last executing test programs:

3m50.217593429s ago: executing program 1 (id=1070):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000002000)={0x0, &(0x7f0000001f80)=[0x0], 0x0, 0x0, 0x0, 0x1})

3m49.964688896s ago: executing program 1 (id=1073):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r0)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)={0x44, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x7a29293d222da6ee)

3m49.752909903s ago: executing program 1 (id=1078):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x8, &(0x7f0000000600), 0x5, 0x50c, &(0x7f0000001640)="$eJzs3U9sG1kZAPDPdpJN2izdXRDaXSS20iKVP2qcP0KbABLiBBwqISpxAamExA0lTh3FTmmiSqRw64EDAoGEOHDnwpULPVFVQpxBXDmhVlCCVFCRBnnsSZ3ETlya2Gzm95Ncz/i5/t5z8r08v3njCSC3Ljb/KURMRsQfIuJCa3f/Ey627naf3Flq3gqRJFf/Vkif19zPnpr9v/MRsRMR4xHx1S9GfKtwOG59a3t1sVqtbLT3y4219XJ9a/vyjbXFlcpK5ebM/HsLC/PTc7MLJ9bWez/8zr0rv/ny2K+e/uDRgx/97rfNak22yzrbcZJaTR+N1zseG4mIz51GsCEotdszMeyK8D9p/vw+GBHvpvl/IUrpT7M/z061ZsBpS5Ik+U/ySq/inQQ4s4rpGLhQnIqI1naxODXVGsN/KM4Vq7V641PXa5s3l1tj5dditHj9RrUy3f6s8FqMFpr7M+n28/3ZA/tzEekY+MeliXR/aqlWXR5sVwcccP5A/v+z1Mp/ICf6/8gPnDXyH/JL/kN+yX/IL/kP+SX/Ib/kP+SX/If8kv+QX535n53I9eqQ6gIM1lF//8cGWA9goL5y5UrzlmTnvy/f2tpcrd26vFypr06tbS5NLdU21qdWarWV9JydteNer1qrrc98OjZvlxuVeqNc39q+tlbbvNm4lp7Xf60yOpBWAf14/Z37fypExM5nJtJbdPzJl6twtiVJIYZ9DjIwHKVhd0DA0Dj0B/n1Ap/xe35JGPD+1uUreveMn+9Z9PlYP/aVdn/9EvUCTk/xqMJnDwdXEWDgLr3l+B/klfl/yC/z/5Bfx4zxDQ8gB46a/4/2tfy6OjT/38PTF6sPcPqOnP8HzrTJLtf/SpLke692XLtrOiI+EBF/LI2+kl3rCzgLin8ttMf/ly58bPJg6VjhX+kcwFhEfPfnV396e7HR2JhpPv73vccbP2s/PjuM+gO97Z/hy/I0y2MAIL92n9xZym6DjPv4C61FCIfjj7TnJsfTEcy53cK+tQqFE1q7sHM3It7sFr/Qvt5568jHud3SofhvtO8LrZdI6zuSXjd9MPHf6oj/0Y74b7/0uwL5cL/Z/0x3y79imtOxl3/7+5/JE1ofnfV/2ZrrzvhZ/1fq0f+902eMb//i+90O76aLvR/fjXi7a/+bxRtPYx2M36zbpT7jP/rG1z7cqyz5Zet1usXPNLfKjbX1cn1r+/KNrBbz7y0szE/PzS6U0znqcjZTfdhn3/z9g17xm+1v69H+Px9q/0S7Tp/os/3//sjDr188Iv7H3+3++/dGen/g/U+SvTp8ss/4/5j9yzd7lTXjL/d4/4vd4kdWGjHXZ/z6T77k3GEA+D9S39peXaxWKxtdNkZ7F9mwYWPQGyMxwKDH9Rw7g+mggFPzPOmHXRMAAAAAAAAAAACgX71W/94/weXEw24jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBZ8N8AAAD//6rz1eo=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x0)

3m49.274347007s ago: executing program 1 (id=1085):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000a80), r0)
sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f00000001c0)={0x2c, r1, 0x54ce48f1ce1f0e1, 0x70bd2a, 0x25dfdbfb, {}, [@NFC_ATTR_TM_PROTOCOLS={0x8, 0xe, 0x60}, @NFC_ATTR_IM_PROTOCOLS={0x8, 0xd, 0x40}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10000000}, 0x20040000)

3m48.947591897s ago: executing program 1 (id=1088):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)
link(&(0x7f0000000140)='.\x00', &(0x7f00000001c0)='./file0\x00')

3m48.767137513s ago: executing program 1 (id=1089):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net/rpc\x00')
lseek(r0, 0x800006, 0x2)
getdents(r0, 0x0, 0x48)

3m33.462425552s ago: executing program 32 (id=1089):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net/rpc\x00')
lseek(r0, 0x800006, 0x2)
getdents(r0, 0x0, 0x48)

3m10.32929801s ago: executing program 2 (id=1447):
r0 = add_key$user(&(0x7f0000000300), &(0x7f00000002c0)={'syz', 0x1}, &(0x7f0000000480)=':', 0x1, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r0, r0, r0}, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040eec9e2720"], 0x7)

3m10.106404887s ago: executing program 2 (id=1451):
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0xc4c85513, &(0x7f0000000600)={{0x7, 0x3, 0xe, 0x6, '\x00', 0xfffffff2}, 0x0, [0x10000, 0xff, 0x401, 0x7, 0x80000000, 0x7, 0x803, 0x7, 0x4, 0x9, 0xfffffffffffffffa, 0x5, 0x5, 0x9, 0x10001, 0x200, 0xff, 0x80, 0x5, 0x3, 0xfffffffffffeffff, 0x0, 0x8, 0x7, 0x8, 0x2, 0x0, 0x2, 0x1800000000000000, 0x6d, 0x3, 0x9, 0x1, 0x7fffffffffffffff, 0x2, 0x2, 0xe57d, 0x4, 0x4069, 0x5, 0x8, 0xf08, 0x9, 0x1000, 0x82a, 0x4, 0x5, 0x9, 0x0, 0x88, 0x2, 0x8, 0x2e, 0x1, 0xfe, 0xf0a, 0x8, 0x38fa, 0x6, 0x6, 0x1, 0x9, 0x7, 0xfffffffffffff897, 0xfffffffffffff8e6, 0xc, 0x8, 0x45bd, 0x6, 0x200000000000000, 0x1, 0x3, 0x1, 0x10001, 0x5, 0x2000, 0x6, 0xeded, 0xb, 0x7ff, 0x3, 0xfff, 0x9, 0x1, 0x712e, 0x180000000000000, 0x80000001, 0x0, 0x2, 0x200, 0x2, 0x2, 0xc88, 0x4, 0x1, 0xd296, 0x5, 0x5, 0x4, 0xff, 0x8, 0x4, 0x2, 0x5, 0x6, 0xa30, 0x6, 0x7, 0x8, 0x657, 0xfcb, 0x3, 0x2, 0x8, 0x6, 0xfffffffffffffffd, 0x8000000000000001, 0x0, 0x8, 0x9, 0x80, 0x67, 0x0, 0xffffffffffff0000, 0x2, 0x101, 0x0, 0x7]})
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003d000b08d25a80648c7494f90324fc600b0002400a000a00053582c137153e3719ac018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

3m9.582114523s ago: executing program 2 (id=1456):
unshare(0x400)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
readahead(r0, 0x5, 0x8000000000000000)

3m9.315196961s ago: executing program 2 (id=1460):
r0 = fanotify_init(0x200, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
writev(r0, &(0x7f00000005c0)=[{&(0x7f00000001c0)="84", 0x8}, {0x0}], 0x2)

3m9.067159639s ago: executing program 2 (id=1464):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1, 0x103)

