to 32768
[  148.518026][ T7228] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 12
[  148.622515][ T5866] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 12
[  148.835022][   T23] gspca_m5602: Failed to find a sensor
[  148.857607][   T23] ALi m5602 1-1:0.0: ALi m5602 webcam failed
[  148.889451][   T23] usb 1-1: USB disconnect, device number 9
[  149.158021][ T7240] netlink: 'syz.2.640': attribute type 10 has an invalid length.
[  149.195137][ T7240] team0: Device ipvlan1 failed to register rx_handler
[  149.407039][ T7242] netlink: 12 bytes leftover after parsing attributes in process `syz.1.642'.
[  149.442289][ T7242] netlink: 20 bytes leftover after parsing attributes in process `syz.1.642'.
[  149.676418][ T7250] netlink: 8 bytes leftover after parsing attributes in process `syz.0.644'.
[  149.752697][ T7254] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  150.395482][ T7276] loop3: detected capacity change from 0 to 4096
[  150.446092][ T7276] ntfs3: loop3: ino=3, Correct links count -> 2.
[  150.492010][ T7281] IPv6: sit1: Disabled Multicast RS
[  150.540667][ T7281] sit1: entered allmulticast mode
[  151.112111][   T28] audit: type=1326 audit(1772499611.970:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.207910][   T28] audit: type=1326 audit(1772499611.970:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.307627][   T28] audit: type=1326 audit(1772499611.980:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.379938][   T28] audit: type=1326 audit(1772499611.980:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.451575][ T7305] loop2: detected capacity change from 0 to 256
[  151.458140][   T28] audit: type=1326 audit(1772499611.980:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.540162][   T28] audit: type=1326 audit(1772499611.980:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.626155][   T28] audit: type=1326 audit(1772499611.980:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.670840][   T28] audit: type=1326 audit(1772499611.980:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  151.752120][   T28] audit: type=1326 audit(1772499611.980:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7296 comm="syz.1.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f19a839c799 code=0x7ffc0000
[  152.082174][ T7291] loop3: detected capacity change from 0 to 32768
[  152.126299][ T7291] (syz.3.665,7291,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  152.153581][ T7291] (syz.3.665,7291,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  152.187869][ T5810] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  152.225196][ T7291] JBD2: Ignoring recovery information on journal
[  152.265381][ T7291] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  152.391687][ T5768] ocfs2: Unmounting device (7,3) on (node local)
[  152.422190][ T5810] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  152.448444][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.489701][ T5810] usb 2-1: config 0 descriptor??
[  152.499677][ T7330] netlink: 24 bytes leftover after parsing attributes in process `syz.0.684'.
[  152.509852][ T5810] cp210x 2-1:0.0: cp210x converter detected
[  152.948222][ T5810] usb 2-1: cp210x converter now attached to ttyUSB0
[  152.977518][ T5810] usb 2-1: USB disconnect, device number 11
[  153.015107][ T5810] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  153.044059][ T5810] cp210x 2-1:0.0: device disconnected
[  153.267819][ T5805] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  153.479803][ T5805] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  153.496560][ T5805] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  153.507673][ T5805] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  153.540913][ T5805] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.de
[  153.564921][ T5805] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.591833][ T5805] usb 4-1: config 0 descriptor??
[  153.812351][ T5805] ath6kl: Failed to submit usb control message: -71
[  153.819125][ T5805] ath6kl: unable to send the bmi data to the device: -71
[  153.826225][ T5805] ath6kl: Unable to send get target info: -71
[  153.843122][ T5805] ath6kl: Failed to init ath6kl core: -71
[  153.850414][ T5805] ath6kl_usb: probe of 4-1:0.0 failed with error -71
[  153.862349][ T5805] usb 4-1: USB disconnect, device number 7
[  153.949958][ T7372] loop1: detected capacity change from 0 to 16
[  153.982712][ T7372] erofs: (device loop1): mounted with root inode @ nid 36.
[  154.066392][ T7372] bio_check_eod: 339 callbacks suppressed
[  154.066405][ T7372] syz.1.705: attempt to access beyond end of device
[  154.066405][ T7372] loop1: rw=524288, sector=131758, nr_sectors = 2 limit=16
[  154.095518][ T7372] syz.1.705: attempt to access beyond end of device
[  154.095518][ T7372] loop1: rw=524288, sector=74, nr_sectors = 2 limit=16
[  154.114875][ T7372] syz.1.705: attempt to access beyond end of device
[  154.114875][ T7372] loop1: rw=524288, sector=262336, nr_sectors = 2 limit=16
[  154.133839][ T7372] syz.1.705: attempt to access beyond end of device
[  154.133839][ T7372] loop1: rw=524288, sector=172, nr_sectors = 2 limit=16
[  154.155910][ T7372] syz.1.705: attempt to access beyond end of device
[  154.155910][ T7372] loop1: rw=524288, sector=131274, nr_sectors = 2 limit=16
[  154.176118][ T7372] syz.1.705: attempt to access beyond end of device
[  154.176118][ T7372] loop1: rw=524288, sector=178, nr_sectors = 2 limit=16
[  154.200444][ T7372] syz.1.705: attempt to access beyond end of device
[  154.200444][ T7372] loop1: rw=524288, sector=131284, nr_sectors = 2 limit=16
[  154.219360][ T7372] syz.1.705: attempt to access beyond end of device
[  154.219360][ T7372] loop1: rw=524288, sector=178, nr_sectors = 2 limit=16
[  154.235854][ T7372] syz.1.705: attempt to access beyond end of device
[  154.235854][ T7372] loop1: rw=524288, sector=4830, nr_sectors = 2 limit=16
[  154.256229][ T7372] syz.1.705: attempt to access beyond end of device
[  154.256229][ T7372] loop1: rw=524288, sector=1556797440, nr_sectors = 2 limit=16
[  154.804444][ T7392] genirq: Flags mismatch irq 9. 00000000 (at-a2150c) vs. 00000080 (acpi)
[  155.202400][ T7408] sctp: [Deprecated]: syz.0.722 (pid 7408) Use of int in max_burst socket option.
[  155.202400][ T7408] Use struct sctp_assoc_value instead
[  155.420979][ T7416] loop0: detected capacity change from 0 to 256
[  155.832277][ T7430] loop2: detected capacity change from 0 to 512
[  155.889340][ T7430] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  155.903789][ T7424] loop0: detected capacity change from 0 to 8192
[  155.936691][ T7424] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  155.947710][ T7430] EXT4-fs (loop2): Test dummy encryption mode enabled
[  155.981856][ T7430] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.337647][ T7430] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  156.380307][ T7430] EXT4-fs error (device loop2): ext4_add_entry:2486: inode #2: comm syz.2.734: Directory hole found for htree leaf block 0
[  156.419448][ T7430] EXT4-fs (loop2): Remounting filesystem read-only
[  156.605522][ T5776] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  157.273482][ T7453] loop1: detected capacity change from 0 to 32768
[  157.414661][ T7473] ip6erspan0: entered promiscuous mode
[  157.895067][ T7487] loop3: detected capacity change from 0 to 16
[  157.940509][ T7487] erofs: (device loop3): mounted with root inode @ nid 36.
[  158.117802][   T23] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  158.245829][ T7497] xt_bpf: check failed: parse error
[  158.318319][   T23] usb 3-1: Using ep0 maxpacket: 8
[  158.338860][   T23] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 7
[  158.361578][   T23] usb 3-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  158.379589][   T23] usb 3-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  158.407627][   T23] usb 3-1: Product: syz
[  158.417497][   T23] usb 3-1: Manufacturer: syz
[  158.427513][   T23] usb 3-1: SerialNumber: syz
[  158.609552][ T7503] loop3: detected capacity change from 0 to 4096
[  158.628100][ T7503] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  158.666307][   T23] usb 3-1: Handspring Visor / Palm OS: No valid connect info available
[  158.687925][   T23] usb 3-1: Handspring Visor / Palm OS: port 82, is for unknown use
[  158.695912][   T23] usb 3-1: Handspring Visor / Palm OS: port 223, is for HotSync use
[  158.733822][   T23] usb 3-1: Handspring Visor / Palm OS: Number of ports: 2
[  158.776359][ T7509] loop1: detected capacity change from 0 to 136
[  158.877506][   T23] usb 3-1: palm_os_3_probe - error -71 getting bytes available request
[  158.888215][ T7509] Symlink component flag not implemented
[  158.906550][   T23] visor 3-1:1.0: Handspring Visor / Palm OS converter detected
[  158.925084][   T23] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  158.957834][   T23] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  158.987559][   T23] usb 3-1: USB disconnect, device number 10
[  159.018106][   T23] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  159.071432][   T23] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  159.144790][   T23] visor 3-1:1.0: device disconnected
[  159.409648][ T7519] netlink: 8 bytes leftover after parsing attributes in process `syz.0.776'.
[  159.592404][ T7527] loop0: detected capacity change from 0 to 256
[  159.654720][ T7527] FAT-fs (loop0): Directory bread(block 64) failed
[  159.691796][ T7527] FAT-fs (loop0): Directory bread(block 65) failed
[  159.705287][ T7527] FAT-fs (loop0): Directory bread(block 66) failed
[  159.711066][ T7521] loop1: detected capacity change from 0 to 8192
[  159.727896][ T7527] FAT-fs (loop0): Directory bread(block 67) failed
[  159.734785][ T7527] FAT-fs (loop0): Directory bread(block 68) failed
[  159.766879][ T7521] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  159.793013][ T7527] FAT-fs (loop0): Directory bread(block 69) failed
[  159.810815][ T7527] FAT-fs (loop0): Directory bread(block 70) failed
[  159.850044][ T7527] FAT-fs (loop0): Directory bread(block 71) failed
[  159.859828][ T7527] FAT-fs (loop0): Directory bread(block 72) failed
[  159.873970][ T7527] FAT-fs (loop0): Directory bread(block 73) failed
[  160.401565][ T7542] netlink: 'syz.1.787': attribute type 32 has an invalid length.
[  160.586847][ T7547] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org.
[  160.614236][ T7548] loop1: detected capacity change from 0 to 512
[  160.629657][ T7548] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  160.660810][ T7548] EXT4-fs (loop1): Test dummy encryption mode enabled
[  160.686029][ T7548] EXT4-fs (loop1): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.780137][ T7553] loop0: detected capacity change from 0 to 136
[  160.849034][ T7548] EXT4-fs error (device loop1): ext4_add_entry:2486: inode #2: comm syz.1.789: Directory hole found for htree leaf block 0
[  160.886588][ T7548] EXT4-fs (loop1): Remounting filesystem read-only
[  160.925123][ T7553] Symlink component flag not implemented
[  161.000687][ T7559] xt_bpf: check failed: parse error
[  161.065101][ T5777] EXT4-fs (loop1): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  161.229736][ T7565] loop0: detected capacity change from 0 to 16
[  161.275787][ T7565] erofs: (device loop0): mounted with root inode @ nid 36.
[  161.461975][ T7567] loop1: detected capacity change from 0 to 4096
[  161.494573][ T7567] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  161.813383][ T7578] loop2: detected capacity change from 0 to 256
[  161.917730][ T7578] FAT-fs (loop2): Directory bread(block 64) failed
[  161.945787][ T7578] FAT-fs (loop2): Directory bread(block 65) failed
[  161.963718][ T7578] FAT-fs (loop2): Directory bread(block 66) failed
[  161.970820][ T7578] FAT-fs (loop2): Directory bread(block 67) failed
[  161.977834][ T7578] FAT-fs (loop2): Directory bread(block 68) failed
[  161.984574][ T7578] FAT-fs (loop2): Directory bread(block 69) failed
[  161.994747][ T7578] FAT-fs (loop2): Directory bread(block 70) failed
[  162.004107][ T7578] FAT-fs (loop2): Directory bread(block 71) failed
[  162.026998][ T7578] FAT-fs (loop2): Directory bread(block 72) failed
[  162.047452][ T7578] FAT-fs (loop2): Directory bread(block 73) failed
[  162.293967][ T7587] loop0: detected capacity change from 0 to 8
[  162.446208][ T7587] SQUASHFS error: Failed to read block 0x6fc: -5
[  162.468000][ T7587] SQUASHFS error: Unable to read metadata cache entry [6fa]
[  162.749371][ T7597] netlink: 'syz.0.812': attribute type 3 has an invalid length.
[  162.774239][ T7597] netlink: 'syz.0.812': attribute type 27 has an invalid length.
[  163.104275][ T7585] loop1: detected capacity change from 0 to 32768
[  163.173005][ T7585] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  163.211436][ T7612] loop3: detected capacity change from 0 to 256
[  163.284166][ T7617] netlink: 8 bytes leftover after parsing attributes in process `syz.2.818'.
[  163.320365][ T7585] XFS (loop1): Ending clean mount
[  163.349123][ T7585] XFS (loop1): Quotacheck needed: Please wait.
[  163.368873][ T7612] FAT-fs (loop3): Directory bread(block 64) failed
[  163.399756][ T7612] FAT-fs (loop3): Directory bread(block 65) failed
[  163.428101][ T7612] FAT-fs (loop3): Directory bread(block 66) failed
[  163.434755][ T7612] FAT-fs (loop3): Directory bread(block 67) failed
[  163.441853][ T7612] FAT-fs (loop3): Directory bread(block 68) failed
[  163.448890][ T7612] FAT-fs (loop3): Directory bread(block 69) failed
[  163.467655][ T7612] FAT-fs (loop3): Directory bread(block 70) failed
[  163.474329][ T7612] FAT-fs (loop3): Directory bread(block 71) failed
[  163.482301][ T7612] FAT-fs (loop3): Directory bread(block 72) failed
[  163.513641][ T7612] FAT-fs (loop3): Directory bread(block 73) failed
[  163.527542][ T7585] XFS (loop1): Quotacheck: Done.
