last executing test programs:

2m14.78669067s ago: executing program 0 (id=300):
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010027bd7000fbd3df2502000000050004000100000005000400010000001400020076657468315f746f5f7465616d0000000900030073797a32000000000900010073"], 0x68}, 0x1, 0x0, 0x0, 0x4000145}, 0x0)

2m14.616773228s ago: executing program 0 (id=302):
r0 = socket$kcm(0x2b, 0x1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0xd, &(0x7f00000001c0), 0x45)
close(r0)

2m14.473452525s ago: executing program 0 (id=304):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x24, r1, 0x1, 0xf0bd2a, 0x25dfcbfe, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_AF={0x5, 0x2, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40208c0}, 0xc180)

2m14.241621167s ago: executing program 0 (id=306):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file2\x00', 0x3000000, &(0x7f0000000240)={[{@umask={'umask', 0x3d, 0xe}}, {@creator={'creator', 0x3d, "851aa049"}}, {}, {@part={'part', 0x3d, 0x5}}, {@part={'part', 0x3d, 0x6}}, {@force}, {}, {@nls={'nls', 0x3d, 'iso8859-7'}}]}, 0x44, 0x70b, &(0x7f0000000300)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000001080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000f00), 0x2010000, 0x0)

2m13.811646348s ago: executing program 0 (id=309):
r0 = syz_usb_connect$hid(0x0, 0x6c, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000040b827ed0100000000000109022400010000000009040000010300000009210000200122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000b80)={0x24, 0x0, 0x0, &(0x7f0000000b00)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x1, "efb9ce47"}]}}, 0x0}, 0x0)

2m13.032867626s ago: executing program 0 (id=313):
syz_open_dev$ttys(0xc, 0x2, 0x0)
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000005440))

2m12.689299853s ago: executing program 32 (id=313):
syz_open_dev$ttys(0xc, 0x2, 0x0)
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000005440))

1m12.435856675s ago: executing program 3 (id=914):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f00000000c0)={0x0, 0xb, 0xbf, 0x9, 0x7fffffffffffffff})

1m12.200863827s ago: executing program 3 (id=915):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101"], 0x7c}}, 0x0)
r0 = socket$kcm(0x23, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000000)=@phonet, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000080)="b8", 0x1ff48}], 0x2}, 0x0)

1m11.984071167s ago: executing program 3 (id=920):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x6, 0x8, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfbfff9e3}, [@call={0x85, 0x0, 0x0, 0x41}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1m11.687927042s ago: executing program 3 (id=923):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file2\x00', 0x3000000, &(0x7f0000000240)={[{@umask={'umask', 0x3d, 0xe}}, {@creator={'creator', 0x3d, "851aa049"}}, {}, {@part={'part', 0x3d, 0x5}}, {@part={'part', 0x3d, 0x6}}, {@force}, {}, {@nls={'nls', 0x3d, 'iso8859-7'}}]}, 0x44, 0x70b, &(0x7f0000000300)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000001080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000f00), 0x2010000, 0x0)

1m11.134375189s ago: executing program 3 (id=928):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0100, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'\x00', 0x2})
ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x0)

1m8.851798082s ago: executing program 3 (id=953):
r0 = io_uring_setup(0xad5, &(0x7f00000003c0)={0x0, 0xc45e, 0x8, 0x0, 0x1000})
close(r0)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

1m8.403651394s ago: executing program 33 (id=953):
r0 = io_uring_setup(0xad5, &(0x7f00000003c0)={0x0, 0xc45e, 0x8, 0x0, 0x1000})
close(r0)
getrandom(&(0x7f0000000040)=""/133, 0xfffffffffffffdde, 0x2)

2.341100183s ago: executing program 4 (id=1611):
r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder-control\x00', 0x0, 0x0)
r1 = dup2(r0, r0)
ioctl$sock_inet_tcp_SIOCINQ(r1, 0x541b, 0x0)

2.158681323s ago: executing program 4 (id=1614):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8ab8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000006900000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.925728414s ago: executing program 4 (id=1618):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.776964852s ago: executing program 4 (id=1622):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000140)='./file1\x00', 0x2810000, &(0x7f0000000200)={[{@shortname_winnt}, {@fat=@flush}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '949'}}, {@shortname_mixed}, {@fat=@tz_utc}, {@uni_xlateno}, {@uni_xlate}, {@rodir}, {@fat=@quiet}, {@utf8no}]}, 0x1, 0x34a, &(0x7f0000001740)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

1.533573534s ago: executing program 1 (id=1624):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000600), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000002c0)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x44810)

1.532984594s ago: executing program 5 (id=1625):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x1c, 0x1, 0x4, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x21000}, 0x8000)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f00000001c0)={0x24, 0x1, 0x4, 0x301, 0x0, 0x0, {0x5, 0x0, 0x1}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x10040051}, 0x24000010)

1.433458989s ago: executing program 5 (id=1626):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1f, 0x15, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000fcffffff000000008000000018010000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000020000207b8ae8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008200000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

1.350801683s ago: executing program 1 (id=1627):
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000000020000000000800040001000000", 0x24)

1.294160196s ago: executing program 5 (id=1628):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/vlan/vlan1\x00')
setreuid(0xee01, 0xee01)
utimensat(r0, 0x0, &(0x7f0000000880)={{0x77359400}}, 0x0)

1.271530027s ago: executing program 4 (id=1629):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f00000000c0)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2008404, &(0x7f0000000200)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYBLOB="999c07c03c5bc6a3d07b90faae21d196274f93a6593a9830472d5633665f2f51cfb24aaad481c74e142cd734ec6fd04935a94af71c756dbd6f5e2f39b2c4c30725d103d40d7e65129bb928ef73849dae618e438695e0a9078605ba418298145bf2fec11b0d16763288e7ecfe663aa5ff450d1e46d251160109c0378e04fe2629890c28366a6489e706ecf23195dc7f19e03fad", @ANYRESHEX, @ANYRESDEC, @ANYBLOB="c5ce1b9733c91520022860834995bd440de70a56f9b17205184d3be668bd36e2d9b2c62fb43e3a2a12e69d2eea113cf5ab1f668b2855d9a2bb426304b9bbf1debf4d593fe5"], 0x41, 0x2bd, &(0x7f00000007c0)="$eJzs3LFrE2EYx/HHpDZpSpsIIiioD7roEto4OGqQFsSAUpuiDsLVXjTkTMpdqETEZhFX/47i6Cao/0AXcXF3K4Lg0kE86d2lvbRpm7ZJk9rvB8r75p73x71NruVJILfy4N3zUsFJF4yqROIqEZG6rIqk1maBE8EY8eaDElaXq8O/v5+///DRnWwuNzGlOpmdvpZR1dGLn168en/pS3V45sPox5gspx6v/Mr8WB5cPrvyd/pZ0dGio+VKVQ2drVSqxqxl6lzRKaVV71mm4ZhaLDum3VQvWJX5+Zoa5bmRxLxtOo4a5ZqWzJpWK1q1a2o8NYplTafTOpKQYywiMtDGsvzS1JSR3bbsRju6KXTdUKuDtp2tty7mlw5hTwAAoM/s3P/7vf72/X9uxh/30v+f2b3/F6H/75J606Nd+n8cVdfDV79tZ41E8PfbjP4fAAAAAAAAAAAAAAAAAAAAAICjYNV1k67rJtfG4JD3OCYicRFxg3qPt4kuCb/+buhnl9f/Ro+2iw4LfXEvLmK9Xcgv5P3Rr2cLUhRLTBmTpPzxroeAP5+8nZsYU09KPluLQX5xIR+VWCPfkGqVv3Bq3M9rc/6kJMLnz0hSTrc+f6ZlflCuXA7l05KUr0+kIpbMedf1Rv71uOqtu7lN+SFvHQAAAAAA/4O0rtvy/t2rewvisrXu50OfD7iuu7jT5wOb3l8PyLl2blEJAAAAAAAOzKm9LBmWZdr7mMRE5ADxzk9cV6T324hKfzwbzZObItIH2zisSVxE/CO6n/jP9XhbKbeNNQMi0vOnZQ+TXv9nAgAAANBpG03/HkLf3nRxRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHD/t3g+ssX5LqVHYIR46XfTQf0EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgj/wLAAD//7KDHOI=")
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000680)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2)

1.104787725s ago: executing program 5 (id=1631):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x30, r1, 0x1, 0x70bd27, 0x25dfdbfd, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_REG_RULES={0x14, 0x22, 0x0, 0x1, [{0x4}, {0x4}, {0x4}, {0x4}]}]}, 0x30}}, 0x0)

1.104507485s ago: executing program 1 (id=1632):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)

1.018514239s ago: executing program 5 (id=1633):
r0 = syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x120c083, &(0x7f0000000480), 0xfd, 0x111d, &(0x7f0000000640)="$eJzs2bFqFFEUBuD/7qwm3cjYD4IWFhIS1gcwhcK2ttqIBARTZUFQfA3fwLfwFTSVtSG9FgFLYWScHRMloCGbQOD7YPeeOTNnzr3lvRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoTZOvJbk5SZoxN0lSkrbdnx8macf8jY/VJCWPd+aLh3uzR4sk1a/Hy5Ok9FV9WZqt2+vNrJk1W839B9t3Pi1ev3n5bHd3Z2/5mpI2B0crXUUZ/6qTubLSHgAAAHBldedW592r/+l0/cvF9AcAAAD+ZeUHCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABn1NXHcTMGkyQladv9+WGS9pS6a5c0PwAAAOD8SiZ5Wp+WH44Bjt3L57r8zvfj99LHm3lfp0wvb8oAAABw5bz48Mdlt7YMTn5f/9EN+n333UyHffn6cO9WptnYGOLlkG/bSZVk869eB0dvn4+/0lXJ2sWsCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJ/swAEJAAAAgKD/r9sRKAAAAAAAAAAAAAAAAAAAAAAAAAAAFwUAAP//cLriEQ==")
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='.\x00', 0x1a484bc, &(0x7f0000000200)=ANY=[@ANYRES8=r0, @ANYBLOB="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", @ANYRES8, @ANYRESDEC=r0, @ANYRESOCT, @ANYRES16, @ANYRESHEX=r0, @ANYRESHEX, @ANYRESDEC], 0x1, 0x0, &(0x7f0000000480))
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

971.031111ms ago: executing program 2 (id=1634):
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000200))

874.935886ms ago: executing program 4 (id=1635):
r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000480)=ANY=[@ANYBLOB="12010000b510f210950b2a7773820102030109022400010000000009042200028953950009050a02ff0300fa000905820250"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000700)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x40, 0x13, 0x6, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

874.089646ms ago: executing program 1 (id=1636):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000200)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha512\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)

727.753134ms ago: executing program 2 (id=1637):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001580)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x4}, @NFTA_IMMEDIATE_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x4000)

631.465788ms ago: executing program 2 (id=1638):
r0 = fsopen(&(0x7f00000000c0)='ocfs2_dlmfs\x00', 0x1)
setresuid(0xee01, 0xee00, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

562.581002ms ago: executing program 2 (id=1639):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002420"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
write$cgroup_subtree(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000071009154090893b3520ba54a07"], 0xfe33)

545.918592ms ago: executing program 1 (id=1640):
ioctl$IOCTL_STATUS_ACCEL_DEV(0xffffffffffffffff, 0x40046103, &(0x7f00000000c0)={0x3, 0xd, 0xd10, 0x9, 0x4, 0x9, 0x6, 0x4, 0x5, 0xc, 0x9, "72a315475c3c0e5ae029abeb147eaf547bbf4d3382eb931e3de47f5d695d7601"})
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x20, &(0x7f0000000040)=0x2, 0xf6)

410.178879ms ago: executing program 1 (id=1641):
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x2000, 0xffff4a9c0080ffff, &(0x7f0000000240))

398.66604ms ago: executing program 2 (id=1642):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000005b00)=[{{0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000080)="84", 0x1}], 0x2}}], 0x1, 0x20001000)