3m8.762547068s ago: executing program 2 (id=1468):
r0 = io_uring_setup(0x6ddd, &(0x7f00000002c0)={0x0, 0x62ad, 0x40, 0xffffffff})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000180)={0x2, 0x0, &(0x7f0000000100)=[{0x0}], 0xffffffffffffffff, 0x1}, 0x20)

2m53.237260534s ago: executing program 33 (id=1468):
r0 = io_uring_setup(0x6ddd, &(0x7f00000002c0)={0x0, 0x62ad, 0x40, 0xffffffff})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000180)={0x2, 0x0, &(0x7f0000000100)=[{0x0}], 0xffffffffffffffff, 0x1}, 0x20)

8.1435177s ago: executing program 5 (id=3272):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x140)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './cgroup'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@uuid_on}]})

8.045195023s ago: executing program 5 (id=3274):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4, 0x1}, 0xe)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f00000003c0))

7.923607977s ago: executing program 5 (id=3276):
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='mounts\x00')
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x62141)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

7.684812034s ago: executing program 5 (id=3280):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000000), 0x3, 0x470, &(0x7f0000000dc0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

7.18175302s ago: executing program 5 (id=3286):
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x8, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000300)=[{&(0x7f0000000580)=""/102364, 0x18fdc}], 0x1, 0x5, 0x400006)

6.596230168s ago: executing program 5 (id=3294):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000600)={0x34, &(0x7f0000000240)={0x40, 0xc, 0x1, '!'}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000380)={0x34, &(0x7f0000000180)={0x40, 0xf, 0x3, '_f_'}, 0x0, 0x0, 0x0, 0x0, 0x0})

6.051884394s ago: executing program 34 (id=3294):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000600)={0x34, &(0x7f0000000240)={0x40, 0xc, 0x1, '!'}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000380)={0x34, &(0x7f0000000180)={0x40, 0xf, 0x3, '_f_'}, 0x0, 0x0, 0x0, 0x0, 0x0})

5.53034702s ago: executing program 4 (id=3307):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000001c0)={0x44, r1, 0x1, 0xffffffff, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x5, 0x4, "14"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x811}, 0x8880)

5.174446651s ago: executing program 4 (id=3310):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x200)
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
ioctl$SG_IO(r0, 0x2285, &(0x7f00000000c0)={0x53, 0xfffffffffffffffc, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f00000001c0)="bcd494ba6d83", 0x0, 0x9, 0x0, 0x2, 0x0})

4.804736422s ago: executing program 4 (id=3312):
unshare(0x20000400)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000002c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x4, 0x3}}, 0x10)

4.56430444s ago: executing program 4 (id=3314):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000000), 0x3, 0x470, &(0x7f0000000dc0)="$eJzs3M1vG0UbAPBn13H65k0hoZSvlo9AQVQIkqYt0AMHQCBxKBISHOBoJaEqTQtqgkSrSKQcygkhJO6II/8CJ7ggxAmJK9xRpQr1QsvJaL27iZ3YTtPYcYt/P8ntM/vhmce7Y8/u2AlgaE1l/yQReyPi94iYyIutG0zl/12/tjJ349rKXBL1+tt/JY3t/r62MlduWu433lyIJA62qXfpwsUztcXFhfNFeWb57EczSxcuPnf6bO3UwqmFc0dPnDh+bPbFF44+35M8xyMtojfe++rNk1+05L8hjx6Z6rbyqXq9x9UN1l1N8cgA28H2VIrjVW30/4moNB29iXj9s7XCpwNqINA39Xq9Pt559Wod+A9LorWsy8OwKD/oy+vfdtfBL/dt9DF4V1/JL4CyvK8Xj3zNyNodg+qG69temoqId1f/+SZ7RH/uQwAAtPghG/88m412Vuayscf6+CON+5u2u7uYG5qMiHsiYl9E3BvnYn9E3BfR2PaBiHhwm/U3TZI0hpmbxz/plVtO7iZk47+Xirmt1vFfOfqLyUqjdCEvRDV5//TiwpHiNTkc1T1ZebZLHT++9tuXndY1j/+yR1Z/ORYs2nFlZE/rPvO15dqtZ9zq6qWIAyPt8k/WZgKSiHgoIg60e4J06zpOP/Pdw53WbZ1/Fz2YaKp/G/F0fvxXY0P+paT7/OTM/2Jx4chMeVZs9suvl9/qVP+O8u+B7Pj/v+35v5b/ZNI8X7u0/Tou//F5x2uaqWoRbOP8X60t10aTdxrxaLHsk9ry8vnZiNHkZN7o5uVH1/cty+X2Wf6HD7Xv//ti/ZU4GBHZSfxIRDwaEY8Vx+7xiHgiIg51yf/nV5/8YOOysTL/2+D4z2/r+K8Ho9G6JG2zTRZUzvz0fUulk+thkf+N7u9/xxvR4WLJzbz/bW5F+2Cnrx8AAADcCdKI2BtJOr0Wp+n0dP4d/v351Hfm43Pz+W8EJqOalne6Jpruh84Wl/V5+VJE5F8tKNcfi7Rx3/jrylijPD334eL8QDMHxjv0/8yflUG3Dug7P9iC4aX/w/Dq2v+ru9cOYPdt6v9d+/yevrYF2F1tPv/HBtEOYPe1G//7ez8wHDb0f9N+METc/4fhpf/D8NL/YSgtjcXWP5LvGpTPdIu7bxVMROy0hYMJonpbNKNvQaR9r2K0v6dW34LkDmzzpmBw70kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99G8AAAD//1KFzjw=")
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x207)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

3.92874546s ago: executing program 4 (id=3317):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000540)='./file6\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYRES64=0x0, @ANYRES8, @ANYBLOB="f055d25ca1eb7fd51d68a905ad0af14daad34c474622ef59a10dc5c03f9664853bcf5a84c6c210153f23db95419440447592ba046342e43f5b54697bacb78d55b5e8d109aa4d6fb787212d438a52578c592c35b4db6cc150304a46c23d4da55d6a99b7cca25eeb7927fa2ad2b8b290a3ef113f4ec2faf12fa26077e333cd6a92360b7c9ae261fd4434ac7e94d52ab6334fb720b32c1cde7506e2061aa77ff83f2d2482f7978a2205210f909c8fcc6e0846a1ea003dcabd65e0ee7ea00ea7f3e0321cf516b91b93e631", @ANYRES32, @ANYRES8, @ANYRES64, @ANYRES8=0x0], 0x1d, 0x1d2, &(0x7f0000000800)="$eJzsVT2PEkEYfoYdltVCrY0JhUSxEJZFjY2RyvAnjBJYkbj4wZIohMS14n/Y8Dcs7G1MNCGxwUJNLDC2BjMz73DDwWVz3HG5S+ZJ4P1+Zt6ZzTtP41cxAPybj5qoQcLFBUwZAweQZ8r3IKfkL1fJEtk/uJI3yP+e5IIQD4bPGlEU9naobI5l1EZwGEZgiv2hz/OHFzfxMJ5O+BUudty8VBwcoZxtcVCpChJFuvveT43yyNEti+a34fGMqr/HtbH8Qd9G2r3zFOZZFBLDyi17wIl882sKWw/tmfffZfBbdvxlPmoK5TFNKeFrqR8zc8RtfjRyLnP5Yw4Wyxwx/IRxHUC5331ZjgfDm51uox22w+dBUL3j3/L920H5SScKffXPjCX0iBKydi8HMVPPGfEsgG80YM/DwE9dqbZGcWbWijm8oCFdvIoVZIy2tGT4sKylMogj8HAN4kpfJ8zwFiQLh2ypDgZHGjT039KxqLU8mVVqvohaYzC5niybgCuO7DKVw4VhiLTq3US7xiQLJOskJyRnJPWbpd8iLhm+k1VMxIm+afT7vYr7iUoq4tWTvsDV0eBSYh6YWPUPcejmruRgYWFhYWFhYXHG8D8AAP//zGdPOg==")
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x80)
getdents(r0, &(0x7f0000001fc0)=""/184, 0x20002078)