[  163.717897][ T7623] FAT-fs (loop0): Directory bread(block 64) failed
[  163.728405][ T5777] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  163.742492][ T7623] FAT-fs (loop0): Directory bread(block 65) failed
[  163.753378][ T7623] FAT-fs (loop0): Directory bread(block 66) failed
[  163.772022][ T7623] FAT-fs (loop0): Directory bread(block 67) failed
[  163.795512][ T7623] FAT-fs (loop0): Directory bread(block 68) failed
[  163.806560][ T7623] FAT-fs (loop0): Directory bread(block 69) failed
[  163.833129][ T7623] FAT-fs (loop0): Directory bread(block 70) failed
[  163.878368][ T7623] FAT-fs (loop0): Directory bread(block 71) failed
[  163.885132][ T7623] FAT-fs (loop0): Directory bread(block 72) failed
[  163.893221][ T7623] FAT-fs (loop0): Directory bread(block 73) failed
[  164.101117][ T7627] netlink: 'syz.3.824': attribute type 3 has an invalid length.
[  164.136858][ T7627] netlink: 'syz.3.824': attribute type 27 has an invalid length.
[  164.272248][ T7631] erofs: (device loop0): mounted with root inode @ nid 36.
[  164.382084][ T7631] bio_check_eod: 688 callbacks suppressed
[  164.382102][ T7631] syz.0.821: attempt to access beyond end of device
[  164.382102][ T7631] loop0: rw=524288, sector=131758, nr_sectors = 2 limit=16
[  164.433639][ T7635] overlayfs: conflicting options: verity=require,redirect_dir=nofollow
[  164.447890][ T7631] syz.0.821: attempt to access beyond end of device
[  164.447890][ T7631] loop0: rw=524288, sector=74, nr_sectors = 2 limit=16
[  164.477763][ T7631] syz.0.821: attempt to access beyond end of device
[  164.477763][ T7631] loop0: rw=524288, sector=262336, nr_sectors = 2 limit=16
[  164.494920][ T7631] syz.0.821: attempt to access beyond end of device
[  164.494920][ T7631] loop0: rw=524288, sector=172, nr_sectors = 2 limit=16
[  164.519305][ T7631] syz.0.821: attempt to access beyond end of device
[  164.519305][ T7631] loop0: rw=524288, sector=131274, nr_sectors = 2 limit=16
[  164.533233][ T7631] syz.0.821: attempt to access beyond end of device
[  164.533233][ T7631] loop0: rw=524288, sector=178, nr_sectors = 2 limit=16
[  164.563842][ T7631] syz.0.821: attempt to access beyond end of device
[  164.563842][ T7631] loop0: rw=524288, sector=131284, nr_sectors = 2 limit=16
[  164.613427][ T7631] syz.0.821: attempt to access beyond end of device
[  164.613427][ T7631] loop0: rw=524288, sector=178, nr_sectors = 2 limit=16
[  164.632291][ T7631] syz.0.821: attempt to access beyond end of device
[  164.632291][ T7631] loop0: rw=524288, sector=4830, nr_sectors = 2 limit=16
[  164.661956][ T7631] syz.0.821: attempt to access beyond end of device
[  164.661956][ T7631] loop0: rw=524288, sector=1556797440, nr_sectors = 2 limit=16
[  165.252253][ T7661] usb usb9: usbfs: process 7661 (syz.1.840) did not claim interface 0 before use
[  165.407571][    T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  165.539517][ T7667] set_capacity_and_notify: 2 callbacks suppressed
[  165.539541][ T7667] loop0: detected capacity change from 0 to 16
[  165.562445][ T7671] loop1: detected capacity change from 0 to 8
[  165.597449][    T9] usb 4-1: Using ep0 maxpacket: 8
[  165.621698][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[  165.636174][ T7667] erofs: (device loop0): mounted with root inode @ nid 36.
[  165.646110][ T7671] SQUASHFS error: Failed to read block 0x6fc: -5
[  165.655790][    T9] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[  165.663495][ T7671] SQUASHFS error: Unable to read metadata cache entry [6fa]
[  165.695039][    T9] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[  165.714731][    T9] usb 4-1: Product: syz
[  165.722028][    T9] usb 4-1: Manufacturer: syz
[  165.726876][    T9] usb 4-1: SerialNumber: syz
[  165.977577][    T9] usb 4-1: Handspring Visor / Palm OS: No valid connect info available
[  165.988295][    T9] usb 4-1: Handspring Visor / Palm OS: port 82, is for unknown use
[  166.005283][    T9] usb 4-1: Handspring Visor / Palm OS: port 223, is for HotSync use
[  166.032033][    T9] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[  166.170319][    T9] usb 4-1: palm_os_3_probe - error -71 getting bytes available request
[  166.189573][    T9] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[  166.228593][    T9] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  166.267939][    T9] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  166.290980][    T9] usb 4-1: USB disconnect, device number 8
[  166.326105][    T9] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  166.360765][    T9] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  166.401569][    T9] visor 4-1:1.0: device disconnected
[  166.477584][ T7670] loop2: detected capacity change from 0 to 32768
[  166.506064][ T7670] (syz.2.845,7670,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  166.546562][ T7670] (syz.2.845,7670,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  166.601393][ T7683] loop1: detected capacity change from 0 to 2048
[  166.616825][ T7670] JBD2: Ignoring recovery information on journal
[  166.653562][ T7670] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  166.691322][ T7683] Alternate GPT is invalid, using primary GPT.
[  166.706916][ T7683]  loop1: p1 p2 p3
[  166.727593][ T7683] loop1: partition table partially beyond EOD, truncated
[  166.863873][ T5137] Alternate GPT is invalid, using primary GPT.
[  166.871548][ T5137]  loop1: p1 p2 p3
[  166.875334][ T5137] loop1: partition table partially beyond EOD, truncated
[  167.056442][ T5776] ocfs2: Unmounting device (7,2) on (node local)
[  167.463949][ T5866] udevd[5866]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  167.471587][ T6819] udevd[6819]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  167.485989][ T6366] udevd[6366]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  167.529867][    T9] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[  167.621707][ T6819] udevd[6819]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  167.636071][ T6366] udevd[6366]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  167.646050][ T5866] udevd[5866]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  167.753115][    T9] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  167.772470][    T9] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 42769, setting to 64
[  167.817906][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  167.844359][    T9] usb 4-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  167.867956][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.876039][    T9] usb 4-1: Product: syz
[  167.917468][    T9] usb 4-1: Manufacturer: syz
[  167.922210][    T9] usb 4-1: SerialNumber: syz
[  167.931678][    T9] usb 4-1: config 0 descriptor??
[  167.953483][    T9] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 found
[  168.037261][ T7719] loop1: detected capacity change from 0 to 256
[  168.113016][ T7719] FAT-fs (loop1): Directory bread(block 64) failed
[  168.132693][ T7719] FAT-fs (loop1): Directory bread(block 65) failed
[  168.170901][ T7719] FAT-fs (loop1): Directory bread(block 66) failed
[  168.197714][ T7719] FAT-fs (loop1): Directory bread(block 67) failed
[  168.204814][    T9] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 now disconnected
[  168.222017][    T9] snd_usb_toneport: probe of 4-1:0.0 failed with error -22
[  168.228224][ T7719] FAT-fs (loop1): Directory bread(block 68) failed
[  168.247492][ T7719] FAT-fs (loop1): Directory bread(block 69) failed
[  168.272626][ T7719] FAT-fs (loop1): Directory bread(block 70) failed
[  168.296885][ T7719] FAT-fs (loop1): Directory bread(block 71) failed
[  168.306205][ T7719] FAT-fs (loop1): Directory bread(block 72) failed
[  168.315577][ T7719] FAT-fs (loop1): Directory bread(block 73) failed
[  168.433188][ T7726] netlink: 'syz.0.878': attribute type 1 has an invalid length.
[  168.449749][ T5805] usb 4-1: USB disconnect, device number 9
[  168.477171][ T7726] netlink: 'syz.0.878': attribute type 1 has an invalid length.
[  168.490778][ T7726] netlink: 180 bytes leftover after parsing attributes in process `syz.0.878'.
[  169.017099][ T7745] tipc: Trying to set illegal importance in message
[  169.073474][ T7747] netlink: 'syz.2.881': attribute type 1 has an invalid length.
[  169.088420][ T7747] netlink: 'syz.2.881': attribute type 1 has an invalid length.
[  169.108334][ T7747] netlink: 180 bytes leftover after parsing attributes in process `syz.2.881'.
[  169.461215][ T7760] loop1: detected capacity change from 0 to 764
[  170.461784][ T7799] No such timeout policy "syz0"
[  170.709952][ T7810] netlink: 8 bytes leftover after parsing attributes in process `syz.2.910'.
[  170.738139][ T7810] netlink: 'syz.2.910': attribute type 8 has an invalid length.
[  170.921883][ T7815] netlink: 16 bytes leftover after parsing attributes in process `syz.1.914'.
[  171.113845][ T7824] netlink: 'syz.1.919': attribute type 1 has an invalid length.
[  171.345513][ T7833] netlink: 20 bytes leftover after parsing attributes in process `syz.1.924'.
[  171.388111][ T7835] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  171.585196][ T7841] loop3: detected capacity change from 0 to 1024
[  171.611054][ T7845] tipc: Trying to set illegal importance in message
[  171.638814][ T7841] EXT4-fs: Ignoring removed orlov option
[  171.664970][ T7841] EXT4-fs: Ignoring removed bh option
[  171.729266][ T7841] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.853502][ T7854] loop0: detected capacity change from 0 to 512
[  171.895227][ T7841] EXT4-fs error (device loop3): __ext4_remount:6752: comm syz.3.928: Abort forced by user
[  171.933129][ T7841] EXT4-fs (loop3): Remounting filesystem read-only
[  171.954205][ T7841] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000.
[  172.089396][ T5768] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.847150][ T7887] loop3: detected capacity change from 0 to 1764
[  173.886038][ T7893] loop1: detected capacity change from 0 to 32768
[  173.966109][ T7893] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  174.015617][ T7893] JBD2: Ignoring recovery information on journal
[  174.036713][ T7927] loop0: detected capacity change from 0 to 1024
[  174.128770][ T7927] EXT4-fs: Ignoring removed orlov option
[  174.134556][ T7927] EXT4-fs: Ignoring removed bh option
[  174.208602][   T28] audit: type=1326 audit(1772499635.080:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7932 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  174.277204][ T7893] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  174.280981][ T7927] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.319349][   T28] audit: type=1326 audit(1772499635.080:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7932 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  174.437932][   T28] audit: type=1326 audit(1772499635.120:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7932 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  174.489072][   T28] audit: type=1326 audit(1772499635.120:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7932 comm="syz.3.970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  174.516325][ T7927] EXT4-fs error (device loop0): __ext4_remount:6752: comm syz.0.967: Abort forced by user
[  174.567759][ T7927] EXT4-fs (loop0): Remounting filesystem read-only
[  174.580992][ T7927] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000.
[  174.684685][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.736876][ T5777] ocfs2: Unmounting device (7,1) on (node local)
[  175.046040][ T7952] loop2: detected capacity change from 0 to 512
[  175.075749][ T7954] loop3: detected capacity change from 0 to 512
[  175.109649][ T7954] EXT4-fs: Ignoring removed nomblk_io_submit option
[  175.224408][ T7954] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.327825][ T7954] ext4 filesystem being mounted at /241/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  175.479914][ T7954] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[  175.516684][ T7954] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  175.534543][ T7954] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.981: Failed to acquire dquot type 1
[  175.758638][ T5768] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.787816][   T28] audit: type=1326 audit(1772499636.660:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7974 comm="syz.2.990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  175.848078][   T28] audit: type=1326 audit(1772499636.660:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7974 comm="syz.2.990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  175.871208][   T28] audit: type=1326 audit(1772499636.700:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7974 comm="syz.2.990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  175.894044][   T28] audit: type=1326 audit(1772499636.700:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7974 comm="syz.2.990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  176.447768][    T9] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  176.476351][ T7997] loop1: detected capacity change from 0 to 512
[  176.479488][ T7999] loop0: detected capacity change from 0 to 512
[  176.502689][ T7997] EXT4-fs: Ignoring removed nomblk_io_submit option
[  176.553635][ T7999] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  176.618325][ T7997] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.631857][ T7997] ext4 filesystem being mounted at /243/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  176.647491][    T9] usb 3-1: Using ep0 maxpacket: 16
[  176.674113][ T7997] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.1000: Failed to acquire dquot type 1
[  176.697235][    T9] usb 3-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  176.718434][ T7999] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.739325][ T8008] netlink: 'syz.3.1003': attribute type 2 has an invalid length.
[  176.748720][ T8008] netlink: 'syz.3.1003': attribute type 1 has an invalid length.
[  176.757056][ T8008] netlink: 'syz.3.1003': attribute type 1 has an invalid length.
[  176.764987][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.765015][    T9] usb 3-1: Product: syz
[  176.765031][    T9] usb 3-1: Manufacturer: syz
[  176.775556][ T7999] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.793556][    T9] usb 3-1: SerialNumber: syz
[  176.818641][    T9] usb 3-1: config 0 descriptor??
