last executing test programs:

20m18.997931301s ago: executing program 32 (id=193):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="cf0400000000ffdbdf251200000408000300", @ANYRES32=r2, @ANYBLOB="0a00060008021100000100001c0011"], 0x44}}, 0x0)

20m18.896730846s ago: executing program 33 (id=196):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000004640)={&(0x7f0000000b40)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x64, 0x2, {{0x560, 0x0, 0x6c, 0x0, 0x0, 0xbfffffff}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0x92, 0x0, 0x0, 0x8, 0x7}}, @TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0x80000001, 0x8, 0x3, 0x1000, 0x6}}]}]}}}]}, 0x94}, 0x1, 0x0, 0x0, 0x2004c0c4}, 0x0)

19m43.543206289s ago: executing program 34 (id=387):
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0xff, 0x0, 0x405}}}, 0x7)
listen(0xffffffffffffffff, 0x0)
io_setup(0x6, &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x40, 0x0, &(0x7f0000000140))

19m3.601952376s ago: executing program 35 (id=619):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f00000000c0)=0xfffffffd, 0x4)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@random="d3f34746b238", @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0xb}, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0)

18m28.267052026s ago: executing program 36 (id=784):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x43440, 0x0, 0x1, 0x0, &(0x7f0000000040))
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
chown(&(0x7f0000000080)='./file1\x00', 0x0, 0xee01)

17m31.006654855s ago: executing program 37 (id=1074):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000001000000ff0f000007"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

17m19.419312646s ago: executing program 38 (id=1126):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x34}}, 0x4004080)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1ec}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)

14m17.279650364s ago: executing program 39 (id=2151):
r0 = msgget$private(0x0, 0x193)
msgrcv(r0, 0x0, 0x0, 0x3, 0x3000)
msgrcv(r0, 0x0, 0x0, 0x0, 0x1000)
msgctl$IPC_RMID(r0, 0x0)

13m49.088755633s ago: executing program 8 (id=2306):
r0 = socket$kcm(0x10, 0x100000000002, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000001100)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)="39000000140081ae00002c000500015601618575e285af0180000000171300883795c04a31ba377a1b2cc32b38d3740000ffffffffffffffff", 0x39}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

13m48.840833095s ago: executing program 8 (id=2308):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r0, &(0x7f0000000080), 0x10)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000700)=0x9, 0x4)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000000), 0x4)

13m48.576400099s ago: executing program 8 (id=2311):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x88, 0x67, &(0x7f00000002c0)=r1, 0x4)
sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000080)={0x2, 0x4e24, @multicast1}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000000)="813e785600", 0x5}], 0x1, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xf}, @dev={0xac, 0x14, 0x14, 0x3a}}}}], 0x20}, 0x4840)

13m48.320822641s ago: executing program 8 (id=2313):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000001800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000040), 0x1, 0x751, &(0x7f0000001040)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x2)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000003e40)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})

13m47.473974082s ago: executing program 8 (id=2321):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000240)={{r0, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000180)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, &(0x7f0000000340), &(0x7f0000000380)=r1}, 0x20)

13m46.71728104s ago: executing program 8 (id=2327):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x2000000, 0x2449, 0xfffffffffffffffd})

13m46.10712686s ago: executing program 40 (id=2327):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000000)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@my=0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a8, &(0x7f00000001c0)={{@host}, @host, 0x0, 0x2000000, 0x2449, 0xfffffffffffffffd})

10m8.81822481s ago: executing program 2 (id=3693):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0700000004000000000900000100000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r0, &(0x7f0000000040), &(0x7f00000000c0)=""/130}, 0x20)

10m8.6096789s ago: executing program 2 (id=3694):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x400410, &(0x7f0000000280)={[{@nodiscard}, {@nocheckpoint_merge}, {@jqfmt_vfsv1}, {@nogc_merge}, {@flush_merge}, {@noinline_data}, {@acl}, {@disable_roll_forward}, {@compress_cache}, {}, {@noextent_cache}, {@grpjquota}, {@checkpoint_diasble}]}, 0x4, 0x550c, &(0x7f00000089c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x18, 0x0, 0xfffffffe})
fstat(r0, &(0x7f0000004ac0))

10m6.656530246s ago: executing program 2 (id=3705):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x90000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r0, 0x7b2, &(0x7f0000000080)={&(0x7f0000000580)=[0x6, 0x6215139e, 0xa72, 0x8, 0x9d, 0x9, 0x2860, 0xed9, 0x8000, 0xa0000000, 0x0, 0x6, 0x3, 0x7, 0xf, 0x5, 0xa, 0x7, 0x0, 0x4, 0x100000, 0x9, 0x0, 0x32e, 0x1000, 0x7fff, 0xfffff251, 0x10000, 0x5, 0x3, 0x0, 0xb2, 0xe, 0x0, 0x7, 0xb, 0xb, 0x1, 0x100, 0x4, 0xeab, 0xfa4, 0x1, 0x2, 0xe32ebab, 0xc, 0x7ff, 0x3407, 0x4, 0xffff0000, 0xa, 0x4, 0x2, 0x7, 0xfff, 0x0, 0x1, 0x8000, 0x4, 0xfffffff6, 0x0, 0x7, 0xfff, 0x10001, 0x3, 0x1, 0xfffffff7, 0x6, 0x3, 0x2, 0x8, 0x4f9, 0x8, 0x3, 0x7, 0x2, 0x7e, 0x2, 0x5, 0x5c0, 0x7ff, 0x0, 0xf, 0xffff0001, 0x997, 0x9, 0x7, 0x5, 0x3ff, 0x7fffffff, 0x63c7, 0x3da, 0x7, 0x4e, 0xfffffffe, 0x0, 0x2, 0x80, 0x0, 0xffffffff, 0x2, 0x80, 0x200, 0x516df4cd, 0x6, 0x7fff, 0x1, 0xd46, 0x80000000, 0x54, 0x7fff, 0x7, 0xfab, 0x3973d9f2, 0x4, 0xad, 0x2, 0x6, 0x9, 0x4, 0x15, 0xd69, 0x6, 0x197, 0xc, 0x101, 0x4, 0x1000, 0xfffffff4, 0x2, 0x7fffffff, 0x10000, 0x3, 0x3d4, 0x0, 0x2, 0x8, 0x552, 0x6, 0x3036, 0x85, 0x1, 0x1, 0x8, 0x1, 0x800, 0xfffffbff, 0x7, 0x632, 0x1000, 0x100, 0x3, 0x55b, 0x1000, 0x5, 0x800, 0x2fe, 0x5, 0x9, 0x0, 0x1000, 0xd, 0xfffff001, 0x8, 0x1000, 0x6, 0xc, 0x1, 0x9, 0x80, 0x6, 0x8, 0x0, 0x82c, 0x6f8, 0x9, 0x2, 0x1, 0xffffffc0, 0x32af, 0x0, 0xfffffffd, 0x7fff, 0xbd82, 0x40, 0x9, 0x7f, 0x4, 0x1, 0x5, 0x39, 0x3, 0x80, 0x28, 0x3ff, 0x1000, 0x5, 0x400, 0xb0cb, 0x0, 0x6, 0x7, 0x6, 0x4, 0x6, 0x3, 0xfff, 0x6, 0x24a5, 0xf805, 0x40, 0x6, 0x0, 0x3, 0xbc8a, 0x9, 0xe9, 0x47, 0x2, 0x4, 0x5, 0x2, 0x8, 0x9, 0x5, 0x0, 0x1, 0x8, 0x2, 0x8, 0x7, 0x5, 0x81, 0x0, 0x4, 0x5, 0x9, 0x7fffffff, 0x3, 0xc, 0x8, 0xfffffffa, 0x1ff, 0x5, 0x200, 0xfff, 0x7, 0x8, 0x7, 0x8, 0x8, 0xfffffffa, 0x6, 0x9, 0x10, 0x0, 0x6, 0x3, 0x285, 0x9, 0x6, 0x7, 0x0, 0x9, 0x1113, 0xb, 0xa, 0x5, 0x1, 0x3ff, 0x90, 0x2, 0x200, 0x8, 0x5, 0x0, 0x7, 0x1, 0x9, 0x9, 0x0, 0xc, 0x6, 0x9, 0x1, 0x7, 0x9, 0xfffffff9, 0x5e, 0x401, 0x5, 0x10000, 0x1478, 0x5, 0x1, 0xa, 0x9, 0x3f8, 0x80000000, 0x1ff, 0x744, 0x3ff, 0x0, 0x9, 0xfffffff7, 0x8, 0x1, 0xd, 0x5, 0x0, 0xc, 0x4, 0x4, 0x0, 0x7cf, 0x4, 0xfff, 0x5, 0xecd6, 0x0, 0x3, 0x1, 0xf896, 0x4, 0x2, 0x8, 0x24c, 0x6, 0xfe, 0x12f35aea, 0x2, 0xd, 0x4, 0x10000, 0x9, 0x1, 0x6, 0x10001, 0x53, 0x100, 0x98f, 0x1ff, 0x1, 0xf26, 0x7fffffff, 0x1ff, 0x7f, 0x6, 0x7ff, 0xe9, 0x9, 0x1ff, 0x40, 0xce6a, 0x10, 0xfd, 0x6, 0xd, 0x4, 0x9, 0x9, 0x5, 0x80000001, 0x9, 0x0, 0x5, 0x77e, 0x0, 0x3, 0x2, 0x62cda45a, 0x8, 0x4, 0x3, 0x6, 0x0, 0x4, 0x6, 0x30, 0x7, 0x3, 0x4, 0x5, 0x4, 0x3, 0x2, 0x3, 0xbdb9, 0xd, 0x3, 0xc, 0x1, 0xfd9, 0xf, 0xfffffffb, 0x9, 0x1, 0x1, 0x80, 0x7, 0x4, 0x2, 0x9, 0xf, 0x5, 0x100, 0x9, 0xa, 0x9, 0x7f, 0xffff06b3, 0x7e6, 0x9, 0x3, 0xc59, 0xd, 0x5b1, 0x9, 0xf, 0x5, 0xfffffffd, 0x5, 0x8, 0x3, 0x8, 0x4, 0x200, 0x9, 0x3ff, 0x9, 0xa88, 0x8ed6, 0x3, 0x0, 0x7, 0x9, 0x5, 0x3, 0x7, 0x1ff, 0x4f, 0xfea, 0xffff3a5d, 0x802, 0x81, 0x4, 0xff, 0x7, 0x6, 0x8, 0x3, 0x3, 0x1, 0xfd13, 0x800, 0xfffffffe, 0x2, 0x4d31c54, 0x3, 0x4, 0x9, 0x4, 0x8000, 0x8000, 0x3b3, 0x48000000, 0x9, 0x2, 0x3, 0x9f, 0x5, 0xb7c0000, 0xf, 0x40, 0x6, 0x4, 0x9, 0x6, 0xfffffffb, 0x7, 0x5, 0x5, 0x1, 0x7, 0x4243, 0x44d, 0x7, 0x9, 0x7, 0x0, 0xb7, 0x3, 0x0, 0x7, 0x200, 0x0, 0x1, 0xfffffff8, 0x6, 0x0, 0x101, 0xfffffffd, 0x8, 0x80, 0x7f, 0x3, 0x4, 0x4, 0xc, 0x401, 0x3, 0x0, 0xfffffff8, 0x59416060, 0x5, 0x4, 0x10, 0x0, 0xbc3, 0x4, 0x8000, 0xee, 0x0, 0xfffffff8, 0x4, 0x1, 0x8, 0xe, 0x0, 0x2, 0xb, 0x2, 0x6, 0x2, 0xd8fa, 0xc560, 0x4, 0x7, 0xfff, 0x7f, 0x3, 0xb27, 0x10001, 0xffff, 0x8, 0x0, 0x5, 0x7, 0x3, 0x4, 0x2, 0x71, 0x8001, 0x6, 0x6, 0x3, 0x8, 0x8, 0x5, 0x4, 0x4, 0x1000, 0xdf, 0x0, 0x9, 0x8000, 0x1, 0x7, 0x3, 0xffffff2c, 0x0, 0x9, 0x6, 0xffffffff, 0xff, 0x0, 0x8, 0xc82, 0x322aebb1, 0x9, 0x40, 0x4, 0xff, 0xa7, 0x5, 0x9, 0x5, 0x1ea, 0x6, 0xfff, 0x8, 0x4, 0xb977, 0x0, 0x9, 0x0, 0xfffffffa, 0x0, 0x6, 0x8001, 0x7, 0x66917e3f, 0x5, 0x400, 0x4, 0x71b8e1e, 0x0, 0x7b6, 0xefc, 0x5, 0x0, 0xfffffbff, 0xe, 0xc, 0xa, 0x5, 0x0, 0xffff, 0x0, 0x6fe47f9c, 0x6, 0x4, 0x0, 0xfffff237, 0x4, 0xb23, 0xff, 0x36e8, 0x80000001, 0x1606, 0x7ff, 0x9, 0x2, 0x4, 0x8, 0x1, 0x6, 0x8, 0x6, 0x3, 0xfd7b, 0x6, 0x7, 0x3, 0x6, 0x2, 0x5, 0xfffffffe, 0x1, 0x1, 0x0, 0xffffffff, 0x4, 0x800, 0x9, 0x6, 0x944, 0x9, 0x3, 0x6, 0x4, 0x7, 0x9, 0x0, 0x101, 0x9, 0x7, 0x800, 0x3, 0xc4, 0x6, 0xe1cc, 0x6, 0xffffff29, 0x8a04, 0x4, 0x24a46a67, 0x6, 0x9, 0x0, 0x8, 0x5, 0x27dd, 0x3, 0x101, 0x5, 0x4, 0x2, 0x9, 0xa, 0x5, 0x4, 0x2, 0x6fa, 0x10001, 0xb, 0x2, 0x6, 0x5, 0x4, 0xaed1, 0x9, 0x8, 0x9d, 0x40a, 0x8a1c, 0x2, 0x1ff, 0x2, 0x0, 0x8000, 0x200, 0x796f, 0x8, 0x6, 0x1, 0x0, 0x9, 0xb, 0x0, 0x4, 0x0, 0x3, 0x9, 0x3, 0x9, 0xbf58, 0x7d3, 0x1, 0x2, 0x3, 0x0, 0x0, 0x5, 0x1ff, 0x3, 0x4, 0x6, 0x3, 0x3b4599c3, 0x4, 0x6, 0x1, 0x200, 0x4, 0xb, 0x2ba, 0x5, 0x7fff, 0xa5, 0xff, 0x7, 0x9, 0x99f, 0x3, 0x8001, 0x8, 0xe, 0x8000, 0x2, 0x1, 0x8, 0x1, 0xfffffffb, 0x1, 0x9, 0x8, 0x7fffffff, 0x2, 0x4, 0x800, 0x48, 0x7, 0x4, 0x7, 0x5, 0xc, 0x401, 0x80, 0x8, 0xe2, 0x81, 0x100, 0x4, 0x1000, 0x6, 0xde6f, 0x2, 0x8, 0x5, 0x5, 0x9bf7, 0x1, 0x4, 0x0, 0x3, 0x100, 0x4, 0xfffff801, 0x9, 0xd46, 0x8001, 0x8, 0xfd30, 0x2, 0x7, 0x683ba4a6, 0x6, 0x5f, 0x1ff, 0xf4, 0x3, 0x3ff, 0x80000001, 0x3, 0x0, 0x4, 0xffffffff, 0x7ff, 0x9, 0x5, 0x4, 0x3ff, 0xe, 0x3ff, 0x4800000, 0x3, 0x0, 0x80, 0xf97, 0xd2ce, 0x2, 0xc, 0xe14b, 0x401, 0x1, 0x4d, 0x4, 0x0, 0xffff, 0x80000001, 0x4, 0x9, 0x24, 0x5, 0xfff, 0x6, 0x6, 0x0, 0x7, 0x7d3, 0x8, 0x3, 0x6, 0x5, 0x7, 0x1, 0xa, 0x6, 0x46, 0x40, 0x10001, 0xffffffff, 0x4, 0x0, 0xffffffff, 0x7, 0x9, 0x6a, 0x0, 0x0, 0x2935, 0x3, 0x4, 0x45, 0x6b9, 0x3, 0x9, 0x7, 0x7, 0x1000, 0x5, 0x3, 0x400, 0x2, 0x7, 0x55f0, 0x6, 0x1ff, 0x5, 0x6, 0x8000, 0x1ff, 0xfffff6d6, 0x3, 0xfffffffa, 0x647, 0x48c, 0x4, 0x8001, 0xff, 0xfa, 0x4, 0x8, 0x1, 0x2, 0x2, 0x81, 0x7ff, 0x400, 0x101, 0xfffffffc, 0x3ff, 0xb, 0x7, 0xfffffffc, 0x2, 0x9, 0x3, 0x9, 0xffffff00, 0xade, 0x5, 0x8, 0x7, 0x6, 0x8, 0x8, 0x8f, 0x7, 0x7fff, 0x6, 0x5, 0x8, 0x1, 0x1, 0x0, 0x2, 0x2, 0x227, 0x76, 0x0, 0x10, 0x8, 0x619d, 0x9, 0x6, 0x7, 0x0, 0x5953, 0x77, 0x9, 0xa7da, 0x4a2, 0x4, 0xe, 0x81, 0x0, 0x10000, 0x8, 0x9, 0x10, 0x8, 0x9, 0x7fffffff, 0x4, 0x2, 0x1000, 0xdc, 0xffffff5f, 0xfffffffe, 0x5, 0x400, 0x7f, 0x8001, 0xf, 0x9, 0x100, 0xfffffffd, 0x3, 0xfffffffc, 0x7ff, 0x2, 0xffffffff, 0x2, 0x4, 0xfffffffb, 0x8f29, 0x403b2587, 0xed, 0x2, 0x2, 0x8, 0x6, 0x71c, 0x2, 0x64133690, 0x5, 0x7f, 0x2, 0x3, 0x5, 0x4, 0x5, 0xf, 0x5, 0x3, 0x3, 0x4, 0x7fff, 0x46a, 0x60000, 0x1, 0x6ded, 0x5, 0x1, 0x9, 0x8001, 0x9, 0x5, 0x80000000, 0xe, 0x10, 0xffff8001], 0x2, 0x400, 0xe})

10m5.576728379s ago: executing program 2 (id=3711):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000002c0)={[{@creator={'creator', 0x3d, "1c4cdc1a"}}, {@type={'type', 0x3d, "e833026f"}}, {@gid}, {@uid}, {}, {@part={'part', 0x3d, 0x2}}, {@creator={'creator', 0x3d, "338be97f"}}, {}, {@part={'part', 0x3d, 0x7}}, {@nobarrier}]}, 0x20, 0x6fe, &(0x7f0000000480)="$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")
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020)

10m5.13704775s ago: executing program 2 (id=3713):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x2008042, &(0x7f0000000040), 0x1, 0x571, &(0x7f0000000780)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x20020c0, 0x0, 0x1, 0x0, &(0x7f0000001a00))
symlinkat(&(0x7f0000001040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x300000d, 0x1)

10m4.496766752s ago: executing program 2 (id=3718):
r0 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_RENAMEAT={0x23, 0x7, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, {0x0, r3}})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

10m3.853418174s ago: executing program 41 (id=3718):
r0 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_RENAMEAT={0x23, 0x7, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1, {0x0, r3}})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

5m40.828333196s ago: executing program 7 (id=5604):
getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)
syz_clone(0x6608f400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x808000, 0x0, 0x0, 0x0, 0x0, 0x0)

5m39.607137846s ago: executing program 7 (id=5611):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f00000024c0)={0xa, 0x7, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}, 0x8}, 0x20)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r1, &(0x7f00000024c0)={0xa, 0x7, 0x0, @dev={0xfe, 0x80, '\x00', 0xb}, 0x8}, 0x20)

5m39.424537435s ago: executing program 7 (id=5612):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
sigaltstack(0x0, 0x0)