3.59117988s ago: executing program 0 (id=3319):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x1)
ioctl$UI_SET_PROPBIT(r0, 0x4004556e, 0x12)

3.59013575s ago: executing program 3 (id=3321):
r0 = epoll_create1(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fchown(r0, 0x0, 0x0)

3.433336725s ago: executing program 6 (id=3323):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000029"], 0x18}}], 0x1, 0x44080)
setsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000140)=' ', 0x2e)

3.341326078s ago: executing program 6 (id=3324):
syz_io_uring_setup(0x3fed, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffffffd, 0x8000000}, 0x0, 0x0, &(0x7f0000000000))
r0 = io_uring_setup(0x2c4c, &(0x7f00000000c0)={0x0, 0x2, 0x1000, 0x1000000, 0x4})
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x18, &(0x7f0000000000), 0x1)

3.25980785s ago: executing program 3 (id=3325):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000001200000008000800000000000800090000000100180001801400020076657468305f746f5f626f6e640000000800090000000000080006"], 0x4c}, 0x1, 0x0, 0x0, 0x10000000}, 0x0)

3.121932524s ago: executing program 4 (id=3326):
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
fdatasync(r0)

3.121167474s ago: executing program 0 (id=3327):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x400)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

2.639816489s ago: executing program 35 (id=3326):
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESDEC], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
fdatasync(r0)

2.6077898s ago: executing program 0 (id=3329):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r0, 0x0)
migrate_pages(0x0, 0x3, &(0x7f0000000040)=0x7f, &(0x7f0000000300)=0xa)

2.607324s ago: executing program 6 (id=3330):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000000000000000000000100000800010001"], 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="20000000030301"], 0x20}, 0x1, 0x0, 0x0, 0x20008015}, 0x4040)

2.548679402s ago: executing program 3 (id=3331):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x2, &(0x7f0000000000)=0x7, 0x4)
getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f00000000c0)=""/25, &(0x7f0000000080)=0xfffffffffffffe29)

2.417303996s ago: executing program 3 (id=3332):
r0 = socket(0x1d, 0x2, 0x6)
io_setup(0x8, &(0x7f0000004200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000004540)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0xfffe, r0, 0x0}])

2.382150567s ago: executing program 0 (id=3333):
unshare(0x22020600)
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_QUERYBUF_DMABUF(r0, 0xc0205648, &(0x7f0000000080)={0xf010000, 0x0, 0x4, 0x0, 0x9, {0x0, 0x2710}, {0x5, 0x8, 0x0, 0x0, 0x0, 0xd, "3acfa8ee"}})

2.320769929s ago: executing program 6 (id=3334):
pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80000)
write$P9_RRENAMEAT(r0, &(0x7f00000002c0)={0x7, 0x4b, 0x2}, 0xff7a)
write$P9_RREADDIR(r0, &(0x7f0000000300)={0x1012, 0x29, 0x2, {0x7, [{{0x20, 0x6, 0x3}, 0x100000000, 0xbc, 0xfef, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}]}}, 0x1012)

2.163648303s ago: executing program 0 (id=3335):
syz_mount_image$nilfs2(&(0x7f0000000400), &(0x7f0000000f00)='./file0\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x2, 0xf19, &(0x7f0000003200)="$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")
chdir(&(0x7f0000000100)='./file0\x00')
truncate(&(0x7f0000000000)='./bus\x00', 0x9471)

2.039067907s ago: executing program 3 (id=3336):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x8, &(0x7f0000005b40)=ANY=[@ANYBLOB="6e6f646973636172642c6e6f636865636b706f696e745f6d657267652c616c6c6f635f6d6f64653d64656661756c742c6163746976655f6c6f67733d362c6261636b67726f756e645f67633d6f6e2c6661756c745f696e6a656374696f6e3d30303030303030303030303030303030303031362c646973636172642c6e6f61636c2c6e6f696e6c696e655f64656e7472792c616c6c6f635f6d6f64653d64656661756c742c6d6f64653d667261676d656e743a7365676d656e742c6163746976655f6c6f67733d322c6661756c745f747970653d30303030303030303030303030303030333434342c736d61636b66736465663d6661756c745f696e6a656374696f6e2c61756469742c6673757569643d66333632643234372d376365632d656161612d646165362d32310063356133332c7569643c8ce7f529ca133a65e043caf3846e5e6cb2c7571c8e0d2e84dc680336482b03265192e9e7f4153ba42caf3b7a3df78bc1341a526bb7c87db7dd8cade5a469f2db2042142b8707a1d5cdceeeeb838082ed1ea32c1beff9560a43cdd6e9f49f497a366751036ab0549ba7d8688dfb2241139c6896acfafea773020982c930b828436254e12f7fba88f085c056505ffe1825c01538baa94d18dacbd474219056705e418ac5046fee8aa0f8c5852cdf0097fa768904fde411497a9f134ef8a5d51627441516af89007f4195d15d3710531d41220088723a6894a630", @ANYRESDEC=0x0, @ANYBLOB=',subj_role=batadv0\x00,obj_type=noinline_dentry,pcr=00000000000000000029,\x00'], 0x1, 0x5505, &(0x7f0000000340)="$eJzs3E1rY9UbAPAn7XTe//Mv4sLdXBiEFiZh0nlBd6PO4At2KKMuXGmapCEzSW5p0rR25cKluPCbiIIrl34GF67diQvFnaDknlud+gJC08ZOfz+4ee45OXnuc8Iw8NxbEsCptZj9/GMlrsSFiJiPiMsRxXmlPAp3U3guIq5GxNwTR6Wc/33ibERcjIgrk+QpZ6V869Pr42u3f3jjp6++OXfm0mdffju7XQOz9nxE9DfT+U4/xbyT4qNyvjHuFrF/a1zG9Eb/cTnOU9xprxcZdhr76xpFvNlJ6/PN7eEkbvQazUnsdDeK+c1BuuBw3NnPU3zgUWOrGLfa60XsDvMidvZSXbt76f+2veEo5WmV+T4o0sdotB/TfHu3nfaz+biIzcGonE9581Z7dxLHZSwvF8281yrqWD/MN/3f9mZ3sL2bjdtbw24+yG7X6i/U6neq9a281R61b1Ub/dadW9lSpzdZVh21G/27nTzv9Nq1Zt5fzpY6zWa1Xs+W7rXXu41BVq/XbtZuVG8vl2fXs1cfvJP1WtnSJL7cHWyPur1htpFvZekTy9lK7eaLy9m1evbW6lq29vD+/dW1t9+79+6Dl1Zff6Vc9JeysqWVGysr1fqN6kp9+RTt/6Oy6CnuHw6lMusCAE4e/T8wC0fX/289jDj6/j/0/1Nxovrf097/H8H+4VD0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAp9Z3C5+/VpwspvGlcv5/5dQz5bgSEXMR8evfmI+zB3LOl3kW/mH9wp9q+LoSRYbJNc6Vx8WIuFsev/z/qL8FAAAAeHp98eHVT1K3nl4WZ10QxyndtJm7/P6U8lUiYmHx+yllm5u8PDulZMW/7zOxO6VsxQ2s81NKlm65nZlWtn9l/kA4/0SopDB3rOUAAADH4mAncLxdCAAAAMfp41kXwGxUYv9R5v6z4OIv7/94IHjhwAgAAAA4gSqzLgAAAAA4ckX/7/f/AAAA4OmWfv8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfmPnfm4TB6I4AD8bvLD/tGi1921lb1DGlrDHPUYUkCYoIAfSQhqgBnJLCRFEeBwCEYdIHttK9H2SMxnL/HiD4DAz0gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF26r9aL26vf121zdvt28owGAAAAuGRbrRf1P7PU/9rc/97c+tn0i4goI+LS3H0Un84yR01O9fL8zenz1asa7iLqhMN7TJrrS0T8aa7HH11/CgAAAPBxbZareZqtpz+zoQuiT2nRpvz2N1NeERHV7CFTWnnI+5UprP5+j+N/prR6AWuaKSwtuY1zpb1J/XM/rtpNT5oiNeXFlx2LzDZ2AACgR6Ozpt9ZCAAAAH36N3QBDKOI563M41bgJDXN9t7nsx4AAADwDhVDFwAAAAB0rp7/93T+3975fwAAADCMdP4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXdpW68VmuZq3zdnt28kzGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHhif95RIATCIAz2ru9M5v6HlQZNTU2qQPj4G4MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA3v/vL/4mpcSaZe20sPY8ka6fG1qmxd24c/WF8/RoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIv9eUmBEAiCKJgz/nfS9z+sJOgZRIiAhkcVtWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4It+98v/ialxJpk7bSwdjyRrV42tq8beg8bRg/H2bwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIud+3mNo4oDAP5mZmdrq+IaZQ8RUfCgF7vd1tbexIMSPPgnCCHd1titP9ocbCliLt4k515EjyKCEm/9H3JOIJd4y2EPETwrMzuTnfwA118zm+TzgTfvu8Mw7/tmIeQ77yUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACURm9P4iQ7dMZxXJzb3Hu4lPVbh/rM47Xt+axlcVRn0ifDi9UPUbe5RAAAADg7krK+DyHspOsLWR938vo/La/Jav5vnx7HZT1/uO4v+7L2z9ovP+8+vz9QZzxOdtOby8PBpaOptP6/Wc62Z/7yilb+5PN3L0n+hcTvrT43SvPnGX29sfFOOw/P1ZEtAPBPXCz7Iih/H8r6fpOJAXBmtCqFd1n/J51mcwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACow2g1PFnGUQhhvjWJM1t7D5eO6x+vbc+X7dqjR2vhy8k9s1ukIYSby8PBpVpnM9vu3X9we3E4HNytP3gphNDU6G8V07/9wRQXh9DI8xH8R0FcfNmzks/JCBr8oQQAwKmUFi2r63fS9YXsXDQXwh/fHaz/X63EYcr6f/fDa5vVsar1f7+2Gc6+3sqdT3v37j94ffnO4q3BrcHHb1zuv9m/cv3q1eu9/F1JzxsTAAAA/p120ar1fzx3dP3/QiUOU9b/n33T/6I6VqL+P9Zk0a/pTAAAAM62Z1/+/bfomPNRux0+X1xZudsfH/c/Xx4fG0j1bztXtGr9n8w1nRUAAABQh9FqdGD9/0YlDlOu/z/1/Qs/Vu+ZhBDOF+v/F5c+Gd6obzozrY4/J256jgAAADTrfNGq6/9pvv8/3t/yEIcQXntlHBf/BnCq+j9596sfqmNV9/9fqW+KMynujp9H3ndDaHWbzggAAIDT7ImiZcX+r+n6wkc/XXi/bf8/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQN3+DAAA//962D6S")
r0 = open(&(0x7f00000000c0)='.\x00', 0x1a000, 0x80)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000200)=ANY=[@ANYBLOB="060000000000000e08"])