[  176.826956][    T9] ssu100 3-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  176.865804][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.052556][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.249821][    T9] ssu100: probe of 3-1:0.0 failed with error -71
[  177.274872][    T9] usb 3-1: USB disconnect, device number 11
[  177.670625][ T8032] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1015'.
[  178.023561][ T8042] netlink: 'syz.1.1021': attribute type 21 has an invalid length.
[  178.043952][ T8042] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1021'.
[  178.060108][ T8046] netlink: 'syz.0.1022': attribute type 15 has an invalid length.
[  178.888888][ T8076] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1037'.
[  178.930246][ T8076] netlink: 'syz.2.1037': attribute type 1 has an invalid length.
[  178.949602][ T8076] netlink: 'syz.2.1037': attribute type 2 has an invalid length.
[  178.963628][ T8076] netlink: 120 bytes leftover after parsing attributes in process `syz.2.1037'.
[  179.448979][ T8100] netlink: 'syz.3.1050': attribute type 8 has an invalid length.
[  179.461610][ T8100] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1050'.
[  179.899212][ T8118] loop1: detected capacity change from 0 to 256
[  180.000118][ T8122] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551615)
[  180.034180][ T8122] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  180.099660][ T8118] FAT-fs (loop1): Directory bread(block 64) failed
[  180.106303][ T8118] FAT-fs (loop1): Directory bread(block 65) failed
[  180.147985][ T8118] FAT-fs (loop1): Directory bread(block 66) failed
[  180.167700][ T8118] FAT-fs (loop1): Directory bread(block 67) failed
[  180.174434][ T8118] FAT-fs (loop1): Directory bread(block 68) failed
[  180.214831][ T8118] FAT-fs (loop1): Directory bread(block 69) failed
[  180.231069][ T8118] FAT-fs (loop1): Directory bread(block 70) failed
[  180.254456][ T8118] FAT-fs (loop1): Directory bread(block 71) failed
[  180.265795][ T8130] netlink: 'syz.3.1064': attribute type 3 has an invalid length.
[  180.274147][ T8118] FAT-fs (loop1): Directory bread(block 72) failed
[  180.282354][ T8118] FAT-fs (loop1): Directory bread(block 73) failed
[  180.744127][ T8145] can0: slcan on ttyS3.
[  180.959359][ T8139] can0 (unregistered): slcan off ttyS3.
[  181.010271][ T8151] loop3: detected capacity change from 0 to 1764
[  181.171633][ T8157] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1076'.
[  181.441788][ T8167] QAT: failed to copy from user.
[  182.267633][ T8195] Illegal XDP return value 4294967262 on prog  (id 47) dev N/A, expect packet loss!
[  182.315303][ T8198] loop2: detected capacity change from 0 to 512
[  182.386316][ T8198] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 49, start 000000c8)
[  182.406908][ T8163] loop0: detected capacity change from 0 to 32768
[  182.447542][ T8198] FAT-fs (loop2): Filesystem has been set read-only
[  182.474911][ T8198] FAT-fs (loop2): error, invalid access to FAT (entry 0x000000c8)
[  182.562722][ T8163] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  182.602398][ T8163] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  182.720815][ T8215] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1094'.
[  182.790153][ T8220] netlink: 'syz.3.1095': attribute type 2 has an invalid length.
[  182.941104][ T8163] XFS (loop0): Ending clean mount
[  183.129344][ T5767] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  185.052247][ T8299] netlink: 344 bytes leftover after parsing attributes in process `syz.3.1127'.
[  185.274957][ T8306] loop3: detected capacity change from 0 to 256
[  185.319849][ T8306] exfat: Deprecated parameter 'namecase'
[  185.393464][ T8306] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  185.457727][ T8310] netlink: 'syz.1.1132': attribute type 10 has an invalid length.
[  185.688004][ T8318] loop1: detected capacity change from 0 to 512
[  185.696889][ T8318] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  185.744267][ T8318] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  185.771824][ T8318] EXT4-fs (loop1): 1 truncate cleaned up
[  185.793422][ T8318] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.900229][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.907749][ T5867] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  186.123981][ T5867] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  186.148432][ T5867] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.189544][ T5867] usb 1-1: config 0 descriptor??
[  186.203553][ T8328] loop3: detected capacity change from 0 to 4096
[  186.422230][ T5867] usb 1-1: Cannot read MAC address
[  186.448054][ T5867] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71
[  186.480893][ T5867] usb 1-1: USB disconnect, device number 10
[  187.149211][ T8356] block device autoloading is deprecated and will be removed.
[  187.166298][ T8356] bio_check_eod: 688 callbacks suppressed
[  187.166314][ T8356] syz.2.1153: attempt to access beyond end of device
[  187.166314][ T8356] ram203: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=8192
[  187.428785][ T8370] netlink: 344 bytes leftover after parsing attributes in process `syz.2.1160'.
[  187.663946][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  187.663961][   T28] audit: type=1326 audit(1772499648.510:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  187.669984][ T8380] loop0: detected capacity change from 0 to 512
[  187.712761][ T8380] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  187.755125][ T8382] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1166'.
[  187.784502][ T8380] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  187.803174][   T28] audit: type=1326 audit(1772499648.530:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  187.834442][ T8382] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1166'.
[  187.913150][ T8380] EXT4-fs (loop0): 1 truncate cleaned up
[  187.949404][ T8380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.957806][   T28] audit: type=1326 audit(1772499648.580:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  188.054107][   T28] audit: type=1326 audit(1772499648.580:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  188.126582][   T28] audit: type=1326 audit(1772499648.580:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8375 comm="syz.2.1164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  188.167945][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.573886][ T8403] A link change request failed with some changes committed already. Interface veth0_to_team may have been left with an inconsistent configuration, please check.
[  188.591451][   T51] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  188.601707][   T51] Bluetooth: hci2: Injecting HCI hardware error event
[  188.610803][   T51] Bluetooth: hci2: hardware error 0x00
[  188.810948][ T8411] loop2: detected capacity change from 0 to 256
[  188.859465][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.892132][ T8411] FAT-fs (loop2): Filesystem has been set read-only
[  188.917732][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  188.954104][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.012042][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.061549][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.113759][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.155904][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.192228][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.203004][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.223118][ T8411] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  189.243409][   T28] audit: type=1800 audit(1772499650.110:45): pid=8411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1181" name="file1" dev="loop2" ino=1048611 res=0 errno=0
[  189.908085][ T8439] loop2: detected capacity change from 0 to 4096
[  189.976002][ T8444] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  190.076736][ T8439] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  190.116438][ T8439] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=12)
[  190.179417][ T8439] Remounting filesystem read-only
[  190.184883][ T8439] NILFS (loop2): error -5 truncating bmap (ino=12)
[  190.225246][ T8449] loop1: detected capacity change from 0 to 512
[  190.280470][ T8449] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.331675][ T8449] ext4 filesystem being mounted at /294/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.357723][    T9] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  190.418220][ T5776] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  190.445864][ T5776] NILFS (loop2): discard dirty page: offset=0, ino=2
[  190.469639][ T5776] NILFS (loop2): discard dirty block: blocknr=14, size=4096
[  190.489816][ T5776] NILFS (loop2): discard dirty page: offset=0, ino=6
[  190.501757][ T5776] NILFS (loop2): discard dirty block: blocknr=23, size=4096
[  190.521077][ T5776] NILFS (loop2): discard dirty page: offset=4096, ino=6
[  190.531283][ T5776] NILFS (loop2): discard dirty block: blocknr=24, size=4096
[  190.547165][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.556493][ T5776] NILFS (loop2): discard dirty page: offset=8192, ino=6
[  190.569290][ T5776] NILFS (loop2): discard dirty block: blocknr=25, size=4096
[  190.570610][    T9] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  190.617625][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.647186][    T9] usb 4-1: config 0 descriptor??
[  190.718978][ T8458] netlink: 'syz.0.1204': attribute type 3 has an invalid length.
[  190.828554][   T51] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  190.887680][    T9] usb 4-1: Cannot read MAC address
[  190.927678][    T9] MOSCHIP usb-ethernet driver: probe of 4-1:0.0 failed with error -71
[  190.964027][    T9] usb 4-1: USB disconnect, device number 10
[  191.597077][ T8488] loop1: detected capacity change from 0 to 256
[  191.684775][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.717488][ T8488] FAT-fs (loop1): Filesystem has been set read-only
[  191.724759][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.782690][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.808374][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.839890][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.866491][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.884997][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.904741][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.924386][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.943969][ T8488] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  191.991059][   T28] audit: type=1800 audit(1772499652.860:46): pid=8488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1217" name="file1" dev="loop1" ino=1048612 res=0 errno=0
[  192.035209][ T8500] syz.0.1223 uses obsolete (PF_INET,SOCK_PACKET)
[  192.256513][ T8504] loop2: detected capacity change from 0 to 4096
[  192.617639][   T28] audit: type=1326 audit(1772499653.490:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8513 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  192.680828][   T28] audit: type=1326 audit(1772499653.520:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8513 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  192.738085][   T28] audit: type=1326 audit(1772499653.530:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8513 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  192.769638][   T28] audit: type=1326 audit(1772499653.530:50): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=8513 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  192.792486][   T28] audit: type=1326 audit(1772499653.530:51): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=8513 comm="syz.2.1230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  193.183471][ T8531] loop1: detected capacity change from 0 to 1024
[  193.391210][   T11] hfsplus: b-tree write err: -5, ino 4
[  193.491428][ T8535] loop0: detected capacity change from 0 to 4096
[  194.118933][   T28] audit: type=1326 audit(1772499654.990:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8556 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  194.237506][   T28] audit: type=1326 audit(1772499655.000:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8556 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  194.276727][   T28] audit: type=1326 audit(1772499655.000:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8556 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  194.319962][   T28] audit: type=1326 audit(1772499655.000:55): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=8556 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  194.376175][ T8565] loop0: detected capacity change from 0 to 512
[  194.383647][   T28] audit: type=1326 audit(1772499655.000:56): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=8556 comm="syz.0.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  194.478921][ T8565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.548257][ T8565] ext4 filesystem being mounted at /329/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  194.658986][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.684037][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  194.691216][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  194.981500][ T8582] netlink: 'syz.2.1261': attribute type 29 has an invalid length.
[  195.250170][ T8592] netlink: 'syz.2.1265': attribute type 9 has an invalid length.
[  195.271576][ T8592] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.1265'.
[  196.233303][ T8587] loop3: detected capacity change from 0 to 32768
[  196.296384][ T8587] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  196.331279][ T8587] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  196.372994][ T8624] loop2: detected capacity change from 0 to 8
[  196.499246][ T8587] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  196.539759][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  196.558280][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  196.629052][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 70ms
[  196.660297][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  196.666600][ T8587] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  196.859261][ T8633] netlink: 'syz.2.1283': attribute type 41 has an invalid length.
[  196.933242][ T8607] loop1: detected capacity change from 0 to 32768
[  197.035434][ T8607] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  197.154588][ T8587] gfs2: fsid=syz:syz.0: found 1 quota changes
[  197.212104][ T8607] XFS (loop1): Ending clean mount
[  197.317988][ T8607] syz.1.1272: attempt to access beyond end of device
[  197.317988][ T8607] loop1: rw=4096, sector=3546894483, nr_sectors = 1 limit=32768
[  197.468488][ T5768] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  197.468488][ T5768]   inode = 11 2339
[  197.468488][ T5768]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 472
[  197.513227][ T5777] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  197.533289][ T5768] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  197.550412][ T5768] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:5768 [syz-executor] gfs2_quota_sync+0x411/0x5a0
[  197.563736][ T5768] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  197.572695][ T5768] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  197.636799][ T5768] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  197.685471][ T5768] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  197.708577][ T5768] gfs2: fsid=syz:syz.0: File system withdrawn
[  197.714711][ T5768] CPU: 1 PID: 5768 Comm: syz-executor Not tainted syzkaller #0
[  197.722303][ T5768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  197.732809][ T5768] Call Trace:
[  197.736132][ T5768]  <TASK>
[  197.739074][ T5768]  dump_stack_lvl+0x18c/0x250
[  197.743784][ T5768]  ? kobject_uevent_env+0x363/0x8b0
[  197.749025][ T5768]  ? show_regs_print_info+0x20/0x20
[  197.754291][ T5768]  ? load_image+0x400/0x400
[  197.758852][ T5768]  ? kobject_uevent_env+0x363/0x8b0
[  197.764128][ T5768]  gfs2_withdraw+0xb24/0x13d0
[  197.768976][ T5768]  ? gfs2_lm+0x240/0x240
[  197.773296][ T5768]  ? preempt_schedule+0xc0/0xd0
[  197.778307][ T5768]  ? gfs2_consist_inode_i+0xf5/0x110
[  197.783708][ T5768]  gfs2_inode_refresh+0xb89/0x1000
[  197.788906][ T5768]  ? gfs2_inode_metasync+0xf0/0xf0
[  197.794083][ T5768]  ? gfs2_glock_nq+0xd4f/0x1420
[  197.799018][ T5768]  gfs2_instantiate+0x162/0x220
[  197.803935][ T5768]  gfs2_glock_wait+0x1d4/0x2a0
[  197.808775][ T5768]  do_sync+0x4c6/0xe50
[  197.812909][ T5768]  ? gfs2_quota_sync+0x411/0x5a0
[  197.817917][ T5768]  ? bh_get+0x760/0x760
[  197.822134][ T5768]  ? __lock_acquire+0x7d40/0x7d40
[  197.827305][ T5768]  ? do_raw_spin_lock+0x11f/0x2c0
[  197.832400][ T5768]  ? gfs2_quota_sync+0x411/0x5a0
[  197.837394][ T5768]  ? do_raw_spin_unlock+0x121/0x230
[  197.842756][ T5768]  gfs2_quota_sync+0x411/0x5a0
[  197.847631][ T5768]  gfs2_sync_fs+0x4c/0xb0
[  197.852032][ T5768]  sync_filesystem+0xea/0x220
[  197.856770][ T5768]  generic_shutdown_super+0x6f/0x2b0
[  197.862111][ T5768]  kill_block_super+0x44/0x90
[  197.866849][ T5768]  deactivate_locked_super+0x97/0x100
[  197.872271][ T5768]  cleanup_mnt+0x43b/0x4d0
[  197.876743][ T5768]  task_work_run+0x1d4/0x260
[  197.881407][ T5768]  ? task_work_cancel+0x220/0x220
[  197.886583][ T5768]  ? exit_to_user_mode_loop+0x3b/0x110
[  197.892115][ T5768]  exit_to_user_mode_loop+0xe6/0x110
[  197.897560][ T5768]  exit_to_user_mode_prepare+0xee/0x180
[  197.903175][ T5768]  syscall_exit_to_user_mode+0x1a/0x50
[  197.908716][ T5768]  do_syscall_64+0x61/0xa0
[  197.913196][ T5768]  ? clear_bhb_loop+0x40/0x90
[  197.917932][ T5768]  ? clear_bhb_loop+0x40/0x90
[  197.922841][ T5768]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  197.928803][ T5768] RIP: 0033:0x7fc4a8d9d9d7
[  197.933276][ T5768] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  197.953094][ T5768] RSP: 002b:00007fff11704538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  197.961537][ T5768] RAX: 0000000000000000 RBX: 00007fc4a8e31f90 RCX: 00007fc4a8d9d9d7
[  197.969543][ T5768] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff117045f0
[  197.977553][ T5768] RBP: 00007fff117045f0 R08: 00007fff117055f0 R09: 00000000ffffffff
[  197.985569][ T5768] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff11705680
[  197.993888][ T5768] R13: 00007fc4a8e31f90 R14: 0000000000030278 R15: 00007fff117056c0
[  198.001904][ T5768]  </TASK>
[  198.133760][ T8650] tc_dump_action: action bad kind
[  198.212453][ T8654] IPv6: Can't replace route, no match found
[  198.562329][ T8662] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  198.913295][ T8677] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1301'.