5m38.747094129s ago: executing program 7 (id=5617):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@jqfmt_vfsv1}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hzcpouowmHWsduD24F19kCCIOxD/Adx+H/4B/xUAHQ0bRBxEiN73psjZp2i4z2fL5wG3Pyb23535z7vf2nNyEBDC0jqU/chEvR8Q3ScShlnX5yFYeW9tu9eH1mXRJol7/9M8kkuyx5vZJ9vtAVnkpIn79KuJkbnO71eWV+WK5XFrM6hO1hSsT1eWVU5cWinOludLlqenpM29NT737zts9i/X1839//8ndD898fXz1u5/vH76dxNk4mK1rjeMJ3GitHCv+m5VG4+yGDSd70NggSfp9AOzKSJbno5FeAw7FSJb1wPPvy4ioA0Mqkf8wpJrjgObcvkfz4GfGgw/WJkCN2Mda48+vvTYSextzo/2ryWMzo3S+O96D9tM2fvnjzu10ia1fh9jXpQ6wIzduRsTpfH7z9T/Jrn+7d7rx4vHWNrYxbP9/oJ/upuOfN9qN/3Lr459oM/450CZ3d6N7/ufu96CZjtLx33ttx7/rl67xkaz2QmPMN5pcvFQunY6IFyPiRNS73vo4s3qv3mld6/gvXdL2m2PB7Dju5/c8vs9ssVaMiLFdhvyYBzcjXsm3iz9Z7/+kTf+nz8f5bbZxtHTn1U7rusf/dNV/initbf8/6tZk6/uTE43zYaJ5Vmz2162jv3Vqv9/xp/2/f+v4x5PW+7XVnbfx495/Sp3W7fb8H0s+a5SbSXCtWKstTkaMJR9vfnzq0b7NenP7NP4Tx7e+/rU7/9PJ1+fbjP/WkVsdNx2E/p/dUf/vvHDvoy9+6NT+9vr/zUbpRPZIdv1rLztXtnuAT/r8AQAAAAAAwCDJRcTBSHKF9XIuVyisvb/jSOzPlSvV2smLlaXLs9H4rOx4jOaad7oPtbwfYjJ7P2yzPrWhPh0RhyPi25F9jXphplKe7XfwAAAAAAAAAAAAAAAAAAAAMCAOdPj8f+r3kX4fHfDUNb7YYE+/jwLoh65f+d+Lb3oCBlLX/AeeW/Ifhpf8h+El/2F4yX8YXvIfhpf8h+El/wEAAAAAAAAAAAAAAAAAAAAAAAAAAKCnzp87ly711YfXZ9L67NXlpfnK1VOzpep8YWFppjBTWbxSmKtU5sqlwkxlodvfK1cqVyanYunaRK1UrU1Ul1cuLFSWLtcuXFoozpUulEb/l6gAAAAAAAAAAAAAAAAAAADg2VJdXpkvlsulRYWOhfdjIA7jaQa4Zle75wclCoUOhZtZ9+5srz5elAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgg/8CAAD//4yLMZo=")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
unlink(&(0x7f0000000100)='./file0/file1\x00')

5m38.1141423s ago: executing program 7 (id=5619):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, 0x0, 0x0)

5m37.524050409s ago: executing program 7 (id=5623):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @global=@item_4={0x3, 0x1, 0x8, '\f\x00'}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0600"}, @main=@item_4={0x3, 0x0, 0x8}, @main=@item_4={0x3, 0x0, 0x9, "cdd2f361"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)

5m36.662715031s ago: executing program 42 (id=5623):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @global=@item_4={0x3, 0x1, 0x8, '\f\x00'}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0600"}, @main=@item_4={0x3, 0x0, 0x8}, @main=@item_4={0x3, 0x0, 0x9, "cdd2f361"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)

5m34.411051692s ago: executing program 9 (id=5637):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x21c9b000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
socket(0x10, 0x2, 0x0)

5m34.190740483s ago: executing program 4 (id=5638):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
mount$cgroup(0x0, 0x0, 0x0, 0x2010042, 0x0)
sched_getaffinity(0x0, 0x0, 0x0)
syz_usb_connect(0x5, 0x34, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000094ba78084e080110aeed010203010902220001000000000904000001437b6a0009050000"], 0x0)

5m33.512679746s ago: executing program 9 (id=5640):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000080)={0x5, 0x2})
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000000c0)=0x3)
ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f0000000200))

5m33.248721319s ago: executing program 9 (id=5642):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000440)=0x8, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000040)=0xf2b, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000001500)=""/3, &(0x7f00000000c0)=0xfec2)

5m33.173118433s ago: executing program 9 (id=5643):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@jqfmt_vfsv1}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
unlink(&(0x7f0000000100)='./file0/file1\x00')

5m32.41733603s ago: executing program 9 (id=5647):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000680)={[{@errors_continue}, {@delalloc}, {@data_err_ignore}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@data_err_ignore}, {@nojournal_checksum}]}, 0x1, 0x4ef, &(0x7f0000000180)="$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")
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @aes256, 0x3, @desc1})

5m32.175052172s ago: executing program 4 (id=5649):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14}}, 0x68}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a2c000000200a01010000000000000000020000040c00054020000000000000020900010073797a30"], 0x54}}, 0x0)

5m31.947027463s ago: executing program 4 (id=5651):
r0 = syz_open_dev$media(&(0x7f00000000c0), 0x103, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000080))

5m31.60896624s ago: executing program 9 (id=5652):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB='b *:*\vmww'], 0xa)

5m30.834228868s ago: executing program 43 (id=5652):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB='b *:*\vmww'], 0xa)

5m30.284562185s ago: executing program 4 (id=5655):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@jqfmt_vfsv1}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
unlink(&(0x7f0000000100)='./file0/file1\x00')

5m29.662921216s ago: executing program 4 (id=5657):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
listen(r0, 0x2)
syz_emit_ethernet(0x4a, &(0x7f0000000300)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x1, @rand_addr=' \x01\x00', @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10}}}}}}}, 0x0)

5m26.142880039s ago: executing program 4 (id=5660):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="21012abd7000000000001400000008000300", @ANYRES32=r2, @ANYBLOB="06003600010000001a0029000c"], 0x2c}}, 0x20000800)

5m25.564251778s ago: executing program 44 (id=5660):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000005c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="21012abd7000000000001400000008000300", @ANYRES32=r2, @ANYBLOB="06003600010000001a0029000c"], 0x2c}}, 0x20000800)

1m49.719592698s ago: executing program 0 (id=6983):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000080)='/', 0x1}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

1m49.558265106s ago: executing program 0 (id=6985):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001300)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000190a01040000000000000000020000000c00034000000000000000020900020073797a32000000000900010073797a30"], 0x38}, 0x1, 0x0, 0x0, 0x44044}, 0x4004)

1m49.302190968s ago: executing program 0 (id=6987):
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
write$P9_RREADDIR(r1, 0x0, 0xeffd)
vmsplice(r0, &(0x7f00000102c0)=[{&(0x7f0000010080)='v', 0x1}], 0x1, 0x1)
write$P9_RWRITE(r1, &(0x7f0000010300)={0xb, 0x77, 0x4, 0x3}, 0xb)

1m48.984119294s ago: executing program 0 (id=6990):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x104)

1m48.674776549s ago: executing program 0 (id=6992):
r0 = syz_open_dev$dvb_frontend(&(0x7f00000002c0), 0x0, 0x2)
syz_io_uring_setup(0x49a, &(0x7f0000000140)={0x0, 0x79b2, 0x3180, 0x1, 0x283}, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000100)={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, &(0x7f0000000240)={0x1f, 0xfffffffffffffffe, 0xe, 0x0, 0x1, 0x4, 0xff, 0xfffffffffffffffc}, 0x0, 0x0)
ioctl$FE_SET_FRONTEND(r0, 0x40246f4c, &(0x7f0000000340)={0x30a32c0, 0x1, @ofdm={0x1, 0x13, 0x15, 0x4, 0x4, 0x2, 0x4}})

1m48.083048919s ago: executing program 0 (id=6995):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000340)={0x4, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042"})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000080)=0x7)

1m47.413168571s ago: executing program 45 (id=6995):
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000340)={0x4, "abacd211119ca94c63377526aeb5ab2c7b9ca5fa07558139ede6dc06270ee042"})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
ioctl$SW_SYNC_IOC_INC(r0, 0x40045701, &(0x7f0000000080)=0x7)

3.203150922s ago: executing program 1 (id=7601):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.current\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0xc0086c43, &(0x7f0000000080)=0x6ff)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)

2.683673048s ago: executing program 6 (id=7604):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xc, &(0x7f0000000100)=@assoc_value={<r2=>0x0}, &(0x7f0000000400)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000040)=@sack_info={r2, 0x120, 0x3}, &(0x7f0000000080)=0xc)

2.673513638s ago: executing program 1 (id=7606):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
getcwd(&(0x7f0000002180)=""/4096, 0x1000)

2.344245794s ago: executing program 5 (id=7607):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000440)={r1, &(0x7f0000000440), &(0x7f0000000040)=@udp=r0}, 0x20)
recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}, 0x1ff}], 0x1, 0x4, 0x0)

2.208108021s ago: executing program 1 (id=7608):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0xf, 0x7fff7ffc}]})
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose, 0x7}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x48)
sendto$netrom(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={{0x6, @rose, 0x2}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null]}, 0x48)

2.087995477s ago: executing program 6 (id=7609):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x1f, 0x19, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x81}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8020}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0xb3}}]}, &(0x7f0000000ac0)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x18, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200ebfb}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r2}, 0xc)

1.991766462s ago: executing program 5 (id=7610):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="8c000000", @ANYRES16=r2, @ANYBLOB="010009bd7000000000003b00000008000300", @ANYRES32=r1, @ANYBLOB="6f00330080200900ffffffffffff0802110000000802110000005f000100000000000000640000380301"], 0x8c}, 0x1, 0x0, 0x0, 0x2400c000}, 0x0)

1.82076927s ago: executing program 6 (id=7611):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x8, 0x0, 0x40f00, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x11, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.723730055s ago: executing program 5 (id=7612):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000020c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)=""/247, 0x1a, 0xf7, 0x1}, 0x20)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r0, 0x8b27, &(0x7f0000000040))

1.641227729s ago: executing program 1 (id=7613):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006b", 0x7}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$SNDCTL_DSP_SETFMT(0xffffffffffffffff, 0xc0045005, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c03000017"], 0x34c}, 0x1, 0x0, 0x0, 0x404c831}, 0x44)

1.497503126s ago: executing program 1 (id=7614):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff}, 0x800)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @dev={0xac, 0x14, 0x14, 0xc}}, 0x8)
close_range(r0, 0xffffffffffffffff, 0x0)

1.41251273s ago: executing program 5 (id=7615):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@getqdisc={0x24, 0x26, 0x100, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xd, 0x3}, {0xfff3, 0xffe0}, {0x9, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x8004001}, 0x4000040)
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080010000000e8fe55a1180015000600142603600e120500211dff000401a8001600a400014020", 0x39}], 0x1}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33)

1.308074665s ago: executing program 6 (id=7616):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x87, 0xffffffff, 0x2})
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000))

1.275304347s ago: executing program 1 (id=7617):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file0\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x5, 0x4451, &(0x7f0000008900)="$eJzs3T9sVPcdAPDfe3aLTYHalIFKlXpSUVu1lWUz0RqpxhiMDS4VLQxdjrN9gJuzD9nnKAODoyxImSJliDKgRMrmCXnLRJZIGbNkJDNSMmSJFAnlort7Z99758MX4sMBfT4S/t37/be/9373e8PxixOVO0truaW1XGElV164tXY693q5tL5cDHHWp205+6Lr8TlQvYiT2B+cq+cv/ufG6RA+WfziSbVarYaa/rCrsZbX335zb6E1bYpbL95q9Lt7b/vlfyGEE23zqukLIQwkr88l6WSSDoYQjoUQohDCjXtv38zt02wePi6ezT+du781fmp288FW5989CuH90m//dnv5qz/0jX/5l30aHgAAAAAAAAAAAAAAAACAl9z0tavX/z06Fh5FoX8zav++7nSSdvp+bHXf/L73vywAAAAAAAAAAAAAAAAAAAD8TO18/z8XHd/l+/9TSTrRoX31n92N88efOE96Y+ZfV6cujI4l579HbeVnkqyvz/WF4eb56p91Pv/9XKb97ue/t4/zvJrza447FKJ4JHUdxyMjIXyYHPx+Mjocl8prlb/eKq+vLO7bNF5a6fg3Tu9PRSc50D8V/2ec/z+Z6b/35///pu3dVLu+uX9vsVdaOv59Het99Gb0jPj/crve+Uy7FxF/nl86/v31vMHWChONBaAW/3f6977/pzL99yr+x0IIuag211xqBajtYWr5nfYrpKXj/4t6XmrpTP6Qne7/7zLxv5Dp/6DW/43sBxG7Sse/sY4PpGrs3P/D8d73/8VM/wcR/9r8N3z+dyUd/0ONzP5Ulfpfstv1fzrTf6/ifz1O5nksSr0DNqNGfqf/r460dPwH2sp3nv/irvb/lzLtX9TzX3Pc5vNfc/n/c9R4/mN32/HfCk+q1cGO9bq9/2cy7Xq9/k/U939tzpzo5aCvkPT9f7iel947D9V/dop/NRP/2Uz/zxH/jzs/he6o70oGmvHfWU++P9TI/8D+ryvp+P+qkRm31tio/6zv/6K99/+XM/0fxP6vNv+NuLejvirS8T/SsV4t/p938fl/JdOu9/EPYbT5BmjfvrCHdPyPdqxXv/8H9o7/XKZdr+P/p152DgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPASmEzSoRDFI6nrOB4ZCeF8cn0yHI7mC4v5+VJ54bW1EKaS/Fw4Ht0ulecLpfzSSnmxmC+USuWFEC4k5SfCQLRWKlfyy4W7F7f7GozuFAurlflioRJCmE7yfxeONvuaX6osF+6GEC5tl/06Lq/evVNYyS8urf5jdHR0NMxsz2E4Kr5RKa5UGqM3SkOY3W47FLVMrl58eXsuR6L/l9dXVwqlev6Vljal8kKh1NJmLil7NwxHldX1lYVCpZgvlW83xztIE0k6NXPtv9eujLWV34wa6eSLnRYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9Kj8b+/F0Lob1zFIYRclLyIkn8pDx8Xz+afzt3fGj81u/lg68ludQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4gR04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirs0j9KA0EUB+A3Y6Glx7BadjvbFUW0cEXwBHoMD6NH8RLewSJF2hQhkMxC2D+wTVJ9X/Ngfsy8B/MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACWe3zr3l/rJiLF1fYy4vfz7/84fy71+276/sUZZuR0nl66+4e6Kf+eRvltOVq1eZ9u1l8fMVF7P4M9Ge7TwbjP0Ny+zc3X972OlKuIaEt+k3KuqmVvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAsAAAAACPO3jqJvAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//9HQIRk=")
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x10c0042, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000480), &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x380707b, 0x0, 0x1, 0x0, &(0x7f0000000080))
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

1.177174612s ago: executing program 5 (id=7618):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x5, @any, 0x0, 0x2}, 0xe)
listen(r0, 0xa)
connect$bt_l2cap(r0, &(0x7f0000000180)={0x1f, 0x4, @any, 0x0, 0x2}, 0xe)

1.117793595s ago: executing program 6 (id=7619):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000000040)={[{@clear_cache}, {@metadata_ratio}, {@ssd_spread}]}, 0x0, 0x559e, &(0x7f0000005680)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000008c0)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_ENCODED_READ(r0, 0x80809440, &(0x7f0000000e00)={&(0x7f0000000d80)=[{&(0x7f00000006c0)="6ffc93c0d2ca5197ffabfe9e14bd5b60c1f4", 0x12}, {0x0}], 0x2, 0x5, 0x0, 0x40, 0xe4a5, 0x9, 0x1, 0x6})

926.329344ms ago: executing program 5 (id=7620):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000001080)=0x8)

826.564059ms ago: executing program 3 (id=7621):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000100)={r1, 0x4310}, 0x8)

603.69681ms ago: executing program 3 (id=7622):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={<r1=>0x0, 0x10, &(0x7f0000000440)=[@in={0x2, 0x0, @loopback}]}, &(0x7f0000000040)=0x10)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000001c0)={r1, 0x8, 0x7, 0x7, 0x0, 0xfffffff9}, 0x14)

367.037982ms ago: executing program 3 (id=7623):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioperm(0x4, 0xfd, 0x8)
mq_timedsend(r0, 0x0, 0x0, 0x6, 0x0)

225.488319ms ago: executing program 3 (id=7624):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfc, "2af01c3d0040fbffffffffffffff00"})
r1 = syz_open_pts(r0, 0x80)
ioctl$TIOCMSET(r1, 0x5418, 0x0)

132.425053ms ago: executing program 3 (id=7625):
unshare(0x6020480)
r0 = memfd_create(&(0x7f00000009c0)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\xd3\x05(\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;\x8c\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea\x06\x14\x0e\xceA\xa3\xf3\xa4\x846\b\x84Ii\x83d\x9a\xaa\xcc\x05\xd5\xa5c\xb9\xe0E\xe2\x99\x12zEf\x84\x91', 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0)
fcntl$addseals(r0, 0x409, 0xf)

83.316406ms ago: executing program 6 (id=7626):
r0 = syz_open_dev$evdev(&(0x7f0000001080), 0xb, 0x1)
ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x6)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
write$evdev(r1, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)

0s ago: executing program 3 (id=7627):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000140)={r0, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x22, 0x10, &(0x7f0000002e00), &(0x7f0000001000), 0x8, 0x434, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000340)={r0, 0xe0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

kernel console output (not intermixed with test programs):