1.355409388s ago: executing program 0 (id=3337):
r0 = socket$kcm(0x11, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@hci={0x1f, 0x0, 0x4}, 0x80, 0x0}, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x890b, &(0x7f0000000100))

1.330513949s ago: executing program 6 (id=3338):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x1000c00, &(0x7f0000000140)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@nodiscard}, {@errors_continue}, {@errors_continue}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x21, 0x61e2, &(0x7f00000063c0)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f00000000c0)='./bus\x00', 0xc0000, 0x0, 0xbe, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00')

120.569956ms ago: executing program 3 (id=3339):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x442a, &(0x7f0000004480)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x24000, 0x0)

0s ago: executing program 6 (id=3340):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x196)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000004c0)='pstore\x00', 0x10401, 0x0)
mount$bpf(0x0, &(0x7f00000023c0)='./file0\x00', 0x0, 0x958028, 0x0)

kernel console output (not intermixed with test programs):

AT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xa81a85aa, utbl_chksum : 0xe619d30d)
[  271.902132][ T9134] hpfs: You really don't want any checks? You are crazy...
[  271.934817][ T9134] hpfs: hpfs_map_sector(): read error
[  272.020809][ T9134] hpfs: code page support is disabled
[  272.026408][ T9134] hpfs: hpfs_map_4sectors(): unaligned read
[  272.129861][ T9134] hpfs: hpfs_map_4sectors(): unaligned read
[  272.135840][ T9134] hpfs: filesystem error: unable to find root dir
[  272.723755][ T9152] loop3: detected capacity change from 0 to 1024
[  273.065961][ T9166] loop0: detected capacity change from 0 to 128
[  273.132416][ T9166] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  273.181169][ T9166] ext4 filesystem being mounted at /397/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  273.413719][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  273.785003][ T9187] loop3: detected capacity change from 0 to 1024
[  273.813547][ T9186] loop4: detected capacity change from 0 to 2048
[  273.892966][ T9186] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  274.020077][ T7520] hfsplus: b-tree write err: -5, ino 25
[  274.057432][ T7520] hfsplus: b-tree write err: -5, ino 4
[  274.078558][ T7520] hfsplus: b-tree write err: -5, ino 2
[  274.787344][ T9177] loop5: detected capacity change from 0 to 32768
[  274.847472][ T9177] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop5 scanned by syz.5.1894 (9177)
[  274.899791][ T9177] BTRFS info (device loop5): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  274.957112][ T9177] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  275.019758][ T9177] BTRFS info (device loop5): using free space tree
[  275.231470][ T9217] loop3: detected capacity change from 0 to 8192
[  275.258383][   T26] audit: type=1800 audit(1781858395.829:235): pid=9217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1910" name="file2" dev="loop3" ino=1048691 res=0 errno=0
[  275.295397][ T9217] syz.3.1910: attempt to access beyond end of device
[  275.295397][ T9217] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  275.342525][ T9177] BTRFS info (device loop5): enabling ssd optimizations
[  275.432817][ T9217] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  275.480698][ T9217] FAT-fs (loop3): Filesystem has been set read-only
[  275.626938][ T7281] BTRFS info (device loop5): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  277.443408][ T9302] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  277.736281][ T9309] sp0: Synchronizing with TNC
[  277.768345][ T9313] sp0: Found TNC
[  277.992948][ T9320] loop3: detected capacity change from 0 to 512
[  278.043691][ T9323] loop5: detected capacity change from 0 to 512
[  278.097225][ T9323] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  278.166259][ T9323] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  278.234664][ T9323] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:477: comm syz.5.1946: Invalid block bitmap block 0 in block_group 0
[  278.250199][ T9323] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  278.250233][ T9320] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  278.275178][ T9320] ext4 filesystem being mounted at /393/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.299665][ T9323] EXT4-fs error (device loop5): ext4_clear_blocks:883: inode #11: comm syz.5.1946: attempt to clear invalid blocks 983261 len 1
[  278.347346][ T9336] loop6: detected capacity change from 0 to 128
[  278.367893][ T9323] EXT4-fs error (device loop5): __ext4_get_inode_loc:4520: comm syz.5.1946: Invalid inode table block 0 in block_group 0
[  278.383384][ T9336] hpfs: bad mount options.
[  278.470723][ T9320] Quota error (device loop3): do_check_range: Getting block 4128768 out of range 0-5
[  278.496961][ T9323] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5952: Corrupt filesystem
[  278.531848][ T9323] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  278.600778][ T9323] EXT4-fs error (device loop5): __ext4_get_inode_loc:4520: comm syz.5.1946: Invalid inode table block 0 in block_group 0
[  278.652386][ T9323] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5952: Corrupt filesystem
[  278.673587][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  278.713272][ T9323] EXT4-fs error (device loop5): ext4_truncate:4325: inode #11: comm syz.5.1946: mark_inode_dirty error
[  278.746773][ T9323] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  278.791173][ T9345] loop6: detected capacity change from 0 to 8
[  278.798128][ T9345] squashfs: Bad value for 'errors'
[  278.849525][ T9323] EXT4-fs error (device loop5): __ext4_get_inode_loc:4520: comm syz.5.1946: Invalid inode table block 0 in block_group 0
[  278.903018][ T9323] EXT4-fs (loop5): 1 truncate cleaned up
[  278.908860][ T9323] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  279.182150][ T7281] EXT4-fs (loop5): unmounting filesystem.
[  279.582919][ T9369] loop6: detected capacity change from 0 to 1024
[  279.846546][ T9374] loop3: detected capacity change from 0 to 256
[  279.884508][ T9374] exfat: Deprecated parameter 'namecase'
[  279.917922][ T9374] exfat: Deprecated parameter 'namecase'
[  279.940491][ T9374] exfat: Deprecated parameter 'namecase'
[  280.010488][ T9374] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0x5174a95f, utbl_chksum : 0xe619d30d)
[  280.162914][ T9339] loop0: detected capacity change from 0 to 32768
[  280.276634][ T9339] non-latin1 character 0x200 found in JFS file name
[  280.319818][ T9339] mount with iocharset=utf8 to access
[  280.889785][ T9398] netlink: 88 bytes leftover after parsing attributes in process `syz.6.1974'.
[  280.942640][ T9398] tipc: Started in network mode
[  280.947586][ T9398] tipc: Node identity ac141442, cluster identity 4711
[  281.023082][ T9398] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  281.504428][ T9420] block nbd3: not configured, cannot reconfigure
[  281.841995][ T9416] loop6: detected capacity change from 0 to 8192
[  281.912013][ T9431] tipc: Invalid UDP bearer configuration
[  281.912059][ T9431] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  282.365454][ T9443] netlink: 'syz.5.1991': attribute type 1 has an invalid length.
[  283.446892][ T9439] loop0: detected capacity change from 0 to 32768
[  284.237323][ T9495] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2014'.
[  284.415812][ T9477] loop4: detected capacity change from 0 to 32768
[  284.448862][ T9477] XFS: attr2 mount option is deprecated.
[  284.600410][ T9477] XFS (loop4): Mounting V5 Filesystem
[  284.749939][ T9477] XFS (loop4): Ending clean mount
[  284.774492][ T9477] XFS (loop4): Quotacheck needed: Please wait.
[  284.824351][ T9519] device ip6gretap0 entered promiscuous mode
[  284.860211][ T9519] device macvtap1 entered promiscuous mode
[  284.892806][ T9477] XFS (loop4): Quotacheck: Done.
[  284.902810][ T9519] device ip6gretap0 left promiscuous mode
[  285.049123][ T4271] XFS (loop4): Unmounting Filesystem
[  285.177825][ T9528] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  285.236864][ T9525] loop6: detected capacity change from 0 to 4096