[  198.953028][ T8679] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1300'.
[  199.202242][ T8687] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1305'.
[  199.477273][ T8693] loop1: detected capacity change from 0 to 4096
[  199.503712][ T8693] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[  199.590759][   T28] audit: type=1326 audit(1772499660.470:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8700 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  199.633010][   T28] audit: type=1326 audit(1772499660.470:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8700 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  199.670503][   T28] audit: type=1326 audit(1772499660.500:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8700 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  199.747984][   T28] audit: type=1326 audit(1772499660.500:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8700 comm="syz.2.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  199.801155][ T8693] ntfs3: loop1: failed to convert "c46c" to cp437
[  200.017734][ T8709] No source specified
[  200.077805][ T8711] loop2: detected capacity change from 0 to 256
[  200.127654][ T5805] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  200.167260][ T8711] FAT-fs (loop2): Directory bread(block 64) failed
[  200.193271][ T8711] FAT-fs (loop2): Directory bread(block 65) failed
[  200.216978][ T8711] FAT-fs (loop2): Directory bread(block 66) failed
[  200.241633][ T8711] FAT-fs (loop2): Directory bread(block 67) failed
[  200.262895][ T8711] FAT-fs (loop2): Directory bread(block 68) failed
[  200.282458][ T8711] FAT-fs (loop2): Directory bread(block 69) failed
[  200.314110][ T8711] FAT-fs (loop2): Directory bread(block 70) failed
[  200.323246][ T5805] usb 1-1: config 0 has an invalid interface number: 107 but max is 0
[  200.327723][ T8711] FAT-fs (loop2): Directory bread(block 71) failed
[  200.337705][ T5805] usb 1-1: config 0 has no interface number 0
[  200.350909][ T5805] usb 1-1: config 0 interface 107 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10
[  200.359705][ T8711] FAT-fs (loop2): Directory bread(block 72) failed
[  200.373764][ T5805] usb 1-1: config 0 interface 107 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[  200.387561][ T8711] FAT-fs (loop2): Directory bread(block 73) failed
[  200.402251][ T5805] usb 1-1: New USB device found, idVendor=06cd, idProduct=0131, bcdDevice=16.60
[  200.415062][ T5805] usb 1-1: New USB device strings: Mfr=175, Product=2, SerialNumber=3
[  200.431845][ T5805] usb 1-1: Product: syz
[  200.439565][ T5805] usb 1-1: Manufacturer: syz
[  200.446314][ T5805] usb 1-1: SerialNumber: syz
[  200.461341][ T8719] loop3: detected capacity change from 0 to 256
[  200.483164][ T5805] usb 1-1: config 0 descriptor??
[  200.508033][   T51] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  200.516918][   T51] Bluetooth: hci0: Injecting HCI hardware error event
[  200.526251][   T51] Bluetooth: hci0: hardware error 0x00
[  200.543569][ T5805] keyspan 1-1:0.107: Keyspan 4 port adapter converter detected
[  200.550657][ T8719] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0x31e44978, utbl_chksum : 0xe619d30d)
[  200.552867][ T5805] keyspan 1-1:0.107: found no endpoint descriptor for endpoint 81
[  200.604640][ T5805] keyspan 1-1:0.107: found no endpoint descriptor for endpoint 1
[  200.626915][ T5805] usb 1-1: Keyspan 4 port adapter converter now attached to ttyUSB0
[  200.641533][ T5805] keyspan 1-1:0.107: found no endpoint descriptor for endpoint 2
[  200.651445][ T5805] usb 1-1: Keyspan 4 port adapter converter now attached to ttyUSB1
[  200.664285][ T5805] keyspan 1-1:0.107: found no endpoint descriptor for endpoint 4
[  200.686141][ T5805] usb 1-1: Keyspan 4 port adapter converter now attached to ttyUSB2
[  200.700426][ T5805] keyspan 1-1:0.107: found no endpoint descriptor for endpoint 6
[  200.740772][ T5805] usb 1-1: Keyspan 4 port adapter converter now attached to ttyUSB3
[  200.785110][ T5805] usb 1-1: USB disconnect, device number 11
[  200.810018][ T5805] keyspan_4 ttyUSB0: Keyspan 4 port adapter converter now disconnected from ttyUSB0
[  200.870985][ T5805] keyspan_4 ttyUSB1: Keyspan 4 port adapter converter now disconnected from ttyUSB1
[  200.934560][ T5805] keyspan_4 ttyUSB2: Keyspan 4 port adapter converter now disconnected from ttyUSB2
[  200.979165][ T5805] keyspan_4 ttyUSB3: Keyspan 4 port adapter converter now disconnected from ttyUSB3
[  201.019068][ T5805] keyspan 1-1:0.107: device disconnected
[  201.294724][ T8734] netlink: 'syz.3.1328': attribute type 1 has an invalid length.
[  201.665435][ T8748] loop3: detected capacity change from 0 to 512
[  201.697738][ T8748] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.1336: Invalid inode bitmap blk 4 in block_group 0
[  201.743432][ T8748] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.950319][ T5768] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.067825][ T5805] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  202.098558][ T8764] loop3: detected capacity change from 0 to 16
[  202.118900][ T8764] erofs: (device loop3): mounted with root inode @ nid 36.
[  202.257556][ T5805] usb 3-1: Using ep0 maxpacket: 32
[  202.277235][ T5805] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  202.293465][ T5805] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  202.303233][ T5805] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.323259][ T5805] usb 3-1: Product: syz
[  202.335311][ T5805] usb 3-1: Manufacturer: syz
[  202.343768][ T5805] usb 3-1: SerialNumber: syz
[  202.358726][ T5805] usb 3-1: config 0 descriptor??
[  202.370252][ T5805] usb 3-1: bad CDC descriptors
[  202.379052][ T5805] usb 3-1: unsupported MDLM descriptors
[  202.466789][ T8772] loop0: detected capacity change from 0 to 16
[  202.491501][ T8772] erofs: (device loop0): mounted with root inode @ nid 36.
[  202.646031][ T5757] usb 3-1: USB disconnect, device number 12
[  202.672397][   T51] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  202.776770][ T8780] netlink: 'syz.0.1350': attribute type 3 has an invalid length.
[  202.826397][ T8782] loop1: detected capacity change from 0 to 1764
[  202.977982][ T8786] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551615)
[  202.997700][ T8786] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  203.029372][ T8788] ieee802154 phy0 wpan0: encryption failed: -22
[  203.064170][ T8790] netlink: 'syz.3.1355': attribute type 9 has an invalid length.
[  203.088203][ T8790] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.1355'.
[  203.744712][ T8815] netlink: set zone limit has 8 unknown bytes
[  204.074113][ T8829] loop2: detected capacity change from 0 to 64
[  204.244740][ T8829] syz.2.1374: attempt to access beyond end of device
[  204.244740][ T8829] loop2: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[  204.280019][ T8829] Buffer I/O error on dev loop2, logical block 134217734, lost async page write
[  205.082282][ T8857] loop3: detected capacity change from 0 to 4096
[  205.185194][ T8867] loop2: detected capacity change from 0 to 16
[  205.196816][ T8863] loop0: detected capacity change from 0 to 4096
[  205.206416][ T8857] ntfs: volume version 3.1.
[  205.220667][ T8867] erofs: (device loop2): mounted with root inode @ nid 36.
[  205.234203][ T8863] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  205.287117][ T8867] overlay: filesystem on ./file0 is read-only
[  205.846281][ T8879] x_tables: duplicate underflow at hook 2
[  205.901900][ T8881] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1399'.
[  206.358451][ T8898] loop3: detected capacity change from 0 to 1024
[  206.555690][ T2967] hfsplus: b-tree write err: -5, ino 4
[  206.579957][ T8904] loop0: detected capacity change from 0 to 256
[  206.682420][ T8904] FAT-fs (loop0): Directory bread(block 64) failed
[  206.713493][ T8904] FAT-fs (loop0): Directory bread(block 65) failed
[  206.742518][ T8904] FAT-fs (loop0): Directory bread(block 66) failed
[  206.760736][ T8904] FAT-fs (loop0): Directory bread(block 67) failed
[  206.800366][ T8904] FAT-fs (loop0): Directory bread(block 68) failed
[  206.807008][ T8904] FAT-fs (loop0): Directory bread(block 69) failed
[  206.848384][ T8904] FAT-fs (loop0): Directory bread(block 70) failed
[  206.855007][ T8904] FAT-fs (loop0): Directory bread(block 71) failed
[  206.876935][ T8904] FAT-fs (loop0): Directory bread(block 72) failed
[  206.899462][ T8904] FAT-fs (loop0): Directory bread(block 73) failed
[  207.202531][ T8921] /dev/loop0: Can't open blockdev
[  207.600910][ T8929] loop0: detected capacity change from 0 to 4096
[  207.622572][ T8929] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  208.409312][ T8967] sctp: [Deprecated]: syz.2.1440 (pid 8967) Use of struct sctp_assoc_value in delayed_ack socket option.
[  208.409312][ T8967] Use struct sctp_sack_info instead
[  208.984342][ T8984] loop0: detected capacity change from 0 to 4096
[  209.019087][ T8984] ntfs: volume version 3.1.
[  209.616152][ T9008] autofs4:pid:9008:autofs_fill_super: called with bogus options
[  210.089206][ T9023] loop0: detected capacity change from 0 to 4096
[  210.122267][ T9020] loop1: detected capacity change from 0 to 4096
[  210.214449][ T9020] ntfs: volume version 3.1.
[  211.034193][ T9012] loop2: detected capacity change from 0 to 32768
[  211.061568][ T9012] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  211.097416][ T5757] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  211.110404][ T9012] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  211.159489][ T9012] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  211.171860][ T9044] delete_channel: no stack
[  211.201998][   T23] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  211.238982][   T23] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  211.297481][ T5757] usb 4-1: Using ep0 maxpacket: 16
[  211.314427][ T5757] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  211.337659][ T5757] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.367102][ T5757] usb 4-1: Product: syz
[  211.371056][   T23] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 132ms
[  211.374462][ T5757] usb 4-1: Manufacturer: syz
[  211.392996][ T5757] usb 4-1: SerialNumber: syz
[  211.411093][   T23] gfs2: fsid=syz:syz.0: jid=0: Done
[  211.412976][ T5757] r8152-cfgselector 4-1: config 0 descriptor??