FAT-fs (loop6): Directory bread(block 72) failed
[ 1158.257732][T27981] FAT-fs (loop6): Directory bread(block 73) failed
[ 1158.484691][T27991] loop0: detected capacity change from 0 to 128
[ 1158.536202][   T28] audit: type=1800 audit(2000001226.757:144): pid=27981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.6548" name="bus" dev="loop6" ino=1048826 res=0 errno=0
[ 1158.570267][T27981] syz.6.6548: attempt to access beyond end of device
[ 1158.570267][T27981] loop6: rw=2049, sector=1224, nr_sectors = 76 limit=256
[ 1158.759328][T20992] gs_usb 2-1:0.0: Configuring for 159 interfaces
[ 1158.983234][T20992] gs_usb 2-1:0.0: Couldn't register candev for channel 0 (-EINVAL)
[ 1159.042600][T20992] gs_usb: probe of 2-1:0.0 failed with error -22
[ 1159.185859][T27998] loop0: detected capacity change from 0 to 128
[ 1159.246205][T27998] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1159.268536][T17373] usb 2-1: USB disconnect, device number 20
[ 1159.351273][T27998] ext4 filesystem being mounted at /227/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1159.602000][T24855] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1160.580661][T12973] usb 6-1: new high-speed USB device number 45 using dummy_hcd
[ 1160.794508][T12973] usb 6-1: Using ep0 maxpacket: 16
[ 1160.838467][T12973] usb 6-1: config 0 has an invalid interface number: 4 but max is 0
[ 1160.869373][T12973] usb 6-1: config 0 has no interface number 0
[ 1160.880024][T12973] usb 6-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1160.910195][T12973] usb 6-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1160.943024][T12973] usb 6-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1161.030180][T12973] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1161.063494][T12973] usb 6-1: config 0 descriptor??
[ 1161.372676][T28052] netlink: 7 bytes leftover after parsing attributes in process `syz.0.6570'.
[ 1161.541952][T12973] hid (null): unknown global tag 0xd
[ 1161.872707][T12973] usb 6-1: USB disconnect, device number 45
[ 1162.224113][ T7262] Process accounting resumed
[ 1162.745716][T28047] loop6: detected capacity change from 0 to 32768
[ 1162.811022][T28047] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1162.870891][T28047] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1162.914922][T28081] loop1: detected capacity change from 0 to 512
[ 1162.946587][   T28] audit: type=1800 audit(2000001230.873:145): pid=28081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.6576" name="file2" dev="loop1" ino=1048827 res=0 errno=0
[ 1162.958426][T28081] FAT-fs (loop1): error, corrupted file size (i_pos 51, 9216)
[ 1162.998930][T28081] FAT-fs (loop1): error, corrupted file size (i_pos 51, 8960)
[ 1163.032934][T28081] FAT-fs (loop1): error, corrupted file size (i_pos 51, 8960)
[ 1163.065359][T28047] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[ 1163.067700][T28081] FAT-fs (loop1): error, corrupted file size (i_pos 51, 8960)
[ 1163.115085][T28081] FAT-fs (loop1): error, corrupted file size (i_pos 51, 8960)
[ 1163.297621][T28047] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 1163.664184][ T5813] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[ 1163.905087][ T5813] usb 1-1: Using ep0 maxpacket: 8
[ 1163.967554][ T5813] usb 1-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[ 1163.996412][T28100] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6582'.
[ 1164.010480][ T5813] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1164.044122][ T5813] usb 1-1: Product: syz
[ 1164.048461][ T5813] usb 1-1: Manufacturer: syz
[ 1164.065662][ T5813] usb 1-1: SerialNumber: syz
[ 1164.099427][ T5813] usb 1-1: config 0 descriptor??
[ 1164.116866][ T5813] gspca_main: se401-2.14.0 probing 047d:5003
[ 1164.738886][ T5813] usb 1-1: reset high-speed USB device number 21 using dummy_hcd
[ 1165.142689][T28125] loop6: detected capacity change from 0 to 1024
[ 1165.266934][T28125] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1165.442650][ T5813] gspca_se401: write req failed req 0x57 val 0x00 error -71
[ 1165.465819][ T5813] se401: probe of 1-1:0.0 failed with error -71
[ 1165.505815][ T5813] usb 1-1: USB disconnect, device number 21
[ 1165.526502][T28125] EXT4-fs: Ignoring removed i_version option
[ 1165.570564][T28125] EXT4-fs (loop6): stripe (253) is not aligned with cluster size (16), stripe is disabled
[ 1165.648267][T28125] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[ 1165.702220][T28125] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[ 1165.843432][T24833] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1166.716843][T20992] usb 6-1: new high-speed USB device number 46 using dummy_hcd
[ 1166.931503][T20992] usb 6-1: Using ep0 maxpacket: 16
[ 1166.961862][T20992] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1166.986222][T20992] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1167.009166][T20992] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1167.056757][T20992] usb 6-1: New USB device found, idVendor=1345, idProduct=3008, bcdDevice= 0.00
[ 1167.080583][T20992] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1167.119931][T20992] usb 6-1: config 0 descriptor??
[ 1167.609796][T20992] sony 0003:1345:3008.002C: unknown main item tag 0x0
[ 1167.635753][T20992] sony 0003:1345:3008.002C: unknown main item tag 0x0
[ 1167.643434][T20992] sony 0003:1345:3008.002C: unknown main item tag 0x0
[ 1167.678531][T20992] sony 0003:1345:3008.002C: unknown main item tag 0x0
[ 1167.685520][T20992] sony 0003:1345:3008.002C: unknown main item tag 0x0
[ 1167.739011][T20992] sony 0003:1345:3008.002C: unknown main item tag 0x0
[ 1167.761413][T20992] sony 0003:1345:3008.002C: report_id 51781 is invalid
[ 1167.791340][T20992] sony 0003:1345:3008.002C: item 0 2 1 8 parsing failed
[ 1167.809618][T20992] sony 0003:1345:3008.002C: parse failed
[ 1167.816608][T20992] sony: probe of 0003:1345:3008.002C failed with error -22
[ 1167.869702][T28188] loop1: detected capacity change from 0 to 512
[ 1167.893482][T20992] usb 6-1: USB disconnect, device number 46
[ 1168.081231][T28192] loop0: detected capacity change from 0 to 256
[ 1168.336672][T28199] netlink: 'syz.6.6610': attribute type 29 has an invalid length.
[ 1168.395058][T28199] netlink: 'syz.6.6610': attribute type 29 has an invalid length.
[ 1168.426262][T28202] netlink: 'syz.6.6610': attribute type 29 has an invalid length.
[ 1168.456765][T28199] netlink: 'syz.6.6610': attribute type 29 has an invalid length.
[ 1168.763612][T28205] loop0: detected capacity change from 0 to 4096
[ 1168.787945][T28210] binder: 28209:28210 ioctl c018620c 200000000000 returned -22
[ 1168.837447][T28205] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[ 1169.068169][T28205] ntfs3: loop0: failed to convert "c46c" to iso8859-3
[ 1169.575064][T28231] autofs4:pid:28231:autofs_fill_super: could not open pipe file descriptor
[ 1170.739368][T28267] loop1: detected capacity change from 0 to 164
[ 1171.287373][T28234] loop6: detected capacity change from 0 to 32768
[ 1171.300895][T28281] loop0: detected capacity change from 0 to 512
[ 1171.424815][T28234] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1171.609877][T28234] XFS (loop6): Ending clean mount
[ 1171.725804][T28234] XFS (loop6): Quotacheck needed: Please wait.
[ 1172.082021][T28234] XFS (loop6): Quotacheck: Done.
[ 1172.358905][T24833] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1172.805205][T28306] loop0: detected capacity change from 0 to 32768
[ 1172.875819][T28306] JBD2: Ignoring recovery information on journal
[ 1172.952065][T28306] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1173.098168][ T1174] block nbd2: Possible stuck request ffff888021e60000: control (read@0,4096B). Runtime 240 seconds
[ 1173.425178][T24855] ocfs2: Unmounting device (7,0) on (node local)
[ 1173.735306][T28330] loop1: detected capacity change from 0 to 512
[ 1173.756061][T28330] EXT4-fs: Ignoring removed oldalloc option
[ 1173.779236][T28330] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1173.853065][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1173.921597][T28330] EXT4-fs (loop1): 1 truncate cleaned up
[ 1173.928492][T28330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1174.114476][T24838] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1174.328104][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1174.391945][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1174.427133][T28341] loop6: detected capacity change from 0 to 1764
[ 1174.438134][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1174.540028][ T7043] blk_print_req_error: 11 callbacks suppressed
[ 1174.540047][ T7043] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1174.741418][T28348] loop1: detected capacity change from 0 to 2048
[ 1174.791851][T28348] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1175.153884][T28358] loop0: detected capacity change from 0 to 1024
[ 1175.247459][T28358] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1175.339640][T28358] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:478: comm syz.0.6662: Invalid block bitmap block 0 in block_group 0
[ 1175.358409][T28358] Quota error (device loop0): write_blk: dquota write failed
[ 1175.369042][T28358] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[ 1175.383630][T28358] EXT4-fs error (device loop0): ext4_acquire_dquot:6949: comm syz.0.6662: Failed to acquire dquot type 0
[ 1175.410278][T28358] EXT4-fs error (device loop0): ext4_free_blocks:6690: comm syz.0.6662: Freeing blocks not in datazone - block = 0, count = 4096
[ 1175.451278][T28358] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.6662: Invalid inode bitmap blk 0 in block_group 0
[ 1175.472008][   T68] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-7
[ 1175.497623][   T68] EXT4-fs error (device loop0): ext4_release_dquot:6985: comm kworker/u4:4: Failed to release dquot type 0
[ 1175.550604][T28358] EXT4-fs error (device loop0) in ext4_free_inode:363: Corrupt filesystem
[ 1175.606559][T28358] EXT4-fs (loop0): 1 orphan inode deleted
[ 1175.625360][T28358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1175.928970][T24855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1176.004995][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1176.288324][T28384] loop0: detected capacity change from 0 to 256
[ 1176.512378][T26086] block nbd1: Possible stuck request ffff888021e30000: control (read@0,1024B). Runtime 420 seconds
[ 1176.525955][T26086] block nbd1: Possible stuck request ffff888021e30200: control (read@1024,1024B). Runtime 420 seconds
[ 1176.539931][T26086] block nbd1: Possible stuck request ffff888021e30400: control (read@2048,1024B). Runtime 420 seconds
[ 1176.553907][T26086] block nbd1: Possible stuck request ffff888021e30600: control (read@3072,1024B). Runtime 420 seconds
[ 1176.768125][T28386] loop1: detected capacity change from 0 to 4096
[ 1176.805792][T28364] loop6: detected capacity change from 0 to 32768
[ 1176.828978][T28386] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[ 1176.897434][T28364] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1177.147786][T28386] ntfs3: Cannot use different iocharset when remounting!
[ 1177.166510][T28364] XFS (loop6): Ending clean mount
[ 1177.191151][T28386] ntfs3: loop1: failed to convert name for inode a.
[ 1177.216686][T28364] XFS (loop6): Quotacheck needed: Please wait.
[ 1177.293489][T10151] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[ 1177.316630][T10151] XFS (loop6): Unmount and run xfs_repair
[ 1177.347709][T10151] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1177.374512][T10151] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[ 1177.416190][T10151] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 80  ................
[ 1177.469788][T10151] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[ 1177.507345][T10151] 00000030: 00 00 00 00 ac 5e af fe 00 00 00 0d 00 00 00 13  .....^..........
[ 1177.561604][T10151] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[ 1177.604529][T10151] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1177.644074][T10151] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1177.662171][T10151] 00000070: 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1177.683915][  T200] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[ 1177.769432][T28364] XFS (loop6): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[ 1178.373915][T12973] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[ 1178.395052][T12973] XFS (loop6): Unmount and run xfs_repair
[ 1178.405196][T12973] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1178.433766][T12973] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[ 1178.476505][T12973] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 80  ................
[ 1178.516261][T12973] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[ 1178.545239][T12973] 00000030: 00 00 00 00 ac 5e af fe 00 00 00 0d 00 00 00 13  .....^..........
[ 1178.598202][T12973] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[ 1178.619635][T28443] program syz.5.6686 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1178.635897][T12973] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1178.655052][T12973] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1178.687229][T12973] 00000070: 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1178.729509][   T68] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[ 1178.758177][   T68] XFS (loop6): page discard on page ffffea000134c000, inode 0x244b, pos 2048.
[ 1178.792780][T12973] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[ 1178.815036][T12973] XFS (loop6): Unmount and run xfs_repair
[ 1178.870070][T12973] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1178.878690][T12973] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[ 1178.925808][T12973] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 80  ................
[ 1178.939563][T12973] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[ 1178.966473][T12973] 00000030: 00 00 00 00 ac 5e af fe 00 00 00 0d 00 00 00 13  .....^..........
[ 1178.976456][T12973] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[ 1179.019777][T12973] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.029984][T12973] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.061955][T12973] 00000070: 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.105650][   T68] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[ 1179.142925][   T68] XFS (loop6): page discard on page ffffea0001378000, inode 0x244b, pos 1048576.
[ 1179.178173][T10151] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[ 1179.203779][T10151] XFS (loop6): Unmount and run xfs_repair
[ 1179.231044][T10151] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1179.267056][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1179.276260][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[ 1179.297559][T10151] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[ 1179.330303][T10151] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 80  ................
[ 1179.384823][T10151] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[ 1179.416395][T10151] 00000030: 00 00 00 00 ac 5e af fe 00 00 00 0d 00 00 00 13  .....^..........
[ 1179.456799][T10151] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[ 1179.491608][T10151] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.525994][T10151] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.560583][T10151] 00000070: 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.598086][   T68] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[ 1179.640154][   T68] XFS (loop6): page discard on page ffffea00014945c0, inode 0x244b, pos 2097152.
[ 1179.679774][T28463] program syz.5.6693 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1179.695182][T10151] XFS (loop6): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xd0, xfs_bnobt block 0x4 
[ 1179.713435][T10151] XFS (loop6): Unmount and run xfs_repair
[ 1179.721169][T10151] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1179.729259][T10151] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[ 1179.744361][T10151] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 80  ................
[ 1179.765970][T10151] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[ 1179.787461][T10151] 00000030: 00 00 00 00 ac 5e af fe 00 00 00 0d 00 00 00 13  .....^..........
[ 1179.801253][T10151] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[ 1179.811082][T17373] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1179.843260][T10151] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.853994][T10151] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.867078][T10151] 00000070: 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1179.885412][   T68] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x4 len 4 error 74
[ 1179.903195][   T68] XFS (loop6): page discard on page ffffea00014be600, inode 0x244b, pos 2101248.
[ 1180.024900][T17373] usb 2-1: Using ep0 maxpacket: 8
[ 1180.026330][T24833] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1180.037944][T17373] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[ 1180.099633][T17373] usb 2-1: config 179 has no interface number 0
[ 1180.106371][T17373] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1180.137266][T28469] block nbd3: server does not support multiple connections per device.
[ 1180.157949][T28469] block nbd3: shutting down sockets
[ 1180.164497][T17373] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1180.227594][T17373] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1180.289870][T17373] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1180.384395][T17373] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1180.416088][T17373] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1180.441185][T17373] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1180.538059][T28459] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1181.314756][T28459] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1181.338396][T28459] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1181.399435][T28495] netlink: 'syz.6.6701': attribute type 8 has an invalid length.
[ 1181.868170][  T787] usb 2-1: USB disconnect, device number 21
[ 1181.868236][    C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1181.882984][    C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1182.689887][T28532] loop1: detected capacity change from 0 to 512
[ 1182.804943][T28532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1182.912507][T28541] loop6: detected capacity change from 0 to 164
[ 1182.976798][T28541] Unable to read rock-ridge attributes
[ 1183.031143][T28541] Unable to read rock-ridge attributes
[ 1183.062668][T28541] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1183.128706][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1183.446542][T28553] loop1: detected capacity change from 0 to 1024
[ 1183.733807][T20992] usb 6-1: new high-speed USB device number 47 using dummy_hcd
[ 1183.792142][   T11] hfsplus: b-tree write err: -5, ino 3
[ 1183.843414][T28562] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[ 1183.947472][T20992] usb 6-1: Using ep0 maxpacket: 32
[ 1184.001788][T20992] usb 6-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[ 1184.023228][T20992] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1184.056068][T20992] usb 6-1: config 0 descriptor??
[ 1184.086583][T20992] as10x_usb: device has been detected
[ 1184.093400][T20992] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[ 1184.131353][T20992] usb 6-1: DVB: registering adapter 2 frontend 0 (nBox DVB-T Dongle)...
[ 1184.315803][T20992] as10x_usb: error during firmware upload part1
[ 1184.349506][T20992] Registered device nBox DVB-T Dongle
[ 1184.381574][T20992] usb 6-1: USB disconnect, device number 47
[ 1184.521899][T20992] Unregistered device nBox DVB-T Dongle
[ 1184.526363][T20992] as10x_usb: device has been disconnected
[ 1184.707740][T28559] loop6: detected capacity change from 0 to 32768
[ 1184.772987][T28559] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 scanned by syz.6.6723 (28559)
[ 1184.844760][T28559] BTRFS info (device loop6): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1184.889787][T28559] BTRFS info (device loop6): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1184.945327][T28559] BTRFS info (device loop6): force zlib compression, level 3
[ 1184.977956][T28559] BTRFS info (device loop6): force clearing of disk cache
[ 1184.999049][T28559] BTRFS info (device loop6): setting nodatasum
[ 1185.016971][T28559] BTRFS info (device loop6): allowing degraded mounts
[ 1185.035701][T28559] BTRFS info (device loop6): enabling disk space caching
[ 1185.067844][T28559] BTRFS info (device loop6): disk space caching is enabled
[ 1185.190493][T28559] BTRFS info (device loop6): auto enabling async discard
[ 1185.207751][T28559] BTRFS info (device loop6): rebuilding free space tree
[ 1185.260003][T28559] BTRFS info (device loop6): disabling free space tree
[ 1185.281496][T28559] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1185.314721][T28559] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1185.502582][T28607] loop1: detected capacity change from 0 to 2048
[ 1185.535173][   T28] audit: type=1800 audit(2000001252.016:146): pid=28559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.6723" name="file1" dev="loop6" ino=260 res=0 errno=0
[ 1185.676647][   T28] audit: type=1107 audit(2000001252.137:147): pid=28608 uid=0 auid=0 ses=2 subj=unconfined msg=''
[ 1185.708388][T28607] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1185.784906][T28607] ext4 filesystem being mounted at /268/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1185.823591][T24833] BTRFS info (device loop6): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1185.894662][T28607] EXT4-fs (loop1): shut down requested (2)
[ 1185.986915][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1186.011266][T22523] Bluetooth: hci4: command 0x1003 tx timeout
[ 1186.026132][T24838] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1186.097787][T10300] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 12 /dev/loop6 scanned by udevd (10300)