792.02µs ago: executing program 5 (id=1643):
syz_mount_image$jfs(&(0x7f0000000180), &(0x7f0000000140)='./file2\x00', 0x0, &(0x7f0000000000)=ANY=[], 0xfd, 0x609c, &(0x7f0000011b00)="$eJzs3UuPHFfZB/CnL9NzyRvbil5ZxmLhOBASQny3IdzisGABSCAhr7E1mUQGB5BtEIksPJEXiAWXjwCbbFjki4Qda8QHwJLNKhKEQjVzjl3d0zM9jme6uuf8flK76ulT1X3K/6np7qmqPgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAxHe+/cOznYi4+st0x5GI/4teRDdiua5PRD1zOS/fj4hjG0tFHI2I3mJEvf7GP4cjLkTER4ciHjy8s1rffW6X/bh45vbNT777rb//5g/3jv34zR99MNr+g/8//+Fv70Yc+f5rH35yd082HQAAAIpRVVXVSR/zj6fP9922OwUATEV+/a+SfL9arVar97T+fXe2+qMutG6qxrvbLCJivblO/Z7B4XgAmDPr8XHbXaBF8i9aPyKeabsTwEzrtN0B9sWDh3dWOynfTvP14MRme/475VD+651H13dsN51k9ByTaf183YtePLdNf5an1IdZkvPvjuZ/dbN9kJbb7/ynZbv8B5EuaipMzr83mv+Iofz/GBFzm393bP6lyvn3nyT/9d4c7//yBwAAAADg4Mt//z/S8vHfxafflF3Z6fjviSn1AQAAAAAAAAD22qcc/2/jePnR5gMZ/w8AAABmVv1ZvfanQ4/v60T87fCYZeuP+Fc6Ec+OLA8UJl0ss9J2PwAAAAAAAAAAAACgJP3Nc3ivdCIWIuLZlZWqqupb02j9pJ52/XlX+vZDydr+JQ8AAJs+OpSu5b+/tHlHJ6Keu5K+629hZWWlqpaWV6qVankxv58dLC5Vy43PtXla37c42MUb4v6gqh9sqbFe06TPy5PaRx+vfq5B1dtFx6aj7dQBKN3mq9EDr0gHTFUdjrbf5TAf7P8Hj/2f3Wj75xQAAADYf1VVVZ30dd7H0zH/btudAgCmYSm//o8eF1Cr1Wq1Wn3w6qZqvLvNIiLWm+vU7xkMxw8Ac2Y9Pm67C7RI/kXrR8SxtjsBzLRO2x1gXzx4eGe1k/LtNF8P0vju+VyQofzXOxvr5fXHTScZPcdkWj9f96IXz23Tn6NT6sMsyfl3R/O/utk+SMvtd/7Tsl3+9XYeaaE/bcv590bzH3Fw8u+Ozb9UOf/+E+Xfkz8AAAAAAMyw/Pf/I47/5k0GAAAAAAAAgLnz4OGd1Xzdaz7+/9kxy3Wac67/PDBy/p1d5+/634Mk598dzX/khJxeY/7+G4/z/9fDO6sf3P7nZ/J05vNf6A3q517odHv9dM5PtfBWXI8bsRZntizfH2o/u6V9Yaj93IT281vaB3X7cm4/Favxs7gRbz5qX5xwYtTShPZqQnvOv2f/L1LOv9+41fmvpPbOyLR2//3ulv2+OR33PJf/8p8Xt+5de20wcYl70Xu0bU319p3clz7tbOP/5JlB/OLW2s1Tv7p2+/bNs5EmQ/eeizTZYzn/hXTL+b/0wmZ7/r3f3F/vvz944vxnxb3ob5v/C435entfnnLf2pDzH6Rbzj+/Ao3f/+c5/+33/1da6A8AAAAAAAAAAAAAAADspKqqjUtEL0fEpXT9T1vXZgIAU/W776WZKgm1Wq1Wq9V7VfdnrD9DqvFebxaxNLzOpYj49bgHAwBm2X8j4h9td4LWyL9g+fv+6unn2u4MMFW33n3vJ9du3Fi7eavtngAAAAAAAAAAn1Ye//NEY/znjfOARsaNHhr/9Y04Mbfjf3YHvY2xztMGPR87j/99MnYe/7s/4fkWJrRPGrF4cUL70oT2sRd6NOT8n08Z5/yPpw0rafzXl1roT9ty/ifTWM85/y+MLNfMv/rzPOffHcr/9O13fn761rvvvXr9nWtvr7299tOzZy5dOH/xwvmLF0+/df3G2pnNf1vs8f7K+eexr50HWpacf85c/mXJ+X8+1fIvS87/xVTLvyw5//x+T/5lyfnnzz7yL0vO/+VUy78sOf8vplr+Zcn5v5Jq+Zcl5/+lVMu/LDn/V1Mt/7Lk/E+lWv5lyfmfTrX8y5Lzz0e45F+WnH8+s0H+Zcn5n0u1/MuS8z+favmXJed/IdXyL0vO/2Kq5V+WnP+lVMu/LDn/L6da/mXJ+X8l1fIvS87/tVTLvyw5/6+mWv5lyfl/LdXyL0vO/+upln9Zcv7fSLX8y5Lz/2aq5V+WnP/rqZZ/WR5//7+ZKc/8+68RM9CN/ZipqqqagW6YeYqZtn8zAQAAAAAAAAAAAACjpnE6cdvbCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA/9iBAwEAAAAAIP/XRqiqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrCDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFfbuN0aOs74D+Nw/++wE4pIQQjDk7DjBkIvvzv8SE0wcIDQNLU0DodCGOsY+Owb/q8+GJIqaS5O2QURqpPZF+qIUEEVIbZUIIZVKKYpUpPZd8woUVUKtlBeWmlQmgla0JFfNzvM8t7u3t3u27+zZmc8nin++29nd52Zn9+571ncHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaLbhI9N/MpBlWf5/4491WXZ5/vc12Z78w9mdl3qFAAAAwIV6o/Hn316RPrFnCVdq2uaf3/Ov35ubm5vLPv/6mTf/bG4uXTCWZUOrs6xxWfQvv/j5XPM2wRPZ6MBg08eDPe5+qMflwz0uH+lx+aoel6/ucfloj8sX7IAF1hS/j2nc2KbGX9cVuzS7KhtpXLapw7WeGFg9OBh/l9Mw0LjO3MjB7HB2JJvOJhdcZ6DxX5a9sCG/r7uyeF+DTfe1Psuysz99dH9cw0DYx5uyljtraH7sXrsjG3v9p4/u//apV9/ZafbcDQtWmmWbN+brfDLL5n9dlQ1kq9M+iescbFrn+g7rHGpZ50Djevnf29d5donrjF/3aFjnS13WuT587qHrsyybzRbdpt0T2WC2tu1e0/4eLY6I/Dbyh/Jt2fA5HScblnCc5Nd55frW46T9mIz7f0PYJ8OLrKH54Xjt8VUL9vv5Hif5V12GYzW/7XvyOx0dbf7Vasuxmm/z6A2LHwMdH7sOx0A6lpuOgY29joHBVUONY2Bwfs0bW46BqQXXGcwGGvd15obux8DEqaMnJmYefuTmw0f3HZo+NH1sanLn9m07tm/bsWPi4OEj05PFn+e2S/vI2mwwHYMbw2tNPAbf27Zt8yE5943lex6MluR5kH/tn7oxX9Dlg9kix3i+zZObL/x5kL7vNz0PhpueBx1fUzs8D4aX8DzItzm7eWnfM4eb/u+0hpV6LVzXdAxcyu+H+X3e/77FXwvXh3U99f5z/X44tOAYiF/WQHju5Z9JP++N3hr2y8Lj4tr8gstWZadnpk9ueWjfqVMnp7IwLoormx6r9uNlbdPXlC04XgbP+XjZ8ze/vPHaDp9fF/bV6E3dH6t8m+3j3R+rxqt76/5clRX7s+WzW7MwltnF3p+dvpvl+zNliS77M9/myZsv/GfBlEuaXv9Ger3+DY0MF69/Q2lvjLS8/i18aIYaK8uyszcv7fVvJPx/sV//rirJ61++r+7f0v0YyLd5auJcj4Hhrq9/14c5ENbzvpAYRpty/5uNy2eLw7Tpsex53AwPj4TjZjjeY+txs23BdfJby+978+T5HTebr299rFp+bqngcZPvqz+f7H7c5Nu8OHXhrx1r4l+bXjtW9ToGRoZW5esdSQdB8Xo3tyYeA1uy/dnx7Eh2IF0nf5Tz+xrfurRjYFX4/2K/dlxTkmMg31fPbu1+DOTb/HDb8v7stDl8Jm3T9LNT++8XFsv81w7P3177blvuzJ+v86M/+kT6XKcMkW/z6vZzzRnd99NN4TOXddhP7c+fxY7pA9nF2U/XhHUe2dH9d1P5NlftXOLxtCfLspenXm78viv8fve7p3/0vZbf+3b6nfLLUy/fPXHvj89l/QAAnL83G3/Orip+1mz6F+ul/Ps/AAAA0Bdi7h8MM5H/AQAAoDJi7h8KM5H/AQAAoDJi7h8OM6lJ/n/w1l3PvfFYlt4NcC6Il8fdcM+Hiu1ix3s2fDw2Ny///Ie/NfLcVx5b2n0PZln2y7vf1XH7Bz8U11U4Edf5gdbPL3DNdUu6/wfum9+u+f0Tzu4qbj9+PUs9DGJX+YWJrY3bHXt4qjFfvDtrzHtnn3qiuP3i47j9mW3F9n8Z3rRkz8GBlutvDuvZFOZYeE+Ze/bM74d8xus9t/49/3Tlp+fvL15vYONbG1/ms39Q3G58j6hnriy2j1/3Yuv/x69+57l8+4du6Lz+xwY7r/9MuN1XwvzF7mL75n3+lab1/1FYf7y/eL0t3/xBx/U//45i++fDcfH1MNvXf8efvvuNTo9XvJ89txXXi/c/+d/bG9eLtxdvv339o49NteyP9tt/8fXidnZ/6WdDzdvHz8f7iR64rfX4HgiPb0uPPMuy7/xx1rKfsw8W1/uHtvXH2ztxW+f139S2zhMD1zWuP//1rGv5ur7211s7fr1xPXv+bl3L1/PMnWH/vT7xw/x2z9wbjsdw+f++VNxe+3uZPn9n6+tN3P7r64rnbby9ibb1P9O2/tnr8n3Xe/13vV6s//nbV7esf8/HwvF0VzF7rf/QX13Rcv1vfLt4PE5+efzY8ZnThw807dXm5/Hq0TVrL7v8LW+9IryWtn+89/ipB6dPjk2OTWbZWB++ZeBKr/+bYf5XMWaX/x4KP/5Zcdw9/fHi+9Z7f158/Ez4/APh8YzfH7/2FyMtx2v74z57ezEvdP3vD+tYqnd89T+uW9KGZz73wum//8NX238uiF/PibePNr6+Zzdc3bhs4MXi8vbXq17+/e2tz+ufDE825vfDfp0L78y88eri/tpvP743ydOfLJ6/8Se5eP2s7f1E1g21fh0Xuv6fhJ9jfnBN6+tfPD6+/1jbuzmvywbyJcyG14dstrg8bhX399Nnr+54f/F9eLLZd57LMhc18/DMxJHDx04/NHFqeubUxMzDj+w9evz0sVN7G+9duvcLva4///xe23h+H5jeuT1rPNuPF2OFXer1n7hv/4FbJm88MH1w3+mDp+47MX3y0P6Zmf3TB2Zu3Hfw4PSXe13/8IHdU1t3bbtl6/ihwwd237pr17Zd44ePHc+XUSyqh52TXxw/dnJv4yozu7fvmtqxY/vk+NHjB6Z33zI5OX661/Ub35vG82t/afzk9JF9pw4fnR6fOfzI9O6pXTt3bu357o9HTxycGZs4efrYxOmZ6ZMTxdcydqrx6fx7X6/rUw8zx8PrXZuB8NP5Z2/amd4fN/etxxe9qWKT1h9Ps9fCe0HF72+9Po65fyTMpCb5HwAAAOog5v7wxv/zF8j/AAAAUBkx968OM5H/AQAAoDJi7i+S/2g6/Xtd8v9y9f8f1/9v0P/X/8/0/xP9f/3/TP9f/78H/X/9/35ev/6//j+9la3/H3J/tibL/Ps/AAAAVFTM/WvDTOR/AAAAqIyY+y8LM5H/AQAAoDJi7r88zKQm+d/5//X/9f+79f/jtvr/mf5/Gfr/m/5T/38B/X/9/0z//7xd6v58v6+/hP3/Nfr/lE3Z+v8x978lzKQm+R8AAADqIOb+t4aZyP8AAABQGTH3XxFmIv8DAABAZcTcvy7MpCb5X/9f/1//3/n/9f/7pv/v/P8d6P/r/2f6/+dtkf58/kOh/n9/9v+d/5/SKVv/P+b+XwkzqUn+BwAAgDqIuf9tYSbyPwAAAFRGzP1XhpnI/wAAAFAZMfdfFWZSk/xfz/7/K1mW6f9n+v/6/23r1P/X/18J+v/6/93o/5ey/+/8//r/+v8sm7L1/2Puf3uYSU3yPwAAANRBzP1Xh5nI/wAAAFAZMfe/I8xE/gcAAIDKiLn/mjCTmuT/evb/nf9f/7+g/9+6Tv1//f+VoP+v/9+N/r/+fz+vX/9f/5/eytb/j7n/nWEmNcn/AAAAUAcx918bZiL/AwAAQGXE3P+uMBP5HwAAACoj5v71YSY1yf/6//r/+v/6//r/+v8rqb/6/4OLXqL/X9D/b7V8/f/Z+QXo//fN+vX/9f/prWz9/5j73x1mUpP8DwAAAHUQc/97wkzkfwAAAKiMmPuvCzOR/wEAAKAyYu4fCzOpSf7X/9f/1//X/9f/1/9fSf3V/1+c/n9B/7/V0vr/A8PzC3D+/+V0qdev/6//T29l6//H3L8hzKQm+R8AAADqIOb+jWEm8j8AAABURsz914eZyP8AAABQGTH3bwozqUn+1//X/9f/1//X/9f/X0n6//r/3dSj/9+8AP3/5XSp16//r/9Pb2Xr/8fcf0OYSU3yPwAAANRBzP03hpnI/wAAAFAZMfe/N8xE/gcAAIDKiLl/c5hJTfK//r/+v/5/H/f/h/T/M/3/0tP/1//vRv+/XP3/Yf1//X/9f5ZZ2fr/Mfe/L8ykJvkfAAAA6iDm/veHmcj/AAAAUBkx998UZiL/AwAAQGXE3D8eZlKT/K//r/+v/9/H/X/n/29Z/zL0/0eaP6//vzz0//X/u9H/L1f/3/n/9f/1/1luZev/x9x/c5hJTfI/AAAA1EHM/VvCTOR/AAAAqIyY+yfCTOR/AAAAqIyY+yfDTKqQ///tbM9N9P8vZv+/sY/1//X/9f/D5SXs/zv//wrQ/9f/70b/X/+/n9ev/6//T29l6//H3D8VZlKF/A8AAAA0xNy/NcxE/gcAAIDKiLl/W5iJ/A8AAACVEXP/9jCTmuT/Pun/b0kFqL7u/zv/v/6//n8t+v//E14U9f8b9P/1/7vR/9f/7+f1X4L+/3DzB/r/lM1gh8+Vrf8fc/+OMJOa5H8AAACog5j7d4aZyP8AAABQGTH33xJmIv8DAABAZcTcf2uYSU3yf5/0/yty/n/9f/1//f9a9P8D5/8v6P/r/3ej/6//38/rP7f+/2fav905/z+1ULb+f8z9u8JMapL/AQAAoA5i7v9AmIn8DwAAAJURc/9tYSbyPwAAAPSVTuchjGLu/2CYSU3yv/5/1fv/c6v1//X/9f+7r1//f2Xp/+v/d6P/r//fz+u/BOf/b6H/Tz8oW/8/5v7dYSY1yf8AAABQBzH3fyjMRP4HAACAyoi5//YwE/kfAAAAKiPm/j1hJjXJ//r/Ve//1+b8/43L9f/1//X/y0f/X/+/G/3//uz/hx9b9P9L1P/PjyH9f8qobP3/mPvvCDOpSf4HAACAOoi5/8NhJvI/AAAAVEbM/R8JM5H/AQAAoDJi7v9omElN8r/+v/5/Rfr/zv+v/6//X1L6/yvW/2+8FOr/Fxbt/6/R/+9mvj9/hfP/93n/3/n/Kauy9f9j7r8zzKQm+R8AAADqIOb+j4WZyP8AAABQGTH3/2qYifwPAAAAlRFz/11hJjXJ//r/+v/6//r/+v/6/ytJ/9/5/7tx/v+y9P8vTX++39ev/6//T29l6//H3P9rYSY1yf8AAABQBzH33x1mIv8DAABAZcTc//EwE/kfAAAA+syqRS+Juf/Xw0xqkv/7r/8/1pf9/8F0+/r/+v/6//r/+v/LSf9f/z/T/z9vl7o/3+/r1//X/6e3svX/Y+7/jTCTmuR/AAAAqIOY+z8RZiL/AwAAQGXE3P+bYSbyPwAAAFRGzP33hJnUJP8vd/+//frdOP+//n+m/6//r/+v/3+B+qn/P6L/v4D+v/5/P69f/1//n97K1v+Puf+3wkxqkv8BAACgDmLuvzfMRP4HAACAknrwnK8Rc/8nw0zkfwAAAKiMmPs/FWZSk/zff+f/77/+f377+v/6/5n+v/5/017V/18+/dT/d/7/hfT/9f/7ef36//r/9Fa2/n/M/feFmdQk/wMAAEAdxNz/6TAT+R8AAAAqI+b+3w4zkf8BAACgMmLu/0yYSU3yv/6/8//r/+v/6//r/68k/f+F/f/8NUz/v6D/r//fz+vX/9f/p7ey9f9j7v9smElN8j8AAADUQcz9vxNmIv8DAABAZcTc/7thJvI/AAAAVEbM/feHmdQk/+v/6//r/+v/6//r/68k/X/n/+9G/1//v5/Xr/+v/09vZev/x9z/uTCTmuR/AAAAqIOY+38vzET+BwAAgMqIuX9vmIn8DwAAAJURc/8DYSY1yf/6//r/+v/17f+vblun/r/+/0rQ/9f/70b/X/+/n9ev/6//T29l6//H3L8vzGRP690AAAAA/Svm/s+HmdTk3/8BAACgDmLu3x9mIv8DAABAZcTcfyDMpCb5X/9f/1//v779f+f/L+j/ryz9f/3/bvT/9f/7ef36//r/9Hax+//x+8Bi/f+Y+6ezrJb5HwAAAOog5v6DYSbyPwAAAFRGzP2HwkzkfwAAAKiMmPsfDDOpSf7X/9f/1/+vbf//pe+2rVP/X/9/Jej/6/93o/+v/9/P69f/1/+nt7Kd/z/m/sNhJjXJ/wAAAFAHMfd/IcxE/gcAAIDKiLn/i2Em8j8AAABURsz9R8JMapL/9f/1//X/z6v//39z/d//X9r5/9fM36/+v/7/+dD/1//vRv9f/7+f16//r/9Pb2Xr/8fcfzTMpCb5HwAAAOog5v5jYSbyPwAAAFRGzP3Hw0zkfwAAAKiMmPtPhJnUJP/r/59b/39gkW6g/n/n9Ve4/99Qi/5/E/1//f/zof+v/9/NRej/v9l8Ff3/Vpe6P9/v69f/1/+nt1L0/0fmP465//fDTGqS/wEAAKAOYu4/GWYi/wMAAPD/7N1Xs6V1lcfxPYduGmqKmrfA1VzPXHnpS/A1WMU7MGcwY1bMWRFzQswYMOecE+aIKCoG1Cqs7rPWavp0n2fv7t67z/P81+dz4Rqa9DDTTM2v4Dt/hpG7/0Fxi/0PAAAAw8jd/+C4pcn+P7P/P6b/9/6//l//r/8P+v/t0P/r/6d4/1//v+Tv1//r/1lvFv3/fX45d/9D4pYm+x8AAAA6yN3/0LjF/gcAAIBh5O5/WNxi/wMAAMAwcvc/PG5psv+9/6//1//r//X/+v9d0v/r/w+T/7tI/6//X+r36//1/6w3t/4/d/8j4pYm+x8AAAA6yN3/yLjF/gcAAIBh5O5/VNxi/wMAAMAwcvc/Om5psv/1//p//b/+X/9/zv7/bv3/duj/9f9TvP+v/1/y9+v/z7//P7buD8pw5tb/5+5/TNzSZP8DAABAB7n7Hxu32P8AAAAwjNz9j4tb7H8AAAAYRu7+a+OWFvv/mP5f/6//X2L/f0z/7/3/5dD/6/+n6P/1/0f3/VetViv9v/f/2bW59f+5+6+LW1rsfwAAAOghd//j4xb7HwAAABZgb6PfKnf/E+IW+x8AAACGkbv/iXFLk/2v/9f/6/8X2P97/1//vyD6//H7///R/+v/F9n/e/9f/8+lMLf+P3f/k+KWJvsfAAAAOsjd/+S4xf4HAACAYeTuf0rcYv8DAADAMHL3PzVuabL/9f/6f/2//l//r//fJf3/+P3/6lz9/InNvkf/r/9f8vfr//X/rLfz/v8B15+6m/b/ufuvj1ua7H8AAADoIHf/0+IW+x8AAACGkbv/6XGL/Q8AAADDyN3/jLilyf7X/+v/T/f/9/6X/l//r/8//eP6/+3Q/zft/zek/9f/L/n79f/6f9bbef+/pvc/+Mu5+58ZtzTZ/wAAANBB7v5nxS32PwAAAAwjd/+z4xb7HwAAAIaRu/85cUuT/a//1/97/1//r//X/++S/n+2/f/Bv/XOpP/fiP5f/39Y/3//Db5f/08Hc+v/c/c/N25psv8BAACgg9z9z4tb7H8AAAAYRu7+G+IW+x8AAACGkbv/+XFLk/3fpv8/kPPp//fp//X/q7P6/72W/f/JH9P/74b+f7b9/zT9/0b0//p/7//r/5k2t/4/d/8L4pYm+x8AAAA6yN3/wrjF/gcAAIBh5O5/Udxi/wMAAMAwcve/OG5psv/b9P8H6P/3XXT/f0L/P17/f57v/182Rv/v/f/d0f/r/6fo//X/S/5+/b/+n/Xm1v/n7n9J3NJk/wMAAMDw9la1+18at9j/AAAAMIzc/S+LW+x/AAAAGEbu/pfHLU32v/5f/+/9f/3/RfX/g7z/r//fHf2//n/Kpv3/Sv9ffy36//l8v/5f/896c+v/c/e/Im5psv8BAACgg9z9r4xb7H8AAAAYRu7+V8Ut9j8AAAAMI3f/q+OWJvtf/6//1//r//X/+v9d0v/r/6d4/1//v+Tv1//r/1lvbv1/7v7XxC1N9j8AAAB0kLv/tXGL/Q8AAADDyN1/Y9xi/wMAAMAwcve/Lm45uP/3LuVXXTr6f/2//l//r//X/++S/l//P2Xk/v/eExfe/19xyJ9P/7/h999yXP+/w/4//57S/7OJufX/uftvilv8838AAAAYRu7+18ct9j8AAAAMI3f/G+IW+x8AAACGkbv/jXFLk/1/WP9/13/v/3r9/2b0/+f+fv2//n/T/v+e20//fvp//f/50P/r/1cz7f+9/+/9/3W//1L7/6T/ZxNz6/9z978pbmmy/wEAAKCD3P1vjlvsfwAAABhG7v63xC32PwAAAAwjd/9b45Ym+3/77/9frf/X/+v/4+r/vf+v/9f/6/+n6f/1/0v+fv2//p/1ttP/X7baVv+fu/9tcUuT/Q8AAAAd5O5/e9xi/wMAAMAwcve/I26x/wEAAGAYufvfGbc02f/b7/+9/6//P8/+f69Z/3/jbfr/+PX6f/3/Nuj/9f8r/f8FO+p+funfr//X/7Pe3N7/z91/86mp12//AwAAQAc3n/rPK1bvilvsfwAAABhG7v5b4hb7HwAAAIaRu//dcUuT/a//1/8fef/v/f+i/4//uer/9f/nQf+v/1/p/y/YUffzS/9+/b/+n/Xm1v/n7n9P3NJk/wMAAEAHufvfG7fY/wAAADCM2P37//K7/Q8AAABDet+p/7xi9f64pcn+b9z/X32x/f+V9/mv9f/n/n79/1b6/5sP/tzT/+v/l0T/r/+fov/X/y/5++fT/8cPXKv/Z37m1v/n7v9A3NJk/wMAAEAHufs/GLfY/wAAADCM3P23xi32PwAAAAwjd/+H4pYm+79x/z/I+/8PvDO+QP8/bv/v/f+4i+r/79L/J/2//n+K/l//v+Tvn0//7/1/5mtu/X/u/g/HLU32PwAAAHSQu/8jcYv9DwAAAMPI3f/RuMX+BwAAgGHk7r8tbmmy//X/S+//vf+v/9f/z7L/9/5/0f/r/6fo//dO/V8i+v9lfr/+X//PenPr/3P3fyxuabL/AQAAoIPc/R+PW+x/AAAAGEbu/k/ELfY/AAAADCN3/yfjlib7X/+v/99V/3/yT6L/b9L/X6f/X+n/D6X/1/9P0f97/3/J36//1/+z3tz6/9z9n4pbmux/AAAA6CB3/6fjFvsfAAAAhpG7/zNxi/0PAAAAw8jd/9m44f+vOrpP2q7jh/x49Ob6/9Vq7z7xsf7f+//6f+//J/3/duj/9f9T9P/6/yV/v/5f/896c+v/c/d/Lm7xz/8BAABgGLn7Px+32P8AAAAwjNz9X4hb7H8AAAAYRu7+L8YtTfa//t/7//r/xfb/V+r/z/x+/f886f/1/1P0//r/JX+//l//z3pz6/9z938pbmmy/wEAAKCD3P1fjlvsfwAAABhG7v6vxC32PwAAAAwjd/9X45Ym+1//r//X/y+2//f+/4Hv1//Pk/5f/z9F/6//X/L36//1/6w3t/4/d//X4pYm+x8AAAA6yN3/9bjF/gcAAIBh5O7/Rtxi/wMAAMAwcvd/M25psv/1//p//b/+X/+v/98l/f94/f/Jvwf0//v0/7Po//Onif5f/88Mza3/z93/rbilyf4HAACADnL3fztusf8BAABg7g7+652Hyt3/nbjF/gcAAIBh5O7/btzSZP+P3P9P/Wb6/336f/3/Sv+v/98x/f94/b/3/0/bpP8/4/8DgP5/q476+/X/+n/Wm1v/n7v/e3FLk/0PAAAAHeTu/37cYv8DAADAMHL3/yBusf8BAABgGLn7fxi3NNn/I/f/U/T/+/T/+v+V/l//v2P6f/3/lA79/xn0/1t11N+v/9f/s94R9f/HV4f0/7n7fxS3NNn/AAAA0EHu/tvjFvsfAAAAhpG7/8dxi/0PAAAAw8jd/5O4ZZz9f82tE79S/7/1/v/UTyL9v/5/pf/X/+v/T9H/6/+n6P/1/0v+fv2//p/15vb+f+7+n8Yt4+x/AAAAaC93/8/iFvsfAAAAhpG7/+dxi/0PAAAAw8jd/4u4pcn+n2v/f/C//Qvq/y/o/f/8Bv2//n/H/f9lK/2//v8S0//r/6csp/8/ds4f1f/r//X/+n+mza3/z93/y7ilyf4HAACADnL3/ypusf8BAABgGLn7fx232P8AAAAwjNz9v4lbmuz/ufb/C37//4L6/4t7//90Pa3/P8r+f++sP/4M+3/v/+v/Lzn9v/5/ynL6/3PT/+v/7/d//3tN/rzT/+v/Odvc+v/c/b+NW5rsfwAAAOggd//v4hb7HwAAAIaRu/+OuMX+BwAAgGHk7v993NJk/+v/R+j/vf8/j/7/7D++/n93/f/JH9P/L4P+X/8/Rf+v/1/y93v/X//PenPr/3P33xm3NNn/AAAA0EHu/j/ELfY/AAAADCN3/x/jltj/lx/JVwEAAADblLv/rrilyT//1//r/4fs/0/07f/vaNL/e/9/OfT/+v8p+n/9/5K/X/+v/2e9ufX/ufv/FLc02f8AAADQQe7+P8ct9j8AAAAMI3f/X+IW+x8AAACGkbv/7rilyf7X/+v/z7//P15/3bPt/73/r//X/8/GuP3/5fp//f9F9/833LT/w/r/ZX6//l//z3pz6/9z9/81bmmy/wEAAKCD3P1/i1vsfwAAABhG7v6/xy32PwAAAAwjd/8/4pYm+1//r/8f8v1//b/+X/8/G+P2/97/1/97///i+vm9hX+//l//zybm1v/n7r8nbmmy/wEAAKCD3P3/jFvsfwAAABhG7v5/xS32PwAAAAwjd/+/45Ym+1//r//X/+v/9f/6/13S/+v/p+j/O/f/y/9+/b/+n/Xm1v/n7v9PAAAA//9AODfC")
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00')
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000000c0)='./file0\x00', 0x1ebc9b, 0x0, 0x0, 0x0, &(0x7f00000000c0))