[  285.871736][ T9545] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2035'.
[  286.122012][ T9552] loop3: detected capacity change from 0 to 256
[  286.285371][ T8268] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  286.494187][ T8268] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  286.514220][ T8268] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.544657][ T8268] usb 5-1: Product: syz
[  286.548898][ T8268] usb 5-1: Manufacturer: syz
[  286.574177][ T8268] usb 5-1: SerialNumber: syz
[  286.596030][ T8268] usb 5-1: config 0 descriptor??
[  286.738954][ T9568] bridge_slave_1: default FDB implementation only supports local addresses
[  286.859784][ T6247] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  286.892255][ T8268] usb 5-1: USB disconnect, device number 11
[  287.064014][ T6247] usb 4-1: Using ep0 maxpacket: 8
[  287.082799][ T6247] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[  287.127283][ T6247] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.168705][ T6247] usb 4-1: config 0 has no interface number 0
[  287.193822][ T6247] usb 4-1: config 0 interface 52 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  287.246384][ T6247] usb 4-1: config 0 interface 52 has no altsetting 0
[  287.264533][ T6247] usb 4-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  287.305303][ T6247] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.344155][ T6247] usb 4-1: config 0 descriptor??
[  287.396058][ T9560] loop0: detected capacity change from 0 to 32768
[  287.424331][ T9560] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.2040 (9560)
[  287.486152][ T9560] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  287.532991][ T9560] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  287.584329][ T9560] BTRFS info (device loop0): force clearing of disk cache
[  287.615869][ T9560] BTRFS info (device loop0): enabling auto defrag
[  287.666492][ T9560] BTRFS info (device loop0): max_inline at 0
[  287.683278][ T9560] BTRFS info (device loop0): enabling disk space caching
[  287.715925][ T9560] BTRFS info (device loop0): disk space caching is enabled
[  287.849958][ T5056] usb 4-1: USB disconnect, device number 10
[  288.009586][ T9560] BTRFS info (device loop0): enabling ssd optimizations
[  288.023571][ T9560] BTRFS info (device loop0): rebuilding free space tree
[  288.137526][ T9560] BTRFS info (device loop0): disabling free space tree
[  288.160462][ T9560] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  288.178489][ T9560] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  288.331399][ T9626] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  288.389365][ T9626] CIFS: Unable to determine destination address
[  288.447023][ T4274] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  288.624398][ T4366] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 11 /dev/loop0 scanned by udevd (4366)
[  288.649129][ T9631] loop3: detected capacity change from 0 to 1024
[  288.765046][ T9631] EXT4-fs: Ignoring removed bh option
[  288.920318][ T9631] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  289.194147][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  289.316665][ T9647] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2068'.
[  289.576599][ T9652] device macsec1 entered promiscuous mode
[  289.615518][ T9654] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2071'.
[  289.621811][ T9656] loop4: detected capacity change from 0 to 512
[  289.644902][ T9656] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  289.707599][ T9656] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2072: invalid indirect mapped block 9 (level 0)
[  289.822430][ T9656] EXT4-fs (loop4): 1 truncate cleaned up
[  289.828218][ T9656] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  289.913740][ T9622] loop6: detected capacity change from 0 to 40427
[  289.992755][ T9622] F2FS-fs (loop6): invalid crc value
[  290.040730][ T9656] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  290.055459][ T9622] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  290.198150][ T4271] EXT4-fs (loop4): unmounting filesystem.
[  290.318542][ T9622] F2FS-fs (loop6): Cannot turn on quotas: -2 on 0
[  290.355555][ T9622] F2FS-fs (loop6): Start checkpoint disabled!
[  290.468521][ T9622] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  290.537678][ T9650] loop3: detected capacity change from 0 to 40427
[  290.556314][ T9670] loop4: detected capacity change from 0 to 4096
[  290.570218][ T9622] F2FS-fs (loop6): Checkpoint should be enabled.
[  290.604392][ T9650] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  290.641896][ T9650] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  290.651941][ T9670] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  290.686746][ T9650] F2FS-fs (loop3): invalid crc_offset: 1
[  290.746133][ T7520] kworker/u4:8: attempt to access beyond end of device
[  290.746133][ T7520] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  290.771257][ T9650] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  290.868851][ T4271] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22.
[  291.100652][ T9650] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  291.108336][ T9650] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  291.500219][ T4272] syz-executor: attempt to access beyond end of device
[  291.500219][ T4272] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  292.049746][ T9710] loop4: detected capacity change from 0 to 256
[  292.098718][ T9710] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbd11d127, utbl_chksum : 0xe619d30d)
[  292.182914][ T9714] loop0: detected capacity change from 0 to 64
[  292.527395][ T9721] xt_cgroup: invalid path, errno=-2
[  293.233713][ T9740] loop4: detected capacity change from 0 to 4096
[  293.253971][ T9740] ntfs3: loop4: ino=3, Correct links count -> 2.
[  293.419763][ T9725] loop0: detected capacity change from 0 to 32768
[  293.880712][ T9759] xt_l2tp: v2 tid > 0xffff: 37482740
[  294.166988][ T9768] loop0: detected capacity change from 0 to 2048
[  294.214403][ T9768] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  294.757314][ T9783] netlink: 'syz.6.2116': attribute type 1 has an invalid length.
[  295.297056][ T9796] loop3: detected capacity change from 0 to 1764
[  295.302107][   T26] audit: type=1800 audit(1781858415.869:236): pid=9802 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2124" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  295.536513][ T9809] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2125'.
[  295.904621][ T9825] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2130'.
[  296.270895][ T9838] loop6: detected capacity change from 0 to 1024
[  296.399706][ T8268] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  296.589933][ T8268] usb 6-1: Using ep0 maxpacket: 16
[  296.597493][ T8268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  296.650202][ T8268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  296.681066][ T8268] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  296.735399][ T8268] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  296.779670][ T8268] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.832419][ T8268] usb 6-1: config 0 descriptor??
[  297.233306][ T9863] loop0: detected capacity change from 0 to 256
[  297.248913][ T8268] microsoft 0003:045E:07DA.0016: ignoring exceeding usage max
[  297.273819][ T9863] exfat: Deprecated parameter 'namecase'
[  297.292367][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.321792][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.339677][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.341725][ T9863] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001fe89, chksum : 0x84f53455, utbl_chksum : 0xe619d30d)
[  297.346956][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.346985][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.483280][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.523831][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.544121][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.590061][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.619882][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.647774][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.666102][ T9840] loop4: detected capacity change from 0 to 32768