[ 1186.353115][T28626] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6736'.
[ 1186.586744][T20992] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[ 1186.822988][T20992] usb 7-1: Using ep0 maxpacket: 8
[ 1186.853880][T20992] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1186.881533][T28632] loop1: detected capacity change from 0 to 1024
[ 1186.902330][T20992] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1186.960368][T20992] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1186.973562][T20992] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1186.989953][T20992] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1187.001229][T20992] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1187.035097][T28632] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1187.267741][T20992] usb 7-1: GET_CAPABILITIES returned 0
[ 1187.278831][T20992] usbtmc 7-1:16.0: can't read capabilities
[ 1187.464208][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1187.580685][T20992] usb 7-1: USB disconnect, device number 17
[ 1187.837779][T28645] loop0: detected capacity change from 0 to 4096
[ 1187.903996][T28648] dvmrp1: tun_chr_ioctl cmd 1074025677
[ 1187.910424][T28648] dvmrp1: linktype set to 804
[ 1188.019464][T28645] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[ 1188.028271][T28645] ntfs3: loop0: Failed to load $Extend (-22).
[ 1188.045492][T28645] ntfs3: loop0: Failed to initialize $Extend.
[ 1188.268537][T28645] ntfs3: loop0: ino=1b, "file0" directory corrupted
[ 1188.375791][T28654] loop1: detected capacity change from 0 to 2048
[ 1188.437505][T28656] program syz.6.6747 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1188.442588][T28654] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1188.607904][ T7043] udevd[7043]: incorrect nilfs2 checksum on /dev/loop1
[ 1188.659193][T28660] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1188.815603][T28663] sd 0:0:1:0: device reset
[ 1188.865406][T28654] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12
[ 1189.052041][T28654] Remounting filesystem read-only
[ 1189.335252][T17373] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[ 1189.362104][   T28] audit: type=1326 audit(2000001255.599:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.417428][   T28] audit: type=1326 audit(2000001255.617:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.455556][   T28] audit: type=1326 audit(2000001255.617:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.512416][   T28] audit: type=1326 audit(2000001255.617:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.556893][   T28] audit: type=1326 audit(2000001255.617:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.612805][T17373] usb 1-1: Using ep0 maxpacket: 16
[ 1189.636168][T17373] usb 1-1: config 0 has an invalid interface number: 251 but max is 0
[ 1189.655547][   T28] audit: type=1326 audit(2000001255.617:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.669586][T17373] usb 1-1: config 0 has no interface number 0
[ 1189.741219][T17373] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[ 1189.745682][   T28] audit: type=1326 audit(2000001255.617:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.800123][T17373] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1189.826091][T17373] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[ 1189.847026][T17373] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1189.848294][   T28] audit: type=1326 audit(2000001255.617:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28675 comm="syz.1.6756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03a139c799 code=0x7ffc0000
[ 1189.867100][T28680] loop1: detected capacity change from 0 to 1024
[ 1189.890493][T17373] usb 1-1: Product: syz
[ 1189.894835][T17373] usb 1-1: Manufacturer: syz
[ 1189.912300][T17373] usb 1-1: SerialNumber: syz
[ 1189.951726][T17373] usb 1-1: config 0 descriptor??
[ 1190.008589][T28670] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1190.016903][T28670] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1190.092234][T28682] syz.1.6758: attempt to access beyond end of device
[ 1190.092234][T28682] loop1: rw=0, sector=393222, nr_sectors = 2 limit=1024
[ 1190.170767][T28682] syz.1.6758: attempt to access beyond end of device
[ 1190.170767][T28682] loop1: rw=2049, sector=5778, nr_sectors = 2 limit=1024
[ 1190.242122][T28682] buffer_io_error: 10 callbacks suppressed
[ 1190.242146][T28682] Buffer I/O error on dev loop1, logical block 2889, lost async page write
[ 1190.281898][T28670] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1190.298400][T28682] syz.1.6758: attempt to access beyond end of device
[ 1190.298400][T28682] loop1: rw=2049, sector=393216, nr_sectors = 2 limit=1024
[ 1190.318302][T28670] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1190.326627][T28682] Buffer I/O error on dev loop1, logical block 196608, lost async page write
[ 1190.340020][T28682] syz.1.6758: attempt to access beyond end of device
[ 1190.340020][T28682] loop1: rw=2049, sector=393218, nr_sectors = 2 limit=1024
[ 1190.356904][T28682] Buffer I/O error on dev loop1, logical block 196609, lost async page write
[ 1190.395062][T28682] syz.1.6758: attempt to access beyond end of device
[ 1190.395062][T28682] loop1: rw=2049, sector=393220, nr_sectors = 2 limit=1024
[ 1190.458292][T28682] Buffer I/O error on dev loop1, logical block 196610, lost async page write
[ 1190.791139][T17373] asix 1-1:0.251 (unnamed net_device) (uninitialized): Interface mode not supported by driver
[ 1190.799215][T28688] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6759'.
[ 1190.831754][T17373] asix: probe of 1-1:0.251 failed with error -524
[ 1191.192854][T17373] usb 1-1: USB disconnect, device number 22
[ 1191.371743][T28702] sctp: [Deprecated]: syz.1.6763 (pid 28702) Use of int in maxseg socket option.
[ 1191.371743][T28702] Use struct sctp_assoc_value instead
[ 1191.703071][T28713] loop6: detected capacity change from 0 to 256
[ 1191.819734][   T28] kauditd_printk_skb: 3 callbacks suppressed
[ 1191.819754][   T28] audit: type=1800 audit(2000001257.900:159): pid=28713 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.6767" name="bus" dev="loop6" ino=1048834 res=0 errno=0
[ 1191.966646][T28713] Invalid ELF header magic: != ELF
[ 1192.610110][T28732] loop0: detected capacity change from 0 to 256
[ 1193.012448][T28740] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6778'.
[ 1193.605636][T28724] loop1: detected capacity change from 0 to 32768
[ 1193.711779][T28724] ERROR: (device loop1): dbAlloc: the hint is outside the map
[ 1193.711779][T28724] 
[ 1193.806096][T28724] ERROR: (device loop1): remounting filesystem as read-only
[ 1193.915934][T28757] loop6: detected capacity change from 0 to 8192
[ 1193.955485][T28757] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1193.970218][T28757] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal
[ 1194.017640][T28757] REISERFS (device loop6): using ordered data mode
[ 1194.040706][T28768] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6786'.
[ 1194.081313][T28757] reiserfs: using flush barriers
[ 1194.232564][T28757] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1194.328041][T28757] REISERFS (device loop6): checking transaction log (loop6)
[ 1194.473249][T28757] REISERFS (device loop6): Using r5 hash to sort names
[ 1194.534219][T28757] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[ 1194.591340][T28782] loop1: detected capacity change from 0 to 512
[ 1194.609508][T28757] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[ 1194.628073][T28782] EXT4-fs: Ignoring removed oldalloc option
[ 1194.703491][T28782] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1194.817632][T28782] EXT4-fs (loop1): 1 truncate cleaned up
[ 1194.851661][T28782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1194.859044][T28757] REISERFS warning (device loop6): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[ 1195.084874][T28757] REISERFS warning (device loop6): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[ 1195.116667][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1195.204924][T28757] REISERFS warning (device loop6): sh-2029: %s: bitmap block (#%u) reading failed reiserfs_read_bitmap_block: reiserfs_read_bitmap_block
[ 1196.252816][T28804] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6795'.
[ 1196.905789][T28817] loop6: detected capacity change from 0 to 1024
[ 1196.958570][T28817] EXT4-fs: Ignoring removed nobh option
[ 1196.965525][T28817] EXT4-fs: Ignoring removed bh option
[ 1197.071340][T28817] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1197.173038][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1197.218149][T28817] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1197.401279][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1197.670913][T24833] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1197.755911][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1198.021413][T28841] loop6: detected capacity change from 0 to 764
[ 1198.471373][T28854] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.480843][T28854] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.491717][T28854] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.501312][T28854] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1198.517398][T28854] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.526697][T28854] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.537434][T28854] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.547410][T28854] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1198.792072][T28856] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6814'.
[ 1198.859573][T28857] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6814'.
[ 1198.896019][T28857] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6814'.
[ 1198.917684][T28848] loop6: detected capacity change from 0 to 32768
[ 1198.981916][T28848] non-latin1 character 0x3ff found in JFS file name
[ 1198.989978][T28848] mount with iocharset=utf8 to access
[ 1199.004796][T28848] non-latin1 character 0x3ff found in JFS file name
[ 1199.017514][T28848] mount with iocharset=utf8 to access
[ 1200.190189][T28876] input: syz0 as /devices/virtual/input/input67
[ 1200.626501][T28862] loop1: detected capacity change from 0 to 40427
[ 1200.661372][T28862] F2FS-fs (loop1): invalid crc value
[ 1200.690519][T28862] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1200.923393][T28862] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1201.020262][T28894] loop6: detected capacity change from 0 to 2048
[ 1201.072776][T28894] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1201.129176][T28862] syz.1.6816: attempt to access beyond end of device
[ 1201.129176][T28862] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1201.247316][T28862] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1201.857028][T28912] input: syz0 as /devices/virtual/input/input68
[ 1202.079773][T28915] loop0: detected capacity change from 0 to 128
[ 1202.446345][T28922] loop6: detected capacity change from 0 to 736
[ 1202.758700][T28930] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6845'.
[ 1203.761031][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1203.961843][T28951] loop0: detected capacity change from 0 to 512
[ 1204.085443][T28951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1204.150140][T28951] ext4 filesystem being mounted at /308/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1204.192731][   T23] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1204.419123][   T23] usb 2-1: Using ep0 maxpacket: 16
[ 1204.492637][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1204.539395][T28961] EXT4-fs error (device loop0): ext4_empty_dir:3139: inode #12: comm syz.0.6854: Directory hole found for htree leaf block 0
[ 1204.559891][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1204.577496][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1204.599802][   T23] usb 2-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00
[ 1204.626112][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1204.641186][   T23] usb 2-1: config 0 descriptor??
[ 1204.702731][T28965] netlink: 'syz.6.6859': attribute type 29 has an invalid length.
[ 1204.752373][T28965] netlink: 'syz.6.6859': attribute type 29 has an invalid length.
[ 1204.797479][T28967] netlink: 'syz.6.6859': attribute type 29 has an invalid length.
[ 1204.804964][T24855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1204.908634][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1205.245993][ T1174] block nbd2: Possible stuck request ffff888021e60000: control (read@0,4096B). Runtime 270 seconds
[ 1205.420017][   T23] usb 2-1: string descriptor 0 read error: -71
[ 1205.487510][   T23] usb 2-1: Max retries (5) exceeded reading string descriptor 200
[ 1205.544662][   T23] letsketch: probe of 0003:6161:4D15.002D failed with error -32
[ 1205.602811][   T23] usb 2-1: USB disconnect, device number 22
[ 1207.195836][T29009] loop1: detected capacity change from 0 to 256
[ 1207.559354][T29013] loop1: detected capacity change from 0 to 128
[ 1207.606976][T29015] loop0: detected capacity change from 0 to 256
[ 1207.696915][T29015] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x0eb2d353, utbl_chksum : 0xe619d30d)
[ 1208.048270][T29019] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6884'.
[ 1208.376592][   T23] kernel write not supported for file /664/net/psched (pid: 23 comm: kworker/1:0)
[ 1208.387920][T29005] loop6: detected capacity change from 0 to 40427
[ 1208.438372][T29005] F2FS-fs (loop6): Image doesn't support compression
[ 1208.487546][T29005] F2FS-fs (loop6): invalid crc value
[ 1208.661391][T26086] block nbd1: Possible stuck request ffff888021e30000: control (read@0,1024B). Runtime 450 seconds
[ 1208.674648][T26086] block nbd1: Possible stuck request ffff888021e30200: control (read@1024,1024B). Runtime 450 seconds
[ 1208.690142][T26086] block nbd1: Possible stuck request ffff888021e30400: control (read@2048,1024B). Runtime 450 seconds
[ 1208.705682][T26086] block nbd1: Possible stuck request ffff888021e30600: control (read@3072,1024B). Runtime 450 seconds
[ 1209.137151][T29005] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1209.165689][T29037] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6889'.
[ 1209.577966][T29039] loop1: detected capacity change from 0 to 256
[ 1209.592712][T24833] syz-executor: attempt to access beyond end of device
[ 1209.592712][T24833] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1209.678292][T24833] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1209.723304][   T28] audit: type=1800 audit(2000001274.646:160): pid=29039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.6891" name="file1" dev="loop1" ino=1048843 res=0 errno=0
[ 1209.781996][T29039] FAT-fs (loop1): error, clusters badly computed (0 != 128)
[ 1209.811110][T29039] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[ 1209.954974][T29043] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[ 1210.667042][T29047] loop1: detected capacity change from 0 to 32768
[ 1210.778460][T29047] JBD2: Ignoring recovery information on journal
[ 1210.867678][T29047] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1210.897082][T29061] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6901'.
[ 1211.065062][T29047] OCFS2: ERROR (device loop1): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature 
[ 1211.086391][T29047] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1211.101380][T29047] OCFS2: File system is now read-only.
[ 1211.108456][T29047] (syz.1.6895,29047,0):ocfs2_find_entry_dx:1029 ERROR: status = -30
[ 1211.119451][T29047] OCFS2: ERROR (device loop1): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature 
[ 1211.138933][T29047] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1211.152733][T29047] (syz.1.6895,29047,0):ocfs2_find_entry_dx:1029 ERROR: status = -30
[ 1211.164104][T29047] (syz.1.6895,29047,0):ocfs2_mknod:502 ERROR: status = -30
[ 1211.173469][T29047] (syz.1.6895,29047,0):ocfs2_create:676 ERROR: status = -30
[ 1211.366816][T29072] macvlan0: entered promiscuous mode
[ 1211.374183][T29072] netlink: 'syz.5.6905': attribute type 1 has an invalid length.
[ 1211.420227][T29072] netlink: 'syz.5.6905': attribute type 2 has an invalid length.
[ 1211.446977][T24729] ocfs2: Unmounting device (7,1) on (node local)
[ 1211.490508][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1211.710168][T29078] loop1: detected capacity change from 0 to 1024
[ 1211.815743][T29078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1212.034654][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1212.264710][T29092] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6913'.
[ 1212.670640][T29076] loop0: detected capacity change from 0 to 32768
[ 1212.759985][   T28] audit: type=1800 audit(2000001277.490:161): pid=29076 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.6907" name="file1" dev="loop0" ino=4 res=0 errno=0
[ 1212.786610][T29100] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6917'.
[ 1213.610430][   T23] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1213.854482][   T23] usb 2-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[ 1213.877640][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1213.898612][   T23] usb 2-1: Product: syz
[ 1213.903206][   T23] usb 2-1: Manufacturer: syz
[ 1213.920612][   T23] usb 2-1: SerialNumber: syz
[ 1214.643463][   T23] rtl8150 2-1:1.0: eth17: rtl8150 is detected
[ 1214.955184][ T7262] usb 2-1: USB disconnect, device number 23
[ 1216.991067][T29168] loop0: detected capacity change from 0 to 32768
[ 1217.031707][T29168] 
[ 1217.031707][T29168]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1217.031707][T29168] 
[ 1217.146645][T29194] dummy0: entered promiscuous mode
[ 1217.166996][T29195] loop1: detected capacity change from 0 to 512
[ 1217.179040][   T68] ERROR: (device loop0): diWrite: ixpxd invalid
[ 1217.179040][   T68] 
[ 1217.193944][T29194] dummy0: left promiscuous mode
[ 1217.204213][T29195] EXT4-fs: inline encryption not supported
[ 1217.210471][T29195] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1217.244970][   T68] ERROR: (device loop0): remounting filesystem as read-only
[ 1217.254441][   T68] ERROR: (device loop0): txCommit: 
[ 1217.254441][   T68] 
[ 1217.276981][   T68] jfs_write_inode: jfs_commit_inode failed!
[ 1217.283917][T24855] 
[ 1217.283917][T24855]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1217.283917][T24855] 
[ 1217.313097][T24855] 
[ 1217.313097][T24855]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1217.313097][T24855] 
[ 1217.332017][T29195] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1217.367784][T29195] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1217.440407][T29195] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1217.479396][T29195] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.6951: inode #13: comm syz.1.6951: iget: illegal inode #
[ 1217.551476][T29195] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.6951: couldn't read orphan inode 13 (err -117)
[ 1217.639541][T29195] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1217.729490][T29195] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 1217.794326][T29195] EXT4-fs error (device loop1): __ext4_remount:6752: comm syz.1.6951: Abort forced by user
[ 1217.860157][T29195] EXT4-fs (loop1): Remounting filesystem read-only
[ 1217.894718][T29195] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[ 1218.034896][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1218.184201][T29218] loop1: detected capacity change from 0 to 512
[ 1218.268552][T29218] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.6956: Invalid inode bitmap blk 4 in block_group 0
[ 1218.322611][T29218] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1218.541607][T29226] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters
[ 1218.647744][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1218.976075][  T787] usb 6-1: new high-speed USB device number 48 using dummy_hcd
[ 1219.149062][T20992] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[ 1219.180154][  T787] usb 6-1: Using ep0 maxpacket: 8
[ 1219.192146][  T787] usb 6-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[ 1219.202448][  T787] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1219.215142][  T787] usb 6-1: Product: syz
[ 1219.219541][  T787] usb 6-1: Manufacturer: syz
[ 1219.226191][  T787] usb 6-1: SerialNumber: syz
[ 1219.234012][  T787] usb 6-1: config 0 descriptor??
[ 1219.244717][  T787] gspca_main: se401-2.14.0 probing 047d:5003
[ 1219.363151][T20992] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1219.376101][T20992] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1219.389190][T20992] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1219.399330][T20992] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1219.415274][T29235] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[ 1219.429806][T20992] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[ 1219.737518][ T7262] usb 1-1: USB disconnect, device number 23
[ 1219.949094][  T787] input: se401 as /devices/platform/dummy_hcd.5/usb6/6-1/input/input69
[ 1220.272486][T20992] usb 6-1: USB disconnect, device number 48
[ 1221.924543][T29260] loop6: detected capacity change from 0 to 40427
[ 1222.033540][T29260] F2FS-fs (loop6): invalid crc value
[ 1222.068931][T29260] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1222.316796][T29260] F2FS-fs (loop6): Start checkpoint disabled!
[ 1222.341445][T29260] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[ 1222.725340][   T11] kworker/u4:0: attempt to access beyond end of device
[ 1222.725340][   T11] loop6: rw=2049, sector=40960, nr_sectors = 40 limit=40427