0s ago: executing program 2 (id=1651):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001340)={0xf, {"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", 0x1000}}, 0x1006)

kernel console output (not intermixed with test programs):

99 code=0x7ffc0000
[  126.820538][    C1] vkms_vblank_simulate: vblank timer overrun
[  126.853250][ T7417] openvswitch: netlink: Actions may not be safe on all matching packets
[  126.872014][   T27] audit: type=1326 audit(1774362692.905:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7414 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6ff99c799 code=0x7ffc0000
[  126.941742][   T27] audit: type=1326 audit(1774362692.945:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7414 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fc6ff99c799 code=0x7ffc0000
[  127.004097][   T27] audit: type=1326 audit(1774362692.945:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7414 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6ff99c799 code=0x7ffc0000
[  127.071994][   T27] audit: type=1326 audit(1774362692.945:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7414 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6ff99c799 code=0x7ffc0000
[  127.078161][ T7423] loop3: detected capacity change from 0 to 2048
[  127.145285][   T27] audit: type=1326 audit(1774362692.945:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7414 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fc6ff99c799 code=0x7ffc0000
[  127.167384][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.222925][ T7423] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  127.242643][ T7429] loop2: detected capacity change from 0 to 2048
[  127.244361][   T27] audit: type=1326 audit(1774362692.945:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7414 comm="syz.2.539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6ff99c799 code=0x7ffc0000
[  127.300526][ T7433] loop4: detected capacity change from 0 to 128
[  127.336121][ T7429] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  127.386165][ T7435] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  127.391976][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop2
[  127.423087][ T5757] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  128.092579][ T5755] udevd[5755]: inotify_add_watch(7, /dev/nbd0, 10) failed: No such file or directory
[  128.207485][ T1187] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  128.410817][ T1187] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  128.430140][ T1187] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  128.466932][ T1187] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  128.509709][ T1187] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  128.549259][ T1187] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  128.580698][ T1187] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  128.600334][ T1187] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  128.634445][ T1187] usb 3-1: Product: syz
[  128.638652][ T1187] usb 3-1: Manufacturer: syz
[  128.678985][ T1187] cdc_wdm 3-1:1.0: skipping garbage
[  128.687394][ T1187] cdc_wdm 3-1:1.0: skipping garbage
[  128.716863][ T1187] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  128.726189][ T1187] cdc_wdm 3-1:1.0: Unknown control protocol
[  128.843597][ T7490] loop1: detected capacity change from 0 to 2048
[  128.873652][ T7490] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  128.947691][ T7498] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  129.504714][ T7503] loop3: detected capacity change from 0 to 8192
[  129.571799][ T7503] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  129.655978][ T7503] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  129.715481][ T7503] REISERFS (device loop3): using ordered data mode
[  129.742383][ T7503] reiserfs: using flush barriers
[  129.780298][ T7503] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  129.835930][ T7503] REISERFS (device loop3): checking transaction log (loop3)
[  129.869735][ T7503] REISERFS (device loop3): Using r5 hash to sort names
[  129.893651][ T7503] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  129.932549][ T7497] loop4: detected capacity change from 0 to 32768
[  130.423558][ T7534] loop3: detected capacity change from 0 to 1024
[  130.542921][ T7531] hfsplus: invalid extended attribute record
[  130.665702][ T3431] hfsplus: b-tree write err: -5, ino 25
[  130.671463][ T3431] hfsplus: b-tree write err: -5, ino 4
[  130.695861][ T3431] hfsplus: b-tree write err: -5, ino 2
[  130.698659][ T5754] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  130.874104][   T28] usb 3-1: USB disconnect, device number 5
[  130.940840][ T5754] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  130.992813][ T5754] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.030426][ T5754] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  131.064592][ T5754] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.080538][ T5754] usb 2-1: config 0 descriptor??
[  131.388571][ T7556] syz.4.584 (7556) used greatest stack depth: 17864 bytes left
[  131.560221][ T5754] elan 0003:04F3:0755.0006: unknown main item tag 0x0
[  131.593733][ T5754] elan 0003:04F3:0755.0006: item fetching failed at offset 4/5
[  131.609406][ T7572] loop2: detected capacity change from 0 to 512
[  131.625299][ T5754] elan 0003:04F3:0755.0006: Hid Parse failed
[  131.631492][ T5754] elan: probe of 0003:04F3:0755.0006 failed with error -22
[  131.674535][ T7572] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  131.719675][ T7572] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  131.821118][ T7572] EXT4-fs error (device loop2): ext4_orphan_get:1424: comm syz.2.589: bad orphan inode 117440527
[  131.888245][ T7572] EXT4-fs (loop2): Remounting filesystem read-only
[  131.921134][ T7572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.926939][ T1187] usb 2-1: USB disconnect, device number 3
[  132.087666][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.928593][ T7597] loop2: detected capacity change from 0 to 32768
[  132.979784][ T7589] loop4: detected capacity change from 0 to 32768
[  132.983887][ T7597] JBD2: Ignoring recovery information on journal
[  133.041946][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  133.049919][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  133.097864][ T7589] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  133.198987][ T7597] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  133.426124][ T7589] XFS (loop4): Ending clean mount
[  133.456271][ T7589] XFS (loop4): Quotacheck needed: Please wait.
[  133.603022][ T5805] IPVS: starting estimator thread 0...
[  133.610965][ T7647] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  133.649001][ T7589] XFS (loop4): Quotacheck: Done.
[  133.737023][ T7649] IPVS: using max 22 ests per chain, 52800 per kthread
[  133.757619][ T5765] ocfs2: Unmounting device (7,2) on (node local)
[  134.003307][ T7660] loop1: detected capacity change from 0 to 128
[  134.009955][ T6659] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  134.117206][ T7660] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  134.191594][ T7660] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  134.444608][ T5805] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  134.657338][ T7677] loop3: detected capacity change from 0 to 1024
[  134.664420][ T5805] usb 3-1: Using ep0 maxpacket: 32
[  134.692198][ T7677] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  134.694390][ T5805] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.746061][ T5805] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.758795][ T5805] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  134.767072][ T7677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.774197][ T5805] usb 3-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  134.826405][ T5805] usb 3-1: Product: syz
[  134.830631][ T5805] usb 3-1: Manufacturer: syz
[  134.864227][ T5805] hub 3-1:4.0: USB hub found
[  134.949785][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.098108][ T5805] hub 3-1:4.0: 5 ports detected
[  135.113773][ T5805] hub 3-1:4.0: insufficient power available to use all downstream ports
[  135.242062][ T7679] loop1: detected capacity change from 0 to 32768
[  135.274991][ T7692] xt_hashlimit: max too large, truncated to 1048576
[  135.297912][ T7679] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  135.404751][ T1187] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  135.423438][ T5755] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 10
[  135.435558][    T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!!
[  135.474533][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  135.512123][ T5805] hub 3-1:4.0: set hub depth failed
[  135.556265][ T5805] usb 3-1: USB disconnect, device number 6
[  135.634116][ T1187] usb 5-1: Using ep0 maxpacket: 8
[  135.692567][ T1187] usb 5-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[  135.712212][ T1187] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.726157][ T1187] usb 5-1: Product: syz
[  135.730421][ T1187] usb 5-1: Manufacturer: syz
[  135.751044][ T1187] usb 5-1: SerialNumber: syz
[  135.758750][ T1187] usb 5-1: config 0 descriptor??
[  135.779134][ T1187] radio-usb-si4713 5-1:0.0: Si4713 development board discovered: (10C4:8244)
[  135.992665][ T7701] loop1: detected capacity change from 0 to 2048
[  136.267505][ T7696] loop3: detected capacity change from 0 to 40427
[  136.298193][ T7696] F2FS-fs (loop3): invalid crc value
[  136.331200][ T7696] F2FS-fs (loop3): Found nat_bits in checkpoint
[  136.413227][ T7709] tipc: Started in network mode
[  136.421405][ T7709] tipc: Node identity 0000000000002d5f0000000000000001, cluster identity 4711
[  136.431818][ T1187] radio-usb-si4713: probe of 5-1:0.0 failed with error -71
[  136.435676][ T7709] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  136.448981][ T1187] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  136.458040][ T7696] F2FS-fs (loop3): Start checkpoint disabled!
[  136.465057][ T1187] usb 5-1: USB disconnect, device number 4
[  136.478109][ T7696] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  136.746650][ T3507] kworker/u4:11: attempt to access beyond end of device
[  136.746650][ T3507] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  136.763929][ T3507] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  136.773747][ T3507] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  137.202653][ T7726] loop2: detected capacity change from 0 to 512
[  137.221060][ T7726] EXT4-fs: Ignoring removed oldalloc option
[  137.259145][ T7726] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  137.280314][ T7728] netlink: 'syz.4.639': attribute type 1 has an invalid length.
[  137.311932][ T7726] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  137.345083][ T7726] EXT4-fs (loop2): 1 truncate cleaned up
[  137.368573][ T7726] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.541926][ T7737] loop4: detected capacity change from 0 to 2048
[  137.560620][ T7737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.579867][ T7737] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.736461][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.892343][ T7749] loop2: detected capacity change from 0 to 512
[  137.937235][ T7749] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  138.041701][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.401841][ T7765] loop2: detected capacity change from 0 to 256
[  138.445613][ T7765] exfat: Deprecated parameter 'utf8'
[  138.507543][ T7765] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6efbb19, utbl_chksum : 0xe619d30d)
[  138.554533][ T5805] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  138.763497][ T5805] usb 4-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  138.778628][ T5805] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.815390][ T5805] usb 4-1: config 0 descriptor??
[  138.833508][ T5805] gspca_main: cpia1-2.14.0 probing 0813:0001
[  139.065815][ T7783] loop2: detected capacity change from 0 to 64
[  139.179940][ T7787] netlink: 220 bytes leftover after parsing attributes in process `syz.4.665'.
[  139.192899][ T7787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.665'.
[  139.251435][ T5805] gspca_cpia1: usb_control_msg 03, error -32
[  139.271516][ T5805] gspca_cpia1: usb_control_msg 03, error -71
[  139.282045][ T5805] gspca_cpia1: usb_control_msg 01, error -71
[  139.301384][ T5805] cpia1 4-1:0.0: only firmware version 1 is supported (got: 0)
[  139.330714][ T5805] usb 4-1: USB disconnect, device number 5
[  139.468600][ T7793] netlink: 128 bytes leftover after parsing attributes in process `syz.4.668'.
[  139.484561][ T7793] netlink: 'syz.4.668': attribute type 5 has an invalid length.
[  139.938773][ T7791] loop2: detected capacity change from 0 to 32768
[  139.957023][ T7807] loop4: detected capacity change from 0 to 128
[  139.994829][ T7791] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  140.031469][ T7791] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  140.066200][ T7791] BTRFS info (device loop2): using free space tree
[  140.229575][ T7791] BTRFS info (device loop2): enabling ssd optimizations
[  140.276399][ T7791] BTRFS info (device loop2): auto enabling async discard
[  140.468430][ T7791] BTRFS info (device loop2): device stats zeroed by syz.2.667 (7791)
[  140.551183][ T5765] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  140.745195][   T28] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  140.836227][ T5755] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop2 scanned by udevd (5755)
[  140.954586][   T28] usb 4-1: Using ep0 maxpacket: 32
[  140.975943][   T28] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  141.011049][   T28] usb 4-1: config 0 has no interface number 0
[  141.074517][   T28] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  141.093960][   T28] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.109623][ T7851] loop1: detected capacity change from 0 to 4096
[  141.139100][   T28] usb 4-1: Product: syz
[  141.146892][   T28] usb 4-1: Manufacturer: syz
[  141.151711][   T28] usb 4-1: SerialNumber: syz
[  141.178707][ T7851] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  141.188648][ T7851] NILFS (loop1): mounting unchecked fs
[  141.230010][   T28] usb 4-1: config 0 descriptor??
[  141.259537][   T28] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  141.288351][ T7851] NILFS (loop1): recovery complete
[  141.307615][ T7859] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  141.498853][   T28] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  141.549759][   T28] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  141.844476][ T7866] loop4: detected capacity change from 0 to 4096
[  141.890112][ T7871] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  141.942347][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  141.942360][   T27] audit: type=1800 audit(1774362708.045:31): pid=7866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.695" name="file1" dev="loop4" ino=15 res=0 errno=0
[  141.973380][    C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  141.988144][   T28] usb 4-1: USB disconnect, device number 6
[  142.007704][   T28] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  142.055324][   T28] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  142.101711][   T28] quatech2 4-1:0.51: device disconnected
[  142.223650][ T7877] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  142.246265][ T7876] loop1: detected capacity change from 0 to 512
[  142.358338][ T7876] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.437265][ T7876] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  142.512586][ T5764] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.706783][ T7894] loop3: detected capacity change from 0 to 64
[  142.714529][ T5805] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  142.918164][ T5805] usb 3-1: Using ep0 maxpacket: 32
[  142.927690][ T5805] usb 3-1: unable to get BOS descriptor or descriptor too short
[  142.957526][ T5805] usb 3-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.40
[  142.976904][ T5805] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.004758][ T5805] usb 3-1: Product: syz
[  143.008960][ T5805] usb 3-1: Manufacturer: syz
[  143.032913][ T5805] usb 3-1: SerialNumber: syz
[  143.245999][ T7912] loop4: detected capacity change from 0 to 512
[  143.247812][ T7914] loop1: detected capacity change from 0 to 1024
[  143.332687][ T7912] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.423826][  T143] hfsplus: b-tree write err: -5, ino 25
[  143.441877][  T143] hfsplus: b-tree write err: -5, ino 4
[  143.451953][  T143] hfsplus: b-tree write err: -5, ino 2
[  143.453325][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.527091][ T5805] usb 3-1: unit 0 not found!
[  143.729947][ T5805] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  143.752444][ T5805] usb 3-1: unit 0 not found!
[  143.798014][ T5805] snd-usb-audio: probe of 3-1:1.1 failed with error -22
[  143.822122][ T5805] usb 3-1: unit 0 not found!
[  143.906557][ T7916] loop3: detected capacity change from 0 to 32768
[  143.994080][ T7926] loop4: detected capacity change from 0 to 8192
[  144.017914][ T5805] snd-usb-audio: probe of 3-1:1.2 failed with error -22
[  144.052600][ T7926] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  144.052975][ T5805] usb 3-1: USB disconnect, device number 7
[  144.071901][ T7926] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  144.115566][ T7926] REISERFS (device loop4): using ordered data mode
[  144.122488][ T7926] reiserfs: using flush barriers
[  144.135957][ T7926] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  144.152838][ T7926] REISERFS (device loop4): checking transaction log (loop4)
[  144.163116][ T7926] REISERFS (device loop4): Using r5 hash to sort names
[  144.194737][ T6877] udevd[6877]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.2/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  144.214651][ T7926] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  144.280122][ T7926] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  144.388032][ T7926] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  144.544572][ T7932] Bluetooth: MGMT ver 1.22
[  144.730058][ T7924] loop1: detected capacity change from 0 to 32768
[  145.447410][ T7960] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  145.469111][ T7963] netlink: 'syz.4.737': attribute type 1 has an invalid length.
[  145.888044][ T7982] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  146.166176][ T7992] loop1: detected capacity change from 0 to 128
[  146.432506][ T7996] loop4: detected capacity change from 0 to 512
[  146.453703][ T8001] loop1: detected capacity change from 0 to 128
[  146.483421][ T7996] EXT4-fs: Ignoring removed nobh option
[  146.496827][ T7996] EXT4-fs: Ignoring removed bh option
[  146.551094][ T7996] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  146.593474][ T7996] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.755: invalid indirect mapped block 256 (level 1)
[  146.623125][ T7996] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.755: invalid indirect mapped block 2683928664 (level 1)
[  146.715281][ T7996] EXT4-fs (loop4): 1 truncate cleaned up
[  146.762984][ T7996] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.952681][ T7996] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  147.014241][ T7996] EXT4-fs (loop4): changing journal_checksum during remount not supported; ignoring
[  147.113438][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.265924][ T8025] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  147.317047][ T8025] netdevsim netdevsim4 netdevsim0: left promiscuous mode
[  147.506297][ T5754] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  147.709283][ T5754] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  147.731126][ T5754] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.747728][ T5754] usb 3-1: New USB device found, idVendor=056a, idProduct=233b, bcdDevice= 0.00
[  147.759157][ T5754] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.773772][ T5754] usb 3-1: config 0 descriptor??
[  147.795847][ T1187] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  147.861549][ T8045] loop4: detected capacity change from 0 to 512
[  147.880553][ T8045] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  147.900884][ T8047] netlink: 'syz.1.778': attribute type 1 has an invalid length.
[  147.927061][ T8045] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.954863][ T8045] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.004227][ T1187] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  148.022705][ T1187] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  148.037993][ T1187] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  148.049899][ T1187] usb 4-1: config 220 has no interface number 2
[  148.060272][ T1187] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  148.096369][ T1187] usb 4-1: config 220 interface 0 has no altsetting 0
[  148.105791][ T1187] usb 4-1: config 220 interface 76 has no altsetting 0
[  148.109254][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.112667][ T1187] usb 4-1: config 220 interface 1 has no altsetting 0
[  148.127504][ T1187] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  148.145413][ T1187] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.157134][ T1187] usb 4-1: Product: syz
[  148.161332][ T1187] usb 4-1: Manufacturer: syz
[  148.169524][ T1187] usb 4-1: SerialNumber: syz
[  148.207607][ T5754] wacom 0003:056A:233B.0007: Unknown device_type for 'HID 056a:233b'. Ignoring.
[  148.425626][ T1187] usb 4-1: selecting invalid altsetting 0
[  148.435721][ T8062] netlink: 8 bytes leftover after parsing attributes in process `syz.4.783'.
[  148.446778][ T1187] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  148.453156][ T1187] usb 4-1: No valid video chain found.
[  148.462478][ T5805] usb 3-1: USB disconnect, device number 8
[  148.486437][ T1187] usb 4-1: selecting invalid altsetting 0
[  148.511485][ T1187] usbtest: probe of 4-1:220.1 failed with error -22
[  148.542388][ T1187] usb 4-1: USB disconnect, device number 7
[  149.509783][ T8102] loop3: detected capacity change from 0 to 2048
[  149.588849][ T8102] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.657472][ T8113] loop4: detected capacity change from 0 to 128
[  149.696568][ T8102] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  149.753783][ T8113] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.798065][ T8113] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.809571][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.927955][ T8120] loop3: detected capacity change from 0 to 512