[  211.416581][ T9012] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  211.608530][ T9012] gfs2: fsid=syz:syz.0: found 1 quota changes
[  211.768850][ T5776] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  211.768850][ T5776]   inode = 11 2339
[  211.768850][ T5776]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 472
[  211.795214][ T5776] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  211.806783][ T5776] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:5776 [syz-executor] gfs2_quota_sync+0x411/0x5a0
[  211.824330][ T5776] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  211.851410][ T5757] r8152-cfgselector 4-1: Unknown version 0x0000
[  211.857216][ T5776] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  211.880954][ T5757] r8152-cfgselector 4-1: USB disconnect, device number 11
[  211.890502][ T5776] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  211.934109][ T5776] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  211.956933][ T5776] gfs2: fsid=syz:syz.0: File system withdrawn
[  211.964627][ T5776] CPU: 1 PID: 5776 Comm: syz-executor Not tainted syzkaller #0
[  211.972243][ T5776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  211.982351][ T5776] Call Trace:
[  211.985675][ T5776]  <TASK>
[  211.988651][ T5776]  dump_stack_lvl+0x18c/0x250
[  211.993388][ T5776]  ? kobject_uevent_env+0x363/0x8b0
[  211.998641][ T5776]  ? show_regs_print_info+0x20/0x20
[  212.003901][ T5776]  ? load_image+0x400/0x400
[  212.008555][ T5776]  ? kobject_uevent_env+0x363/0x8b0
[  212.013823][ T5776]  gfs2_withdraw+0xb24/0x13d0
[  212.018590][ T5776]  ? gfs2_lm+0x240/0x240
[  212.022896][ T5776]  ? preempt_schedule+0xc0/0xd0
[  212.028077][ T5776]  ? gfs2_consist_inode_i+0xf5/0x110
[  212.033424][ T5776]  gfs2_inode_refresh+0xb89/0x1000
[  212.038599][ T5776]  ? gfs2_inode_metasync+0xf0/0xf0
[  212.043767][ T5776]  ? gfs2_glock_nq+0xd4f/0x1420
[  212.048779][ T5776]  gfs2_instantiate+0x162/0x220
[  212.053713][ T5776]  gfs2_glock_wait+0x1d4/0x2a0
[  212.058560][ T5776]  do_sync+0x4c6/0xe50
[  212.062684][ T5776]  ? gfs2_quota_sync+0x411/0x5a0
[  212.067708][ T5776]  ? bh_get+0x760/0x760
[  212.071921][ T5776]  ? __lock_acquire+0x7d40/0x7d40
[  212.076985][ T5776]  ? do_raw_spin_lock+0x11f/0x2c0
[  212.082148][ T5776]  ? gfs2_quota_sync+0x411/0x5a0
[  212.087130][ T5776]  ? do_raw_spin_unlock+0x121/0x230
[  212.092561][ T5776]  gfs2_quota_sync+0x411/0x5a0
[  212.097395][ T5776]  gfs2_sync_fs+0x4c/0xb0
[  212.101786][ T5776]  sync_filesystem+0xea/0x220
[  212.106534][ T5776]  generic_shutdown_super+0x6f/0x2b0
[  212.111878][ T5776]  kill_block_super+0x44/0x90
[  212.116614][ T5776]  deactivate_locked_super+0x97/0x100
[  212.122123][ T5776]  cleanup_mnt+0x43b/0x4d0
[  212.126679][ T5776]  task_work_run+0x1d4/0x260
[  212.131326][ T5776]  ? task_work_cancel+0x220/0x220
[  212.136408][ T5776]  ? exit_to_user_mode_loop+0x3b/0x110
[  212.141920][ T5776]  exit_to_user_mode_loop+0xe6/0x110
[  212.145375][ T5773] Bluetooth: hci1: command 0x0406 tx timeout
[  212.147237][ T5776]  exit_to_user_mode_prepare+0xee/0x180
[  212.153371][ T5082] Bluetooth: hci3: command 0x0406 tx timeout
[  212.158971][ T5776]  syscall_exit_to_user_mode+0x1a/0x50
[  212.158999][ T5776]  do_syscall_64+0x61/0xa0
[  212.174952][ T5776]  ? clear_bhb_loop+0x40/0x90
[  212.179684][ T5776]  ? clear_bhb_loop+0x40/0x90
[  212.184411][ T5776]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  212.190362][ T5776] RIP: 0033:0x7f455cb9d9d7
[  212.194831][ T5776] Code: a2 c7 05 1c ed 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  212.214576][ T5776] RSP: 002b:00007ffc6ea4b7f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  212.223130][ T5776] RAX: 0000000000000000 RBX: 00007f455cc31f90 RCX: 00007f455cb9d9d7
[  212.231844][ T5776] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc6ea4b8b0
[  212.240127][ T5776] RBP: 00007ffc6ea4b8b0 R08: 00007ffc6ea4c8b0 R09: 00000000ffffffff
[  212.248143][ T5776] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc6ea4c940
[  212.256239][ T5776] R13: 00007f455cc31f90 R14: 0000000000033aba R15: 00007ffc6ea4c980
[  212.264271][ T5776]  </TASK>
[  212.267343][    C1] vkms_vblank_simulate: vblank timer overrun
[  212.709098][ T9065] loop2: detected capacity change from 0 to 4096
[  212.803222][ T9065] ntfs: volume version 3.1.
[  212.900953][ T9073] xt_limit: Overflow, try lower: 2147483649/3300
[  213.057461][ T5757] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  213.084653][ T9078] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1493'.
[  213.111558][ T9078] netlink: ct family unspecified
[  213.167033][ T9078] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  213.258020][ T5757] usb 4-1: Using ep0 maxpacket: 16
[  213.288817][ T5757] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  213.317596][ T5757] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  213.338721][ T5757] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  213.362765][ T5757] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.372934][ T5757] usb 4-1: Product: syz
[  213.377161][ T5757] usb 4-1: Manufacturer: syz
[  213.391469][ T5757] usb 4-1: SerialNumber: syz
[  213.487813][ T9090] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1499'.
[  213.496900][ T9090] netlink: 11 bytes leftover after parsing attributes in process `syz.0.1499'.
[  213.628842][ T5757] usb 4-1: 0:2 : does not exist
[  213.663408][ T5757] usb 4-1: unit 3 not found!
[  213.703801][ T5757] usb 4-1: USB disconnect, device number 12
[  213.723278][ T9098] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  213.759959][ T5772] udevd[5772]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  214.128154][ T9112] ERROR: device name not specified.
[  214.581002][ T9130] xt_TCPMSS: Only works on TCP SYN packets
[  214.807914][ T9140] netlink: 'syz.1.1524': attribute type 2 has an invalid length.
[  214.815734][ T9140] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1524'.
[  215.668508][    T9] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  215.907012][    T9] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  215.935841][    T9] usb 3-1: config 220 has 1 interface, different from the descriptor's value: 3
[  215.953336][    T9] usb 3-1: config 220 interface 0 has no altsetting 0
[  215.964581][    T9] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  215.974225][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.987116][    T9] usb 3-1: Product: syz
[  215.992941][    T9] usb 3-1: Manufacturer: syz
[  216.007368][    T9] usb 3-1: SerialNumber: syz
[  216.205154][ T9192] loop1: detected capacity change from 0 to 2048
[  216.259567][    T9] usb 3-1: USB disconnect, device number 13
[  216.278814][ T9192] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  216.318395][ T9192] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  216.616452][ T9204] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1553'.
[  216.626612][ T9204] netlink: 11 bytes leftover after parsing attributes in process `syz.3.1553'.
[  216.865607][ T9210] netlink: 'syz.0.1555': attribute type 2 has an invalid length.
[  216.901211][ T9210] netlink: 'syz.0.1555': attribute type 8 has an invalid length.
[  216.926459][ T9210] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1555'.
[  217.248665][ T9221] loop3: detected capacity change from 0 to 1024
[  217.318218][ T9221] hfsplus: failed to extend attributes file
[  217.346944][ T9224] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1562'.
[  217.363616][ T9200] loop1: detected capacity change from 0 to 40427
[  217.461459][ T9200] F2FS-fs (loop1): Found nat_bits in checkpoint
[  217.558065][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1563'.
[  217.698934][ T9200] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  218.117612][ T9244] loop3: detected capacity change from 0 to 256
[  218.156281][ T9244] exfat: Deprecated parameter 'utf8'
[  218.188433][ T9244] exfat: Deprecated parameter 'namecase'
[  218.207441][ T9244] exfat: Deprecated parameter 'namecase'
[  218.249712][ T9244] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x200001de, utbl_chksum : 0xe619d30d)
[  218.638080][ T9259] netlink: 'syz.2.1578': attribute type 9 has an invalid length.
[  218.924299][ T9272] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1584'.
[  218.940383][   T28] audit: type=1326 audit(1772499679.810:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9271 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  219.014019][   T28] audit: type=1326 audit(1772499679.810:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9271 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  219.088655][   T28] audit: type=1326 audit(1772499679.840:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9271 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  219.158023][    T9] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  219.176669][   T28] audit: type=1326 audit(1772499679.840:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9271 comm="syz.0.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  219.183713][ T9281] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  219.407499][    T9] usb 3-1: Using ep0 maxpacket: 16
[  219.420157][    T9] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[  219.448029][    T9] usb 3-1: config 0 has no interface number 0
[  219.465223][    T9] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  219.517164][    T9] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  219.531240][    T9] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  219.548805][    T9] usb 3-1: Product: syz
[  219.558828][    T9] usb 3-1: SerialNumber: syz
[  219.569005][    T9] usb 3-1: config 0 descriptor??
[  219.600131][    T9] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input15
[  219.850472][    C0] cm109_urb_ctl_callback: 76 callbacks suppressed
[  219.850500][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.864202][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.871576][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.878782][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.886692][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.893938][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.901145][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.908370][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.915597][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.923096][    C0] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71
[  219.937872][    T9] usb 3-1: USB disconnect, device number 14
[  219.937935][    C0] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  219.963846][    T9] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  220.636980][ T9327] netlink: 100 bytes leftover after parsing attributes in process `syz.0.1605'.
[  220.676593][ T9331] netlink: 'syz.2.1607': attribute type 30 has an invalid length.
[  220.846848][ T9335] netlink: 'syz.2.1610': attribute type 21 has an invalid length.
[  220.870647][ T9335] netlink: 164 bytes leftover after parsing attributes in process `syz.2.1610'.
[  221.159436][ T9349] loop3: detected capacity change from 0 to 8
[  221.216493][ T9349] SQUASHFS error: lzo decompression failed, data probably corrupt
[  221.259700][ T9349] SQUASHFS error: Failed to read block 0x144: -5
[  221.266135][ T9349] SQUASHFS error: Unable to read metadata cache entry [142]
[  221.312551][ T9349] SQUASHFS error: Unable to read directory block [142:26]
[  222.006500][ T9380] netlink: 'syz.3.1632': attribute type 1 has an invalid length.
[  222.032103][ T9380] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.1632'.
[  222.409417][ T9397] loop2: detected capacity change from 0 to 512
[  222.434411][ T9396] loop3: detected capacity change from 0 to 256
[  222.483851][ T9396] FAT-fs (loop3): Directory bread(block 64) failed
[  222.495777][ T9397] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.513718][ T9396] FAT-fs (loop3): Directory bread(block 65) failed
[  222.518709][ T9397] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.521500][ T9396] FAT-fs (loop3): Directory bread(block 66) failed
[  222.537712][ T9396] FAT-fs (loop3): Directory bread(block 67) failed
[  222.545478][ T9396] FAT-fs (loop3): Directory bread(block 68) failed
[  222.552203][ T9396] FAT-fs (loop3): Directory bread(block 69) failed
[  222.562859][ T9396] FAT-fs (loop3): Directory bread(block 70) failed
[  222.570842][ T9396] FAT-fs (loop3): Directory bread(block 71) failed
[  222.577785][ T9396] FAT-fs (loop3): Directory bread(block 72) failed
[  222.584379][ T9396] FAT-fs (loop3): Directory bread(block 73) failed
[  222.662705][ T9402] netlink: 'syz.1.1641': attribute type 1 has an invalid length.
[  222.717025][ T9404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1642'.
[  222.726362][ T5776] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.759363][ T9404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1642'.
[  222.769374][ T9404] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1642'.
[  223.085617][   T28] audit: type=1326 audit(1772499683.960:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9415 comm="syz.3.1647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  223.147943][   T28] audit: type=1326 audit(1772499683.960:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9415 comm="syz.3.1647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  223.256219][   T28] audit: type=1326 audit(1772499684.000:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9415 comm="syz.3.1647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  223.297771][   T23] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  223.318476][   T28] audit: type=1326 audit(1772499684.000:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9415 comm="syz.3.1647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  223.377493][   T28] audit: type=1326 audit(1772499684.000:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9415 comm="syz.3.1647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4a8d9c799 code=0x7ffc0000
[  223.500206][   T23] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  223.513981][   T23] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  223.535033][   T23] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  223.579122][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.604951][ T9414] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  223.630902][   T23] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  223.679129][ T9433] netlink: 'syz.0.1656': attribute type 21 has an invalid length.
[  223.721234][ T9433] netlink: 164 bytes leftover after parsing attributes in process `syz.0.1656'.
[  223.983145][ T9442] netlink: 'syz.0.1661': attribute type 1 has an invalid length.
[  224.001709][ T9442] netlink: 248 bytes leftover after parsing attributes in process `syz.0.1661'.
[  224.244575][    T9] usb 3-1: USB disconnect, device number 15
[  224.252737][   T28] audit: type=1326 audit(1772499685.130:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9449 comm="syz.0.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  224.314130][   T28] audit: type=1326 audit(1772499685.130:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9449 comm="syz.0.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  224.337110][   T28] audit: type=1326 audit(1772499685.160:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9449 comm="syz.0.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  224.397422][   T28] audit: type=1326 audit(1772499685.160:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9449 comm="syz.0.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  224.439430][   T28] audit: type=1326 audit(1772499685.160:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9449 comm="syz.0.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f270fb9c799 code=0x7ffc0000
[  224.461758][    C1] vkms_vblank_simulate: vblank timer overrun
[  224.477784][ T9454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1666'.
[  224.487139][ T9454] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1666'.