[ 1222.777139][   T11] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1222.800372][   T11] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1222.845881][   T11] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1222.852888][   T11] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1222.924591][   T11] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1223.483280][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.734276][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.970672][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.296711][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1224.584707][T29351] input: syz1 as /devices/virtual/input/input70
[ 1224.732075][T22523] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1224.767020][T22523] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1224.794698][T22523] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1224.816482][T22523] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1224.837919][T22523] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1224.853448][T22523] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1225.353334][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1225.707100][T29373] program syz.1.7011 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1225.894383][T29352] chnl_net:caif_netlink_parms(): no params data found
[ 1225.916040][T29378] loop1: detected capacity change from 0 to 256
[ 1226.043205][T29378] FAT-fs (loop1): Directory bread(block 64) failed
[ 1226.068517][T29378] FAT-fs (loop1): Directory bread(block 65) failed
[ 1226.084505][T29378] FAT-fs (loop1): Directory bread(block 66) failed
[ 1226.095278][T29378] FAT-fs (loop1): Directory bread(block 67) failed
[ 1226.149122][T29378] FAT-fs (loop1): Directory bread(block 68) failed
[ 1226.164417][T29378] FAT-fs (loop1): Directory bread(block 69) failed
[ 1226.180918][T29378] FAT-fs (loop1): Directory bread(block 70) failed
[ 1226.201990][T29378] FAT-fs (loop1): Directory bread(block 71) failed
[ 1226.209137][T29378] FAT-fs (loop1): Directory bread(block 72) failed
[ 1226.233912][T29378] FAT-fs (loop1): Directory bread(block 73) failed
[ 1226.541229][T29352] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1226.579678][T29352] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1226.618561][T29352] bridge_slave_0: entered allmulticast mode
[ 1226.627053][T29352] bridge_slave_0: entered promiscuous mode
[ 1226.689547][T29352] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1226.740577][T29352] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1226.766716][T29352] bridge_slave_1: entered allmulticast mode
[ 1226.794111][T29352] bridge_slave_1: entered promiscuous mode
[ 1226.858043][T29394] loop1: detected capacity change from 0 to 64
[ 1227.132594][T22523] Bluetooth: hci0: command tx timeout
[ 1227.230328][T29352] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1227.409959][T29352] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1227.747496][T29352] team0: Port device team_slave_0 added
[ 1227.798639][T29410] loop6: detected capacity change from 0 to 2048
[ 1227.888730][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1227.954122][T29410] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1228.111979][T29418] 9p: Unknown uid 00000000004294967295
[ 1228.120794][T29352] team0: Port device team_slave_1 added
[ 1228.523260][   T12] hsr_slave_0: left promiscuous mode
[ 1228.539937][   T12] hsr_slave_1: left promiscuous mode
[ 1228.548245][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1228.557563][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1228.576695][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1228.589851][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1228.612934][   T12] batman_adv: batadv0: Interface deactivated: macsec1
[ 1228.632801][   T12] batman_adv: batadv0: Removing interface: macsec1
[ 1228.642418][   T12] bridge_slave_1: left allmulticast mode
[ 1228.648696][   T12] bridge_slave_1: left promiscuous mode
[ 1228.665367][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1228.676333][   T12] bridge_slave_0: left allmulticast mode
[ 1228.686174][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1228.741926][   T12] batadv_slave_0: left promiscuous mode
[ 1228.749409][   T12] veth1_macvtap: left promiscuous mode
[ 1228.758651][   T12] veth1_vlan: left promiscuous mode
[ 1228.766391][   T12] veth0_vlan: left promiscuous mode
[ 1229.252889][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.379329][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.386540][T22523] Bluetooth: hci0: command tx timeout
[ 1229.484368][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.525242][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.643041][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1229.718640][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1230.746026][   T12] team0 (unregistering): Port device team_slave_1 removed
[ 1230.869105][   T12] team0 (unregistering): Port device team_slave_0 removed
[ 1230.992012][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1231.122423][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1231.595008][T22523] Bluetooth: hci0: command tx timeout
[ 1232.489829][   T12] bond0 (unregistering): Released all slaves
[ 1232.760737][T29352] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1232.797771][T29352] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1232.897401][T29352] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1232.986154][T29352] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1233.015820][T29352] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1233.053747][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1233.141753][T29352] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1233.288349][T29352] hsr_slave_0: entered promiscuous mode
[ 1233.308042][T29352] hsr_slave_1: entered promiscuous mode
[ 1233.356476][T29352] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1233.371644][T29352] Cannot create hsr debugfs directory
[ 1233.546549][ T7262] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[ 1233.638268][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1233.814195][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1233.824321][ T7262] usb 6-1: Using ep0 maxpacket: 32
[ 1233.842805][T22523] Bluetooth: hci0: command tx timeout
[ 1233.881961][ T7262] usb 6-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[ 1233.893584][ T7262] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1233.902620][ T7262] usb 6-1: Product: syz
[ 1233.907914][ T7262] usb 6-1: Manufacturer: syz
[ 1233.914415][ T7262] usb 6-1: SerialNumber: syz
[ 1233.936661][ T7262] usb 6-1: config 0 descriptor??
[ 1233.989758][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.188684][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.462582][ T7262] airspy 6-1:0.0: Board ID: 00
[ 1234.475262][ T7262] airspy 6-1:0.0: Firmware version: 
[ 1234.701538][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1234.918577][ T7262] airspy 6-1:0.0: usb_control_msg() failed -71 request 0e
[ 1234.939908][ T7262] airspy 6-1:0.0: Registered as swradio24
[ 1234.954374][ T7262] airspy 6-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[ 1234.975157][ T7262] usb 6-1: USB disconnect, device number 49
[ 1235.530986][   T28] audit: type=1326 audit(2000001298.782:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29492 comm="syz.1.7047" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f03a139c799 code=0x0
[ 1235.721890][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1236.202627][T22523] Bluetooth: hci3: unexpected event for opcode 0x0c7b
[ 1236.344025][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1237.334600][T29352] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1237.401401][ T1174] block nbd2: Possible stuck request ffff888021e60000: control (read@0,4096B). Runtime 300 seconds
[ 1237.435297][T29352] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1237.493221][T29352] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1237.545557][T29352] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1237.714453][  T787] usb 6-1: new high-speed USB device number 50 using dummy_hcd
[ 1237.829697][T29352] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1237.904816][T29352] 8021q: adding VLAN 0 to HW filter on device team0
[ 1237.906607][T17373] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1237.953670][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1237.962033][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1237.986267][  T787] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1238.016391][  T787] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1238.024769][  T200] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1238.032765][  T200] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1238.048305][  T787] usb 6-1: config 0 descriptor??
[ 1238.059585][  T787] cp210x 6-1:0.0: cp210x converter detected
[ 1238.202666][T17373] usb 2-1: Using ep0 maxpacket: 16
[ 1238.252177][T17373] usb 2-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice= 0.40
[ 1238.261691][T29352] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1238.283995][T17373] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1238.294027][T17373] usb 2-1: Product: syz
[ 1238.298623][T17373] usb 2-1: Manufacturer: syz
[ 1238.304499][T17373] usb 2-1: SerialNumber: syz
[ 1238.510268][  T787] cp210x 6-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1238.561428][  T787] usb 6-1: cp210x converter now attached to ttyUSB0
[ 1238.620273][T17373] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[ 1238.721320][T17373] usb 2-1: USB disconnect, device number 24
[ 1238.753936][T29543] loop6: detected capacity change from 0 to 32768
[ 1238.804274][T29543] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.7063 (29543)
[ 1238.882292][ T7262] usb 6-1: USB disconnect, device number 50
[ 1238.901528][T29543] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1238.912065][ T7262] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1238.952591][T29352] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1238.956682][ T6684] udevd[6684]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1238.965473][T29543] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[ 1238.993411][ T7262] cp210x 6-1:0.0: device disconnected
[ 1239.083614][T29543] BTRFS info (device loop6): setting nodatacow, compression disabled
[ 1239.128559][T29543] BTRFS info (device loop6): disabling tree log
[ 1239.150441][T29543] BTRFS info (device loop6): turning on sync discard
[ 1239.170247][T29543] BTRFS info (device loop6): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1239.209338][T29543] BTRFS info (device loop6): force zstd compression, level 3
[ 1239.239534][T29352] veth0_vlan: entered promiscuous mode
[ 1239.244248][T29543] BTRFS info (device loop6): using free space tree
[ 1239.285875][T29352] veth1_vlan: entered promiscuous mode
[ 1239.325635][T29352] veth0_macvtap: entered promiscuous mode
[ 1239.350311][T29352] veth1_macvtap: entered promiscuous mode
[ 1239.414471][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1239.431649][T29543] BTRFS info (device loop6): enabling ssd optimizations
[ 1239.446860][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1239.464902][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1239.520828][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1239.564483][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1239.599047][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1239.667258][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1239.718981][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1239.762795][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1239.798162][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1239.830838][T29352] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1239.895740][T29578] netlink: 'syz.5.7064': attribute type 6 has an invalid length.
[ 1239.909872][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1239.946344][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1239.968343][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1239.996840][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1240.056858][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1240.108179][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1240.151398][  T787] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1240.151476][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1240.200304][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1240.234807][T29352] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1240.271731][T29352] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1240.321405][T29352] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1240.387645][  T787] usb 2-1: Using ep0 maxpacket: 16
[ 1240.396522][  T787] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1240.396864][T29352] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1240.419668][  T787] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 96
[ 1240.439338][  T787] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[ 1240.450685][T29352] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1240.450735][T29352] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1240.469770][T29352] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1240.470355][T24833] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1240.503200][T22523] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1240.518064][T22523] Bluetooth: hci3: Injecting HCI hardware error event
[ 1240.527027][  T787] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[ 1240.531272][T22523] Bluetooth: hci3: hardware error 0x00
[ 1240.589851][  T787] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1240.674574][  T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1240.774296][  T787] usb 2-1: SerialNumber: syz
[ 1240.791417][T29583] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1240.814087][T29583] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1240.842506][T26086] block nbd1: Possible stuck request ffff888021e30000: control (read@0,1024B). Runtime 480 seconds
[ 1240.859131][T26086] block nbd1: Possible stuck request ffff888021e30200: control (read@1024,1024B). Runtime 480 seconds
[ 1240.871540][T26086] block nbd1: Possible stuck request ffff888021e30400: control (read@2048,1024B). Runtime 480 seconds
[ 1240.879236][  T200] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1240.883664][T26086] block nbd1: Possible stuck request ffff888021e30600: control (read@3072,1024B). Runtime 480 seconds
[ 1240.911370][  T787] hub 2-1:1.0: bad descriptor, ignoring hub
[ 1240.918256][  T787] hub: probe of 2-1:1.0 failed with error -5
[ 1240.987187][  T200] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1241.156973][T29583] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1241.165742][T29583] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1241.238543][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1241.260950][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1241.694862][  T787] cdc_ether: probe of 2-1:1.0 failed with error -22
[ 1241.929811][T29605] loop3: detected capacity change from 0 to 512
[ 1242.069187][T29605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1242.126788][T29605] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1242.172423][T10151] usb 2-1: USB disconnect, device number 25
[ 1242.207364][T29605] EXT4-fs (loop3): shut down requested (1)
[ 1242.305505][T29352] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1242.700027][T22523] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1243.123278][T29636] lo: entered allmulticast mode
[ 1243.132442][T29635] lo: left allmulticast mode
[ 1244.214563][ T5831] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1244.438149][ T5831] usb 4-1: Using ep0 maxpacket: 16
[ 1244.465102][ T5831] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1244.491669][ T5831] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1244.544825][ T5831] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1244.558530][ T5831] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1244.582447][ T5831] usb 4-1: Product: syz
[ 1244.598134][ T5831] usb 4-1: Manufacturer: syz
[ 1244.603320][ T5831] usb 4-1: SerialNumber: syz
[ 1244.637875][T29641] loop1: detected capacity change from 0 to 40427
[ 1244.672550][T29641] F2FS-fs (loop1): invalid crc value
[ 1244.710622][T29641] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1244.907709][T29641] F2FS-fs (loop1): Start checkpoint disabled!
[ 1244.927772][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1244.945211][T29641] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 1245.115305][ T5831] usb 4-1: 0:2 : does not exist
[ 1245.479078][   T68] kworker/u4:4: attempt to access beyond end of device
[ 1245.479078][   T68] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1245.505165][   T68] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1245.536775][   T68] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1245.634350][ T5831] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[ 1245.739992][ T5831] usb 4-1: USB disconnect, device number 9
[ 1245.855048][T10300] udevd[10300]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1247.524669][T29705] loop1: detected capacity change from 0 to 32768
[ 1247.675408][T29705] jfs_strtoUCS: char2uni returned -22.
[ 1247.698018][T29705] charset = cp1250, char = 0x81
[ 1247.706066][T29705] gfs2: path_lookup on c::;ø�N€�…L‰´¶;o$: returned error -22
[ 1248.502746][T29750] loop6: detected capacity change from 0 to 8
[ 1249.354945][ T5775] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1249.589924][ T5775] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1249.643414][ T5775] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1249.691377][ T5775] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1249.758871][ T5775] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[ 1249.787332][ T5775] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[ 1249.827908][ T5775] usb 4-1: Product: syz
[ 1249.833232][ T5775] usb 4-1: Manufacturer: syz
[ 1249.868202][ T5775] usb 4-1: SerialNumber: syz
[ 1249.965731][T29788] batman_adv: batadv0: Adding interface: gretap2
[ 1249.989651][T29788] batman_adv: batadv0: The MTU of interface gretap2 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1250.092557][T29788] batman_adv: batadv0: Interface activated: gretap2
[ 1250.171231][ T5775] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 10 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[ 1250.516017][T17373] usb 4-1: USB disconnect, device number 10
[ 1250.532226][T17373] usblp0: removed
[ 1251.781359][ T5813] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1251.864066][T29813] loop1: detected capacity change from 0 to 40427
[ 1251.929011][T29813] F2FS-fs (loop1): invalid crc value
[ 1251.963222][T29813] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1252.027080][ T5813] usb 4-1: Using ep0 maxpacket: 32
[ 1252.036806][ T5813] usb 4-1: config 0 has an invalid interface number: 20 but max is 0
[ 1252.057267][ T5813] usb 4-1: config 0 has no interface number 0
[ 1252.091697][ T5813] usb 4-1: config 0 interface 20 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1252.135843][ T5813] usb 4-1: config 0 interface 20 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1252.158153][T29813] F2FS-fs (loop1): Start checkpoint disabled!
[ 1252.188569][T29813] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 1252.197241][ T5813] usb 4-1: config 0 interface 20 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1252.235821][ T5813] usb 4-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[ 1252.260630][ T5813] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1252.291772][ T5813] usb 4-1: Product: syz
[ 1252.305051][ T5813] usb 4-1: Manufacturer: syz
[ 1252.310196][ T5813] usb 4-1: SerialNumber: syz
[ 1252.357301][ T5813] usb 4-1: config 0 descriptor??
[ 1252.384827][T29826] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1252.675574][ T5813] usb-storage 4-1:0.20: USB Mass Storage device detected
[ 1252.724447][   T68] kworker/u4:4: attempt to access beyond end of device
[ 1252.724447][   T68] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 1252.725314][ T5813] usb-storage 4-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[ 1252.748319][   T68] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1252.786055][   T68] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1252.897029][ T5813] scsi host1: usb-storage 4-1:0.20
[ 1253.157911][T17373] usb 4-1: USB disconnect, device number 11
[ 1253.288506][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1253.362595][T29861] loop6: detected capacity change from 0 to 524287999
[ 1253.389298][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.401032][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.420233][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.431129][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.471567][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.482158][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.496875][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.507531][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.517289][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.530040][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.539923][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.539963][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.540739][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.540767][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.540947][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.540975][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.541019][T29861] ldm_validate_partition_table(): Disk read failed.
[ 1253.541167][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.541193][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.541357][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1253.541383][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1253.547861][T29861] Dev loop6: unable to read RDB block 0
[ 1253.569042][T29861]  loop6: unable to read partition table
[ 1253.569504][T29861] loop_reread_partitions: partition scan of loop6 (3Ÿ¾xИCÖ