[  149.944767][ T5754] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  149.969277][ T8120] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  149.985885][ T8120] ext4 filesystem being mounted at /196/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.091664][ T6659] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  150.138473][ T8120] Quota error (device loop3): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  150.163420][ T5754] usb 3-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64
[  150.184180][ T5754] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.195893][ T5754] usb 3-1: Product: syz
[  150.196578][ T8120] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  150.205764][ T5754] usb 3-1: Manufacturer: syz
[  150.239920][ T5754] usb 3-1: SerialNumber: syz
[  150.245436][ T8120] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.810: Failed to acquire dquot type 0
[  150.266415][ T5754] usb 3-1: config 0 descriptor??
[  150.287238][ T5754] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state.
[  150.311315][ T8128] [U] 
[  150.321437][ T8128] [U] K{�
[  150.328040][ T8128] [U] �T �1��Š�F���Fˊ�`G�Jǘ�G���������O��/�MC�
[  150.340115][ T5754] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  150.346031][ T8128] [U] T�ؖ/,�~�Ĝ��J���}8���'O1��"�7-΂JQ�K��W��Q�5C%"�H12��Y������X�`���ȼ`+��(�¿!(���Z'�TXLN�I�G�J����ݭ�P�~�7�!���"ب���(�5�OBܤ�̓J�
[  150.365527][ T5754] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0))
[  150.385264][ T8128] [U] �K\&�}6�6�X�HX��Ե���.`�A�$�40|϶��9��ި����U��4��ĮVBZ��}�W�M�T���Q��ΦR�4��
[  150.386363][ T5754] usb 3-1: media controller created
[  150.403049][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  150.406540][ T8128] [U] ".H6��"�KÇ[����J�4��I�N��[Z(��C|T�]Z{��3�C=��X�Ԟ˅�4�W�)\T�XJ��SH{Q;̹���T��+���G��߮D�.˂�>Y����WUH�FN����HL]S�2���\G%�O�&Z)�К'�PUL�_<�     �ذ�Ү��`ұT��ޜ���;_�"(�U{7J��2X �/�'��C���I����H�C�ճ�V�=��AI�%W�ES� R��J�Μ���G��R��͡HI
���A��6-�D��V�� I"��Nƨ ��ASC~4���8C�*�OO5/ߜJ�~���W�VK+����3��Y)��M���V��YQƽ�DTR�
OTPEM%F��EJ�A5��T_-X~�^AAۂҘ�Q��
[  150.433100][ T5754] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  150.507312][ T8128] [U]         +�W�G?]��'A:    ��)�
����' B>T���F/��<'�U�'��H�I�.+]E�.�-ɿ߿�%��>2`�^U�8F.�6��3��+�A�«���G3�P��6:�^0��T��V�'E�T����YC�N��Rϩ�N�PJ�;�Z����ۑ8!��\م�A�ʖ2��$е�­WI.��#��/BAI���`��4J��D�Y@�Z��GW�5˿B��ٜ�N�Y"VI2��
[  150.586034][ T8128] [U] ܾ�4B`˗H�T�_K5�T�YJ���9��C�$BR�L�NUL��9W���|�G�"ʃ�%�ڶ�C�؝���Q��
 ��3��Q��N^HP*��$   �.�7Yӱ�2�
[  150.636196][ T8128] [U] �?���H��*����3͝7�ɍ�^#Q�"0~���(�O�XL�B�,'V��=���C�S���G�S��0�ւ��`���ه��=1(�ξ��P#�2DO*Ƀ
[  150.671401][ T8138] netlink: 8 bytes leftover after parsing attributes in process `syz.3.818'.
[  150.680701][ T8128] [U] �S��G������GU��D-{���|&�����ѐ2��L�C_��!`��OZ֥�B��%>�RѶ�WχݎSS�H"�YA4�O.�Y��ď�RTԶ�B�[+/<<R�B����|ФE���۠�V96#���ͤʦJ�U�%
S851���ҩS�P��\��?Q�|L��QX�0�K�1ORɴ2��|��D�F���ِ��2ޔ���0��H�}C[/����PX^��O
[  150.682581][ T8139] loop1: detected capacity change from 0 to 16
[  150.703810][    C1] vkms_vblank_simulate: vblank timer overrun
[  150.713718][ T8128] [U] �؛���(J�Л��M��XZ�;�����؝_����*3�3��5�\�XM��U��AK!AQ`��;FЕ�I+��VUH���M�J��Ʒ��Z�C��Z���)_ǟ�  ԑ�&�֡��A�XTO���_� ڼ�:���%��P���Cֲ�Y�+_�ܛ��}U�M��ƫC�!KJ�7пG��=B�
[  150.718260][ T5754] DVB: Unable to find symbol mt352_attach()
[  150.741355][ T8128] [U] ٽ�F�%�XA��L�2R*G��VW��$��J     �A��F����+ؾ9̈́VI�֗�Kپ�1}_��
��%�R6��(]��/��ؐřYܺ��Hä���R G��RN/ܫ�#!�D����%���D��-{�$�VU��T���$:MTR�E�C1V�D~��];[�����SQ����(��E,X�8�"�
��G�D�ڵ2@T8���҃����T8.RC+�@�ʦ�P�U�
P����C���'ńYL�-SS1E?�7�O���^]����C�½H]�JKR]RKQ܆��ݣ޴OTC��X���4�N�  ��&����ڋ��@�:M7�~�+�W*���XM��>>��{Q���
_�՝LX8�U����{�Z��ؐ)��7?�RR;�C�R�Hײڣ����1�>)�Mă‰�T���(��Aϝ�}9�ڥ�J*Mќ�ġ�'L��Q    �DW��ظ=��|Q�   �Æ�W;5��Ž�!�DB�X`ɧ�/��E�`Ʀ\
[  150.807695][ T8139] erofs: (device loop1): mounted with root inode @ nid 36.
[  150.859311][ T8128] [U] M��X��"�{;�ե�٘_�O2��)�O��.2�W2ʲ��Y���X_  HPϱ�S�D����:]�{�����Ƚ
[  150.911197][ T8128] [U] I,�>�Ӥ ��5�1��^1�N4�OǶ�'0�?֒I�9W.�_.�W�A���V��`)�Z���C6GIӹ�A��XL[����F�*��O�W)+��'\N�
[K@����2�Ǭ���P"^`���   ؿ
[  150.942586][ T5754] DVB: Unable to find symbol nxt6000_attach()
[  150.952959][ T8128] [U] 22��Ʃ�۩X?0;3U�
[  150.952981][ T5754] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)'
[  150.959282][ T8128] [U] ޜ�
ƍ�SOBX�8�W�4��(�~/���K�U��ԖOQ�E+�G�-Y�GY_
�>V�����3.H�ә]̈́�2��)�D�,        ��      �D~�D���+�W;A\�F
P��Ș|$��)�
KؐI���ɿK�YT^R���Ǚ���A=�#�ܜ       �Ϳ�AE��T�1��ݯ4K�.E"R�S|П�S���:��>P��R�"Z�ڭ���#P!�KY"�}��F�N84ܳ��Hޱ�O��S��̫%DLW�MƲ�
[  150.986328][ T5754] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input11
[  151.008589][ T5754] dvb-usb: schedule remote query interval to 1000 msecs.
[  151.016196][ T5754] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected.
[  151.044724][ T5754] dvb-usb: bulk message failed: -22 (7/0)
[  151.051028][ T5754] dvb-usb: bulk message failed: -22 (7/0)
[  151.084740][ T5754] usb 3-1: USB disconnect, device number 9
[  151.175538][ T8128] [U] [�['XN�'�����,MR��/����1D=!D�X91B�
WǻR�LF���K̤Z��#�`̑L؛�˜��B~�M���
[  151.224786][ T8128] [U] �L�>�сD+�D�����"5�ʍ�H3<���IR=F^�F�N��������V���D�OIO�:U�>�Y�
[  151.236995][ T5754] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected.
[  151.240977][ T8128] [U] 'B�6V�20�ķǞ��׌�"T8�{9�FW��]���̩�
[  151.266602][ T8150] Cannot find set identified by id 0 to match
[  151.278540][ T8128] [U] �72މ���U�C6����τI]8C��TۨQSK�Y��I��¹ �|V'�TV/��G�$[� 9KH`�"ܑ��}��[^=��0�]��%�̂T�����F�_V�4C���
[  151.311123][ T8128] [U] �EC�
[  151.322648][ T8128] [U] ���|���<��:^�3$7NK~�-�@��?��/MTL��۾�I�WȬ@G~T�{��P�+�$�JP|���I�RIӍPM� ��Y� ڔ8�T���V�����,�L�,�
[  151.363899][ T8128] [U] �K�����)0���~ܳʪ�IP'�F�ҜZ��R���@B�]�5��{��ʼ�'�8�ƥF��UTQUD
ǩ�K;7ͪ0C[��Y���YC���ذM��L�8�T�͚�5���RX����W� X���OQHVI'8����L�
[  151.532615][ T8158] loop4: detected capacity change from 0 to 1024
[  151.559939][ T8160] netlink: 'syz.1.828': attribute type 21 has an invalid length.
[  151.568483][ T8160] IPv6: NLM_F_CREATE should be specified when creating new route
[  151.576566][ T8160] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  151.584346][ T8160] IPv6: NLM_F_CREATE should be set when creating new route
[  151.591634][ T8160] IPv6: NLM_F_CREATE should be set when creating new route
[  151.598917][ T8160] IPv6: NLM_F_CREATE should be set when creating new route
[  151.636834][ T8163] netlink: 'syz.1.828': attribute type 21 has an invalid length.
[  151.662484][ T8163] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  151.674183][ T8156] netlink: 12 bytes leftover after parsing attributes in process `syz.2.826'.
[  151.911854][ T8166] loop4: detected capacity change from 0 to 4096
[  151.962892][ T8174] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  152.275000][ T8183] loop2: detected capacity change from 0 to 4096
[  152.294349][ T8183] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  152.349847][ T8183] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  152.584763][ T1187] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  152.786335][ T1187] usb 5-1: too many endpoints for config 0 interface 0 altsetting 2: 254, using maximum allowed: 30
[  152.817887][ T8198] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition
[  152.822364][ T1187] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  152.836636][ T8198] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0)
[  152.873783][ T1187] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  152.904051][ T1187] usb 5-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  152.928966][ T1187] usb 5-1: config 0 interface 0 has no altsetting 0
[  152.944796][ T1187] usb 5-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  152.964375][ T1187] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.976694][ T1187] usb 5-1: config 0 descriptor??
[  153.443447][ T1187] ryos 0003:1E7D:3138.0008: hidraw0: USB HID v0.00 Device [HID 1e7d:3138] on usb-dummy_hcd.4-1/input0
[  153.749867][ T8220] loop3: detected capacity change from 0 to 512
[  153.764994][ T5805] usb 5-1: USB disconnect, device number 5
[  153.852178][ T8220] EXT4-fs (loop3): orphan cleanup on readonly fs
[  153.900675][ T8220] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #4: comm syz.3.854: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  153.976610][ T8220] EXT4-fs error (device loop3): ext4_quota_enable:7143: comm syz.3.854: Bad quota inode: 4, type: 1
[  153.999813][ T8220] EXT4-fs warning (device loop3): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  154.045913][ T8220] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  154.053796][ T8220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  154.071590][ T8215] loop1: detected capacity change from 0 to 32768
[  154.111919][ T8215] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.153709][ T8220] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  154.187832][ T8220] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #4: comm syz.3.854: pblk 0 bad header/extent: too large eh_depth - magic f30a, entries 1, max 4(4), depth 2048(2048)
[  154.207644][ T8220] EXT4-fs error (device loop3): ext4_quota_enable:7143: comm syz.3.854: Bad quota inode: 4, type: 1
[  154.209225][ T8215] XFS (loop1): Ending clean mount
[  154.221346][ T8220] EXT4-fs warning (device loop3): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  154.296060][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.385913][ T5764] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  154.564786][ T8239] netlink: 'syz.4.859': attribute type 1 has an invalid length.
[  154.996585][   T27] audit: type=1326 audit(1774362721.105:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8249 comm="syz.1.872" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe20439c799 code=0x0
[  155.018053][    C1] vkms_vblank_simulate: vblank timer overrun
[  155.205228][ T8259] netlink: 20 bytes leftover after parsing attributes in process `syz.2.867'.
[  155.511051][ T8246] loop4: detected capacity change from 0 to 40427
[  155.530990][ T8246] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  155.544506][ T8246] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  155.556885][ T8246] F2FS-fs (loop4): invalid crc_offset: 33558524
[  155.609157][ T8246] F2FS-fs (loop4): Found nat_bits in checkpoint
[  155.711562][ T8246] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  155.724084][ T8246] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  156.119031][ T8287] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  156.134401][ T8287] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  156.357398][   T27] audit: type=1326 audit(1774362722.465:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8292 comm="syz.1.883" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe20439c799 code=0x0
[  156.854598][ T8291] loop3: detected capacity change from 0 to 32768
[  156.888518][ T8291] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  156.996482][ T8291] XFS (loop3): Ending clean mount
[  157.025860][ T8291] XFS (loop3): Quotacheck needed: Please wait.
[  157.121173][ T8291] XFS (loop3): Quotacheck: Done.
[  157.271185][   T27] audit: type=1800 audit(1774362723.375:34): pid=8291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.882" name="file1" dev="loop3" ino=4422 res=0 errno=0
[  157.385092][ T5766] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  157.433762][ T8331] loop4: detected capacity change from 0 to 512
[  157.524898][ T8331] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.592565][ T8331] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.843118][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.321487][ T8359] loop4: detected capacity change from 0 to 256
[  158.354841][ T8359] exfat: Deprecated parameter 'utf8'
[  158.370547][ T8359] exfat: Deprecated parameter 'namecase'
[  158.386821][ T8359] exfat: Deprecated parameter 'namecase'
[  158.419418][ T8359] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011e8b, chksum : 0xf0cee8ef, utbl_chksum : 0xe619d30d)
[  158.555442][ T8344] loop2: detected capacity change from 0 to 32768
[  158.616933][ T8344] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  158.644446][ T8344] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  158.692159][ T8344] BTRFS info (device loop2): using free space tree
[  158.883101][ T8344] BTRFS info (device loop2): enabling ssd optimizations
[  158.924755][ T8344] BTRFS info (device loop2): auto enabling async discard
[  159.107082][ T5765] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  159.586962][ T8409] loop3: detected capacity change from 0 to 1024
[  159.792095][ T8414] loop1: detected capacity change from 0 to 512
[  159.856816][ T8414] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  159.973087][ T5766] hfsplus: bad catalog entry type
[  160.151825][ T5764] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  160.307758][ T8427] loop2: detected capacity change from 0 to 256
[  160.356421][ T8405] loop4: detected capacity change from 0 to 32768
[  160.671271][ T8434] netlink: 332 bytes leftover after parsing attributes in process `syz.4.936'.
[  160.880494][ T8441] loop2: detected capacity change from 0 to 4096
[  160.935469][ T8441] NILFS (loop2): invalid segment: Checksum error in segment payload
[  160.949375][ T8441] NILFS (loop2): trying rollback from an earlier position
[  160.977421][ T8441] NILFS (loop2): recovery complete
[  160.983865][ T8446] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  161.594599][ T5772] Bluetooth: hci0: command 0x0c1a tx timeout
[  161.600807][ T5775] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  161.762180][ T8458] loop4: detected capacity change from 0 to 32768
[  162.149339][ T3507] hfsplus: b-tree write err: -5, ino 25
[  162.156950][ T3507] hfsplus: b-tree write err: -5, ino 4
[  162.163073][ T3507] hfsplus: b-tree write err: -5, ino 2
[  162.180088][ T3507] hfsplus: b-tree write err: -5, ino 26
[  162.312323][  T143] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.492513][  T143] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.647700][  T143] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.804098][  T143] bond0: (slave netdevsim0): Releasing backup interface
[  162.829772][  T143] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  162.907843][ T8475] loop2: detected capacity change from 0 to 4096
[  163.005332][ T8475] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.282529][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.510852][ T5772] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  163.524817][ T5772] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  163.532887][ T5772] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  163.556802][ T5772] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  163.568221][ T5772] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  163.578441][ T5772] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  163.808151][ T8500] loop4: detected capacity change from 0 to 128
[  163.858255][ T8500] FAT-fs (loop4): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1)
[  164.632644][ T8502] loop2: detected capacity change from 0 to 40427
[  164.677533][ T8502] F2FS-fs (loop2): invalid crc value
[  164.718361][ T8502] F2FS-fs (loop2): Found nat_bits in checkpoint
[  164.831946][ T8531] loop4: detected capacity change from 0 to 16
[  164.849977][ T8502] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  164.878427][ T8531] erofs: (device loop4): mounted with root inode @ nid 36.
[  164.934360][   T27] audit: type=1800 audit(1774362731.035:35): pid=8531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.971" name="file1" dev="loop4" ino=86 res=0 errno=0
[  165.011131][ T8485] chnl_net:caif_netlink_parms(): no params data found
[  165.128660][ T5765] syz-executor: attempt to access beyond end of device
[  165.128660][ T5765] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  165.162339][ T8538] loop1: detected capacity change from 0 to 128
[  165.169146][ T5765] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  165.261835][ T5755] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  165.675141][ T5775] Bluetooth: hci0: command tx timeout
[  165.788093][ T8485] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.814549][ T8485] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.840031][ T8485] bridge_slave_0: entered allmulticast mode
[  165.854780][ T8485] bridge_slave_0: entered promiscuous mode
[  165.893186][ T8485] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.921005][ T8485] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.944540][ T8485] bridge_slave_1: entered allmulticast mode
[  165.990892][ T8485] bridge_slave_1: entered promiscuous mode
[  166.067008][ T8564] netlink: 'syz.4.980': attribute type 13 has an invalid length.
[  166.079307][ T8564] netlink: 152 bytes leftover after parsing attributes in process `syz.4.980'.
[  166.109236][ T8564] : renamed from syz_tun (while UP)
[  166.152032][ T8564] : refused to change device tx_queue_len
[  166.164462][ T8564] A link change request failed with some changes committed already. Interface  may have been left with an inconsistent configuration, please check.
[  166.232693][ T8570] loop2: detected capacity change from 0 to 4096
[  166.341360][  T143] hsr_slave_0: left promiscuous mode
[  166.370489][  T143] hsr_slave_1: left promiscuous mode
[  166.390619][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  166.431919][  T143] batman_adv: batadv0: Removing interface: batadv_slave_0
[  166.478212][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  166.496909][  T143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  166.522908][  T143] bridge_slave_1: left allmulticast mode
[  166.547704][  T143] bridge_slave_1: left promiscuous mode
[  166.553482][  T143] bridge0: port 2(bridge_slave_1) entered disabled state
[  166.605322][  T143] bridge_slave_0: left allmulticast mode
[  166.611013][  T143] bridge_slave_0: left promiscuous mode
[  166.654505][  T143] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.733237][  T143] veth1_macvtap: left promiscuous mode
[  166.740424][  T143] veth0_macvtap: left promiscuous mode
[  166.747834][  T143] veth1_vlan: left promiscuous mode
[  166.753255][  T143] veth0_vlan: left promiscuous mode
[  167.082726][ T8591] loop4: detected capacity change from 0 to 4096
[  167.149967][ T8591] ntfs: (device loop4): ntfs_read_locked_inode(): $DATA attribute is missing.
[  167.162137][ T8598] loop1: detected capacity change from 0 to 64
[  167.169109][ T8591] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  167.218228][ T8591] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  167.271150][ T8591] ntfs: volume version 3.1.
[  167.494078][ T6659] ntfs: (device loop4): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  167.724537][   T28] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  167.754751][ T5775] Bluetooth: hci0: command tx timeout
[  167.927780][   T28] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  167.936702][   T28] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  167.960070][   T28] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  167.983379][   T28] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  167.994723][   T28] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  168.007874][   T28] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  168.018084][   T28] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  168.027429][   T28] usb 2-1: Product: syz
[  168.031711][   T28] usb 2-1: Manufacturer: syz
[  168.053770][   T28] cdc_wdm 2-1:1.0: skipping garbage
[  168.054224][  T143] team0 (unregistering): Port device team_slave_1 removed
[  168.063757][   T28] cdc_wdm 2-1:1.0: skipping garbage
[  168.083529][   T28] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  168.098007][   T28] cdc_wdm 2-1:1.0: Unknown control protocol
[  168.136565][  T143] team0 (unregistering): Port device team_slave_0 removed
[  168.181476][  T143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  168.227862][  T143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  168.649087][  T143] bond0 (unregistering): Released all slaves
[  168.750109][ T8485] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.770539][ T8485] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.782715][ T8604] IPVS: Error connecting to the multicast addr
[  168.873027][ T8485] team0: Port device team_slave_0 added
[  168.935539][ T8485] team0: Port device team_slave_1 added
[  169.041346][ T8485] batman_adv: batadv0: Adding interface: batadv_slave_0
[  169.068911][ T8485] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.144933][ T8485] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  169.161962][ T8485] batman_adv: batadv0: Adding interface: batadv_slave_1
[  169.174432][ T8485] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.274525][ T8485] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  169.423475][ T8485] hsr_slave_0: entered promiscuous mode
[  169.439519][ T8485] hsr_slave_1: entered promiscuous mode
[  169.456261][ T8485] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  169.484543][ T8485] Cannot create hsr debugfs directory
[  169.574742][ T5770] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  169.742442][ T8485] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  169.752863][ T8485] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  169.759863][   T23] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  169.771531][ T5770] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  169.775649][ T8485] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  169.793495][ T5770] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.806099][ T5770] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  169.807773][ T8485] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  169.816544][ T5770] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.834682][ T5775] Bluetooth: hci0: command tx timeout
[  169.844647][ T5770] usb 5-1: config 0 descriptor??
[  169.977057][   T23] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  169.977658][ T8485] 8021q: adding VLAN 0 to HW filter on device bond0
[  170.009396][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  170.011670][ T8485] 8021q: adding VLAN 0 to HW filter on device team0
[  170.029113][   T23] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  170.038577][   T23] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  170.061446][   T23] usb 3-1: Manufacturer: syz
[  170.089699][ T3438] bridge0: port 1(bridge_slave_0) entered blocking state
[  170.098188][ T3438] bridge0: port 1(bridge_slave_0) entered forwarding state
[  170.114617][   T23] usb 3-1: config 0 descriptor??
[  170.157351][ T3438] bridge0: port 2(bridge_slave_1) entered blocking state
[  170.164545][ T3438] bridge0: port 2(bridge_slave_1) entered forwarding state
[  170.244711][   T23] rc_core: IR keymap rc-hauppauge not found
[  170.251625][   T23] Registered IR keymap rc-empty
[  170.266854][   T23] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  170.274180][ T5770] elan 0003:04F3:0755.0009: unknown main item tag 0x0