[  297.683622][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.719019][ T8268] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[  297.804646][ T8268] microsoft 0003:045E:07DA.0016: No inputs registered, leaving
[  297.888280][ T9840] XFS (loop4): Mounting V5 Filesystem
[  297.916122][ T8268] microsoft 0003:045E:07DA.0016: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[  297.969920][ T8268] microsoft 0003:045E:07DA.0016: no inputs found
[  297.976521][ T8268] microsoft 0003:045E:07DA.0016: could not initialize ff, continuing anyway
[  298.003887][ T8268] usb 6-1: USB disconnect, device number 4
[  298.066846][ T9840] XFS (loop4): Ending clean mount
[  298.376104][ T4271] XFS (loop4): Unmounting Filesystem
[  298.447490][ T9887] fido_id[9887]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  299.658635][ T9900] loop3: detected capacity change from 0 to 32768
[  299.685398][ T9902] loop5: detected capacity change from 0 to 32768
[  299.723190][ T9902] (syz.5.2158,9902,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  299.739946][ T9902] (syz.5.2158,9902,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  299.796706][ T9898] loop6: detected capacity change from 0 to 40427
[  299.806626][ T9898] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  299.815671][ T9898] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  299.831428][ T9898] F2FS-fs (loop6): invalid crc value
[  299.837949][ T9900] XFS (loop3): Mounting V5 Filesystem
[  299.874852][ T9902] JBD2: Ignoring recovery information on journal
[  299.947370][ T9898] F2FS-fs (loop6): Found nat_bits in checkpoint
[  299.960152][ T9902] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  300.071093][ T9900] XFS (loop3): Ending clean mount
[  300.110977][ T9905] loop0: detected capacity change from 0 to 32768
[  300.212741][ T9898] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  300.242048][ T9905] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  300.253079][ T9898] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  300.454073][   T26] audit: type=1800 audit(1781858421.029:237): pid=9900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2156" name="file1" dev="loop3" ino=6150 res=0 errno=0
[  300.536497][ T7281] ocfs2: Unmounting device (7,5) on (node local)
[  300.570984][ T4274] ocfs2: Unmounting device (7,0) on (node local)
[  300.774265][ T4272] XFS (loop3): Unmounting Filesystem
[  302.323150][ T9980] loop5: detected capacity change from 0 to 1024
[  302.380616][ T9983] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  302.672044][ T9990] netlink: 'syz.5.2183': attribute type 6 has an invalid length.
[  302.959850][ T6247] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  303.149804][ T6247] usb 5-1: Using ep0 maxpacket: 8
[  303.157205][ T6247] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 73, using maximum allowed: 30
[  303.182774][ T9971] loop0: detected capacity change from 0 to 32768
[  303.232516][ T6247] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 249, changing to 11
[  303.311332][ T6247] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 73
[  303.343477][ T6247] usb 5-1: New USB device found, idVendor=056e, idProduct=010d, bcdDevice= 0.00
[  303.390913][ T6247] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.420653][ T6247] usb 5-1: config 0 descriptor??
[  303.639908][   T26] audit: type=1326 audit(1781858424.209:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10015 comm="syz.6.2192" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc62039ce59 code=0x0
[  303.679923][   T22] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  303.837845][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.857081][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.868469][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.876557][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.885039][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.900603][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.928206][   T22] usb 4-1: config 220 has an invalid interface number: 76 but max is 2
[  303.948703][   T22] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  303.958438][ T6247] elecom 0003:056E:010D.0017: unknown main item tag 0x0
[  303.978646][ T6247] elecom 0003:056E:010D.0017: unbalanced collection at end of report description
[  303.988823][   T22] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  304.011106][ T6247] elecom: probe of 0003:056E:010D.0017 failed with error -22
[  304.019890][   T22] usb 4-1: config 220 has no interface number 2
[  304.026487][   T22] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  304.057843][ T6247] usb 5-1: USB disconnect, device number 12
[  304.068553][   T22] usb 4-1: config 220 interface 0 has no altsetting 0
[  304.103998][   T22] usb 4-1: config 220 interface 76 has no altsetting 0
[  304.125404][   T22] usb 4-1: config 220 interface 1 has no altsetting 0
[  304.128010][   T22] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  304.150766][   T22] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.150796][   T22] usb 4-1: Product: syz
[  304.150813][   T22] usb 4-1: Manufacturer: syz
[  304.150830][   T22] usb 4-1: SerialNumber: syz
[  304.384039][   T22] usb 4-1: selecting invalid altsetting 0
[  304.395778][   T22] usb 4-1: Found UVC 7.01 device syz (8086:0b07)
[  304.404234][   T22] usb 4-1: No valid video chain found.
[  304.443437][   T22] usb 4-1: selecting invalid altsetting 0
[  304.489646][   T22] usbtest: probe of 4-1:220.1 failed with error -22
[  304.530576][   T22] usb 4-1: USB disconnect, device number 11
[  304.695566][T10043] loop0: detected capacity change from 0 to 1024
[  304.721753][T10043] EXT4-fs: Ignoring removed bh option
[  304.806122][T10043] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  304.895894][T10052] loop5: detected capacity change from 0 to 512
[  304.908962][T10052] EXT4-fs: Ignoring removed bh option
[  304.973793][T10052] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  305.047107][T10052] EXT4-fs (loop5): 1 truncate cleaned up
[  305.080665][T10052] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  305.155631][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  305.318224][ T7281] EXT4-fs (loop5): unmounting filesystem.
[  306.395548][T10090] loop6: detected capacity change from 0 to 512
[  306.449330][T10090] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  306.505748][T10090] EXT4-fs (loop6): Test dummy encryption mode enabled
[  306.552053][T10090] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  306.608673][T10061] loop4: detected capacity change from 0 to 32768
[  306.622176][T10066] loop0: detected capacity change from 0 to 32768
[  306.734471][T10066] JBD2: Ignoring recovery information on journal
[  306.840877][T10066] jbd2_journal_bmap: journal block not found at offset 32 on loop0-75
[  306.920052][T10066] JBD2: bad block at offset 32
[  306.936126][T10109] sg_write: data in/out 209152/4 bytes for SCSI command 0xf2-- guessing data in;
[  306.936126][T10109]    program syz.5.2217 not setting count and/or reply_len properly
[  306.994877][T10066] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  307.025433][ T8289] EXT4-fs (loop6): unmounting filesystem.
[  307.133479][T10066] (syz.0.2205,10066,1):ocfs2_get_block:150 get_block on system inode 0xffff88807404a4f8 (65)
[  307.361156][T10066] OCFS2: ERROR (device loop0): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  307.412571][T10066] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  307.465075][T10066] OCFS2: File system is now read-only.
[  307.493258][T10066] (syz.0.2205,10066,1):ocfs2_find_leaf:1941 ERROR: status = -30
[  307.528051][T10066] (syz.0.2205,10066,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  307.580818][T10066] (syz.0.2205,10066,1):ocfs2_get_clusters:624 ERROR: status = -30
[  307.619927][T10066] (syz.0.2205,10066,1):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  307.647509][T10066] (syz.0.2205,10066,1):ocfs2_get_block:162 ERROR: get_blocks() failed, inode: 0xffff88807404a4f8, block: 0
[  307.693713][T10066] (syz.0.2205,10066,1):ocfs2_get_block:150 get_block on system inode 0xffff88807404a4f8 (65)