) failed (rc=-5)
[ 1253.572992][T10300] ldm_validate_partition_table(): Disk read failed.
[ 1253.574066][T10300] Dev loop6: unable to read RDB block 0
[ 1253.575113][T10300]  loop6: unable to read partition table
[ 1253.592082][T29864] ldm_validate_partition_table(): Disk read failed.
[ 1253.758447][T29864] Dev loop6: unable to read RDB block 0
[ 1253.759401][T29864]  loop6: unable to read partition table
[ 1253.759741][T29864] loop_reread_partitions: partition scan of loop6 (3Ÿ¾xИCÖ

) failed (rc=-5)
[ 1254.096402][T29878] loop9: detected capacity change from 0 to 7
[ 1254.139686][T29878]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[ 1254.148190][T29878] loop9: partition table partially beyond EOD, truncated
[ 1254.192055][T29878] loop9: p1 size 2437361653 extends beyond EOD, truncated
[ 1254.307295][T29883] loop6: detected capacity change from 0 to 1024
[ 1254.367572][T29883] EXT4-fs: Ignoring removed bh option
[ 1254.405337][T29883] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[ 1254.419316][T10300] udevd[10300]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[ 1254.530038][T29883] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1254.839414][T24833] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1255.158570][T29902] pimreg1: tun_chr_ioctl cmd 21731
[ 1255.879005][T29916] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7150'.
[ 1256.169942][T29929] loop1: detected capacity change from 0 to 512
[ 1256.253769][T29929] EXT4-fs error (device loop1): ext4_orphan_get:1398: inode #15: comm syz.1.7153: inode has both inline data and extents flags
[ 1256.366325][T29929] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.7153: couldn't read orphan inode 15 (err -117)
[ 1256.433468][T29929] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1256.550303][T29934] loop3: detected capacity change from 0 to 2048
[ 1256.612378][T29929] EXT4-fs warning (device loop1): ext4_empty_dir:3147: inode #2: comm syz.1.7153: directory missing '.'
[ 1256.692711][T29934] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1256.709071][T29934] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1256.777518][T29352] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1256.829366][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1256.973034][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1257.369327][T29927] loop6: detected capacity change from 0 to 32768
[ 1258.292418][T29942] loop3: detected capacity change from 0 to 32768
[ 1258.398241][T29942] JBD2: Ignoring recovery information on journal
[ 1258.646172][T29942] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1259.290476][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1259.403240][T29352] ocfs2: Unmounting device (7,3) on (node local)
[ 1259.581930][T17373] kernel read not supported for file /dsp (pid: 17373 comm: kworker/0:1)
[ 1259.999302][T29983] loop1: detected capacity change from 0 to 2048
[ 1260.080977][T29983] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1260.845859][T17373] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1260.875160][T30004] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1261.060158][T17373] usb 2-1: Using ep0 maxpacket: 8
[ 1261.074410][T17373] usb 2-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[ 1261.097614][T17373] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1261.118670][T17373] usb 2-1: Product: syz
[ 1261.141537][T17373] usb 2-1: Manufacturer: syz
[ 1261.153108][T17373] usb 2-1: SerialNumber: syz
[ 1261.432860][  T787] kernel read not supported for file /dsp (pid: 787 comm: kworker/0:2)
[ 1261.466101][ T5775] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[ 1261.704548][ T5775] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1261.723246][ T5775] usb 4-1: config 0 has no interface number 0
[ 1261.730361][ T5775] usb 4-1: config 0 interface 1 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1261.795360][ T5775] usb 4-1: config 0 interface 1 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1261.818338][ T5775] usb 4-1: config 0 interface 1 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1261.862720][ T5775] usb 4-1: config 0 interface 1 has no altsetting 0
[ 1261.870531][ T5775] usb 4-1: New USB device found, idVendor=145f, idProduct=0212, bcdDevice= 0.00
[ 1261.914607][ T5775] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1261.969518][ T5775] usb 4-1: config 0 descriptor??
[ 1262.118264][T17373] usb 2-1: 2:1: cannot get freq (v2/v3): err -71
[ 1262.264946][T17373] usb 2-1: USB disconnect, device number 26
[ 1262.425427][ T7042] udevd[7042]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1262.727789][ T5775] input: HID 145f:0212 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:145F:0212.002E/input/input71
[ 1262.880664][ T5775] input: HID 145f:0212 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:145F:0212.002E/input/input72
[ 1263.033674][ T5775] uclogic 0003:145F:0212.002E: input,hidraw0: USB HID v4.06 Keypad [HID 145f:0212] on usb-dummy_hcd.3-1/input1
[ 1263.316959][ T5775] usb 4-1: USB disconnect, device number 12
[ 1263.363690][T30037] fido_id[30037]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[ 1264.071220][T30055] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[ 1264.669913][T30071] vivid-002: disconnect
[ 1264.688464][T30070] vivid-002: reconnect
[ 1265.467580][T30086] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7195'.
[ 1265.719107][T30059] loop3: detected capacity change from 0 to 40427
[ 1265.805601][T30059] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1265.814775][T30059] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1265.891867][T30059] F2FS-fs (loop3): invalid crc_offset: 33558524
[ 1265.942323][T30059] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1266.256226][T30059] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1266.308724][T30059] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1266.636105][T30059] F2FS-fs (loop3): Stopped filesystem due to reason: 0
[ 1267.306548][T30125] loop6: detected capacity change from 0 to 1024
[ 1267.764540][T30128] loop1: detected capacity change from 0 to 4096
[ 1267.786670][T30133] loop6: detected capacity change from 0 to 16
[ 1267.808966][T30133] MTD: Attempt to mount non-MTD device "/dev/loop6"
[ 1268.905750][T17373] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1269.178999][T17373] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1269.210866][T17373] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1269.249471][T17373] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1269.282511][T17373] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1269.330120][T17373] usb 2-1: SerialNumber: syz
[ 1269.549083][ T1174] block nbd2: Possible stuck request ffff888021e60000: control (read@0,4096B). Runtime 330 seconds
[ 1269.625392][T17373] usb 2-1: 0:2 : does not exist
[ 1269.750395][T17373] usb 2-1: USB disconnect, device number 27
[ 1269.915333][T10300] udevd[10300]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1270.574628][T30197] loop1: detected capacity change from 0 to 256
[ 1271.009954][T30204] loop1: detected capacity change from 0 to 4096
[ 1271.061559][T30204] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 1271.141067][T30204] ntfs3: loop1: Inode r=19 is not in use!
[ 1271.147322][T30204] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[ 1271.219954][T30204] ntfs3: loop1: Failed to initialize $Extend/$Reparse.
[ 1271.463339][  T787] usb 6-1: new high-speed USB device number 51 using dummy_hcd
[ 1271.680400][  T787] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1271.697377][T30225] batadv0: entered promiscuous mode
[ 1271.734882][  T787] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1271.746447][T30225] macsec1: entered allmulticast mode
[ 1271.772685][T30225] batadv0: entered allmulticast mode
[ 1271.782070][  T787] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1271.815721][  T787] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1271.840180][  T787] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1271.856907][T30225] batadv0: left allmulticast mode
[ 1271.866203][T30225] batadv0: left promiscuous mode
[ 1271.908936][  T787] usb 6-1: config 0 descriptor??
[ 1272.074189][T30235] netlink: 'syz.1.7238': attribute type 5 has an invalid length.
[ 1272.104026][T30235] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7238'.
[ 1272.408721][  T787] plantronics 0003:047F:FFFF.002F: No inputs registered, leaving
[ 1272.456725][  T787] plantronics 0003:047F:FFFF.002F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[ 1272.678914][T30248] program syz.3.7242 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1272.750817][  T787] usb 6-1: USB disconnect, device number 51
[ 1272.753549][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1272.989075][T26086] block nbd1: Possible stuck request ffff888021e30000: control (read@0,1024B). Runtime 510 seconds
[ 1273.002017][T26086] block nbd1: Possible stuck request ffff888021e30200: control (read@1024,1024B). Runtime 510 seconds
[ 1273.015143][T26086] block nbd1: Possible stuck request ffff888021e30400: control (read@2048,1024B). Runtime 510 seconds
[ 1273.028738][T26086] block nbd1: Possible stuck request ffff888021e30600: control (read@3072,1024B). Runtime 510 seconds
[ 1273.041146][T30254] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7244'.
[ 1273.820736][   T28] audit: type=1326 audit(2000001334.594:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1273.932332][   T28] audit: type=1326 audit(2000001334.594:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.021392][   T28] audit: type=1326 audit(2000001334.631:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f9ebfb9b607 code=0x7ffc0000
[ 1274.132493][   T28] audit: type=1326 audit(2000001334.631:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.132803][T30288] loop3: detected capacity change from 0 to 16
[ 1274.221318][   T28] audit: type=1326 audit(2000001334.631:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.225651][T30288] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1274.356301][   T28] audit: type=1326 audit(2000001334.650:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.478509][   T28] audit: type=1326 audit(2000001334.650:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.572921][   T28] audit: type=1326 audit(2000001334.669:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.697714][   T28] audit: type=1326 audit(2000001334.669:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1274.795400][   T28] audit: type=1326 audit(2000001334.669:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30277 comm="syz.5.7253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x7ffc0000
[ 1275.374431][T30314] macvtap1: entered allmulticast mode
[ 1275.392839][T30314] veth0_macvtap: entered allmulticast mode
[ 1275.636782][T30285] loop1: detected capacity change from 0 to 40427
[ 1275.717769][T30285] F2FS-fs (loop1): invalid crc value
[ 1275.798320][T30285] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1275.982357][T30285] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[ 1276.274795][T30339] F2FS-fs (loop1): Stopped filesystem due to reason: 0
[ 1277.307172][T17373] usb 6-1: new high-speed USB device number 52 using dummy_hcd
[ 1277.542275][T17373] usb 6-1: Using ep0 maxpacket: 8
[ 1277.555332][T17373] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1277.576498][T17373] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[ 1277.600171][T17373] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1277.637006][T17373] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid maxpacket 65535, setting to 1024
[ 1277.669273][T17373] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1024
[ 1277.682564][T30341] loop3: detected capacity change from 0 to 40427
[ 1277.703976][T17373] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0
[ 1277.719242][T17373] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1277.734472][T17373] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1277.746959][T30341] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1277.755005][T30341] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1277.815257][T17373] usb 6-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84
[ 1277.852553][T17373] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1277.899772][T17373] usb 6-1: Product: syz
[ 1277.904187][T17373] usb 6-1: Manufacturer: syz
[ 1277.919880][T30341] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1277.926754][T17373] usb 6-1: SerialNumber: syz
[ 1277.952066][T17373] usb 6-1: config 0 descriptor??
[ 1277.958582][T30356] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1278.008253][T17373] usb 6-1: Quirk or no altest; falling back to MIDI 1.0
[ 1278.075161][T30341] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1278.104950][T30341] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1278.134497][T17373] snd-usb-audio: probe of 6-1:0.0 failed with error -12
[ 1278.204452][ T6090] udevd[6090]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1278.278336][T30341] F2FS-fs (loop3): Stopped filesystem due to reason: 0
[ 1278.307317][T30378] loop1: detected capacity change from 0 to 4096
[ 1278.410741][T30378] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[ 1278.592057][    T8] usb 6-1: USB disconnect, device number 52
[ 1279.200047][T30402] netlink: 64691 bytes leftover after parsing attributes in process `syz.1.7286'.
[ 1279.608579][T30415] loop1: detected capacity change from 0 to 256
[ 1280.337695][T30431] binder: 30428:30431 ioctl 40046205 0 returned -22
[ 1280.538791][T30401] loop6: detected capacity change from 0 to 40427
[ 1280.587108][T30401] F2FS-fs (loop6): build fault injection attr: rate: 690, type: 0x7ffff
[ 1280.619291][T30401] F2FS-fs (loop6): Image doesn't support compression
[ 1280.644810][T30401] F2FS-fs (loop6): Image doesn't support compression
[ 1280.685654][T30401] F2FS-fs (loop6): invalid crc value
[ 1280.741657][T30401] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1280.957036][T30401] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1281.141267][T30401] F2FS-fs (loop6): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_page+0x1d7/0x910
[ 1281.299111][T24833] syz-executor: attempt to access beyond end of device
[ 1281.299111][T24833] loop6: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 1281.358614][T24833] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1281.369597][T24833] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1281.388143][T24833] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 1281.768720][T30430] loop1: detected capacity change from 0 to 40427
[ 1281.871973][T30430] F2FS-fs (loop1): invalid crc value
[ 1281.917291][T30430] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1282.182744][T30430] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1282.373995][  T787] usb 6-1: new full-speed USB device number 53 using dummy_hcd
[ 1282.435650][T30466] f2fs_ckpt-7:1: attempt to access beyond end of device
[ 1282.435650][T30466] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1282.468823][T30466] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1282.597982][  T787] usb 6-1: config 0 has no interfaces?
[ 1282.608919][  T787] usb 6-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[ 1282.619135][  T787] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1282.633361][  T787] usb 6-1: config 0 descriptor??
[ 1283.061637][T12973] usb 6-1: USB disconnect, device number 53
[ 1283.554689][T30474] loop3: detected capacity change from 0 to 40427
[ 1283.641910][T30474] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1283.749551][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1283.872885][T30474] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1284.102382][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1284.210607][T30486] loop6: detected capacity change from 0 to 40427
[ 1284.258589][T30486] F2FS-fs (loop6): build fault injection attr: rate: 0, type: 0x35f7
[ 1284.285056][T30486] F2FS-fs (loop6): build fault injection attr: rate: 690, type: 0x7ffff
[ 1284.311995][T30486] F2FS-fs (loop6): Image doesn't support compression
[ 1284.314252][T29352] syz-executor: attempt to access beyond end of device
[ 1284.314252][T29352] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1284.348585][T30486] F2FS-fs (loop6): invalid crc value
[ 1284.386073][T29352] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1284.408708][T30486] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1284.533057][    T8] usb 6-1: new high-speed USB device number 54 using dummy_hcd
[ 1284.640313][T30486] F2FS-fs (loop6): Start checkpoint disabled!
[ 1284.697279][T30486] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[ 1284.757611][    T8] usb 6-1: Using ep0 maxpacket: 32
[ 1284.797503][    T8] usb 6-1: config 0 has an invalid interface number: 184 but max is 0
[ 1284.832501][    T8] usb 6-1: config 0 has no interface number 0
[ 1284.864530][    T8] usb 6-1: config 0 interface 184 has no altsetting 0
[ 1284.918261][    T8] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1284.943981][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1284.981961][    T8] usb 6-1: Product: syz
[ 1284.987705][T30486] F2FS-fs (loop6): inject no more block in inc_valid_node_count of f2fs_new_node_page+0x187/0x910
[ 1285.010793][    T8] usb 6-1: Manufacturer: syz
[ 1285.024457][    T8] usb 6-1: SerialNumber: syz
[ 1285.059010][    T8] usb 6-1: config 0 descriptor??
[ 1285.071211][    T8] smsc75xx v1.0.0
[ 1285.425411][   T11] kworker/u4:0: attempt to access beyond end of device
[ 1285.425411][   T11] loop6: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[ 1285.474364][   T11] F2FS-fs (loop6): Remounting filesystem read-only
[ 1285.499779][   T11] F2FS-fs (loop6): Remounting filesystem read-only
[ 1285.517535][   T11] F2FS-fs (loop6): Remounting filesystem read-only
[ 1285.959595][    T8] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71
[ 1285.984618][    T8] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1286.021828][    T8] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1286.037930][T30521] loop1: detected capacity change from 0 to 32768
[ 1286.066577][    T8] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1286.071356][T30521] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.7316 (30521)
[ 1286.101480][    T8] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[ 1286.156263][    T8] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1286.172075][T30521] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1286.190257][    T8] smsc75xx: probe of 6-1:0.184 failed with error -71
[ 1286.223227][T30521] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1286.232417][T30521] BTRFS info (device loop1): force clearing of disk cache
[ 1286.234716][    T8] usb 6-1: USB disconnect, device number 54
[ 1286.264813][T30521] BTRFS info (device loop1): metadata ratio 0
[ 1286.296693][T30521] BTRFS info (device loop1): enabling ssd optimizations
[ 1286.304393][T30521] BTRFS info (device loop1): using spread ssd allocation scheme
[ 1286.379532][T30521] BTRFS info (device loop1): using free space tree
[ 1286.591887][T30521] BTRFS info (device loop1): auto enabling async discard
[ 1286.639277][T30521] BTRFS info (device loop1): rebuilding free space tree
[ 1286.885787][T22523] block nbd3: Receive control failed (result -32)
[ 1287.229564][T24729] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1287.434865][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1287.553592][T10300] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 11 /dev/loop1 scanned by udevd (10300)
[ 1287.602240][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1287.741999][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1287.932013][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1288.402477][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1288.526062][T30601] loop6: detected capacity change from 0 to 128
[ 1288.561542][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1288.734766][T30601] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1288.824542][T30606] bridge0: port 4(ip6gretap0) entered blocking state
[ 1288.837826][T30607] loop3: detected capacity change from 0 to 2048
[ 1288.850636][T30606] bridge0: port 4(ip6gretap0) entered disabled state
[ 1288.851663][T30601] ext4 filesystem being mounted at /391/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1288.904768][T30607] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1288.909821][T30606] ip6gretap0: entered allmulticast mode
[ 1288.972826][T30606] ip6gretap0: entered promiscuous mode
[ 1289.201961][T24833] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1289.904476][T30633] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7344'.
[ 1290.267677][T30642] bridge0: port 3(ip6gretap0) entered blocking state
[ 1290.302011][T30642] bridge0: port 3(ip6gretap0) entered disabled state
[ 1290.346838][T30642] ip6gretap0: entered allmulticast mode
[ 1290.370951][T30642] ip6gretap0: entered promiscuous mode
[ 1290.411434][T30642] bridge0: port 3(ip6gretap0) entered blocking state
[ 1290.419067][T30642] bridge0: port 3(ip6gretap0) entered forwarding state
[ 1290.668032][T22523] block nbd4: Receive control failed (result -32)
[ 1290.796314][T30625] loop1: detected capacity change from 0 to 32768
[ 1290.882763][T30625] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1291.136252][T30625] XFS (loop1): Ending clean mount
[ 1291.293681][T30625] XFS (loop1): Quotacheck needed: Please wait.
[ 1291.742894][T30625] XFS (loop1): Quotacheck: Done.
[ 1292.342015][T24729] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1292.512132][T30673] loop6: detected capacity change from 0 to 131072
[ 1292.545495][T30673] F2FS-fs (loop6): invalid crc value
[ 1292.567288][T30673] F2FS-fs (loop6): Found nat_bits in checkpoint
[ 1292.648212][T30673] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[ 1292.793560][T30696] loop3: detected capacity change from 0 to 256
[ 1292.811320][T30696] exfat: Deprecated parameter 'utf8'
[ 1292.872878][T30673] F2FS-fs (loop6): inconsistent node block, nid:7, node_footer[nid:2782593031,ino:0,ofs:0,cpver:1219692001,blkaddr:4611]
[ 1292.880049][T30696] exfat: Deprecated parameter 'namecase'
[ 1292.962366][T30696] exfat: Deprecated parameter 'utf8'
[ 1293.027872][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1293.104917][T30696] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[ 1293.302933][T30696] syz.3.7359: attempt to access beyond end of device
[ 1293.302933][T30696] loop3: rw=524288, sector=34359738488, nr_sectors = 8 limit=256
[ 1293.383065][T30702] syz.3.7359: attempt to access beyond end of device
[ 1293.383065][T30702] loop3: rw=0, sector=34359738488, nr_sectors = 1 limit=256
[ 1293.416996][T30696] syz.3.7359: attempt to access beyond end of device
[ 1293.416996][T30696] loop3: rw=0, sector=34359738488, nr_sectors = 8 limit=256
[ 1293.500492][   T28] kauditd_printk_skb: 1 callbacks suppressed
[ 1293.500510][   T28] audit: type=1800 audit(2000001353.014:174): pid=30696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.7359" name="file1" dev="loop3" ino=1048848 res=0 errno=0
[ 1293.960403][T30712] loop3: detected capacity change from 0 to 512
[ 1294.182925][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1294.674413][T30732] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1295.057046][T30749] loop3: detected capacity change from 0 to 512