[  170.303875][   T23] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input13
[  170.304871][ T5770] elan 0003:04F3:0755.0009: item fetching failed at offset 4/5
[  170.330749][ T5770] elan 0003:04F3:0755.0009: Hid Parse failed
[  170.344423][ T5770] elan: probe of 0003:04F3:0755.0009 failed with error -22
[  170.453146][ T5770] usb 2-1: USB disconnect, device number 4
[  170.643560][    C1] igorplugusb 3-1:0.0: receive overflow invalid: 206
[  170.680197][   T28] usb 5-1: USB disconnect, device number 6
[  170.746810][ T8485] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.846253][ T5770] usb 3-1: USB disconnect, device number 10
[  171.149258][ T8485] veth0_vlan: entered promiscuous mode
[  171.164194][ T8485] veth1_vlan: entered promiscuous mode
[  171.220127][ T8485] veth0_macvtap: entered promiscuous mode
[  171.248224][ T8485] veth1_macvtap: entered promiscuous mode
[  171.310379][ T8485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.326344][ T8666] loop4: detected capacity change from 0 to 128
[  171.337703][ T8485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.352413][ T8485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.376624][ T8666] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  171.376633][ T8485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.398473][ T8485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.434703][ T8485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.449267][ T8666] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  171.461236][ T8485] batman_adv: batadv0: Interface activated: batadv_slave_0
[  171.499749][ T8667] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) !
[  171.552338][ T8485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.585275][ T8485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.603828][ T8485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.632159][ T8485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.647461][ T8485] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.661720][ T8485] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.702421][ T8485] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.752376][ T8485] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.780145][ T8485] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.794517][ T8485] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.815272][ T8485] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.927260][ T5775] Bluetooth: hci0: command tx timeout
[  172.157248][   T70] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.195373][   T70] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.268637][ T3507] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.303563][ T3507] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  172.987563][ T8720] loop5: detected capacity change from 0 to 16
[  172.997167][ T8718] loop2: detected capacity change from 0 to 64
[  173.021790][ T8720] erofs: (device loop5): mounted with root inode @ nid 36.
[  173.090375][ T8720] erofs: (device loop5): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  173.137360][ T8688] loop1: detected capacity change from 0 to 32768
[  173.181221][ T8688] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  173.333515][ T8736] loop5: detected capacity change from 0 to 128
[  173.424424][ T8688] XFS (loop1): Ending clean mount
[  173.673324][ T5764] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  174.242024][ T8764] loop4: detected capacity change from 0 to 2048
[  174.285960][ T8764] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  174.321085][ T8764] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  174.363697][ T8770] loop2: detected capacity change from 0 to 256
[  174.658200][ T8778] loop4: detected capacity change from 0 to 512
[  174.737949][ T8778] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.822200][ T8778] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.922964][ T8784] loop1: detected capacity change from 0 to 4096
[  174.932783][ T8778] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  175.152441][ T8792] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  175.170039][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.859878][ T8820] loop1: detected capacity change from 0 to 256
[  175.947414][ T8820] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  176.351363][ T8805] loop2: detected capacity change from 0 to 32768
[  176.470397][ T8805] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  176.519770][ T8840] loop1: detected capacity change from 0 to 128
[  176.598746][ T8840] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  176.667930][ T8840] FAT-fs (loop1): Filesystem has been set read-only
[  176.707191][ T8805] XFS (loop2): Ending clean mount
[  176.722697][ T8849] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  177.060787][ T5765] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  177.185302][ T8864] netlink: 'syz.5.1070': attribute type 1 has an invalid length.
[  177.282672][ T8866] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  177.683128][ T8881] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1074'.
[  177.694398][ T1187] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  177.821012][ T8888] loop2: detected capacity change from 0 to 256
[  177.855302][ T8888] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  177.911311][ T1187] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  177.963813][ T1187] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  178.015262][ T1187] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  178.044829][ T1187] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.052872][ T1187] usb 2-1: Product: syz
[  178.102797][ T1187] usb 2-1: Manufacturer: syz
[  178.124417][ T1187] usb 2-1: SerialNumber: syz
[  178.147830][ T1187] usb 2-1: config 0 descriptor??
[  178.435566][ T8871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.480610][ T8871] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  178.530158][ T5775] Bluetooth: hci2: unknown advertising packet type: 0x17
[  178.531653][ T1187] usb 2-1: USB disconnect, device number 5
[  178.560375][ T8906] loop5: detected capacity change from 0 to 4096
[  178.600235][ T8906] ntfs3: loop5: ino=3, Correct links count -> 2.
[  178.950946][ T8922] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  178.973890][ T8922] netdevsim netdevsim5 netdevsim0: left promiscuous mode
[  179.235941][ T8930] loop5: detected capacity change from 0 to 512
[  179.287334][ T8930] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  179.390814][ T8930] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.463018][ T8930] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.701913][ T8485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.094718][ T8965] loop2: detected capacity change from 0 to 512
[  180.338306][ T8975] usb usb1: usbfs: process 8975 (syz.1.1111) did not claim interface 0 before use
[  180.535860][ T8986] loop5: detected capacity change from 0 to 128
[  180.579312][ T8986] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; going on - but anything won't be destroyed because it's read-only
[  180.614680][ T8986] hpfs: filesystem error: improperly stopped
[  180.622005][ T8986] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  180.642888][ T8986] hpfs: Proceeding, but your filesystem could be corrupted if you delete files or directories
[  180.659956][ T8986] hpfs: You really don't want any checks? You are crazy...
[  180.693481][ T8986] hpfs: hpfs_map_sector(): read error
[  180.721097][ T8986] hpfs: code page support is disabled
[  180.734645][ T8986] hpfs: hpfs_map_4sectors(): unaligned read
[  180.740697][ T8986] hpfs: hpfs_map_4sectors(): unaligned read
[  180.775719][ T8986] hpfs: filesystem error: unable to find root dir
[  180.816757][ T8995] loop2: detected capacity change from 0 to 1024
[  180.824150][ T8995] EXT4-fs: Ignoring removed i_version option
[  180.844449][ T8995] EXT4-fs: inline encryption not supported
[  180.859482][ T8995] EXT4-fs (loop2): Test dummy encryption mode enabled
[  180.907478][ T8995] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.086112][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.326535][ T9009] loop1: detected capacity change from 0 to 2048
[  181.396312][ T9009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  181.444419][ T9009] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.608668][ T5764] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.640400][ T9003] loop5: detected capacity change from 0 to 32768
[  181.655588][ T9003] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 scanned by syz.5.1123 (9003)
[  181.698119][ T9003] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  181.716835][ T9003] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  181.731393][ T9003] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  181.743135][ T9003] BTRFS info (device loop5): use zstd compression, level 3
[  181.802328][ T9003] BTRFS info (device loop5): using free space tree
[  181.855203][ T9023] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1131'.
[  181.944931][ T9003] BTRFS info (device loop5): enabling ssd optimizations
[  181.962137][ T9003] BTRFS info (device loop5): auto enabling async discard
[  182.139683][ T9047] loop1: detected capacity change from 0 to 512
[  182.160720][   T27] audit: type=1800 audit(1774362748.265:36): pid=9003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1123" name="bus" dev="loop5" ino=263 res=0 errno=0
[  182.219371][ T9047] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.253051][   T27] audit: type=1804 audit(1774362748.345:37): pid=9052 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1123" name="/newroot/29/file0/bus" dev="loop5" ino=263 res=1 errno=0
[  182.293916][ T9047] ext4 filesystem being mounted at /316/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.451935][ T9058] ipvlan2: entered promiscuous mode
[  182.467665][ T5764] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.571718][ T8485] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  182.973306][ T9067] loop4: detected capacity change from 0 to 4096
[  183.178891][ T9076] syz.5.1141 uses old SIOCAX25GETINFO
[  183.734458][ T9064] loop2: detected capacity change from 0 to 32768
[  183.780744][ T9064] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.1142 (9064)
[  183.827820][ T9064] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  183.847631][ T9064] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  183.874413][ T9064] BTRFS info (device loop2): using free space tree
[  184.040500][ T9064] BTRFS info (device loop2): enabling ssd optimizations
[  184.052306][ T9064] BTRFS info (device loop2): auto enabling async discard
[  184.263513][ T5765] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  184.544056][ T9128] loop1: detected capacity change from 0 to 4096
[  184.598962][ T7928] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop2 scanned by udevd (7928)
[  184.631574][ T9131] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  184.894967][ T9117] loop5: detected capacity change from 0 to 32768
[  184.993418][ T9137] loop1: detected capacity change from 0 to 2048
[  185.023348][ T9117] JBD2: Ignoring recovery information on journal
[  185.043607][ T9137] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  185.107866][ T9139] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  185.135646][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop1
[  185.144578][ T9117] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  185.407484][ T8485] ocfs2: Unmounting device (7,5) on (node local)
[  185.412719][ T9123] loop4: detected capacity change from 0 to 32768
[  185.495738][ T9123] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  185.694851][ T6659] ocfs2: Unmounting device (7,4) on (node local)
[  186.271073][ T9168] loop4: detected capacity change from 0 to 4096
[  186.325776][ T5084] Bluetooth: hci2: command 0x0406 tx timeout
[  186.331858][ T5776] Bluetooth: hci1: command 0x0406 tx timeout
[  186.361586][ T9171] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  186.538482][ T9173] loop1: detected capacity change from 0 to 4096
[  186.592375][ T9173] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  186.650604][ T9173] ntfs3: loop1: Failed to load $Extend (-22).
[  186.660413][ T9173] ntfs3: loop1: Failed to initialize $Extend.
[  186.738647][   T27] audit: type=1800 audit(1774362752.845:38): pid=9173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1175" name="file1" dev="loop1" ino=30 res=0 errno=0
[  186.845318][  T788] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  187.037138][  T788] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  187.068907][  T788] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  187.098510][  T788] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  187.129450][  T788] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  187.154395][  T788] usb 5-1: SerialNumber: syz
[  187.183837][  T788] usb 5-1: bad CDC descriptors
[  187.200366][  T788] usb-storage 5-1:1.0: USB Mass Storage device detected
[  187.227613][  T788] usb-storage 5-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  187.249840][  T788] scsi host1: usb-storage 5-1:1.0
[  188.203905][ T9223] loop5: detected capacity change from 0 to 764
[  188.256537][ T9223] rock: directory entry would overflow storage
[  188.263922][ T9223] rock: sig=0x4f50, size=4, remaining=3
[  188.284362][ T9223] iso9660: Corrupted directory entry in block 6 of inode 1792
[  188.822358][ T9221] loop2: detected capacity change from 0 to 32768
[  188.872208][ T9221] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  189.089931][ T5765] ocfs2: Unmounting device (7,2) on (node local)
[  189.394738][ T5803] usb 5-1: USB disconnect, device number 7
[  189.713134][ T9241] loop1: detected capacity change from 0 to 32768
[  189.751459][ T9241] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  189.962961][ T5755] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  190.491490][ T9262] loop2: detected capacity change from 0 to 32768
[  190.533192][ T9261] loop4: detected capacity change from 0 to 32768
[  190.651201][ T9261] ERROR: (device loop4): dbAllocAG: unable to allocate blocks
[  190.651201][ T9261] 
[  190.665291][ T9262] syz.2.1202: attempt to access beyond end of device
[  190.665291][ T9262] loop2: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  190.684089][ T9262] metapage_write_end_io: I/O error
[  190.695420][ T9261] ERROR: (device loop4): remounting filesystem as read-only
[  190.699228][  T113] blkno = 8ed2c, nblocks = 1
[  190.703959][ T9261] ERROR: (device loop4): dbDiscardAG: -EIO
[  190.703959][ T9261] 
[  190.724647][ T9262] blkno = 8ed2c, nblocks = 1
[  190.729355][  T113] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  190.729355][  T113] 
[  190.750348][ T9262] ERROR: (device loop2): dbUpdatePMap: blocks are outside the map
[  190.750348][ T9262] 
[  190.784464][  T113] ERROR: (device loop2): remounting filesystem as read-only
[  190.790891][ T9262] ERROR: (device loop2): remounting filesystem as read-only
[  190.864127][ T9262] ERROR: (device loop2): dtSearch: DT_GETPAGE: dtree page corrupt
[  190.864127][ T9262] 
[  190.922719][ T9262] jfs_mkdir: dtSearch returned -5
[  190.994930][ T5765] syz-executor: attempt to access beyond end of device
[  190.994930][ T5765] loop2: rw=1, sector=4680032, nr_sectors = 8 limit=32768
[  190.995053][ T5765] metapage_write_end_io: I/O error
[  190.995248][ T5765] JFS: metapage_get_blocks failed
[  190.995314][ T5765] JFS: metapage_get_blocks failed
[  190.995337][ T5765] JFS: metapage_get_blocks failed
[  190.995360][ T5765] JFS: metapage_get_blocks failed
[  191.011200][ T9271] loop1: detected capacity change from 0 to 32768
[  191.082733][ T9271] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  191.138177][ T9271] XFS (loop1): Ending clean mount
[  191.213769][ T5770] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  191.359157][ T5764] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  191.404768][ T5770] usb 6-1: Using ep0 maxpacket: 16
[  191.407624][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.407653][ T5770] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.407673][ T5770] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  191.407711][ T5770] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  191.407731][ T5770] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.419301][ T5770] usb 6-1: config 0 descriptor??
[  191.672198][ T9307] loop4: detected capacity change from 0 to 16
[  191.682741][ T9307] erofs: (device loop4): mounted with root inode @ nid 36.
[  191.912188][ T5770] microsoft 0003:045E:07DA.000A: collection stack underflow
[  191.931827][ T5770] microsoft 0003:045E:07DA.000A: item 0 1 0 12 parsing failed
[  191.952591][ T5770] microsoft 0003:045E:07DA.000A: parse failed
[  191.971898][ T5770] microsoft: probe of 0003:045E:07DA.000A failed with error -22
[  192.117126][ T5770] usb 6-1: USB disconnect, device number 2
[  193.234381][ T5770] IPVS: starting estimator thread 0...
[  193.335554][ T9361] IPVS: using max 23 ests per chain, 55200 per kthread
[  193.592516][ T9340] loop2: detected capacity change from 0 to 32768
[  193.643488][ T9340] ERROR: (device loop2): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 1
[  193.643488][ T9340] 
[  193.694579][ T5754] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  193.908982][ T5754] usb 2-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 16
[  193.939439][ T5754] usb 2-1: config 1 interface 0 altsetting 7 bulk endpoint 0x3 has invalid maxpacket 32
[  193.966902][ T5754] usb 2-1: config 1 interface 0 has no altsetting 0
[  193.997956][ T5754] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  194.021866][ T5754] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.061333][ T5754] usb 2-1: Product: syz
[  194.067005][ T5754] usb 2-1: Manufacturer: syz
[  194.076230][ T5754] usb 2-1: SerialNumber: syz
[  194.090887][ T9384] loop5: detected capacity change from 0 to 128
[  194.099939][ T9370] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  194.129557][ T9370] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  194.138615][ T9384] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  194.206036][ T9384] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  194.342449][ T9389] loop2: detected capacity change from 0 to 1024
[  194.368078][ T9391] loop4: detected capacity change from 0 to 65
[  194.383442][ T5772] Bluetooth: hci2: Unknown advertising packet type: 0x7f
[  194.383477][ T5772] Bluetooth: hci2: Unknown advertising packet type: 0x73
[  194.402514][ T5772] Bluetooth: hci2: Malformed LE Event: 0x0d
[  194.423398][ T9391] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  194.440958][ T5754] cdc_ether: probe of 2-1:1.0 failed with error -71
[  194.465726][ T5754] usb 2-1: USB disconnect, device number 6
[  194.481951][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  194.488868][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  194.490713][   T11] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  194.520874][ T9389] hfsplus: bad catalog entry type
[  194.638573][ T3507] hfsplus: b-tree write err: -5, ino 25
[  194.671603][ T3507] hfsplus: b-tree write err: -5, ino 4
[  194.689567][ T3507] hfsplus: b-tree write err: -5, ino 2
[  194.807946][ T9403] loop4: detected capacity change from 0 to 256
[  194.872020][ T9403] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  195.019333][ T9409] loop5: detected capacity change from 0 to 128
[  195.063827][ T9409] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  195.115358][ T9409] hpfs: filesystem error: improperly stopped
[  195.121404][ T9409] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  195.168604][ T9409] hpfs: You really don't want any checks? You are crazy...
[  195.183059][ T9409] hpfs: hpfs_map_sector(): read error
[  195.188765][ T9409] hpfs: code page support is disabled
[  195.230777][ T9409] hpfs: hpfs_map_4sectors(): unaligned read
[  195.245539][ T9409] hpfs: hpfs_map_4sectors(): unaligned read
[  195.278276][ T9414] usb usb8: usbfs: process 9414 (syz.2.1244) did not claim interface 0 before use
[  195.278445][ T9409] hpfs: filesystem error: unable to find root dir
[  195.853047][ T9437] loop2: detected capacity change from 0 to 16
[  195.856775][ T9432] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1251'.
[  195.865166][ T9437] erofs: (device loop2): mounted with root inode @ nid 36.
[  195.971102][ T9437] syz.2.1253: attempt to access beyond end of device
[  195.971102][ T9437] loop2: rw=524288, sector=8, nr_sectors = 32 limit=16
[  195.991763][ T9437] syz.2.1253: attempt to access beyond end of device
[  195.991763][ T9437] loop2: rw=524288, sector=16, nr_sectors = 32 limit=16
[  196.402557][ T9449] loop5: detected capacity change from 0 to 4096
[  196.505978][ T9458] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  196.576053][ T9460] loop4: detected capacity change from 0 to 256
[  196.667867][ T9460] exfat: Deprecated parameter 'utf8'
[  196.704478][ T9460] exfat: Deprecated parameter 'namecase'
[  196.710173][ T9460] exfat: Deprecated parameter 'utf8'
[  196.832914][ T9460] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  196.952157][ T9460] syz.4.1260: attempt to access beyond end of device
[  196.952157][ T9460] loop4: rw=524288, sector=34359738488, nr_sectors = 8 limit=256
[  196.993195][ T9460] syz.4.1260: attempt to access beyond end of device
[  196.993195][ T9460] loop4: rw=0, sector=34359738488, nr_sectors = 8 limit=256
[  197.088931][   T27] audit: type=1800 audit(1774362763.185:39): pid=9460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1260" name="file1" dev="loop4" ino=1048630 res=0 errno=0
[  197.109961][ T9460] exFAT-fs (loop4): error, tried to truncate zeroed cluster.
[  197.664552][ T9503] can0: slcan on ttynull.
[  197.806496][ T9502] can0 (unregistered): slcan off ttynull.
[  197.847784][ T9514] loop2: detected capacity change from 0 to 1024
[  197.918980][ T9514] hfsplus: bad catalog entry type
[  197.979785][ T3431] hfsplus: b-tree write err: -5, ino 25
[  198.000583][ T3431] hfsplus: b-tree write err: -5, ino 4
[  198.019967][ T9518] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1277'.
[  198.021262][ T3431] hfsplus: b-tree write err: -5, ino 2
[  198.400790][ T9535] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  198.408916][ T9535] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  198.853516][   T27] audit: type=1326 audit(1774362764.955:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1288" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f469319c799 code=0x0
[  198.899696][ T9552] set_capacity_and_notify: 1 callbacks suppressed
[  198.899710][ T9552] loop2: detected capacity change from 0 to 64
[  199.260786][ T9539] loop4: detected capacity change from 0 to 32768