[  224.977850][ T5805] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  225.173686][ T5805] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  225.198451][ T5805] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.221349][ T5805] usb 4-1: Product: syz
[  225.225680][ T5805] usb 4-1: Manufacturer: syz
[  225.245296][ T5805] usb 4-1: SerialNumber: syz
[  225.269234][ T5805] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  225.343158][ T5867] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  225.740899][ T9494] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1686'.
[  225.801661][ T5805] usb 4-1: USB disconnect, device number 13
[  226.183644][ T9512] loop0: detected capacity change from 0 to 512
[  226.202633][ T9512] EXT4-fs: Ignoring removed bh option
[  226.235378][ T9512] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  226.268137][ T9512] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  226.292481][ T9512] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  226.308891][ T9512] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  226.325348][ T9512] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.437591][ T5867] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[  226.455182][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.484962][ T5867] ath9k_htc: Failed to initialize the device
[  226.523101][ T5805] usb 4-1: ath9k_htc: USB layer deinitialized
[  227.037671][ T5805] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  227.254870][ T5805] usb 4-1: Using ep0 maxpacket: 8
[  227.276355][ T5805] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  227.276387][ T5805] usb 4-1: config 179 has no interface number 0
[  227.276434][ T5805] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  227.276463][ T5805] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  227.276492][ T5805] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  227.276519][ T5805] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  227.276543][ T5805] usb 4-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  227.276569][ T5805] usb 4-1: config 179 interface 65 has no altsetting 0
[  227.276611][ T5805] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  227.276635][ T5805] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.315836][ T5805] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input16
[  227.568087][    C1] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  227.568545][ T5805] usb 4-1: USB disconnect, device number 14
[  227.570404][ T5805] xpad 4-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  227.678481][ T9555] loop0: detected capacity change from 0 to 256
[  227.752750][ T9555] FAT-fs (loop0): Directory bread(block 64) failed
[  227.752792][ T9555] FAT-fs (loop0): Directory bread(block 65) failed
[  227.752894][ T9555] FAT-fs (loop0): Directory bread(block 66) failed
[  227.753057][ T9555] FAT-fs (loop0): Directory bread(block 67) failed
[  227.753164][ T9555] FAT-fs (loop0): Directory bread(block 68) failed
[  227.753195][ T9555] FAT-fs (loop0): Directory bread(block 69) failed
[  227.753301][ T9555] FAT-fs (loop0): Directory bread(block 70) failed
[  227.753331][ T9555] FAT-fs (loop0): Directory bread(block 71) failed
[  227.753431][ T9555] FAT-fs (loop0): Directory bread(block 72) failed
[  227.753460][ T9555] FAT-fs (loop0): Directory bread(block 73) failed
[  228.230409][ T9565] loop1: detected capacity change from 0 to 512
[  228.282983][ T9565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.344679][ T9565] ext4 filesystem being mounted at /435/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.380480][ T9571] loop3: detected capacity change from 0 to 4096
[  228.412010][ T9571] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  228.480787][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.722221][ T9578] loop1: detected capacity change from 0 to 512
[  228.758125][ T9578] EXT4-fs: Ignoring removed i_version option
[  228.836524][ T9578] EXT4-fs error (device loop1): __ext4_iget:5071: inode #11: block 1: comm syz.1.1726: invalid block
[  228.918461][ T9578] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.1726: couldn't read orphan inode 11 (err -117)
[  228.996815][ T9578] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.133848][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.621345][ T5805] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  229.730718][ T9613] loop3: detected capacity change from 0 to 512
[  229.780948][ T9613] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  229.823614][ T9613] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  229.834482][ T9613] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.1743: Failed to acquire dquot type 1
[  229.848492][ T5805] usb 1-1: Using ep0 maxpacket: 32
[  229.852186][ T9613] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  229.864243][ T9613] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  229.874316][ T5805] usb 1-1: unable to get BOS descriptor or descriptor too short
[  229.877070][ T5805] usb 1-1: config 128 has an invalid interface number: 127 but max is 3
[  229.899431][ T9613] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.1743: Failed to acquire dquot type 1
[  229.911077][ T5805] usb 1-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  229.927275][ T5805] usb 1-1: config 128 has 1 interface, different from the descriptor's value: 4
[  229.934830][ T9613] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1743: bg 0: block 248: padding at end of block bitmap is not set
[  229.937679][ T5805] usb 1-1: config 128 has no interface number 0
[  229.959321][ T5805] usb 1-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  229.971029][ T5805] usb 1-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  229.981576][ T5805] usb 1-1: config 128 interface 127 has no altsetting 0
[  229.986365][ T9613] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  229.996531][ T5805] usb 1-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  230.009121][ T5805] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.016849][ T9613] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  230.026538][ T5805] usb 1-1: Product: syz
[  230.032086][ T5805] usb 1-1: Manufacturer: syz
[  230.036744][ T5805] usb 1-1: SerialNumber: syz
[  230.040677][ T9613] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  230.051977][ T9613] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.1743: Failed to acquire dquot type 1
[  230.069266][ T9613] EXT4-fs (loop3): 1 orphan inode deleted
[  230.077023][ T9613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.090178][ T5810] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  230.099158][ T9613] ext4 filesystem being mounted at /408/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  230.139968][ T9613] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  230.152566][ T9613] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  230.162817][ T9613] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.1743: Failed to acquire dquot type 1
[  230.232951][ T5768] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.291970][ T5810] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  230.311887][ T5810] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  230.326264][ T5810] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  230.338936][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.358209][ T9619] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  230.383126][ T5810] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[  230.416479][ T5805] usb 1-1: USB disconnect, device number 12
[  230.462607][ T5772] udevd[5772]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  230.680040][ T5805] usb 2-1: USB disconnect, device number 12
[  231.086400][ T9629] netlink: 'syz.3.1749': attribute type 41 has an invalid length.
[  231.109269][ T9629] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1749'.
[  231.249778][ T5805] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  231.464693][ T5805] usb 3-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  231.487647][ T5805] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.497602][ T9643] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1757'.
[  231.506618][ T9643] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1757'.
[  231.522693][ T5805] usb 3-1: config 0 descriptor??
[  231.540827][ T5805] gspca_main: sunplus-2.14.0 probing 055f:c420
[  231.739079][ T9649] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1760'.
[  231.933842][ T9655] loop1: detected capacity change from 0 to 136
[  231.968961][ T9655] Attempt to read inode for relocated directory
[  231.977129][ T5805] gspca_sunplus: reg_w_riv err -71
[  231.988789][ T5805] sunplus: probe of 3-1:0.0 failed with error -71
[  232.011100][ T5805] usb 3-1: USB disconnect, device number 16
[  232.296129][ T9645] loop0: detected capacity change from 0 to 32768
[  232.353483][ T9645] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  232.364904][ T9645] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  232.422290][ T9673] loop1: detected capacity change from 0 to 512
[  232.478758][ T9673] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.1767: bg 0: block 4: invalid block bitmap
[  232.497710][   T27] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  232.540861][ T9673] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  232.579690][ T9673] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1767: invalid indirect mapped block 1 (level 1)
[  232.612825][ T9673] EXT4-fs (loop1): 1 truncate cleaned up
[  232.631262][ T9673] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.650855][ T9645] XFS (loop0): Ending clean mount
[  232.673289][ T9645] XFS (loop0): Quotacheck needed: Please wait.
[  232.727547][   T27] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  232.743810][   T27] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  232.760547][ T9645] XFS (loop0): Quotacheck: Done.
[  232.773985][   T27] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  232.785540][   T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.803415][ T9660] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  232.841089][   T27] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  232.898543][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.043402][ T9681] loop2: detected capacity change from 0 to 512
[  233.131602][ T9681] EXT4-fs (loop2): orphan cleanup on readonly fs
[  233.151438][ T5767] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  233.187418][ T9681] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13
[  233.226148][ T9681] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  233.349651][ T9681] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.1771: attempt to clear invalid blocks 2 len 1
[  233.378320][ T5811] usb 4-1: USB disconnect, device number 15
[  233.412017][ T9681] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1771: invalid indirect mapped block 1819239214 (level 0)
[  233.440022][ T9681] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1771: invalid indirect mapped block 1819239214 (level 1)
[  233.462166][ T9681] EXT4-fs (loop2): 1 truncate cleaned up
[  233.472282][ T9681] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  233.509814][ T9681] EXT4-fs error (device loop2): __ext4_remount:6752: comm syz.2.1771: Abort forced by user
[  233.524975][ T9681] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[  233.558868][ T5776] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.803831][ T9695] loop2: detected capacity change from 0 to 128
[  234.087512][ T9704] openvswitch: netlink: Actions may not be safe on all matching packets
[  234.404142][ T9714] loop1: detected capacity change from 0 to 512
[  234.543379][ T9714] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  234.565897][ T9714] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  234.593001][ T9714] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.1788: Failed to acquire dquot type 1
[  234.643858][ T9714] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.1788: Failed to acquire dquot type 1
[  234.664475][ T9720] loop2: detected capacity change from 0 to 1764
[  234.701597][ T9714] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.1788: bg 0: block 248: padding at end of block bitmap is not set
[  234.748795][ T9714] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  234.768114][ T9720] iso9660: Corrupted directory entry in block 2 of inode 1920
[  234.792458][ T9714] __quota_error: 2 callbacks suppressed
[  234.792472][ T9714] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  234.825458][ T9714] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  234.877558][ T9714] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.1788: Failed to acquire dquot type 1
[  234.922003][ T9714] EXT4-fs (loop1): 1 orphan inode deleted
[  234.931465][ T9714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  234.987865][ T9714] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.041032][ T9714] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  235.052255][ T9714] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  235.062689][ T9714] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.1788: Failed to acquire dquot type 1
[  235.178184][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.213216][ T9732] netlink: 'syz.0.1795': attribute type 3 has an invalid length.
[  235.286054][ T9734] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1797'.
[  235.787705][   T23] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  235.873217][ T9753] loop2: detected capacity change from 0 to 512
[  235.897999][ T9755] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[  235.990877][   T23] usb 1-1: Using ep0 maxpacket: 16
[  236.016231][ T9753] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  236.037823][   T23] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=81.0c
[  236.046962][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.051849][ T9753] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  236.082177][   T23] usb 1-1: Product: syz
[  236.086431][   T23] usb 1-1: Manufacturer: syz
[  236.091151][ T9753] EXT4-fs error (device loop2): ext4_acquire_dquot:6949: comm syz.2.1805: Failed to acquire dquot type 1
[  236.107037][ T9753] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  236.118127][ T9753] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  236.129012][ T9753] EXT4-fs error (device loop2): ext4_acquire_dquot:6949: comm syz.2.1805: Failed to acquire dquot type 1
[  236.141502][ T9753] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1805: bg 0: block 248: padding at end of block bitmap is not set
[  236.156694][ T9753] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  236.167633][   T23] usb 1-1: SerialNumber: syz
[  236.175983][ T9753] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  236.186641][ T9753] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  236.189437][   T23] r8152-cfgselector 1-1: config 0 descriptor??
[  236.223404][ T9753] EXT4-fs error (device loop2): ext4_acquire_dquot:6949: comm syz.2.1805: Failed to acquire dquot type 1
[  236.241287][ T9753] EXT4-fs (loop2): 1 orphan inode deleted
[  236.249061][ T9766] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1810'.
[  236.252352][ T9753] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.267873][ T9766] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1810'.
[  236.283367][ T9753] ext4 filesystem being mounted at /445/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  236.297503][ T9766] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1810'.
[  236.405528][ T9768] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[  236.434529][ T9753] EXT4-fs error (device loop2): ext4_acquire_dquot:6949: comm syz.2.1805: Failed to acquire dquot type 1
[  236.565678][ T5776] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.697874][   T23] r8152-cfgselector 1-1: Unknown version 0x0000
[  236.725874][   T23] r8152-cfgselector 1-1: USB disconnect, device number 13
[  237.587607][ T5811] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  237.821661][ T9798] 8021q: adding VLAN 0 to HW filter on device bond2
[  237.845644][ T5811] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  237.871989][ T5811] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  237.883199][ T5811] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  237.907190][ T5811] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.932907][ T9780] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  237.957948][ T5811] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[  238.431522][   T27] usb 1-1: USB disconnect, device number 14
[  238.880373][ T9826] loop3: detected capacity change from 0 to 24
[  238.889566][ T9826] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  238.938945][ T9826] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  238.947601][ T9827] loop2: detected capacity change from 0 to 764
[  238.957709][ T9827] rock: directory entry would overflow storage
[  238.963929][ T9827] rock: sig=0x4654, size=5, remaining=4
[  238.996455][ T9826] VFS: Lookup of 'file0' in romfs loop3 would have caused loop
[  239.750836][ T9849] loop1: detected capacity change from 0 to 512
[  239.799266][ T9849] EXT4-fs: Ignoring removed nomblk_io_submit option
[  240.112922][ T9849] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.147828][ T9864] netlink: 'syz.2.1856': attribute type 21 has an invalid length.
[  240.183178][ T9849] ext4 filesystem being mounted at /471/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  240.390599][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.608407][    T9] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  240.817430][    T9] usb 1-1: Using ep0 maxpacket: 16
[  240.835025][    T9] usb 1-1: config 0 has an invalid interface number: 104 but max is 1
[  240.857375][    T9] usb 1-1: config 0 has an invalid interface number: 104 but max is 1
[  240.876412][    T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  240.895595][    T9] usb 1-1: config 0 has no interface number 0
[  240.918539][    T9] usb 1-1: config 0 interface 104 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0
[  240.947951][    T9] usb 1-1: config 0 interface 104 has no altsetting 1
[  240.956545][ T9887] loop2: detected capacity change from 0 to 2048
[  240.992069][    T9] usb 1-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  241.005733][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.024195][    T9] usb 1-1: Product: syz
[  241.030560][    T9] usb 1-1: Manufacturer: syz
[  241.035395][    T9] usb 1-1: SerialNumber: syz
[  241.056489][    T9] usb 1-1: config 0 descriptor??