[  307.737732][T10066] OCFS2: ERROR (device loop0): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list
[  307.831008][T10066] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  307.877952][T10066] (syz.0.2205,10066,1):ocfs2_find_leaf:1941 ERROR: status = -30
[  307.903109][T10066] (syz.0.2205,10066,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  307.939738][T10066] (syz.0.2205,10066,1):ocfs2_get_clusters:624 ERROR: status = -30
[  307.962382][T10066] (syz.0.2205,10066,1):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  307.993343][T10066] (syz.0.2205,10066,1):ocfs2_get_block:162 ERROR: get_blocks() failed, inode: 0xffff88807404a4f8, block: 0
[  308.044708][T10142] vivid-006: disconnect
[  308.146213][ T4274] ocfs2: Unmounting device (7,0) on (node local)
[  308.323082][T10149] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2233'.
[  308.393821][T10151] loop5: detected capacity change from 0 to 512
[  308.456467][T10151] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  308.760258][T10156] loop6: detected capacity change from 0 to 256
[  308.811891][T10141] vivid-006: reconnect
[  308.878562][T10156] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x241b98d9, utbl_chksum : 0xe619d30d)
[  309.095329][T10168] loop3: detected capacity change from 0 to 1024
[  310.214131][T10204] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2256'.
[  310.249313][  T124] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  310.441203][  T124] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  310.476435][  T124] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  310.499780][  T124] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.573659][  T124] usb 1-1: config 0 descriptor??
[  310.620979][T10219] can0: slcan on ptm0.
[  310.779920][T10218] can0 (unregistered): slcan off ptm0.
[  310.989056][  T124] ath6kl: Unsupported hardware version: 0x0
[  311.000187][  T124] ath6kl: Failed to init ath6kl core: -22
[  311.123216][  T124] ath6kl_usb: probe of 1-1:0.0 failed with error -22
[  311.226913][  T124] usb 1-1: USB disconnect, device number 16
[  311.580041][T10223] loop3: detected capacity change from 0 to 32768
[  311.613803][T10223] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.2265 (10223)
[  311.682774][T10223] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  311.734846][T10223] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  311.747245][T10223] BTRFS info (device loop3): enabling disk space caching
[  311.785669][T10223] BTRFS info (device loop3): force clearing of disk cache
[  311.824994][T10223] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  311.877918][T10223] BTRFS info (device loop3): use zstd compression, level 3
[  311.903226][T10223] BTRFS info (device loop3): disk space caching is enabled
[  311.948407][T10231] loop5: detected capacity change from 0 to 32768
[  312.062358][T10231] JBD2: Ignoring recovery information on journal
[  312.344476][T10231] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  312.364296][T10223] BTRFS info (device loop3): enabling ssd optimizations
[  312.393953][T10223] BTRFS info (device loop3): rebuilding free space tree
[  312.415612][   T26] audit: type=1800 audit(1781858432.989:239): pid=10231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2268" name="file1" dev="loop5" ino=17058 res=0 errno=0
[  312.435884][T10223] BTRFS info (device loop3): disabling free space tree
[  312.449949][T10223] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  312.481887][T10223] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  312.573397][ T7281] ocfs2: Unmounting device (7,5) on (node local)
[  312.794143][T10287] loop4: detected capacity change from 0 to 256
[  312.916917][T10287] FAT-fs (loop4): Directory bread(block 64) failed
[  312.939687][T10287] FAT-fs (loop4): Directory bread(block 65) failed
[  312.987959][T10287] FAT-fs (loop4): Directory bread(block 66) failed
[  313.019765][T10287] FAT-fs (loop4): Directory bread(block 67) failed
[  313.026742][T10287] FAT-fs (loop4): Directory bread(block 68) failed
[  313.069963][ T6247] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  313.109316][T10287] FAT-fs (loop4): Directory bread(block 69) failed
[  313.116600][T10287] FAT-fs (loop4): Directory bread(block 70) failed
[  313.134981][ T4272] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  313.159318][T10287] FAT-fs (loop4): Directory bread(block 71) failed
[  313.236691][T10287] FAT-fs (loop4): Directory bread(block 72) failed
[  313.265441][T10287] FAT-fs (loop4): Directory bread(block 73) failed
[  313.302520][ T6247] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  313.330799][T10287] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  313.338755][ T6247] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  313.370096][ T6247] usb 6-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  313.389617][ T6247] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.431809][ T6247] usb 6-1: config 0 descriptor??
[  313.440573][T10278] loop0: detected capacity change from 0 to 32768
[  313.865600][ T6247] playstation 0003:054C:0DF2.0018: collection stack underflow
[  313.895810][ T6247] playstation 0003:054C:0DF2.0018: item 0 0 0 12 parsing failed
[  313.933804][ T6247] playstation 0003:054C:0DF2.0018: Parse failed
[  313.943063][ T6247] playstation: probe of 0003:054C:0DF2.0018 failed with error -22
[  314.083992][ T6247] usb 6-1: USB disconnect, device number 5
[  314.288578][T10307] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2282'.
[  314.547753][T10312] loop0: detected capacity change from 0 to 4096
[  314.575876][T10317] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2289'.
[  314.647623][T10318] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  314.846127][T10323] netlink: 'syz.4.2291': attribute type 29 has an invalid length.
[  314.879730][T10323] netlink: 'syz.4.2291': attribute type 29 has an invalid length.
[  314.930688][T10324] netlink: 'syz.4.2291': attribute type 29 has an invalid length.
[  315.020686][ T5066] kernel write not supported for file /input/mice (pid: 5066 comm: kworker/0:15)
[  315.476732][T10344] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2301'.
[  315.507358][T10344] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2301'.
[  315.744218][T10350] loop3: detected capacity change from 0 to 2048
[  315.780628][T10350] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  315.864005][T10355] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  315.864356][T10350] syz.3.2304: attempt to access beyond end of device
[  315.864356][T10350] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  315.995318][T10358] loop0: detected capacity change from 0 to 512
[  316.116720][T10358] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  316.314863][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  316.334973][T10340] loop5: detected capacity change from 0 to 40427
[  316.406385][T10340] F2FS-fs (loop5): Corrupted extension count (64 + 1 > 64)
[  316.434909][T10340] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  316.467237][T10340] F2FS-fs (loop5): invalid crc value
[  316.506637][T10340] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  316.715193][T10376] tmpfs: Too few inodes for current use
[  316.778855][T10340] F2FS-fs (loop5): Start checkpoint disabled!
[  316.841631][T10340] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  316.865312][T10340] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  317.316001][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  317.322537][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  317.582834][T10395] loop3: detected capacity change from 0 to 1024
[  317.927379][T10402] loop3: detected capacity change from 0 to 1024
[  318.815108][T10397] loop0: detected capacity change from 0 to 32768
[  318.894834][T10397] add_index: next_index = 0.  Resetting!
[  318.919964][T10397] non-latin1 character 0x3ff found in JFS file name
[  318.927982][T10397] mount with iocharset=utf8 to access
[  319.340058][   T26] audit: type=1326 audit(1781858439.919:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.2341" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  319.449617][   T26] audit: type=1326 audit(1781858439.949:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.2341" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  319.478698][T10409] loop3: detected capacity change from 0 to 32768