[  199.306611][ T9539] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  199.348593][ T9539] XFS (loop4): Ending clean mount
[  199.359291][ T9539] XFS (loop4): Quotacheck needed: Please wait.
[  199.411184][ T9539] XFS (loop4): Quotacheck: Done.
[  199.446968][   T27] audit: type=1800 audit(1774362765.555:41): pid=9539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1283" name="file1" dev="loop4" ino=4422 res=0 errno=0
[  199.492411][ T6659] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  200.341248][ T9574] loop1: detected capacity change from 0 to 32768
[  200.430325][ T9590] loop2: detected capacity change from 0 to 2048
[  200.440189][ T9574] 
[  200.440189][ T9574]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  200.440189][ T9574] 
[  200.502465][ T9590] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  200.534666][ T5754] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  200.559428][   T27] audit: type=1800 audit(1774362766.645:42): pid=9574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1305" name="file1" dev="loop1" ino=4 res=0 errno=0
[  200.760396][ T5754] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  200.781869][ T5754] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.811869][ T5754] usb 6-1: Product: syz
[  200.827464][ T5754] usb 6-1: Manufacturer: syz
[  200.844549][ T5754] usb 6-1: SerialNumber: syz
[  200.868461][ T9574] ERROR: (device loop1): xtSearch: stack overrun!
[  200.868461][ T9574] 
[  200.885466][ T5754] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  200.924253][   T23] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  201.011287][ T9574] ERROR: (device loop1): xtSearch: stack overrun!
[  201.011287][ T9574] 
[  201.022811][ T9574] xtLookup: xtSearch returned -5
[  201.028887][ T9574] ERROR: (device loop1): xtTruncate: stack overrun!
[  201.028887][ T9574] 
[  201.106537][ T3414] 
[  201.106537][ T3414]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.106537][ T3414] 
[  201.142889][ T3414] 
[  201.142889][ T3414]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.142889][ T3414] 
[  201.160163][ T3414] 
[  201.160163][ T3414]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.160163][ T3414] 
[  201.170831][ T3414] 
[  201.170831][ T3414]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.170831][ T3414] 
[  201.183371][ T3414] JFS: metapage_get_blocks failed
[  201.189625][ T3414] 
[  201.189625][ T3414]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.189625][ T3414] 
[  201.230787][ T5764] 
[  201.230787][ T5764]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.230787][ T5764] 
[  201.242353][ T5764] 
[  201.242353][ T5764]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  201.242353][ T5764] 
[  201.288582][ T5754] usb 6-1: USB disconnect, device number 3
[  201.298518][ T9604] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  201.756524][ T9619] loop4: detected capacity change from 0 to 4096
[  201.790218][ T9624] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  201.990927][ T9628] loop2: detected capacity change from 0 to 512
[  202.008187][   T23] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[  202.024505][   T23] ath9k_htc: Failed to initialize the device
[  202.036385][ T5754] usb 6-1: ath9k_htc: USB layer deinitialized
[  202.082059][ T9628] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  202.107205][ T9628] EXT4-fs (loop2): orphan cleanup on readonly fs
[  202.122074][ T9628] Quota error (device loop2): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  202.138840][ T9628] EXT4-fs warning (device loop2): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  202.166226][ T9628] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  202.185334][ T9628] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1320: bg 0: block 15: invalid block bitmap
[  202.207122][ T9628] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6651: Corrupt filesystem
[  202.217674][ T9628] EXT4-fs (loop2): 1 truncate cleaned up
[  202.223982][ T9628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  202.263901][ T9628] EXT4-fs error (device loop2): ext4_get_link:104: inode #16: comm syz.2.1320: bad symlink.
[  202.293439][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.414507][ T5754] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  202.417046][ T9635] loop2: detected capacity change from 0 to 4096
[  202.436215][ T9635] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  202.452238][ T9635] NILFS (loop2): mounting unchecked fs
[  202.488384][ T9635] NILFS (loop2): recovery complete
[  202.493586][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop2
[  202.509555][ T9636] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  202.605282][ T5754] usb 6-1: Using ep0 maxpacket: 8
[  202.620098][ T5754] usb 6-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  202.631486][ T5754] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  202.640821][ T5754] usb 6-1: Product: syz
[  202.649940][ T5754] usb 6-1: Manufacturer: syz
[  202.654654][ T5754] usb 6-1: SerialNumber: syz
[  202.661458][ T5754] usb 6-1: config 0 descriptor??
[  202.894420][ T5754] radio-si470x 6-1:0.0: si470x_get_report: usb_control_msg returned -71
[  202.903052][ T5754] radio-si470x: probe of 6-1:0.0 failed with error -5
[  202.942219][ T5754] usb 6-1: USB disconnect, device number 4
[  203.516532][ T9662] bridge0: entered promiscuous mode
[  203.662902][ T9668] loop2: detected capacity change from 0 to 764
[  203.723060][ T9668] rock: directory entry would overflow storage
[  203.729592][ T9668] rock: sig=0x4654, size=5, remaining=4
[  203.962381][ T9679] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1347'.
[  204.034163][ T9682] ipvlan2: entered allmulticast mode
[  204.050756][ T9682] veth0: entered allmulticast mode
[  204.167570][ T9686] tipc: Enabled bearer <udp:syz0>, priority 10
[  204.244474][   T23] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  204.444481][   T23] usb 2-1: Using ep0 maxpacket: 16
[  204.465657][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.492319][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  204.492370][   T23] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  204.492391][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.495594][   T23] usb 2-1: config 0 descriptor??
[  204.917685][   T23] corsair 0003:1B1C:1B02.000B: collection stack underflow
[  204.944573][   T23] corsair 0003:1B1C:1B02.000B: item 0 0 0 12 parsing failed
[  204.958972][   T23] corsair 0003:1B1C:1B02.000B: parse failed
[  204.970279][   T23] corsair: probe of 0003:1B1C:1B02.000B failed with error -22
[  205.132427][    T9] usb 2-1: USB disconnect, device number 7
[  205.314708][ T5770] tipc: Node number set to 11614
[  205.437233][ T9718] loop5: detected capacity change from 0 to 32768
[  205.510889][ T9718] read_mapping_page failed!
[  205.524344][ T9718] ERROR: (device loop5): txCommit: 
[  205.524344][ T9718] 
[  205.630358][   T11] read_mapping_page failed!
[  205.642006][   T11] ERROR: (device loop5): txCommit: 
[  205.642006][   T11] 
[  205.668461][   T11] jfs_write_inode: jfs_commit_inode failed!
[  205.800974][ T9728] loop5: detected capacity change from 0 to 512
[  205.828690][ T9728] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  205.864627][ T9728] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002]
[  205.885068][ T9728] EXT4-fs (loop5): orphan cleanup on readonly fs
[  205.942343][ T9728] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  206.005489][ T9728] EXT4-fs warning (device loop5): ext4_enable_quotas:7184: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  206.064584][ T9728] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  206.078393][ T9728] EXT4-fs error (device loop5): mb_free_blocks:1952: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt.
[  206.144383][ T9728] EXT4-fs (loop5): Remounting filesystem read-only
[  206.169265][ T9728] EXT4-fs (loop5): 1 truncate cleaned up
[  206.185855][ T9728] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  206.221731][ T9724] loop2: detected capacity change from 0 to 40427
[  206.254427][ T9724] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  206.272475][ T9724] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  206.303737][ T9724] F2FS-fs (loop2): invalid crc value
[  206.357199][ T9724] F2FS-fs (loop2): Found nat_bits in checkpoint
[  206.396151][ T8485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.465800][ T9724] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  206.494250][ T9724] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  206.584861][  T788] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  206.621764][ T9724] syz.2.1369: attempt to access beyond end of device
[  206.621764][ T9724] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  206.777125][  T788] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  206.788981][ T9753] loop5: detected capacity change from 0 to 16
[  206.790747][  T788] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  206.825237][ T9753] erofs: (device loop5): mounted with root inode @ nid 36.
[  206.839900][  T788] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  206.855863][  T788] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  206.885907][  T788] usb 2-1: SerialNumber: syz
[  206.904747][ T9753] syz.5.1380: attempt to access beyond end of device
[  206.904747][ T9753] loop5: rw=524288, sector=4294967295, nr_sectors = 1 limit=16
[  207.050991][ T5765] syz-executor: attempt to access beyond end of device
[  207.050991][ T5765] loop2: rw=2051, sector=45096, nr_sectors = 8 limit=40427
[  207.089907][ T5765] F2FS-fs (loop2): Issue discard(5637, 5637, 1) failed, ret: -5
[  207.119587][  T788] usb 2-1: 0:2 : does not exist
[  207.204832][  T788] usb 2-1: USB disconnect, device number 8
[  207.309031][ T5755] udevd[5755]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  208.359207][ T9794] loop2: detected capacity change from 0 to 256
[  208.583047][ T9778] loop5: detected capacity change from 0 to 32768
[  208.624530][ T9778] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.1395 (9778)
[  208.697277][ T9778] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  208.734407][ T9778] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  208.743713][ T9778] BTRFS info (device loop5): force zlib compression, level 3
[  208.773747][ T9778] BTRFS info (device loop5): force clearing of disk cache
[  208.773774][ T9778] BTRFS info (device loop5): setting nodatasum
[  208.773793][ T9778] BTRFS info (device loop5): allowing degraded mounts
[  208.773810][ T9778] BTRFS info (device loop5): enabling disk space caching
[  208.773824][ T9778] BTRFS info (device loop5): disk space caching is enabled
[  208.939755][ T9778] BTRFS info (device loop5): auto enabling async discard
[  208.953513][ T9778] BTRFS info (device loop5): rebuilding free space tree
[  209.052710][ T9778] BTRFS info (device loop5): disabling free space tree
[  209.084431][ T9778] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  209.104430][ T9778] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  209.145196][ T9788] loop1: detected capacity change from 0 to 40427
[  209.201631][ T9788] F2FS-fs (loop1): invalid crc value
[  209.226166][ T9778] BTRFS info (device loop5): balance: start -susage=8589934849,limit=1
[  209.228828][ T9823] loop4: detected capacity change from 0 to 512
[  209.293114][ T9823] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  209.321636][ T9823] ext4 filesystem being mounted at /271/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  209.346351][   T27] audit: type=1800 audit(1774362775.455:43): pid=9823 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1406" name="file1" dev="loop4" ino=15 res=0 errno=0
[  209.377983][ T9778] BTRFS info (device loop5): relocating block group 1048576 flags system
[  209.415813][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.552510][ T9834] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1409'.
[  209.575462][ T9788] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  209.591121][ T9778] BTRFS info (device loop5): balance: ended with status: 0
[  209.593344][ T9834] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1409'.
[  209.813032][ T8485] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  209.840277][ T9841] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1410'.
[  210.166672][ T9847] loop2: detected capacity change from 0 to 64
[  210.241177][ T9849] loop4: detected capacity change from 0 to 64
[  210.682981][ T9860] loop1: detected capacity change from 0 to 2048
[  210.706826][ T9860] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  210.725643][ T5803] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  210.727406][ T5755] udevd[5755]: incorrect nilfs2 checksum on /dev/loop1
[  210.752290][ T9861] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  210.916601][ T5803] usb 6-1: config 1 has an invalid interface number: 7 but max is 0
[  210.939934][ T5803] usb 6-1: config 1 has no interface number 0
[  210.972251][ T5803] usb 6-1: config 1 interface 7 altsetting 0 has an invalid endpoint with address 0xDB, skipping
[  211.014170][ T5803] usb 6-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  211.056278][ T5803] usb 6-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00
[  211.065835][ T5803] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.088728][ T5803] usb 6-1: Product: syz
[  211.098336][ T5803] usb 6-1: Manufacturer: syz
[  211.102969][ T5803] usb 6-1: SerialNumber: syz
[  211.125822][ T9851] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  211.136046][ T5803] usb 6-1: Expected 3 endpoints, found: 2
[  212.277903][ T9906] loop2: detected capacity change from 0 to 256
[  212.328113][ T9906] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  212.590166][ T9900] loop4: detected capacity change from 0 to 32768
[  212.642264][ T9917] program syz.2.1445 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  212.667547][ T9900] XFS (loop4): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  212.873698][ T9926] loop1: detected capacity change from 0 to 1024
[  212.885252][ T9900] XFS (loop4): Starting recovery (logdev: internal)
[  212.960932][ T9928] loop2: detected capacity change from 0 to 4096
[  212.973352][ T9928] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  212.974588][ T9900] XFS (loop4): Ending recovery (logdev: internal)
[  213.093481][   T27] audit: type=1326 audit(1774362779.195:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.114338][ T9928] ntfs3: loop2: Failed to initialize $Extend/$Reparse.
[  213.202562][   T27] audit: type=1326 audit(1774362779.235:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.293407][   T27] audit: type=1326 audit(1774362779.235:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.348072][ T6659] XFS (loop4): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[  213.354840][ T5765] ntfs3: loop2: ino=1a, ntfs_sync_fs failed, -22.
[  213.358117][   T27] audit: type=1326 audit(1774362779.235:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.386381][   T27] audit: type=1326 audit(1774362779.235:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.409938][   T27] audit: type=1326 audit(1774362779.235:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.433186][   T27] audit: type=1326 audit(1774362779.245:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.470231][  T788] usb 6-1: USB disconnect, device number 5
[  213.549204][   T27] audit: type=1326 audit(1774362779.245:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.571384][    C0] vkms_vblank_simulate: vblank timer overrun
[  213.689204][   T27] audit: type=1326 audit(1774362779.245:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9930 comm="syz.1.1449" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe20439c799 code=0x7ffc0000
[  213.800893][ T9944] loop5: detected capacity change from 0 to 512
[  213.839071][ T9944] EXT4-fs: Ignoring removed orlov option
[  213.872922][ T9944] EXT4-fs: Ignoring removed mblk_io_submit option
[  213.938020][ T9944] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #15: comm syz.5.1454: corrupted in-inode xattr: e_value size too large
[  213.969316][ T9949] loop4: detected capacity change from 0 to 64
[  213.977500][ T9944] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.1454: couldn't read orphan inode 15 (err -117)
[  214.036883][ T9944] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.175501][ T8485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.455141][ T9964] raw_sendmsg: syz.1.1462 forgot to set AF_INET. Fix it!
[  215.115008][   T23] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  215.123770][ T9967] loop2: detected capacity change from 0 to 40427
[  215.145684][ T9967] F2FS-fs (loop2): invalid crc value
[  215.157242][ T9967] F2FS-fs (loop2): Found nat_bits in checkpoint
[  215.211276][ T9967] F2FS-fs (loop2): Start checkpoint disabled!
[  215.237361][ T9967] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  215.314936][   T23] usb 2-1: Using ep0 maxpacket: 16
[  215.342412][   T23] usb 2-1: config index 0 descriptor too short (expected 50325, got 36)
[  215.365137][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.415873][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  215.430781][   T23] usb 2-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  215.458150][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.485433][   T23] usb 2-1: config 0 descriptor??
[  215.506527][ T3438] kworker/u4:10: attempt to access beyond end of device
[  215.506527][ T3438] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  215.532167][ T3438] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  215.552561][ T3438] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  215.910339][   T23] hid-steam 0003:28DE:1102.000C: unknown main item tag 0x2
[  215.939683][   T23] hid-steam 0003:28DE:1102.000C: item fetching failed at offset 4/5
[  215.960620][   T23] hid-steam 0003:28DE:1102.000C: steam_probe:parse of hid interface failed
[  215.984622][   T23] hid-steam: probe of 0003:28DE:1102.000C failed with error -22
[  216.119514][   T23] usb 2-1: USB disconnect, device number 9
[  216.179700][T10006] loop5: detected capacity change from 0 to 1024
[  216.206630][T10008] loop2: detected capacity change from 0 to 256
[  216.267284][T10006] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  216.274470][T10006] hfsplus: xattr searching failed
[  216.295711][T10006] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  216.317392][T10006] hfsplus: xattr searching failed
[  216.325348][T10006] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  216.326785][T10000] loop4: detected capacity change from 0 to 32768
[  216.331865][T10006] hfsplus: xattr searching failed
[  216.346069][T10008] FAT-fs (loop2): Directory bread(block 64) failed
[  216.350184][T10006] syz.5.1481: attempt to access beyond end of device
[  216.350184][T10006] loop5: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  216.352829][T10008] FAT-fs (loop2): Directory bread(block 65) failed
[  216.371693][T10006] Buffer I/O error on dev loop5, logical block 458752, async page read
[  216.391572][T10008] FAT-fs (loop2): Directory bread(block 66) failed
[  216.410534][T10008] FAT-fs (loop2): Directory bread(block 67) failed
[  216.416493][T10006] hfsplus: unable to mark blocks free: error -5
[  216.420798][T10000] JBD2: Ignoring recovery information on journal
[  216.431166][T10008] FAT-fs (loop2): Directory bread(block 68) failed
[  216.444591][T10008] FAT-fs (loop2): Directory bread(block 69) failed
[  216.460864][T10008] FAT-fs (loop2): Directory bread(block 70) failed
[  216.470206][T10006] hfsplus: can't free extent
[  216.473686][T10008] FAT-fs (loop2): Directory bread(block 71) failed
[  216.482080][T10008] FAT-fs (loop2): Directory bread(block 72) failed
[  216.489926][T10008] FAT-fs (loop2): Directory bread(block 73) failed
[  216.492894][T10000] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  216.703816][T10012] netlink: 88 bytes leftover after parsing attributes in process `syz.5.1483'.
[  216.796185][ T6659] ocfs2: Unmounting device (7,4) on (node local)
[  216.898473][T10016] loop5: detected capacity change from 0 to 2048
[  216.905833][ T5770] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  216.969175][T10016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.107185][ T5770] usb 3-1: config 1 has an invalid descriptor of length 43, skipping remainder of the config
[  217.132316][ T5770] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  217.144080][ T5770] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  217.154679][ T5770] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  217.163447][ T5770] usb 3-1: SerialNumber: syz
[  217.169556][ T8485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.232379][T10023] loop4: detected capacity change from 0 to 4096
[  217.403642][ T5770] usb 3-1: 0:2 : does not exist
[  217.433132][ T5770] usb 3-1: unit 11 not found!
[  217.437854][T10023] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  217.464006][ T5770] usb 3-1: unit 248 not found!
[  217.469829][ T5770] usb 3-1: unit 3 not found!
[  217.510061][ T5770] usb 3-1: USB disconnect, device number 11
[  217.593963][T10023] ntfs3: loop4: ino=0, "file1" failed to extend initialized size to 100003.
[  217.904493][T10040] nbd: must specify a size in bytes for the device
[  218.425617][T10060] loop4: detected capacity change from 0 to 65
[  218.436290][T10060] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  218.620398][T10065] loop2: detected capacity change from 0 to 4096
[  218.690776][T10065] __ntfs_error: 14 callbacks suppressed
[  218.690792][T10065] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[  218.722886][T10065] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  218.746712][T10065] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  218.780674][T10065] ntfs: volume version 3.1.
[  218.901268][T10072] loop1: detected capacity change from 0 to 1024
[  218.987871][ T5765] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  219.016045][   T27] audit: type=1800 audit(1774362785.115:67): pid=10072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1510" name="file1" dev="loop1" ino=2 res=0 errno=0
[  219.103490][T10073] loop4: detected capacity change from 0 to 4096
[  219.182722][T10075] loop2: detected capacity change from 0 to 1024
[  219.264215][T10075] hfsplus: bad catalog entry type
[  219.408551][ T3438] hfsplus: b-tree write err: -5, ino 25
[  219.426842][ T3438] hfsplus: b-tree write err: -5, ino 4
[  219.432433][ T3438] hfsplus: b-tree write err: -5, ino 2
[  219.621059][T10085] erofs: (device loop2): mounted with root inode @ nid 36.
[  220.003393][T10098] batman_adv: batadv0: Adding interface: geneve2
[  220.014772][T10098] batman_adv: batadv0: Interface activated: geneve2
[  220.282756][T10108] EXT4-fs: Ignoring removed nomblk_io_submit option