[ 1295.220030][T30749] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1295.234534][T30749] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1295.258250][T30749] EXT4-fs error (device loop3): ext4_get_first_dir_block:3592: inode #12: block 32: comm syz.3.7372: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[ 1295.281976][T30749] EXT4-fs (loop3): Remounting filesystem read-only
[ 1295.422288][T29352] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1296.360229][T30738] loop6: detected capacity change from 0 to 32768
[ 1296.386275][T30738] JBD2: Ignoring recovery information on journal
[ 1296.520723][T30738] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1296.615863][T30785] loop1: detected capacity change from 0 to 512
[ 1296.675621][T30785] EXT4-fs error (device loop1): ext4_orphan_get:1398: inode #15: comm syz.1.7381: iget: bad i_size value: 38620345925642
[ 1296.712297][T30785] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.7381: couldn't read orphan inode 15 (err -117)
[ 1296.803628][T30785] EXT4-fs (loop1): mounted filesystem 00000000-0000-00a1-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1297.121767][T24833] ocfs2: Unmounting device (7,6) on (node local)
[ 1297.130633][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-00a1-0000-000000000000.
[ 1297.185205][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1297.645295][T30772] loop3: detected capacity change from 0 to 32768
[ 1297.863685][T30772] JBD2: Ignoring recovery information on journal
[ 1297.982674][T30772] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1298.411215][T30805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7385'.
[ 1298.636546][T30811] loop1: detected capacity change from 0 to 64
[ 1298.738157][T30791] loop6: detected capacity change from 0 to 32768
[ 1298.801088][T30791] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop6 scanned by syz.6.7382 (30791)
[ 1298.816466][T29352] ocfs2: Unmounting device (7,3) on (node local)
[ 1298.983632][T30791] BTRFS info (device loop6): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[ 1299.049287][T30791] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[ 1299.091842][T30791] BTRFS info (device loop6): using free space tree
[ 1299.455552][T30791] BTRFS info (device loop6): enabling ssd optimizations
[ 1299.463089][T30791] BTRFS info (device loop6): auto enabling async discard
[ 1300.137434][T24833] BTRFS info (device loop6): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[ 1300.473554][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1300.515283][T10300] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 10 /dev/loop6 scanned by udevd (10300)
[ 1300.774745][T30868] input: syz1 as /devices/virtual/input/input73
[ 1301.013773][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1301.228186][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1301.670254][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1301.717534][ T1174] block nbd2: Possible stuck request ffff888021e60000: control (read@0,4096B). Runtime 360 seconds
[ 1301.778648][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1301.887909][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1302.284520][T30896] loop3: detected capacity change from 0 to 164
[ 1302.486533][T30902] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7417'.
[ 1303.172935][T30918] loop6: detected capacity change from 0 to 256
[ 1303.201039][T30918] exfat: Deprecated parameter 'utf8'
[ 1303.223648][T30918] exfat: Deprecated parameter 'namecase'
[ 1303.240753][T30918] exfat: Deprecated parameter 'utf8'
[ 1303.304836][T30918] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[ 1303.441452][T30918] syz.6.7424: attempt to access beyond end of device
[ 1303.441452][T30918] loop6: rw=524288, sector=34359738488, nr_sectors = 8 limit=256
[ 1303.504858][T30918] syz.6.7424: attempt to access beyond end of device
[ 1303.504858][T30918] loop6: rw=0, sector=34359738488, nr_sectors = 8 limit=256
[ 1303.535346][T30925] syz.6.7424: attempt to access beyond end of device
[ 1303.535346][T30925] loop6: rw=0, sector=34359738488, nr_sectors = 1 limit=256
[ 1303.588304][   T28] audit: type=1800 audit(2000001362.444:175): pid=30918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.7424" name="file1" dev="loop6" ino=1048849 res=0 errno=0
[ 1304.168390][T30938] loop6: detected capacity change from 0 to 4096
[ 1304.355623][T30911] loop1: detected capacity change from 0 to 40427
[ 1304.385381][T30911] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x7ffff
[ 1304.435804][T30911] F2FS-fs (loop1): invalid crc value
[ 1304.531663][T30945] loop3: detected capacity change from 0 to 128
[ 1304.541914][T30911] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1304.589345][T30945] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1304.657677][T30945] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1304.844208][T30911] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1305.103852][T30942] f2fs_ckpt-7:1: attempt to access beyond end of device
[ 1305.103852][T30942] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1305.123814][T26086] block nbd1: Possible stuck request ffff888021e30000: control (read@0,1024B). Runtime 540 seconds
[ 1305.135961][T26086] block nbd1: Possible stuck request ffff888021e30200: control (read@1024,1024B). Runtime 540 seconds
[ 1305.149937][T26086] block nbd1: Possible stuck request ffff888021e30400: control (read@2048,1024B). Runtime 540 seconds
[ 1305.163771][T26086] block nbd1: Possible stuck request ffff888021e30600: control (read@3072,1024B). Runtime 540 seconds
[ 1305.184153][T30954] loop6: detected capacity change from 0 to 256
[ 1305.216004][T30942] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1305.345292][T30954] FAT-fs (loop6): Directory bread(block 64) failed
[ 1305.396075][T30954] FAT-fs (loop6): Directory bread(block 65) failed
[ 1305.425841][T30954] FAT-fs (loop6): Directory bread(block 66) failed
[ 1305.464505][T30954] FAT-fs (loop6): Directory bread(block 67) failed
[ 1305.472251][T30954] FAT-fs (loop6): Directory bread(block 68) failed
[ 1305.511517][T30954] FAT-fs (loop6): Directory bread(block 69) failed
[ 1305.540866][T30954] FAT-fs (loop6): Directory bread(block 70) failed
[ 1305.547946][T30954] FAT-fs (loop6): Directory bread(block 71) failed
[ 1305.591208][T30954] FAT-fs (loop6): Directory bread(block 72) failed
[ 1305.598326][T30954] FAT-fs (loop6): Directory bread(block 73) failed
[ 1306.285461][T30972] loop1: detected capacity change from 0 to 512
[ 1306.315393][T30972] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1306.395117][T30972] EXT4-fs (loop1): 1 truncate cleaned up
[ 1306.405466][T30972] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1306.531852][T24729] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1306.821700][T30985] loop6: detected capacity change from 0 to 1024
[ 1306.850991][T30985] EXT4-fs: Ignoring removed orlov option
[ 1306.874758][T30985] EXT4-fs (loop6): stripe (9) is not aligned with cluster size (16), stripe is disabled
[ 1306.945649][T30985] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1307.193803][T24833] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1307.697783][T31003] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7455'.
[ 1307.894270][T31007] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7456'.
[ 1307.937116][T31007] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7456'.
[ 1307.962346][T31007] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7456'.
[ 1308.011670][T31009] Falling back ldisc for ttyS3.
[ 1308.700941][T31025] loop3: detected capacity change from 0 to 4096
[ 1308.739222][T31025] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1308.783669][T31025] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1308.827264][T31025] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1308.900530][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1309.114240][T29352] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1309.220641][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1309.254603][T31042] loop6: detected capacity change from 0 to 1024
[ 1309.439153][T31047] openvswitch: netlink: Actions may not be safe on all matching packets
[ 1310.599722][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[ 1311.838919][T31088] loop6: detected capacity change from 0 to 32768
[ 1311.884003][T31088] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 scanned by syz.6.7487 (31088)
[ 1311.953575][T31088] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1311.990515][T31088] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[ 1312.038088][T31088] BTRFS info (device loop6): enabling auto defrag
[ 1312.079252][T31088] BTRFS info (device loop6): use no compression
[ 1312.086168][T31088] BTRFS info (device loop6): max_inline at 4096
[ 1312.143467][T31088] BTRFS info (device loop6): using free space tree
[ 1312.424637][T31088] BTRFS info (device loop6): enabling ssd optimizations
[ 1312.453459][T31088] BTRFS info (device loop6): auto enabling async discard
[ 1312.927240][T24833] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1313.236193][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1313.388489][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1314.128099][T31157] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7502'.
[ 1314.545548][T31165] loop3: detected capacity change from 0 to 512
[ 1314.764026][T31165] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1314.873112][T31165] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1315.012117][T31176] loop1: detected capacity change from 0 to 64
[ 1315.203549][T31165] EXT4-fs error (device loop3): ext4_get_first_dir_block:3606: inode #12: comm syz.3.7505: directory missing '..'
[ 1315.459005][T29352] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1316.479734][T31222] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.7524'.
[ 1317.256463][T31240] __sock_release: fasync list not empty!
[ 1317.328644][T31243] netlink: 27 bytes leftover after parsing attributes in process `syz.1.7529'.
[ 1317.412222][T31228] loop3: detected capacity change from 0 to 32768
[ 1317.508370][T31228] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1317.766170][T31228] XFS (loop3): Ending clean mount
[ 1317.825195][T31228] XFS (loop3): Quotacheck needed: Please wait.
[ 1318.092495][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1318.226246][T31228] XFS (loop3): Quotacheck: Done.
[ 1318.644541][T29352] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1319.759823][T31278] loop6: detected capacity change from 0 to 32768
[ 1319.801470][T31278] (syz.6.7537,31278,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1319.830521][T31294] loop1: detected capacity change from 0 to 128
[ 1319.838637][T31278] (syz.6.7537,31278,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1319.878060][T31294] FAT-fs (loop1): Directory bread(block 524322) failed
[ 1319.940124][T31294] FAT-fs (loop1): Directory bread(block 524323) failed
[ 1319.997652][T31294] FAT-fs (loop1): Directory bread(block 524324) failed
[ 1320.011334][T31278] JBD2: Ignoring recovery information on journal
[ 1320.042871][T31294] FAT-fs (loop1): Directory bread(block 524325) failed
[ 1320.050650][T31294] FAT-fs (loop1): Directory bread(block 524326) failed
[ 1320.121762][T31294] FAT-fs (loop1): Directory bread(block 524327) failed
[ 1320.131902][T31294] FAT-fs (loop1): Directory bread(block 524328) failed
[ 1320.141217][T31294] FAT-fs (loop1): Directory bread(block 524329) failed
[ 1320.231742][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1320.245649][T31294] FAT-fs (loop1): Directory bread(block 524322) failed
[ 1320.254976][T31294] FAT-fs (loop1): Directory bread(block 524323) failed
[ 1320.289517][T31278] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1320.413985][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1320.947666][T31311] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7546'.
[ 1320.983366][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1321.060748][T24833] ocfs2: Unmounting device (7,6) on (node local)
[ 1321.121952][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1321.134378][T17373] usb 6-1: new high-speed USB device number 55 using dummy_hcd
[ 1321.337196][T17373] usb 6-1: too many configurations: 9, using maximum allowed: 8
[ 1321.376324][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.405172][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.443295][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.466018][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.486013][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.517877][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.549715][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.561225][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.592719][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.601904][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.614816][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.626597][    T8] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1321.636383][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.651755][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.663337][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.684445][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.704249][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.726751][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.745985][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.780432][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.823163][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.856473][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.870658][    T8] usb 2-1: Using ep0 maxpacket: 16
[ 1321.882346][T17373] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[ 1321.895182][    T8] usb 2-1: config 0 has an invalid interface number: 2 but max is 0
[ 1321.904829][    T8] usb 2-1: config 0 has no interface number 0
[ 1321.911427][    T8] usb 2-1: config 0 interface 2 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1321.925303][T17373] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[ 1321.948318][T17373] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1321.959446][    T8] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1321.976503][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1321.989027][T17373] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[ 1322.045088][    T8] usb 2-1: config 0 descriptor??
[ 1322.057299][T17373] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[ 1322.094827][T17373] usb 6-1: Product: syz
[ 1322.099989][T17373] usb 6-1: Manufacturer: syz
[ 1322.118060][T17373] usb 6-1: SerialNumber: syz
[ 1322.140474][T17373] usb 6-1: config 0 descriptor??
[ 1322.176107][T17373] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[ 1322.194348][T31334] tipc: Started in network mode
[ 1322.212440][T31334] tipc: Node identity ac14140f, cluster identity 4711
[ 1322.243499][T31319] loop3: detected capacity change from 0 to 32768
[ 1322.249228][T31334] tipc: New replicast peer: 255.255.255.255
[ 1322.281722][T31334] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1322.599241][    T8] mcp2221 0003:04D8:00DD.0030: unknown main item tag 0x0
[ 1322.646724][    T8] mcp2221 0003:04D8:00DD.0030: unknown main item tag 0x0
[ 1322.697380][    T8] mcp2221 0003:04D8:00DD.0030: unknown main item tag 0x0
[ 1322.738592][T17373] usb 6-1: USB disconnect, device number 55
[ 1322.745345][    T8] mcp2221 0003:04D8:00DD.0030: unknown main item tag 0x0
[ 1322.756347][T17373] yurex 6-1:0.0: USB YUREX #0 now disconnected
[ 1322.773193][    T8] mcp2221 0003:04D8:00DD.0030: unknown main item tag 0x0
[ 1322.790880][    T8] mcp2221 0003:04D8:00DD.0030: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input2
[ 1322.813614][    C0] usb 2-1: input irq status -75 received
[ 1323.185887][ T5813] usb 2-1: USB disconnect, device number 28
[ 1323.474524][T17373] tipc: Node number set to 2886997007
[ 1323.740323][T31360] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7560'.
[ 1323.762636][T31360] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7560'.
[ 1324.406328][   T28] audit: type=1800 audit(2000001381.912:176): pid=31369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.1.7565" name="/newroot/487/bus/#2555//deleted" dev="tmpfs" ino=2555 res=0 errno=0
[ 1324.740685][T31388] loop6: detected capacity change from 0 to 1024
[ 1324.838536][T31388] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1324.933392][T31388] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1325.088554][T31400] loop3: detected capacity change from 0 to 256
[ 1325.090026][T31388] EXT4-fs error (device loop6): ext4_map_blocks:718: inode #15: comm syz.6.7574: lblock 0 mapped to illegal pblock 0 (length 1)
[ 1325.096269][T31400] exfat: Deprecated parameter 'utf8'
[ 1325.196917][T31388] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[ 1325.236773][T31400] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[ 1325.238046][T31388] EXT4-fs (loop6): This should not happen!! Data will be lost
[ 1325.238046][T31388] 
[ 1325.307557][T31388] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #15: comm syz.6.7574: lblock 0 mapped to illegal pblock 0 (length 1)
[ 1325.409461][T31406] loop1: detected capacity change from 0 to 128
[ 1325.478444][T31406] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1325.558488][T31406] ext4 filesystem being mounted at /491/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1325.658280][T24833] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1325.723052][T24729] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1326.260554][   T28] audit: type=1326 audit(2000001383.662:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31420 comm="syz.5.7587" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9ebfb9c799 code=0x0
[ 1326.285326][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1326.432321][T31429] loop3: detected capacity change from 0 to 16
[ 1326.482859][T31429] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1327.294772][T31435] loop6: detected capacity change from 0 to 32768
[ 1327.333209][T31435] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 scanned by syz.6.7592 (31435)
[ 1327.364974][   T68] wlan1: Trigger new scan to find an IBSS to join
[ 1327.391388][T31435] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1327.425862][T31435] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[ 1327.460083][T31435] BTRFS info (device loop6): enabling auto defrag
[ 1327.486487][T31435] BTRFS info (device loop6): use no compression
[ 1327.514755][T31435] BTRFS info (device loop6): max_inline at 4096
[ 1327.535455][T31435] BTRFS info (device loop6): using free space tree
[ 1327.732715][T31435] BTRFS info (device loop6): enabling ssd optimizations
[ 1327.767470][T31435] BTRFS info (device loop6): auto enabling async discard
[ 1327.851756][T31468] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1328.201906][T31472] loop1: detected capacity change from 0 to 2048
[ 1328.269020][T31472] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1328.391225][ T5775] usb 4-1: new low-speed USB device number 13 using dummy_hcd
[ 1328.521438][T24833] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1328.648022][ T5775] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1328.670317][ T5775] usb 4-1: config 0 has no interface number 0
[ 1328.676928][ T5775] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1328.762558][ T5775] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1328.780971][ T5775] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1328.840307][ T5775] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1328.909506][ T5775] usb 4-1: config 0 descriptor??
[ 1328.945083][T31471] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1329.025325][ T5775] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1329.369042][    T8] usb 4-1: USB disconnect, device number 13
[ 1329.375580][    C0] iowarrior 4-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[ 1329.616440][T31497] netlink: 548 bytes leftover after parsing attributes in process `syz.1.7613'.
[ 1329.902339][T31501] netlink: 112 bytes leftover after parsing attributes in process `syz.5.7615'.
[ 1329.981907][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1330.605295][   T68] wlan1: Trigger new scan to find an IBSS to join
[ 1330.815480][T31509] loop6: detected capacity change from 0 to 32768
[ 1330.825371][T31505] loop1: detected capacity change from 0 to 32768
[ 1330.840340][T31509] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 11
[ 1330.917814][T31505] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[ 1330.950179][T31505] JBD2: Ignoring recovery information on journal
[ 1331.165977][T31505] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1331.188073][T31526] 
[ 1331.188370][T29553] BTRFS error: device /dev/loop6 already registered with a higher generation, found 8 expect 11
[ 1331.190481][T31526] =====================================================
[ 1331.190490][T31526] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected
[ 1331.190500][T31526] syzkaller #0 Not tainted
[ 1331.190511][T31526] -----------------------------------------------------
[ 1331.228939][T31526] syz.6.7626/31526 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[ 1331.236794][T31526] ffff88805f4884b0 (&new->fa_lock){....}-{2:2}, at: kill_fasync+0x192/0x4b0
[ 1331.246327][T31526] 
[ 1331.246327][T31526] and this task is already holding:
[ 1331.254051][T31526] ffff888067eb6028 (&client->buffer_lock){....}-{2:2}, at: evdev_pass_values+0xcb/0xab0
[ 1331.264197][T31526] which would create a new lock dependency:
[ 1331.270361][T31526]  (&client->buffer_lock){....}-{2:2} -> (&new->fa_lock){....}-{2:2}
[ 1331.278855][T31526] 
[ 1331.278855][T31526] but this new dependency connects a HARDIRQ-irq-safe lock:
[ 1331.289371][T31526]  (&dev->event_lock#2){-.-.}-{2:2}
[ 1331.289406][T31526] 
[ 1331.289406][T31526] ... which became HARDIRQ-irq-safe at:
[ 1331.304349][T31526]   lock_acquire+0x19e/0x420
[ 1331.309225][T31526]   _raw_spin_lock_irqsave+0xb4/0x100
[ 1331.315242][T31526]   input_event+0x7a/0xc0
[ 1331.319677][T31526]   psmouse_report_standard_packet+0x53/0x200
[ 1331.326287][T31526]   psmouse_process_byte+0x478/0x670
[ 1331.331810][T31526]   psmouse_handle_byte+0x43/0x490
[ 1331.337233][T31526]   ps2_interrupt+0x164/0x980
[ 1331.342569][T31526]   serio_interrupt+0x8b/0x130
[ 1331.347395][T31526]   i8042_interrupt+0x385/0x710
[ 1331.352373][T31526]   __handle_irq_event_percpu+0x271/0x940
[ 1331.358498][T31526]   handle_irq_event+0x8b/0x1e0
[ 1331.363712][T31526]   handle_edge_irq+0x247/0xb30
[ 1331.368575][T31526]   __common_interrupt+0x13b/0x230
[ 1331.374133][T31526]   common_interrupt+0xb4/0xd0
[ 1331.379259][T31526]   asm_common_interrupt+0x26/0x40
[ 1331.384724][T31526]   _raw_spin_unlock_irqrestore+0xc0/0x120
[ 1331.390991][T31526]   i8042_aux_write+0x109/0x170
[ 1331.396135][T31526]   ps2_do_sendbyte+0x1fd/0x6f0
[ 1331.401107][T31526]   ps2_sendbyte+0x5f/0x120
[ 1331.405981][T31526]   cypress_send_ext_cmd+0x244/0x930
[ 1331.411634][T31526]   cypress_detect+0x93/0x1a0
[ 1331.416594][T31526]   psmouse_extensions+0x471/0xc00
[ 1331.421887][T31526]   psmouse_switch_protocol+0xc8/0x5f0
[ 1331.427514][T31526]   psmouse_connect+0x8d8/0x14c0
[ 1331.432632][T31526]   serio_driver_probe+0x7a/0xa0
[ 1331.437772][T31526]   really_probe+0x25b/0xb20
[ 1331.442465][T31526]   __driver_probe_device+0x18c/0x330
[ 1331.447842][T31526]   driver_probe_device+0x4f/0x420
[ 1331.453247][T31526]   __driver_attach+0x44e/0x6e0
[ 1331.458492][T31526]   bus_for_each_dev+0x235/0x2b0
[ 1331.464054][T31526]   serio_handle_event+0x1a2/0x860
[ 1331.469726][T31526]   process_scheduled_works+0xa5d/0x15d0
[ 1331.476024][T31526]   worker_thread+0xa55/0xfc0