[  241.068641][    T9] asix: probe of 1-1:0.104 failed with error -22
[  241.077943][ T9887] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.266292][ T5776] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.366423][    T9] usb 1-1: USB disconnect, device number 15
[  241.539086][ T9903] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1873'.
[  241.598633][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  241.598649][   T28] audit: type=1326 audit(1772499702.480:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9905 comm="syz.2.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  241.647537][   T28] audit: type=1326 audit(1772499702.510:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9905 comm="syz.2.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  241.754499][   T28] audit: type=1326 audit(1772499702.510:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9905 comm="syz.2.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  241.816795][   T28] audit: type=1326 audit(1772499702.510:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9905 comm="syz.2.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  241.878648][   T28] audit: type=1326 audit(1772499702.510:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9905 comm="syz.2.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f455cb9c799 code=0x7ffc0000
[  243.171136][ T9958] xt_CT: You must specify a L4 protocol and not use inversions on it
[  243.254362][ T9960] netlink: 508 bytes leftover after parsing attributes in process `syz.2.1901'.
[  243.444615][ T9966] loop3: detected capacity change from 0 to 128
[  243.625045][ T9970] netlink: 'syz.2.1906': attribute type 21 has an invalid length.
[  243.649380][ T9970] netlink: 'syz.2.1906': attribute type 1 has an invalid length.
[  243.675869][ T9970] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1906'.
[  244.138221][ T5805] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  244.154024][ T9982] loop3: detected capacity change from 0 to 4096
[  244.206974][ T9940] loop1: detected capacity change from 0 to 32768
[  244.217598][ T9985] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  244.270093][ T9982] NILFS error (device loop3): nilfs_check_page: size of directory #2 is not a multiple of chunk size
[  244.329568][ T9940] jfs_lookup: iget failed on inum 4
[  244.336393][ T9982] Remounting filesystem read-only
[  244.360894][ T5805] usb 3-1: unable to get BOS descriptor or descriptor too short
[  244.378152][ T5805] usb 3-1: not running at top speed; connect to a high speed hub
[  244.413236][ T5805] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  244.428531][ T5805] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  244.465602][ T5805] usb 3-1: string descriptor 0 read error: -22
[  244.472527][ T5805] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  244.505752][ T5805] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.585937][ T5805] usb 3-1: 0:2 : does not exist
[  245.011938][ T5805] usb 3-1: 5:0: cannot get min/max values for control 2 (id 5)
[  245.051643][ T5805] usb 3-1: 5:0: cannot get min/max values for control 3 (id 5)
[  245.095445][ T5805] usb 3-1: 5:0: failed to get current value for ch 1 (-22)
[  245.173245][ T5805] usb 3-1: 5:0: cannot get min/max values for control 3 (id 5)
[  245.187214][T10001] loop0: detected capacity change from 0 to 512
[  245.246622][ T5805] usb 3-1: 5:0: cannot get min/max values for control 2 (id 5)
[  245.287826][ T5805] usb 3-1: USB disconnect, device number 17
[  245.887941][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  245.896855][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  245.923458][T10017] Cannot find del_set index 6 as target
[  245.958072][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  245.976508][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  245.991450][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  246.023828][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  246.077689][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  246.095813][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  246.115583][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  246.154182][T10014] netlink: 'syz.1.1927': attribute type 3 has an invalid length.
[  246.803283][T10037] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1939'.
[  246.861265][T10020] loop2: detected capacity change from 0 to 40427
[  246.887654][T10020] F2FS-fs (loop2): Small segment_count (9 < 1 * 24)
[  246.895886][T10020] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  246.942135][T10020] F2FS-fs (loop2): Found nat_bits in checkpoint
[  247.148956][T10020] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  247.156098][T10020] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  247.260510][T10020] syz.2.1930: attempt to access beyond end of device
[  247.260510][T10020] loop2: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  247.461136][ T5776] syz-executor: attempt to access beyond end of device
[  247.461136][ T5776] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  247.490069][ T5776] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  247.795956][T10063] dlm: no local IP address has been set
[  247.812021][T10063] dlm: cannot start dlm midcomms -107
[  247.941464][T10067] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1954'.
[  248.072573][T10071] loop0: detected capacity change from 0 to 164
[  248.830860][T10097] Unsupported ieee802154 address type: 0
[  249.778154][T10127] netlink: 328 bytes leftover after parsing attributes in process `syz.3.1978'.
[  249.977571][T10137] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  250.258322][T10150] loop2: detected capacity change from 0 to 512
[  250.403976][T10154] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  250.705018][T10164] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1997'.
[  251.011970][T10179] loop3: detected capacity change from 0 to 256
[  251.139810][T10179] FAT-fs (loop3): Directory bread(block 64) failed
[  251.146486][T10179] FAT-fs (loop3): Directory bread(block 65) failed
[  251.157746][ T5810] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  251.187766][T10179] FAT-fs (loop3): Directory bread(block 66) failed
[  251.197452][T10179] FAT-fs (loop3): Directory bread(block 67) failed
[  251.214333][T10179] FAT-fs (loop3): Directory bread(block 68) failed
[  251.221692][T10179] FAT-fs (loop3): Directory bread(block 69) failed
[  251.237889][T10179] FAT-fs (loop3): Directory bread(block 70) failed
[  251.244502][T10179] FAT-fs (loop3): Directory bread(block 71) failed
[  251.267577][T10179] FAT-fs (loop3): Directory bread(block 72) failed
[  251.274238][T10179] FAT-fs (loop3): Directory bread(block 73) failed
[  251.372857][ T5810] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  251.395198][ T5810] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  251.417221][ T5810] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.457522][ T5810] gspca_main: stv0680-2.14.0 probing 041e:4007
[  251.873553][T10183] loop0: detected capacity change from 0 to 40427
[  251.915048][T10183] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  251.940913][T10183] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  251.992124][T10183] F2FS-fs (loop0): Found nat_bits in checkpoint
[  252.150934][T10183] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  252.167370][T10183] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  252.285406][T10183] syz.0.2006: attempt to access beyond end of device
[  252.285406][T10183] loop0: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  252.392424][ T5767] syz-executor: attempt to access beyond end of device
[  252.392424][ T5767] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  252.416445][ T5767] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  252.510641][ T5810] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32
[  252.530302][ T5810] stv0680 3-1:4.0: STV(e): camera ping failed!!
[  252.557865][ T5810] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  252.577880][ T5810] stv0680 3-1:4.0: last error: 0,  command = 0x0
[  252.586398][T10208] loop3: detected capacity change from 0 to 256
[  252.607976][ T5810] usb 3-1: USB disconnect, device number 18
[  252.634404][T10208] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  252.677754][T10208] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  252.708907][T10208] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  252.847497][ T5811] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  252.902293][T10210] sctp: [Deprecated]: syz.3.2019 (pid 10210) Use of int in maxseg socket option.
[  252.902293][T10210] Use struct sctp_assoc_value instead
[  253.068763][ T5811] usb 2-1: Using ep0 maxpacket: 8
[  253.097813][ T5811] usb 2-1: config 0 has an invalid interface number: 52 but max is 0
[  253.106416][ T5811] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  253.131018][T10214] loop0: detected capacity change from 0 to 16
[  253.139235][ T5811] usb 2-1: config 0 has no interface number 0
[  253.145526][ T5811] usb 2-1: config 0 interface 52 has no altsetting 0
[  253.155813][T10214] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  253.169343][ T5811] usb 2-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  253.193083][ T5811] usb 2-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[  253.207989][ T5811] usb 2-1: Manufacturer: syz
[  253.214398][ T5772] udevd[5772]: incorrect cramfs checksum on /dev/loop0
[  253.240573][ T5811] usb 2-1: config 0 descriptor??
[  253.262388][ T5811] hub 2-1:0.52: bad descriptor, ignoring hub
[  253.271007][ T5772] udevd[5772]: incorrect cramfs checksum on /dev/loop0
[  253.287832][ T5810] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  253.300083][ T5811] hub: probe of 2-1:0.52 failed with error -5
[  253.492952][ T5810] usb 4-1: Using ep0 maxpacket: 32
[  253.518465][ T5810] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  253.564796][ T5810] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  253.588900][ T5810] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  253.627375][ T5810] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.654339][ T5810] usb 4-1: config 0 descriptor??
[  253.670882][ T5810] hub 4-1:0.0: USB hub found
[  253.801104][T10231] xt_hashlimit: size too large, truncated to 1048576
[  253.808277][T10231] xt_hashlimit: max too large, truncated to 1048576
[  253.857661][ T5805] usb 2-1: USB disconnect, device number 13
[  253.906191][ T5810] hub 4-1:0.0: 1 port detected
[  254.111385][ T5810] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  254.128987][ T5810] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  254.151234][ T5810] usbhid 4-1:0.0: can't add hid device: -71
[  254.160692][ T5810] usbhid: probe of 4-1:0.0 failed with error -71
[  254.198725][ T5810] usb 4-1: USB disconnect, device number 16
[  255.160753][T10270] loop3: detected capacity change from 0 to 1024
[  255.529083][T10277] validate_nla: 48 callbacks suppressed
[  255.529105][T10277] netlink: 'syz.0.2050': attribute type 15 has an invalid length.
[  256.113988][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  256.127427][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  256.388620][T10307] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  256.478256][T10311] loop1: detected capacity change from 0 to 2048
[  256.557513][T10311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  256.676527][T10311] EXT4-fs error (device loop1): ext4_iget_extra_inode:4732: inode #12: comm syz.1.2067: corrupted in-inode xattr: e_value size too large
[  256.811113][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  257.051782][T10335] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2079'.
[  257.340748][T10342] loop0: detected capacity change from 0 to 4096
[  258.087467][   T23] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  258.283416][   T23] usb 3-1: Using ep0 maxpacket: 16
[  258.297044][   T23] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  258.321427][   T23] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  258.355369][   T23] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  258.383642][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.407541][   T23] usb 3-1: Product: syz
[  258.411884][   T23] usb 3-1: Manufacturer: syz
[  258.416626][   T23] usb 3-1: SerialNumber: syz
[  258.440327][   T23] r8152-cfgselector 3-1: config 0 descriptor??
[  258.477480][T10381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2101'.
[  258.486944][T10381] netlink: 10 bytes leftover after parsing attributes in process `syz.0.2101'.
[  258.664626][T10367] loop3: detected capacity change from 0 to 32768
[  258.686663][   T23] usbip-host 3-1: 3-1 is not in match_busid table... skip!
[  258.714328][T10367] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  258.917748][   T23] usb 3-1: USB disconnect, device number 19
[  258.951525][T10367] XFS (loop3): Ending clean mount
[  259.104008][ T5768] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  259.170548][T10403] netlink: 'syz.1.2108': attribute type 2 has an invalid length.
[  259.230854][T10405] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  259.496203][T10411] netlink: 260 bytes leftover after parsing attributes in process `syz.1.2113'.
[  261.094390][T10471] loop0: detected capacity change from 0 to 512
[  261.128505][T10471] EXT4-fs: Ignoring removed mblk_io_submit option
[  261.187033][T10471] EXT4-fs (loop0): orphan cleanup on readonly fs
[  261.238929][T10471] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[  261.283895][T10471] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.2142: attempt to clear invalid blocks 2 len 1
[  261.331011][T10471] EXT4-fs (loop0): Remounting filesystem read-only
[  261.365150][T10471] EXT4-fs (loop0): 1 truncate cleaned up
[  261.415911][T10482] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2147'.
[  261.420692][T10471] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  261.518776][T10486] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2149'.
[  261.768925][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.828161][T10495] SET target dimension over the limit!
[  262.095632][T10506] netlink: 'syz.0.2159': attribute type 1 has an invalid length.
[  262.173548][T10510] loop3: detected capacity change from 0 to 24
[  263.187882][T10546] loop0: detected capacity change from 0 to 512
[  263.211747][T10546] EXT4-fs: Ignoring removed orlov option
[  263.268570][T10546] EXT4-fs (loop0): orphan cleanup on readonly fs
[  263.308881][T10546] EXT4-fs error (device loop0): ext4_find_extent:900: inode #4: comm syz.0.2179: inode has invalid extent depth: 7
[  263.396975][T10546] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=-117
[  263.431752][T10546] EXT4-fs warning (device loop0): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  263.480142][T10546] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  263.506388][T10546] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  263.562196][T10527] loop3: detected capacity change from 0 to 32768
[  263.565706][T10546] EXT4-fs error (device loop0): ext4_lookup:1855: inode #2: comm syz.0.2179: 'file0' linked to parent dir
[  263.616836][T10527] (syz.3.2170,10527,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  263.672009][T10527] (syz.3.2170,10527,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  263.756392][T10527] JBD2: Ignoring recovery information on journal
[  263.785987][ T5767] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.847032][T10527] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  264.048214][T10557] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2181'.
[  264.098270][T10559] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (20)
[  264.330244][ T5768] ocfs2: Unmounting device (7,3) on (node local)
[  264.789355][T10576] loop1: detected capacity change from 0 to 8
[  264.810312][T10576] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  264.838814][ T5772] udevd[5772]: incorrect cramfs checksum on /dev/loop1
[  264.869683][T10576] cramfs: Error -5 while decompressing!