[  220.328771][ T3438] hfsplus: b-tree write err: -5, ino 25
[  220.344070][ T3438] hfsplus: b-tree write err: -5, ino 4
[  220.351125][T10108] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #11: comm syz.4.1528: iget: bad extended attribute block 3153
[  220.376475][ T3438] hfsplus: b-tree write err: -5, ino 2
[  220.452820][T10108] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.1528: couldn't read orphan inode 11 (err -117)
[  220.538286][T10108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.820780][ T6659] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.829312][T10123] EXT4-fs: Ignoring removed i_version option
[  220.889698][T10127] EXT4-fs (loop1): 1 truncate cleaned up
[  220.927641][T10127] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.989864][T10123] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.023547][T10127] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.1536: bg 0: block 465: padding at end of block bitmap is not set
[  221.043505][T10123] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.056690][T10125] ntfs: (device loop5): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  221.068938][T10125] ntfs: (device loop5): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  221.087184][T10125] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  221.099599][T10127] EXT4-fs (loop1): Remounting filesystem read-only
[  221.111219][T10125] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  221.125867][T10125] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  221.147081][T10125] ntfs: volume version 3.1.
[  221.229970][ T5765] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.244379][  T788] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  221.255933][ T5764] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.265265][T10125] ptrace attach of "./syz-executor exec"[8485] was attempted by "ޤ=�J:G��!EI\x09R��&EHQR��!�H\x09R足�B��l��ύ�ՄpA��\x0d�7��6E��j�)E\x0bw����r�h���V\x09���i}�?q��M��������?w�vh\x22����\x09_���;��Eβ��zCH{2�\x0c$����~���ER>���������w^���.�����&�!��H��)���FuB\x229v�����\x09�|�O�t���i����zw�F_�O�:���a;�]�����i����~���<�;�3jGTNv?O�\x5c���m�N��$+S%�ޟ�����7�_����wx��n�mdB^V\x1b�|���N�����\x0ci�\x22�׻۴[��ۗ�r� �H��^�S�g>�%m�&�R��!���x�/�P�pC��\x0d�\x07                                                                                                                                                                                                                            ���q�IH����%�Є�b�Q:r��B(:�!����+�����7��T�r;��Mx��ˈKޠ���)IϣN&[Fґ��N����mi��       ���~����       �?�Ӡz��DJ�<7!d\x0bO�Y#�q:r����l��n��D���q�\x0a��t�(u�)��o@�\x09}(2��\x0aH������MR$�~�t#i�N\x0a�o�*iO:�j�DD�\x0aѯ�i����r����t'IoҞ�#Bt;�H���m0&y�\x5c����/H��^$�\x09��?���L�\x0d2�\x0
[  221.456214][  T788] usb 5-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config
[  221.547216][    C1] vkms_vblank_simulate: vblank timer overrun
[  221.650270][  T788] usb 5-1: config 5 has 0 interfaces, different from the descriptor's value: 1
[  221.673179][  T788] usb 5-1: New USB device found, idVendor=813a, idProduct=22fe, bcdDevice=89.9c
[  221.716352][  T788] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.725410][  T788] usb 5-1: Product: syz
[  221.731392][  T788] usb 5-1: Manufacturer: syz
[  221.737538][  T788] usb 5-1: SerialNumber: syz
[  221.951862][T10152] set_capacity_and_notify: 8 callbacks suppressed
[  221.951877][T10152] loop5: detected capacity change from 0 to 1024
[  222.008376][  T788] usb 5-1: USB disconnect, device number 8
[  222.014530][T10152] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e000c01c, mo2=0002]
[  222.022742][T10152] System zones: 0-1, 3-36
[  222.029154][T10155] loop2: detected capacity change from 0 to 16
[  222.067365][T10152] EXT4-fs error (device loop5): ext4_orphan_get:1424: comm syz.5.1548: bad orphan inode 134217728
[  222.092288][T10152] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.106988][T10155] erofs: (device loop2): mounted with root inode @ nid 36.
[  222.259594][ T8485] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.925084][T10162] loop5: detected capacity change from 0 to 32768
[  223.204538][T10158] comedi comedi2: reset error (fatal)
[  223.358744][T10186] loop5: detected capacity change from 0 to 64
[  223.935258][ T5805] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  223.977497][T10208] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1574'.
[  224.104813][ T5770] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  224.154475][ T5805] usb 6-1: Using ep0 maxpacket: 8
[  224.168191][ T5805] usb 6-1: config index 0 descriptor too short (expected 30, got 18)
[  224.197620][ T5805] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  224.211297][ T5805] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.220864][ T5805] usb 6-1: Product: syz
[  224.228528][ T5805] usb 6-1: Manufacturer: syz
[  224.233549][ T5805] usb 6-1: SerialNumber: syz
[  224.245795][ T5805] usb 6-1: config 0 descriptor??
[  224.253801][ T5805] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  224.278745][ T5805] usb 6-1: setting power ON
[  224.297567][ T5805] dvb-usb: bulk message failed: -22 (2/0)
[  224.307604][ T5770] usb 5-1: Using ep0 maxpacket: 16
[  224.314126][ T5805] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  224.330138][ T5770] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[  224.341758][ T5805] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  224.357731][ T5770] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[  224.369540][ T5805] usb 6-1: media controller created
[  224.394867][ T5770] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  224.404134][ T5770] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.430426][ T5805] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  224.443927][ T5770] usb 5-1: Product: syz
[  224.449292][ T5770] usb 5-1: Manufacturer: syz
[  224.465691][ T5770] usb 5-1: SerialNumber: syz
[  224.485391][T10196] dvb-usb: bulk message failed: -22 (3/0)
[  224.506798][T10196] dvb-usb: bulk message failed: -22 (4/0)
[  224.520124][ T5805] usb 6-1: selecting invalid altsetting 6
[  224.545225][ T5805] usb 6-1: digital interface selection failed (-22)
[  224.551896][ T5805] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  224.589211][ T5805] usb 6-1: setting power OFF
[  224.616369][ T5805] dvb-usb: bulk message failed: -22 (2/0)
[  224.622931][ T5805] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  224.640029][T10225] loop2: detected capacity change from 0 to 8192
[  224.663091][ T5805] (NULL device *): no alternate interface
[  224.674134][T10225] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  224.711500][T10225] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[  224.722160][T10225] REISERFS (device loop2): using ordered data mode
[  224.728824][T10225] reiserfs: using flush barriers
[  224.729015][ T5770] cdc_ncm 5-1:1.0: bind() failure
[  224.736479][T10225] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  224.756871][T10225] REISERFS (device loop2): checking transaction log (loop2)
[  224.787849][T10225] REISERFS (device loop2): Using r5 hash to sort names
[  224.793298][ T5770] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  224.805859][T10225] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  224.820875][ T5805] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  224.834378][ T5770] cdc_ncm 5-1:1.1: bind() failure
[  224.872092][ T5770] usb 5-1: USB disconnect, device number 9
[  224.878985][ T5805] usb 6-1: USB disconnect, device number 6
[  225.007718][    T9] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  225.201983][T10231] loop2: detected capacity change from 0 to 256
[  225.219284][    T9] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  225.238248][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.262879][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.294419][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.313370][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.328653][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.340051][T10234] loop5: detected capacity change from 0 to 2048
[  225.347669][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.355882][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.387803][T10234] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  225.395957][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.438448][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.469649][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.492275][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.534323][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.553521][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.573237][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.605119][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.619758][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.644821][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.682595][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.696096][T10236] loop2: detected capacity change from 0 to 4096
[  225.699044][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.733669][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.749351][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.777209][    T9] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  225.798244][T10236] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  225.810820][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  225.832098][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  225.848607][    T9] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  225.857948][    T9] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  225.869420][    T9] usb 2-1: Product: syz
[  225.876050][    T9] usb 2-1: Manufacturer: syz
[  225.880795][    T9] usb 2-1: SerialNumber: syz
[  225.894923][    T9] usb 2-1: config 0 descriptor??
[  225.915639][    T9] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0
[  225.952201][T10236] ntfs3: loop2: ino=0, "file1" failed to extend initialized size to 100003.
[  225.989585][ T5770] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  226.184494][ T5770] usb 5-1: Using ep0 maxpacket: 16
[  226.215873][ T5770] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.237899][ T5770] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.253296][ T5770] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  226.266907][ T5770] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  226.270188][ T5803] usb 2-1: USB disconnect, device number 10
[  226.276183][ T5770] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.286725][ T5770] usb 5-1: config 0 descriptor??
[  226.324875][ T5803] yurex 2-1:0.0: USB YUREX #0 now disconnected
[  226.564445][  T788] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  226.728176][ T5770] microsoft 0003:045E:07DA.000D: collection stack underflow
[  226.749417][ T5770] microsoft 0003:045E:07DA.000D: item 0 1 0 12 parsing failed
[  226.761644][ T5770] microsoft 0003:045E:07DA.000D: parse failed
[  226.764351][  T788] usb 3-1: Using ep0 maxpacket: 16
[  226.769547][ T5770] microsoft: probe of 0003:045E:07DA.000D failed with error -22
[  226.785942][  T788] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  226.804372][  T788] usb 3-1: config 0 has no interface number 0
[  226.813014][  T788] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  226.835289][  T788] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.843317][  T788] usb 3-1: Product: syz
[  226.874496][  T788] usb 3-1: Manufacturer: syz
[  226.879130][  T788] usb 3-1: SerialNumber: syz
[  226.887591][  T788] usb 3-1: config 0 descriptor??
[  226.910508][  T788] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  227.003158][ T1187] usb 5-1: USB disconnect, device number 10
[  227.320474][T10263] loop1: detected capacity change from 0 to 64
[  227.395426][   T27] kauditd_printk_skb: 10 callbacks suppressed
[  227.395441][   T27] audit: type=1804 audit(1774362793.495:69): pid=10263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1600" name="/newroot/432/bus/file1" dev="loop1" ino=21 res=1 errno=0
[  227.522137][  T788] gspca_spca1528: reg_w err -71
[  227.564463][  T788] spca1528: probe of 3-1:0.1 failed with error -71
[  227.581491][  T788] usb 3-1: USB disconnect, device number 12
[  227.599553][T10267] loop1: detected capacity change from 0 to 2048
[  227.698277][T10267] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  227.933080][T10265] loop5: detected capacity change from 0 to 32768
[  227.935050][T10272] loop4: detected capacity change from 0 to 256
[  227.960320][T10272] exfat: Deprecated parameter 'utf8'
[  227.986776][T10272] exfat: Deprecated parameter 'utf8'
[  227.999096][T10265] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  228.006306][T10272] exfat: Deprecated parameter 'utf8'
[  228.034660][T10272] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  228.289917][T10265] XFS (loop5): Ending clean mount
[  228.326419][T10265] XFS (loop5): Quotacheck needed: Please wait.
[  228.404823][T10286] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  228.411799][T10286] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  228.418319][T10265] XFS (loop5): Quotacheck: Done.
[  228.517319][T10286] vhci_hcd vhci_hcd.0: Device attached
[  228.607412][ T8485] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  228.755550][   T23] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  228.774460][ T5770] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  228.978454][ T5770] usb 3-1: config 0 has no interfaces?
[  228.989671][ T5770] usb 3-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72
[  229.024387][ T5770] usb 3-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0
[  229.032600][ T5770] usb 3-1: Manufacturer: syz
[  229.059370][ T5770] usb 3-1: config 0 descriptor??
[  229.337214][  T788] usb 3-1: USB disconnect, device number 13
[  229.354387][T10289] vhci_hcd: connection closed
[  229.365593][ T3507] vhci_hcd: stop threads
[  229.397931][ T3507] vhci_hcd: release socket
[  229.428345][ T3507] vhci_hcd: disconnect device
[  229.433043][T10318] loop4: detected capacity change from 0 to 256
[  229.484596][   T23] usb 37-1: device descriptor read/64, error -71
[  229.519025][T10318] FAT-fs (loop4): Directory bread(block 64) failed
[  229.528883][T10318] FAT-fs (loop4): Directory bread(block 65) failed
[  229.537132][T10318] FAT-fs (loop4): Directory bread(block 66) failed
[  229.543800][T10318] FAT-fs (loop4): Directory bread(block 67) failed
[  229.557070][T10318] FAT-fs (loop4): Directory bread(block 68) failed
[  229.579114][T10318] FAT-fs (loop4): Directory bread(block 69) failed
[  229.589359][T10318] FAT-fs (loop4): Directory bread(block 70) failed
[  229.614485][T10318] FAT-fs (loop4): Directory bread(block 71) failed
[  229.631914][T10318] FAT-fs (loop4): Directory bread(block 72) failed
[  229.638654][T10318] FAT-fs (loop4): Directory bread(block 73) failed
[  229.694539][   T23] vhci_hcd: vhci_device speed not set
[  230.008258][T10335] loop4: detected capacity change from 0 to 128
[  230.046454][T10335] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  230.103966][T10335] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  230.216633][ T3507] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  230.367788][T10341] loop5: detected capacity change from 0 to 8192
[  230.404529][T10341] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  230.424553][T10341] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal
[  230.440159][T10341] REISERFS (device loop5): using ordered data mode
[  230.448208][T10341] reiserfs: using flush barriers
[  230.477030][T10341] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  230.529169][T10341] REISERFS (device loop5): checking transaction log (loop5)
[  230.594966][T10341] REISERFS (device loop5): Using r5 hash to sort names
[  230.621304][T10341] reiserfs: enabling write barrier flush mode
[  230.628059][ T5770] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  230.657459][T10341] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[  230.692453][T10341] REISERFS error (device loop5): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[  230.727666][T10341] REISERFS (device loop5): Remounting filesystem read-only
[  230.745730][T10341] REISERFS error (device loop5): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data
[  230.769768][T10341] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[  230.813250][T10341] REISERFS error (device loop5): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[  230.829062][ T5770] usb 5-1: Using ep0 maxpacket: 16
[  230.850056][ T5770] usb 5-1: config 0 has an invalid interface number: 34 but max is 0
[  230.858741][T10341] REISERFS error (device loop5): zam-7001 reiserfs_find_entry: io error
[  230.867288][ T5770] usb 5-1: config 0 has no interface number 0
[  230.873899][ T5770] usb 5-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  230.884734][T10341] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2
[  230.902034][ T5770] usb 5-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[  230.919469][T10341] REISERFS error (device loop5): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[  230.930966][T10341] REISERFS error (device loop5): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data
[  230.949556][ T5770] usb 5-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  230.960188][T10341] REISERFS warning (device loop5): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount.
[  230.975001][ T5770] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.983033][ T5770] usb 5-1: Product: syz
[  230.987868][ T5770] usb 5-1: Manufacturer: syz
[  230.992489][ T5770] usb 5-1: SerialNumber: syz
[  231.008298][ T5770] usb 5-1: config 0 descriptor??
[  231.014143][T10347] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  231.036168][T10347] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  231.061906][ T8485] ------------[ cut here ]------------
[  231.067676][ T8485] kernel BUG at fs/reiserfs/journal.c:1916!
[  231.079734][ T8485] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  231.085851][ T8485] CPU: 1 PID: 8485 Comm: syz-executor Not tainted syzkaller #0
[  231.086547][T10360] loop1: detected capacity change from 0 to 32768
[  231.093385][ T8485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  231.093405][ T8485] RIP: 0010:do_journal_release+0x4e6/0x4f0
[  231.115661][ T8485] Code: b5 ff e9 a8 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 06 fd ff ff 4c 89 ff e8 64 dc b5 ff e9 f9 fc ff ff e8 8a ad 5d ff <0f> 0b e8 83 ad 5d ff 0f 0b 90 66 0f 1f 00 41 57 41 56 53 48 89 f3
[  231.133014][T10360] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  231.135262][ T8485] RSP: 0018:ffffc900031e7b00 EFLAGS: 00010293
[  231.135281][ T8485] RAX: ffffffff82296ed6 RBX: 1ffff9200063cf64 RCX: ffff88802d7a3c00
[  231.135292][ T8485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  231.135301][ T8485] RBP: ffffc900031e7bf8 R08: ffffc900031e7b77 R09: 0000000000000000
[  231.135311][ T8485] R10: ffffc900031e7b40 R11: fffff5200063cf6f R12: ffffc900032f9000
[  231.135321][ T8485] R13: dffffc0000000000 R14: ffff888069b64630 R15: 0000000000000000
[  231.135331][ T8485] FS:  0000555559b5b500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  231.135344][ T8485] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  231.190607][ T7928] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9
[  231.191687][ T8485] CR2: 0000555559b5b4e8 CR3: 0000000057e90000 CR4: 00000000003506e0
[  231.191705][ T8485] Call Trace:
[  231.191723][ T8485]  <TASK>
[  231.231753][ T8485]  ? journal_release+0x30/0x30
[  231.231784][ T8485]  journal_release+0x1f/0x30
[  231.231803][ T8485]  reiserfs_put_super+0x26b/0x510
[  231.231818][ T8485]  ? hook_inode_free_security+0xb0/0xb0
[  231.231832][ T8485]  ? evict_inodes+0x63c/0x6a0
[  231.231847][ T8485]  ? reiserfs_dirty_inode+0x270/0x270
[  231.231866][ T8485]  ? fscrypt_destroy_keyring+0x288/0x2a0
[  231.231884][ T8485]  ? reiserfs_dirty_inode+0x270/0x270
[  231.231899][ T8485]  generic_shutdown_super+0x134/0x2b0
[  231.231912][ T8485]  kill_block_super+0x44/0x90
[  231.231926][ T8485]  deactivate_locked_super+0x97/0x100
[  231.231938][ T8485]  cleanup_mnt+0x43b/0x4d0
[  231.231954][ T8485]  task_work_run+0x1d4/0x260
[  231.231972][ T8485]  ? task_work_cancel+0x220/0x220
[  231.231992][ T8485]  ? exit_to_user_mode_loop+0x3b/0x110
[  231.232010][ T8485]  exit_to_user_mode_loop+0xe6/0x110
[  231.232026][ T8485]  exit_to_user_mode_prepare+0xee/0x180
[  231.232043][ T8485]  syscall_exit_to_user_mode+0x1a/0x50
[  231.232059][ T8485]  do_syscall_64+0x61/0xa0
[  231.232075][ T8485]  ? clear_bhb_loop+0x40/0x90
[  231.232090][ T8485]  ? clear_bhb_loop+0x40/0x90
[  231.232103][ T8485]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  231.232121][ T8485] RIP: 0033:0x7f469319d9d7
[  231.232144][ T8485] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  231.232156][ T8485] RSP: 002b:00007ffdd8bf7238 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  231.232170][ T8485] RAX: 0000000000000000 RBX: 00007f4693232050 RCX: 00007f469319d9d7
[  231.232179][ T8485] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdd8bf72f0
[  231.232187][ T8485] RBP: 00007ffdd8bf72f0 R08: 00007ffdd8bf82f0 R09: 00000000ffffffff
[  231.232196][ T8485] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdd8bf8380
[  231.232204][ T8485] R13: 00007f4693232050 R14: 000000000003864d R15: 00007ffdd8bf83c0
[  231.232217][ T8485]  </TASK>
[  231.232221][ T8485] Modules linked in:
[  231.272998][T10347] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  231.275447][ T8485] ---[ end trace 0000000000000000 ]---
[  231.289332][T10347] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  231.303538][ T8485] RIP: 0010:do_journal_release+0x4e6/0x4f0
[  231.465857][ T8485] Code: b5 ff e9 a8 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 06 fd ff ff 4c 89 ff e8 64 dc b5 ff e9 f9 fc ff ff e8 8a ad 5d ff <0f> 0b e8 83 ad 5d ff 0f 0b 90 66 0f 1f 00 41 57 41 56 53 48 89 f3
[  231.465877][ T8485] RSP: 0018:ffffc900031e7b00 EFLAGS: 00010293
[  231.465894][ T8485] RAX: ffffffff82296ed6 RBX: 1ffff9200063cf64 RCX: ffff88802d7a3c00
[  231.465907][ T8485] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  231.465917][ T8485] RBP: ffffc900031e7bf8 R08: ffffc900031e7b77 R09: 0000000000000000
[  231.465928][ T8485] R10: ffffc900031e7b40 R11: fffff5200063cf6f R12: ffffc900032f9000
[  231.465940][ T8485] R13: dffffc0000000000 R14: ffff888069b64630 R15: 0000000000000000
[  231.465951][ T8485] FS:  0000555559b5b500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  231.465966][ T8485] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  231.465993][ T8485] CR2: 00007fe2045e92f8 CR3: 0000000057e90000 CR4: 00000000003506e0
[  231.466010][ T8485] Kernel panic - not syncing: Fatal exception
[  231.466337][ T8485] Kernel Offset: disabled