[ 1331.481267][T31526]   kthread+0x2fa/0x390
[ 1331.485817][T31526]   ret_from_fork+0x48/0x80
[ 1331.490438][T31526]   ret_from_fork_asm+0x11/0x20
[ 1331.496023][T31526] 
[ 1331.496023][T31526] to a HARDIRQ-irq-unsafe lock:
[ 1331.503587][T31526]  (tasklist_lock){.+.+}-{2:2}
[ 1331.503613][T31526] 
[ 1331.503613][T31526] ... which became HARDIRQ-irq-unsafe at:
[ 1331.516974][T31526] ...
[ 1331.516981][T31526]   lock_acquire+0x19e/0x420
[ 1331.524267][T31526]   _raw_read_lock+0x36/0x50
[ 1331.528964][T31526]   do_wait+0x294/0xae0
[ 1331.533220][T31526]   kernel_wait+0xd7/0x1c0
[ 1331.537847][T31526]   call_usermodehelper_exec_work+0xb9/0x220
[ 1331.544118][T31526]   process_scheduled_works+0xa5d/0x15d0
[ 1331.550018][T31526]   worker_thread+0xa55/0xfc0
[ 1331.555060][T31526]   kthread+0x2fa/0x390
[ 1331.559309][T31526]   ret_from_fork+0x48/0x80
[ 1331.564167][T31526]   ret_from_fork_asm+0x11/0x20
[ 1331.569117][T31526] 
[ 1331.569117][T31526] other info that might help us debug this:
[ 1331.569117][T31526] 
[ 1331.580159][T31526] Chain exists of:
[ 1331.580159][T31526]   &dev->event_lock#2 --> &client->buffer_lock --> tasklist_lock
[ 1331.580159][T31526] 
[ 1331.594789][T31526]  Possible interrupt unsafe locking scenario:
[ 1331.594789][T31526] 
[ 1331.603554][T31526]        CPU0                    CPU1
[ 1331.609185][T31526]        ----                    ----
[ 1331.614756][T31526]   lock(tasklist_lock);
[ 1331.619467][T31526]                                local_irq_disable();
[ 1331.626696][T31526]                                lock(&dev->event_lock#2);
[ 1331.634546][T31526]                                lock(&client->buffer_lock);
[ 1331.642362][T31526]   <Interrupt>
[ 1331.645991][T31526]     lock(&dev->event_lock#2);
[ 1331.650874][T31526] 
[ 1331.650874][T31526]  *** DEADLOCK ***
[ 1331.650874][T31526] 
[ 1331.659384][T31526] 7 locks held by syz.6.7626/31526:
[ 1331.664942][T31526]  #0: ffff888144b51110 (&evdev->mutex){+.+.}-{3:3}, at: evdev_write+0x180/0x490
[ 1331.675072][T31526]  #1: ffff88801a7c9230 (&dev->event_lock#2){-.-.}-{2:2}, at: input_inject_event+0xab/0x320
[ 1331.685836][T31526]  #2: ffffffff8d132060 (rcu_read_lock){....}-{1:2}, at: input_inject_event+0xbc/0x320
[ 1331.696673][T31526]  #3: ffffffff8d132060 (rcu_read_lock){....}-{1:2}, at: input_pass_values+0xa3/0x12f0
[ 1331.707430][T31526]  #4: ffffffff8d132060 (rcu_read_lock){....}-{1:2}, at: evdev_events+0x79/0x330
[ 1331.717142][T31526]  #5: ffff888067eb6028 (&client->buffer_lock){....}-{2:2}, at: evdev_pass_values+0xcb/0xab0
[ 1331.728070][T31526]  #6: ffffffff8d132060 (rcu_read_lock){....}-{1:2}, at: kill_fasync+0x53/0x4b0
[ 1331.738318][T31526] 
[ 1331.738318][T31526] the dependencies between HARDIRQ-irq-safe lock and the holding lock:
[ 1331.750252][T31526]  -> (&dev->event_lock#2){-.-.}-{2:2} {
[ 1331.756684][T31526]     IN-HARDIRQ-W at:
[ 1331.761568][T31526]                       lock_acquire+0x19e/0x420
[ 1331.769204][T31526]                       _raw_spin_lock_irqsave+0xb4/0x100
[ 1331.776976][T31526]                       input_event+0x7a/0xc0
[ 1331.783792][T31526]                       psmouse_report_standard_packet+0x53/0x200
[ 1331.792417][T31526]                       psmouse_process_byte+0x478/0x670
[ 1331.800442][T31526]                       psmouse_handle_byte+0x43/0x490
[ 1331.808378][T31526]                       ps2_interrupt+0x164/0x980
[ 1331.815233][T31526]                       serio_interrupt+0x8b/0x130
[ 1331.822009][T31526]                       i8042_interrupt+0x385/0x710
[ 1331.829149][T31526]                       __handle_irq_event_percpu+0x271/0x940
[ 1331.838129][T31526]                       handle_irq_event+0x8b/0x1e0
[ 1331.845463][T31526]                       handle_edge_irq+0x247/0xb30
[ 1331.852098][T31526]                       __common_interrupt+0x13b/0x230
[ 1331.859571][T31526]                       common_interrupt+0xb4/0xd0
[ 1331.866801][T31526]                       asm_common_interrupt+0x26/0x40
[ 1331.874303][T31526]                       _raw_spin_unlock_irqrestore+0xc0/0x120
[ 1331.882525][T31526]                       i8042_aux_write+0x109/0x170
[ 1331.889673][T31526]                       ps2_do_sendbyte+0x1fd/0x6f0
[ 1331.897070][T31526]                       ps2_sendbyte+0x5f/0x120
[ 1331.903695][T31526]                       cypress_send_ext_cmd+0x244/0x930
[ 1331.911074][T31526]                       cypress_detect+0x93/0x1a0
[ 1331.917677][T31526]                       psmouse_extensions+0x471/0xc00
[ 1331.925148][T31526]                       psmouse_switch_protocol+0xc8/0x5f0
[ 1331.932793][T31526]                       psmouse_connect+0x8d8/0x14c0
[ 1331.939888][T31526]                       serio_driver_probe+0x7a/0xa0
[ 1331.947155][T31526]                       really_probe+0x25b/0xb20
[ 1331.954558][T31526]                       __driver_probe_device+0x18c/0x330
[ 1331.961836][T31526]                       driver_probe_device+0x4f/0x420
[ 1331.969144][T31526]                       __driver_attach+0x44e/0x6e0
[ 1331.976438][T31526]                       bus_for_each_dev+0x235/0x2b0
[ 1331.984269][T31526]                       serio_handle_event+0x1a2/0x860
[ 1331.992202][T31526]                       process_scheduled_works+0xa5d/0x15d0
[ 1331.999784][T31526]                       worker_thread+0xa55/0xfc0
[ 1332.006987][T31526]                       kthread+0x2fa/0x390
[ 1332.013359][T31526]                       ret_from_fork+0x48/0x80
[ 1332.020433][T31526]                       ret_from_fork_asm+0x11/0x20
[ 1332.027736][T31526]     IN-SOFTIRQ-W at:
[ 1332.032078][T31526]                       lock_acquire+0x19e/0x420
[ 1332.038854][T31526]                       _raw_spin_lock_irqsave+0xb4/0x100
[ 1332.047194][T31526]                       input_event+0x7a/0xc0
[ 1332.053900][T31526]                       atp_complete_geyser_3_4+0xf07/0x1d80
[ 1332.062194][T31526]                       __usb_hcd_giveback_urb+0x35f/0x520
[ 1332.069768][T31526]                       dummy_timer+0xc04/0x3080
[ 1332.076284][T31526]                       __hrtimer_run_queues+0x520/0xc40
[ 1332.083924][T31526]                       hrtimer_run_softirq+0x187/0x2b0
[ 1332.091528][T31526]                       handle_softirqs+0x280/0x820
[ 1332.098535][T31526]                       __irq_exit_rcu+0xd3/0x190
[ 1332.105481][T31526]                       irq_exit_rcu+0x9/0x20
[ 1332.112080][T31526]                       sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1332.120348][T31526]                       asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1332.128711][T31526]                       lock_acquire+0x208/0x420
[ 1332.135570][T31526]                       dput+0x57/0x1e0
[ 1332.141471][T31526]                       __fsnotify_parent+0x670/0x7c0
[ 1332.148461][T31526]                       __fput+0x723/0x970
[ 1332.154650][T31526]                       __se_sys_close+0x15f/0x220
[ 1332.161961][T31526]                       do_syscall_64+0x55/0xa0
[ 1332.168402][T31526]                       entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1332.176232][T31526]     INITIAL USE at:
[ 1332.180340][T31526]                      lock_acquire+0x19e/0x420
[ 1332.187306][T31526]                      _raw_spin_lock_irqsave+0xb4/0x100
[ 1332.194893][T31526]                      input_inject_event+0xab/0x320
[ 1332.202070][T31526]                      led_trigger_event+0x133/0x210
[ 1332.209377][T31526]                      kbd_led_trigger_activate+0xbd/0x100
[ 1332.217200][T31526]                      led_trigger_set+0x52c/0x950
[ 1332.224155][T31526]                      led_trigger_set_default+0x1a0/0x1e0
[ 1332.232506][T31526]                      led_classdev_register_ext+0x733/0x9b0
[ 1332.240892][T31526]                      input_leds_connect+0x4eb/0x6b0
[ 1332.248777][T31526]                      input_register_device+0xcdc/0x1070
[ 1332.256719][T31526]                      atkbd_connect+0x70a/0x9b0
[ 1332.263871][T31526]                      serio_driver_probe+0x7a/0xa0
[ 1332.271444][T31526]                      really_probe+0x25b/0xb20
[ 1332.278651][T31526]                      __driver_probe_device+0x18c/0x330
[ 1332.285964][T31526]                      driver_probe_device+0x4f/0x420
[ 1332.293622][T31526]                      __driver_attach+0x44e/0x6e0
[ 1332.300511][T31526]                      bus_for_each_dev+0x235/0x2b0
[ 1332.307512][T31526]                      serio_handle_event+0x1a2/0x860
[ 1332.314649][T31526]                      process_scheduled_works+0xa5d/0x15d0
[ 1332.323437][T31526]                      worker_thread+0xa55/0xfc0
[ 1332.329862][T31526]                      kthread+0x2fa/0x390
[ 1332.336298][T31526]                      ret_from_fork+0x48/0x80
[ 1332.343780][T31526]                      ret_from_fork_asm+0x11/0x20
[ 1332.350644][T31526]   }
[ 1332.353329][T31526]   ... key      at: [<ffffffff9762ca80>] input_allocate_device.__key.5+0x0/0x20
[ 1332.362725][T31526] -> (&client->buffer_lock){....}-{2:2} {
[ 1332.368919][T31526]    INITIAL USE at:
[ 1332.373101][T31526]                    lock_acquire+0x19e/0x420
[ 1332.379534][T31526]                    _raw_spin_lock+0x2e/0x40
[ 1332.386053][T31526]                    evdev_pass_values+0xcb/0xab0
[ 1332.392733][T31526]                    evdev_events+0x1d8/0x330
[ 1332.399248][T31526]                    input_pass_values+0x905/0x12f0
[ 1332.406310][T31526]                    input_event_dispose+0x346/0x6c0
[ 1332.413372][T31526]                    input_inject_event+0x1f9/0x320
[ 1332.420674][T31526]                    evdev_write+0x35f/0x490
[ 1332.427488][T31526]                    vfs_write+0x296/0x990
[ 1332.433674][T31526]                    ksys_write+0x150/0x260
[ 1332.439928][T31526]                    do_syscall_64+0x55/0xa0
[ 1332.446180][T31526]                    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1332.454692][T31526]  }
[ 1332.457294][T31526]  ... key      at: [<ffffffff9762cd20>] evdev_open.__key.28+0x0/0x20
[ 1332.466081][T31526]  ... acquired at:
[ 1332.469985][T31526]    _raw_spin_lock+0x2e/0x40
[ 1332.475026][T31526]    evdev_pass_values+0xcb/0xab0
[ 1332.480312][T31526]    evdev_events+0x1d8/0x330
[ 1332.485010][T31526]    input_pass_values+0x905/0x12f0
[ 1332.490389][T31526]    input_event_dispose+0x346/0x6c0
[ 1332.495861][T31526]    input_inject_event+0x1f9/0x320
[ 1332.501485][T31526]    evdev_write+0x35f/0x490
[ 1332.506614][T31526]    vfs_write+0x296/0x990
[ 1332.511871][T31526]    ksys_write+0x150/0x260
[ 1332.516852][T31526]    do_syscall_64+0x55/0xa0
[ 1332.522097][T31526]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1332.528960][T31526] 
[ 1332.531375][T31526] 
[ 1332.531375][T31526] the dependencies between the lock to be acquired
[ 1332.531385][T31526]  and HARDIRQ-irq-unsafe lock:
[ 1332.545735][T31526]   -> (tasklist_lock){.+.+}-{2:2} {
[ 1332.551425][T31526]      HARDIRQ-ON-R at:
[ 1332.555956][T31526]                         lock_acquire+0x19e/0x420
[ 1332.562841][T31526]                         _raw_read_lock+0x36/0x50
[ 1332.569639][T31526]                         do_wait+0x294/0xae0
[ 1332.576191][T31526]                         kernel_wait+0xd7/0x1c0
[ 1332.582740][T31526]                         call_usermodehelper_exec_work+0xb9/0x220
[ 1332.591095][T31526]                         process_scheduled_works+0xa5d/0x15d0
[ 1332.599003][T31526]                         worker_thread+0xa55/0xfc0
[ 1332.605798][T31526]                         kthread+0x2fa/0x390
[ 1332.612231][T31526]                         ret_from_fork+0x48/0x80
[ 1332.619175][T31526]                         ret_from_fork_asm+0x11/0x20
[ 1332.626207][T31526]      SOFTIRQ-ON-R at:
[ 1332.630388][T31526]                         lock_acquire+0x19e/0x420
[ 1332.637417][T31526]                         _raw_read_lock+0x36/0x50
[ 1332.644905][T31526]                         do_wait+0x294/0xae0
[ 1332.651550][T31526]                         kernel_wait+0xd7/0x1c0
[ 1332.658640][T31526]                         call_usermodehelper_exec_work+0xb9/0x220
[ 1332.667535][T31526]                         process_scheduled_works+0xa5d/0x15d0
[ 1332.676398][T31526]                         worker_thread+0xa55/0xfc0
[ 1332.683653][T31526]                         kthread+0x2fa/0x390
[ 1332.690090][T31526]                         ret_from_fork+0x48/0x80
[ 1332.696614][T31526]                         ret_from_fork_asm+0x11/0x20
[ 1332.703825][T31526]      INITIAL USE at:
[ 1332.707985][T31526]                        lock_acquire+0x19e/0x420
[ 1332.715274][T31526]                        _raw_write_lock_irq+0xaf/0xf0
[ 1332.722654][T31526]                        copy_process+0x2275/0x3d80
[ 1332.729616][T31526]                        kernel_clone+0x24b/0x8a0
[ 1332.736822][T31526]                        user_mode_thread+0x111/0x180
[ 1332.743945][T31526]                        rest_init+0x27/0x300
[ 1332.750308][T31526]                        arch_call_rest_init+0xe/0x10
[ 1332.757974][T31526]                        start_kernel+0x459/0x4e0
[ 1332.765024][T31526]                        x86_64_start_reservations+0x2a/0x30
[ 1332.773134][T31526]                        copy_bootdata+0x0/0xe0
[ 1332.779562][T31526]                        secondary_startup_64_no_verify+0x179/0x17b
[ 1332.787998][T31526]      INITIAL READ USE at:
[ 1332.792936][T31526]                             lock_acquire+0x19e/0x420
[ 1332.800580][T31526]                             _raw_read_lock+0x36/0x50
[ 1332.807805][T31526]                             do_wait+0x294/0xae0
[ 1332.814754][T31526]                             kernel_wait+0xd7/0x1c0
[ 1332.821925][T31526]                             call_usermodehelper_exec_work+0xb9/0x220
[ 1332.830650][T31526]                             process_scheduled_works+0xa5d/0x15d0
[ 1332.839003][T31526]                             worker_thread+0xa55/0xfc0
[ 1332.846234][T31526]                             kthread+0x2fa/0x390
[ 1332.852984][T31526]                             ret_from_fork+0x48/0x80
[ 1332.860051][T31526]                             ret_from_fork_asm+0x11/0x20
[ 1332.867618][T31526]    }
[ 1332.870608][T31526]    ... key      at: [<ffffffff8ce0a058>] tasklist_lock+0x18/0x40
[ 1332.880190][T31526]    ... acquired at:
[ 1332.884550][T31526]    _raw_read_lock+0x36/0x50
[ 1332.889363][T31526]    send_sigurg+0xf0/0x3c0
[ 1332.894756][T31526]    sk_send_sigurg+0x6f/0xc0
[ 1332.899981][T31526]    queue_oob+0x3f1/0x4f0
[ 1332.904754][T31526]    unix_stream_sendmsg+0xaf0/0xbf0
[ 1332.910850][T31526]    ____sys_sendmsg+0x5ba/0x960
[ 1332.916141][T31526]    ___sys_sendmsg+0x2a6/0x360
[ 1332.921348][T31526]    __sys_sendmmsg+0x2ca/0x510
[ 1332.926749][T31526]    __x64_sys_sendmmsg+0xa0/0xb0
[ 1332.932047][T31526]    do_syscall_64+0x55/0xa0
[ 1332.937017][T31526]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1332.943916][T31526] 
[ 1332.946422][T31526]  -> (&f->f_owner.lock){....}-{2:2} {
[ 1332.953144][T31526]     INITIAL USE at:
[ 1332.957425][T31526]                      lock_acquire+0x19e/0x420
[ 1332.964055][T31526]                      _raw_write_lock_irq+0xaf/0xf0
[ 1332.971556][T31526]                      __f_setown+0x3b/0x330
[ 1332.978016][T31526]                      tty_fasync+0x258/0x340
[ 1332.984818][T31526]                      do_fcntl+0xe46/0x1490
[ 1332.991629][T31526]                      __se_sys_fcntl+0xc9/0x1a0
[ 1332.998342][T31526]                      do_syscall_64+0x55/0xa0
[ 1333.004959][T31526]                      entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.013300][T31526]     INITIAL READ USE at:
[ 1333.018093][T31526]                           lock_acquire+0x19e/0x420
[ 1333.025169][T31526]                           _raw_read_lock_irqsave+0xbc/0x100
[ 1333.033269][T31526]                           send_sigurg+0x29/0x3c0
[ 1333.041011][T31526]                           sk_send_sigurg+0x6f/0xc0
[ 1333.048320][T31526]                           queue_oob+0x3f1/0x4f0
[ 1333.055029][T31526]                           unix_stream_sendmsg+0xaf0/0xbf0
[ 1333.063104][T31526]                           ____sys_sendmsg+0x5ba/0x960
[ 1333.070512][T31526]                           ___sys_sendmsg+0x2a6/0x360
[ 1333.078181][T31526]                           __sys_sendmmsg+0x2ca/0x510
[ 1333.085944][T31526]                           __x64_sys_sendmmsg+0xa0/0xb0
[ 1333.093388][T31526]                           do_syscall_64+0x55/0xa0
[ 1333.100851][T31526]                           entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.110110][T31526]   }
[ 1333.113115][T31526]   ... key      at: [<ffffffff97332ea0>] init_file.__key+0x0/0x20
[ 1333.121499][T31526]   ... acquired at:
[ 1333.126022][T31526]    _raw_read_lock_irqsave+0xbc/0x100
[ 1333.132505][T31526]    send_sigio+0x33/0x360
[ 1333.137482][T31526]    kill_fasync+0x228/0x4b0
[ 1333.142296][T31526]    __se_sys_vmsplice+0xd67/0x1200
[ 1333.148059][T31526]    do_syscall_64+0x55/0xa0
[ 1333.152859][T31526]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.159393][T31526] 
[ 1333.161992][T31526] -> (&new->fa_lock){....}-{2:2} {
[ 1333.167684][T31526]    INITIAL USE at:
[ 1333.171873][T31526]                    lock_acquire+0x19e/0x420
[ 1333.178435][T31526]                    _raw_write_lock_irq+0xaf/0xf0
[ 1333.185136][T31526]                    fasync_remove_entry+0xf4/0x1c0
[ 1333.192266][T31526]                    do_fcntl+0xe46/0x1490
[ 1333.198459][T31526]                    __se_sys_fcntl+0xc9/0x1a0
[ 1333.205143][T31526]                    do_syscall_64+0x55/0xa0
[ 1333.211406][T31526]                    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.219851][T31526]    INITIAL READ USE at:
[ 1333.224777][T31526]                         lock_acquire+0x19e/0x420
[ 1333.232211][T31526]                         _raw_read_lock_irqsave+0xbc/0x100
[ 1333.240192][T31526]                         kill_fasync+0x192/0x4b0
[ 1333.247535][T31526]                         __se_sys_vmsplice+0xd67/0x1200
[ 1333.255107][T31526]                         do_syscall_64+0x55/0xa0
[ 1333.262260][T31526]                         entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.271280][T31526]  }
[ 1333.274250][T31526]  ... key      at: [<ffffffff97333b20>] fasync_insert_entry.__key+0x0/0x20
[ 1333.284539][T31526]  ... acquired at:
[ 1333.288821][T31526]    _raw_read_lock_irqsave+0xbc/0x100
[ 1333.295013][T31526]    kill_fasync+0x192/0x4b0
[ 1333.300418][T31526]    evdev_pass_values+0x54b/0xab0
[ 1333.306158][T31526]    evdev_events+0x1d8/0x330
[ 1333.311258][T31526]    input_pass_values+0x905/0x12f0
[ 1333.316837][T31526]    input_event_dispose+0x346/0x6c0
[ 1333.322494][T31526]    input_inject_event+0x1f9/0x320
[ 1333.328074][T31526]    evdev_write+0x35f/0x490
[ 1333.333416][T31526]    vfs_write+0x296/0x990
[ 1333.338130][T31526]    ksys_write+0x150/0x260
[ 1333.343907][T31526]    do_syscall_64+0x55/0xa0
[ 1333.348888][T31526]    entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.355801][T31526] 
[ 1333.358146][T31526] 
[ 1333.358146][T31526] stack backtrace:
[ 1333.364229][T31526] CPU: 1 PID: 31526 Comm: syz.6.7626 Not tainted syzkaller #0
[ 1333.372581][T31526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1333.383115][T31526] Call Trace:
[ 1333.386810][T31526]  <TASK>
[ 1333.390005][T31526]  dump_stack_lvl+0x18c/0x250
[ 1333.395063][T31526]  ? load_image+0x400/0x400
[ 1333.400327][T31526]  ? show_regs_print_info+0x20/0x20
[ 1333.405838][T31526]  ? load_image+0x400/0x400
[ 1333.410540][T31526]  ? print_shortest_lock_dependencies+0xf4/0x160
[ 1333.417504][T31526]  __lock_acquire+0x6851/0x7d40
[ 1333.422491][T31526]  ? verify_lock_unused+0x140/0x140
[ 1333.427876][T31526]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1333.434221][T31526]  ? verify_lock_unused+0x140/0x140
[ 1333.439637][T31526]  lock_acquire+0x19e/0x420
[ 1333.444700][T31526]  ? kill_fasync+0x192/0x4b0
[ 1333.449497][T31526]  ? read_lock_is_recursive+0x20/0x20
[ 1333.455327][T31526]  _raw_read_lock_irqsave+0xbc/0x100
[ 1333.460799][T31526]  ? kill_fasync+0x192/0x4b0
[ 1333.466533][T31526]  ? _raw_read_lock+0x50/0x50
[ 1333.472112][T31526]  kill_fasync+0x192/0x4b0
[ 1333.477298][T31526]  ? kill_fasync+0x53/0x4b0
[ 1333.482668][T31526]  evdev_pass_values+0x54b/0xab0
[ 1333.487913][T31526]  ? evdev_pass_values+0x561/0xab0
[ 1333.493879][T31526]  evdev_events+0x1d8/0x330
[ 1333.500341][T31526]  ? evdev_events+0x79/0x330
[ 1333.506892][T31526]  ? evdev_event+0xf0/0xf0
[ 1333.511383][T31526]  input_pass_values+0x905/0x12f0
[ 1333.516775][T31526]  ? input_pass_values+0xa3/0x12f0
[ 1333.522348][T31526]  input_event_dispose+0x346/0x6c0
[ 1333.527924][T31526]  input_inject_event+0x1f9/0x320
[ 1333.533406][T31526]  ? input_inject_event+0xbc/0x320
[ 1333.539060][T31526]  evdev_write+0x35f/0x490
[ 1333.543853][T31526]  ? evdev_read+0xba0/0xba0
[ 1333.548979][T31526]  ? common_file_perm+0x198/0x1f0
[ 1333.554621][T31526]  ? fsnotify_perm+0x5d/0x5e0
[ 1333.559407][T31526]  ? security_file_permission+0x79/0xa0
[ 1333.565846][T31526]  ? evdev_read+0xba0/0xba0
[ 1333.570684][T31526]  vfs_write+0x296/0x990
[ 1333.575217][T31526]  ? file_end_write+0x250/0x250
[ 1333.580259][T31526]  ? __fget_files+0x28/0x4b0
[ 1333.585135][T31526]  ? __fget_files+0x28/0x4b0
[ 1333.590542][T31526]  ? __fget_files+0x43d/0x4b0
[ 1333.595436][T31526]  ? __fdget_pos+0x1d8/0x330
[ 1333.600143][T31526]  ? ksys_write+0x75/0x260
[ 1333.604934][T31526]  ksys_write+0x150/0x260
[ 1333.609462][T31526]  ? __ia32_sys_read+0x90/0x90
[ 1333.614335][T31526]  ? lockdep_hardirqs_on+0x98/0x150
[ 1333.619543][T31526]  do_syscall_64+0x55/0xa0
[ 1333.624080][T31526]  ? clear_bhb_loop+0x40/0x90
[ 1333.629741][T31526]  ? clear_bhb_loop+0x40/0x90
[ 1333.635137][T31526]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1333.641493][T31526] RIP: 0033:0x7fc1a699c799
[ 1333.646195][T31526] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1333.666178][T31526] RSP: 002b:00007fc1a7888028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1333.675830][T31526] RAX: ffffffffffffffda RBX: 00007fc1a6c15fa0 RCX: 00007fc1a699c799
[ 1333.684677][T31526] RDX: 0000000000000037 RSI: 0000200000000040 RDI: 0000000000000004
[ 1333.693225][T31526] RBP: 00007fc1a6a32c99 R08: 0000000000000000 R09: 0000000000000000
[ 1333.703049][T31526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1333.712717][T31526] R13: 00007fc1a6c16038 R14: 00007fc1a6c15fa0 R15: 00007fffd16941c8
[ 1333.721075][T31526]  </TASK>
[ 1333.724986][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1333.872976][ T1174] block nbd2: Possible stuck request ffff888021e60000: control (read@0,4096B). Runtime 390 seconds
[ 1333.891039][T24729] ocfs2: Unmounting device (7,1) on (node local)
[ 1334.184962][ T2967] wlan1: Creating new IBSS network, BSSID aa:e2:de:cb:df:0b
[ 1337.274288][T26086] block nbd1: Possible stuck request ffff888021e30000: control (read@0,1024B). Runtime 570 seconds
[ 1337.286321][T26086] block nbd1: Possible stuck request ffff888021e30200: control (read@1024,1024B). Runtime 570 seconds
[ 1337.298048][T26086] block nbd1: Possible stuck request ffff888021e30400: control (read@2048,1024B). Runtime 570 seconds
[ 1337.309880][T26086] block nbd1: Possible stuck request ffff888021e30600: control (read@3072,1024B). Runtime 570 seconds
[ 1337.348760][ T5139] udevd[5139]: worker [5782] /devices/virtual/block/nbd1 timeout; kill it
[ 1337.358588][ T5139] udevd[5139]: seq 24880 '/devices/virtual/block/nbd1' killed
[ 1337.366642][ T5139] udevd[5139]: worker [5774] /devices/virtual/block/nbd2 timeout; kill it
[ 1337.376133][ T5139] udevd[5139]: seq 27762 '/devices/virtual/block/nbd2' killed