[  264.887507][T10576] cramfs: ffffffff973f4368(26)->ffff88806dc92000(4096)
[  264.894552][T10576] cramfs: Error -3 while decompressing!
[  264.910984][T10576] cramfs: ffffffff973f4382(26)->ffff88806dc93000(4096)
[  264.925256][T10563] loop0: detected capacity change from 0 to 32768
[  264.946222][T10576] cramfs: Error -3 while decompressing!
[  264.952446][T10576] cramfs: ffffffff973f439c(16)->ffff8880754cc000(4096)
[  264.967675][T10576] cramfs: Error -5 while decompressing!
[  264.986395][T10576] cramfs: ffffffff973f4368(26)->ffff88806dc92000(4096)
[  264.995368][   T28] audit: type=1800 audit(1772499725.880:90): pid=10576 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2194" name="file2" dev="loop1" ino=348 res=0 errno=0
[  265.049392][T10583] loop3: detected capacity change from 0 to 64
[  265.101972][T10584] cgroup: noprefix used incorrectly
[  265.110032][T10563] JBD2: Ignoring recovery information on journal
[  265.127429][T10583] hfs: unable to locate alternate MDB
[  265.166269][T10583] hfs: continuing without an alternate MDB
[  265.209259][   T28] audit: type=1800 audit(1772499726.090:91): pid=10583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2195" name="bus" dev="loop3" ino=21 res=0 errno=0
[  265.269796][T10563] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  265.328584][ T2967] hfs: new node 0 already hashed?
[  265.334360][ T2967] ------------[ cut here ]------------
[  265.340344][ T2967] WARNING: CPU: 0 PID: 2967 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440
[  265.350310][ T2967] Modules linked in:
[  265.354403][ T2967] CPU: 0 PID: 2967 Comm: kworker/u4:9 Not tainted syzkaller #0
[  265.362287][ T2967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  265.372871][ T2967] Workqueue: writeback wb_workfn (flush-7:3)
[  265.379033][ T2967] RIP: 0010:hfs_bnode_create+0x3b9/0x440
[  265.384912][ T2967] Code: d2 e0 8a 89 ee e8 b7 f5 1e 08 e9 73 fd ff ff e8 3d 1e 2d ff 4c 89 ef e8 f5 1d 34 08 48 c7 c7 c0 d2 e0 8a 89 ee e8 97 f5 1e 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c
[  265.404659][ T2967] RSP: 0018:ffffc9000c986e18 EFLAGS: 00010246
[  265.411011][ T2967] RAX: 000000000000001f RBX: ffff88802efb0000 RCX: 5870f7f3b21d0700
[  265.419140][ T2967] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  265.427175][ T2967] RBP: 0000000000000000 R08: ffffc9000c986b27 R09: 1ffff92001930d64
[  265.435625][ T2967] R10: dffffc0000000000 R11: fffff52001930d65 R12: 0000000000000000
[  265.443739][ T2967] R13: ffff88802efb00e0 R14: ffff88807a6af400 R15: dffffc0000000000
[  265.452864][ T2967] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  265.462030][ T2967] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  265.468741][ T2967] CR2: 00007f455d9456b8 CR3: 0000000062f70000 CR4: 00000000003506f0
[  265.476783][ T2967] Call Trace:
[  265.480259][ T2967]  <TASK>
[  265.483254][ T2967]  hfs_bmap_alloc+0x541/0x5d0
[  265.488036][ T2967]  ? hfs_bmap_reserve+0x430/0x430
[  265.493150][ T2967]  hfs_btree_inc_height+0x101/0xac0
[  265.498576][ T2967]  ? hfs_brec_insert+0x6fa/0xbd0
[  265.503584][ T2967]  ? hfs_brec_insert+0xbd0/0xbd0
[  265.508669][ T2967]  ? do_raw_spin_unlock+0x121/0x230
[  265.513943][ T2967]  hfs_brec_insert+0x748/0xbd0
[  265.518868][ T2967]  ? hfs_brec_keylen+0x360/0x360
[  265.523879][ T2967]  __hfs_ext_write_extent+0x2a1/0x470
[  265.529531][ T2967]  hfs_ext_write_extent+0x17f/0x210
[  265.534798][ T2967]  ? verify_lock_unused+0x140/0x140
[  265.540126][ T2967]  ? hfs_ext_find_block+0x190/0x190
[  265.545417][ T2967]  ? blk_start_plug+0x51/0x1a0
[  265.550358][ T2967]  hfs_write_inode+0xdc/0x880
[  265.555969][ T2967]  ? hfs_inode_write_fork+0x1a0/0x1a0
[  265.561571][ T2967]  ? __writeback_single_inode+0x48d/0xec0
[  265.567428][ T2967]  ? __lock_acquire+0x7d40/0x7d40
[  265.572529][ T2967]  ? do_raw_spin_lock+0x11f/0x2c0
[  265.577748][ T2967]  ? __rwlock_init+0x150/0x150
[  265.582593][ T2967]  __writeback_single_inode+0x705/0xec0
[  265.588283][ T2967]  writeback_sb_inodes+0x7cd/0xf50
[  265.593500][ T2967]  ? queue_io+0x550/0x550
[  265.597967][ T2967]  ? rcu_is_watching+0x15/0xb0
[  265.602804][ T2967]  wb_writeback+0x46a/0xbf0
[  265.607452][ T2967]  ? queue_io+0x361/0x550
[  265.611852][ T2967]  ? percpu_ref_tryget+0x250/0x250
[  265.617025][ T2967]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  265.623145][ T2967]  ? _raw_spin_unlock_irq+0x23/0x50
[  265.628818][ T2967]  wb_workfn+0x400/0xe60
[  265.633163][ T2967]  ? inode_wait_for_writeback+0x230/0x230
[  265.639015][ T2967]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  265.645075][ T2967]  ? read_lock_is_recursive+0x20/0x20
[  265.650605][ T2967]  ? _raw_spin_unlock_irq+0x23/0x50
[  265.656850][ T2967]  ? process_scheduled_works+0x96f/0x15d0
[  265.662796][ T2967]  ? process_scheduled_works+0x96f/0x15d0
[  265.668640][ T2967]  process_scheduled_works+0xa5d/0x15d0
[  265.674282][ T2967]  ? assign_work+0x430/0x430
[  265.679011][ T2967]  ? assign_work+0x3d0/0x430
[  265.683677][ T2967]  worker_thread+0xa55/0xfc0
[  265.688442][ T2967]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  265.694416][ T2967]  ? _raw_spin_unlock+0x40/0x40
[  265.699386][ T2967]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  265.705380][ T2967]  kthread+0x2fa/0x390
[  265.709676][ T2967]  ? pr_cont_work+0x560/0x560
[  265.714520][ T2967]  ? kthread_blkcg+0xd0/0xd0
[  265.719233][ T2967]  ret_from_fork+0x48/0x80
[  265.723720][ T2967]  ? kthread_blkcg+0xd0/0xd0
[  265.728422][ T2967]  ret_from_fork_asm+0x11/0x20
[  265.733276][ T2967]  </TASK>
[  265.736342][ T2967] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  265.743671][ T2967] CPU: 0 PID: 2967 Comm: kworker/u4:9 Not tainted syzkaller #0
[  265.751259][ T2967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  265.761460][ T2967] Workqueue: writeback wb_workfn (flush-7:3)
[  265.767611][ T2967] Call Trace:
[  265.771120][ T2967]  <TASK>
[  265.774134][ T2967]  dump_stack_lvl+0x18c/0x250
[  265.778881][ T2967]  ? show_regs_print_info+0x20/0x20
[  265.784144][ T2967]  ? load_image+0x400/0x400
[  265.788720][ T2967]  panic+0x2dc/0x730
[  265.792670][ T2967]  ? bpf_jit_dump+0xd0/0xd0
[  265.797213][ T2967]  ? ret_from_fork_asm+0x11/0x20
[  265.802306][ T2967]  __warn+0x2e0/0x470
[  265.806353][ T2967]  ? hfs_bnode_create+0x3b9/0x440
[  265.811423][ T2967]  ? hfs_bnode_create+0x3b9/0x440
[  265.816481][ T2967]  report_bug+0x2be/0x4f0
[  265.820871][ T2967]  ? hfs_bnode_create+0x3b9/0x440
[  265.825929][ T2967]  ? hfs_bnode_create+0x3b9/0x440
[  265.830993][ T2967]  ? hfs_bnode_create+0x3bb/0x440
[  265.836059][ T2967]  handle_bug+0xcf/0x120
[  265.840424][ T2967]  exc_invalid_op+0x1a/0x50
[  265.844964][ T2967]  asm_exc_invalid_op+0x1a/0x20
[  265.849846][ T2967] RIP: 0010:hfs_bnode_create+0x3b9/0x440
[  265.855515][ T2967] Code: d2 e0 8a 89 ee e8 b7 f5 1e 08 e9 73 fd ff ff e8 3d 1e 2d ff 4c 89 ef e8 f5 1d 34 08 48 c7 c7 c0 d2 e0 8a 89 ee e8 97 f5 1e 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c
[  265.875163][ T2967] RSP: 0018:ffffc9000c986e18 EFLAGS: 00010246
[  265.881267][ T2967] RAX: 000000000000001f RBX: ffff88802efb0000 RCX: 5870f7f3b21d0700
[  265.889280][ T2967] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  265.897275][ T2967] RBP: 0000000000000000 R08: ffffc9000c986b27 R09: 1ffff92001930d64
[  265.905278][ T2967] R10: dffffc0000000000 R11: fffff52001930d65 R12: 0000000000000000
[  265.913290][ T2967] R13: ffff88802efb00e0 R14: ffff88807a6af400 R15: dffffc0000000000
[  265.921312][ T2967]  ? hfs_bnode_create+0x3b9/0x440
[  265.926391][ T2967]  hfs_bmap_alloc+0x541/0x5d0
[  265.931109][ T2967]  ? hfs_bmap_reserve+0x430/0x430
[  265.936168][ T2967]  hfs_btree_inc_height+0x101/0xac0
[  265.941439][ T2967]  ? hfs_brec_insert+0x6fa/0xbd0
[  265.946410][ T2967]  ? hfs_brec_insert+0xbd0/0xbd0
[  265.951377][ T2967]  ? do_raw_spin_unlock+0x121/0x230
[  265.956615][ T2967]  hfs_brec_insert+0x748/0xbd0
[  265.961421][ T2967]  ? hfs_brec_keylen+0x360/0x360
[  265.966576][ T2967]  __hfs_ext_write_extent+0x2a1/0x470
[  265.971984][ T2967]  hfs_ext_write_extent+0x17f/0x210
[  265.977225][ T2967]  ? verify_lock_unused+0x140/0x140
[  265.982454][ T2967]  ? hfs_ext_find_block+0x190/0x190
[  265.987693][ T2967]  ? blk_start_plug+0x51/0x1a0
[  265.992493][ T2967]  hfs_write_inode+0xdc/0x880
[  265.997231][ T2967]  ? hfs_inode_write_fork+0x1a0/0x1a0
[  266.002669][ T2967]  ? __writeback_single_inode+0x48d/0xec0
[  266.008438][ T2967]  ? __lock_acquire+0x7d40/0x7d40
[  266.013494][ T2967]  ? do_raw_spin_lock+0x11f/0x2c0
[  266.018557][ T2967]  ? __rwlock_init+0x150/0x150
[  266.023364][ T2967]  __writeback_single_inode+0x705/0xec0
[  266.028960][ T2967]  writeback_sb_inodes+0x7cd/0xf50
[  266.034213][ T2967]  ? queue_io+0x550/0x550
[  266.038595][ T2967]  ? rcu_is_watching+0x15/0xb0
[  266.043398][ T2967]  wb_writeback+0x46a/0xbf0
[  266.047939][ T2967]  ? queue_io+0x361/0x550
[  266.052311][ T2967]  ? percpu_ref_tryget+0x250/0x250
[  266.057458][ T2967]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  266.063479][ T2967]  ? _raw_spin_unlock_irq+0x23/0x50
[  266.068717][ T2967]  wb_workfn+0x400/0xe60
[  266.073011][ T2967]  ? inode_wait_for_writeback+0x230/0x230
[  266.078778][ T2967]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  266.084793][ T2967]  ? read_lock_is_recursive+0x20/0x20
[  266.090234][ T2967]  ? _raw_spin_unlock_irq+0x23/0x50
[  266.095476][ T2967]  ? process_scheduled_works+0x96f/0x15d0
[  266.101250][ T2967]  ? process_scheduled_works+0x96f/0x15d0
[  266.107012][ T2967]  process_scheduled_works+0xa5d/0x15d0
[  266.112615][ T2967]  ? assign_work+0x430/0x430
[  266.117241][ T2967]  ? assign_work+0x3d0/0x430
[  266.121891][ T2967]  worker_thread+0xa55/0xfc0
[  266.126544][ T2967]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  266.132472][ T2967]  ? _raw_spin_unlock+0x40/0x40
[  266.137367][ T2967]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  266.143392][ T2967]  kthread+0x2fa/0x390
[  266.147490][ T2967]  ? pr_cont_work+0x560/0x560
[  266.152200][ T2967]  ? kthread_blkcg+0xd0/0xd0
[  266.156832][ T2967]  ret_from_fork+0x48/0x80
[  266.161310][ T2967]  ? kthread_blkcg+0xd0/0xd0
[  266.165950][ T2967]  ret_from_fork_asm+0x11/0x20
[  266.170765][ T2967]  </TASK>
[  266.174394][ T2967] Kernel Offset: disabled
[  266.178851][ T2967] Rebooting in 86400 seconds..