[  319.589873][   T26] audit: type=1326 audit(1781858439.949:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.2341" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  319.705805][   T26] audit: type=1326 audit(1781858439.949:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.2341" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  319.735798][T10443] loop6: detected capacity change from 0 to 1024
[  319.822407][T10443] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  320.345174][T10427] loop4: detected capacity change from 0 to 32768
[  320.376766][T10427] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 scanned by syz.4.2338 (10427)
[  320.473621][T10427] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  320.541235][T10427] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  320.571230][T10427] BTRFS info (device loop4): using free space tree
[  320.653261][T10466] sp0: Synchronizing with TNC
[  320.722684][T10471] sp0: Found TNC
[  320.745613][T10464] [U] è`
[  320.947076][T10427] BTRFS info (device loop4): enabling ssd optimizations
[  321.139999][T10453] loop5: detected capacity change from 0 to 32768
[  321.437830][ T4271] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  321.937487][T10505] loop0: detected capacity change from 0 to 1024
[  322.429441][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  322.625506][T10529] loop4: detected capacity change from 0 to 128
[  323.756368][T10561] loop5: detected capacity change from 0 to 256
[  323.968868][T10561] FAT-fs (loop5): Directory bread(block 64) failed
[  323.999981][T10561] FAT-fs (loop5): Directory bread(block 65) failed
[  324.038404][T10561] FAT-fs (loop5): Directory bread(block 66) failed
[  324.065249][T10561] FAT-fs (loop5): Directory bread(block 67) failed
[  324.082210][T10561] FAT-fs (loop5): Directory bread(block 68) failed
[  324.097169][T10561] FAT-fs (loop5): Directory bread(block 69) failed
[  324.106333][T10561] FAT-fs (loop5): Directory bread(block 70) failed
[  324.124271][T10561] FAT-fs (loop5): Directory bread(block 71) failed
[  324.135289][T10561] FAT-fs (loop5): Directory bread(block 72) failed
[  324.145210][T10561] FAT-fs (loop5): Directory bread(block 73) failed
[  324.197454][T10567] loop4: detected capacity change from 0 to 8192
[  324.267284][T10567] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  324.315511][ T5066] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  324.321546][T10567] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  324.338265][T10567] REISERFS (device loop4): using ordered data mode
[  324.345582][T10567] reiserfs: using flush barriers
[  324.355348][T10567] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  324.373102][T10567] REISERFS (device loop4): checking transaction log (loop4)
[  324.464004][T10578] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2397'.
[  324.539634][ T5066] usb 1-1: Using ep0 maxpacket: 32
[  324.549085][ T5066] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.602589][ T5066] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  324.665153][ T5066] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  324.717008][ T5066] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.735613][T10585] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  324.743140][T10567] REISERFS (device loop4): Using tea hash to sort names
[  324.784225][T10567] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  324.797913][ T5066] usb 1-1: config 0 descriptor??
[  324.824282][T10567] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  324.839557][T10567] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  324.866034][T10567] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 4) not found (pos 2)
[  324.902429][T10567] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  325.198811][T10567] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  325.233297][ T5066] koneplus 0003:1E7D:2D51.0019: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.0-1/input0
[  325.284652][T10567] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  325.346200][T10601] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  325.428920][ T5066] koneplus 0003:1E7D:2D51.0019: couldn't init struct koneplus_device
[  325.457618][ T5066] koneplus 0003:1E7D:2D51.0019: couldn't install mouse
[  325.475778][ T5066] koneplus: probe of 0003:1E7D:2D51.0019 failed with error -71
[  325.495733][ T5066] usb 1-1: USB disconnect, device number 17
[  325.742347][T10604] fido_id[10604]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  325.796449][T10603] loop6: detected capacity change from 0 to 8192
[  325.866684][T10603] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  325.925217][T10603] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000001)
[  325.934715][   T26] audit: type=1326 audit(1781858446.509:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f077959ce59 code=0x7ffc0000
[  325.949844][T10603] FAT-fs (loop6): Filesystem has been set read-only
[  326.019111][   T26] audit: type=1326 audit(1781858446.509:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f077959ce59 code=0x7ffc0000
[  326.031706][T10603] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000001)
[  326.132291][   T26] audit: type=1326 audit(1781858446.509:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f077959ce59 code=0x7ffc0000
[  326.218986][T10603] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000001)
[  326.244299][   T26] audit: type=1326 audit(1781858446.509:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f077959ce59 code=0x7ffc0000
[  326.384955][   T26] audit: type=1326 audit(1781858446.509:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f077959ce59 code=0x7ffc0000
[  326.489874][   T26] audit: type=1326 audit(1781858446.509:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f077955d68e code=0x7ffc0000
[  326.517380][T10617] loop0: detected capacity change from 0 to 1024
[  326.551833][T10617] EXT4-fs: Ignoring removed orlov option
[  326.586205][   T26] audit: type=1326 audit(1781858446.509:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f077955d68e code=0x7ffc0000
[  326.674862][T10617] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  326.736455][   T26] audit: type=1326 audit(1781858446.509:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f077959ce59 code=0x7ffc0000
[  326.811337][   T26] audit: type=1326 audit(1781858446.509:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f077955d68e code=0x7ffc0000
[  326.864988][   T26] audit: type=1326 audit(1781858446.509:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10597 comm="syz.5.2407" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f077955d68e code=0x7ffc0000
[  326.939275][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  327.059111][T10606] loop3: detected capacity change from 0 to 32768
[  327.089657][T10606] XFS (loop3): Invalid device [./file1], error=-15
[  327.270676][T10633] loop0: detected capacity change from 0 to 64
[  327.890606][T10645] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2426'.
[  328.143979][T10650] loop5: detected capacity change from 0 to 256
[  328.407433][T10629] loop4: detected capacity change from 0 to 40427
[  328.450091][T10629] F2FS-fs (loop4): build fault injection attr: rate: 14, type: 0x3ffff
[  328.500197][T10629] F2FS-fs (loop4): invalid crc value
[  328.534102][T10629] F2FS-fs (loop4): Found nat_bits in checkpoint
[  328.749446][ T4284] Bluetooth: hci5: command 0x0405 tx timeout
[  328.758559][T10629] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  328.888818][T10638] loop3: detected capacity change from 0 to 32768
[  328.904383][T10665] loop6: detected capacity change from 0 to 2048
[  328.938500][T10665] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[  329.018606][T10638] XFS (loop3): Mounting V5 Filesystem
[  329.032280][T10675] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  329.139666][ T4273] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  329.192583][ T4271] syz-executor: attempt to access beyond end of device
[  329.192583][ T4271] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  329.264395][T10638] XFS (loop3): Ending clean mount
[  329.265128][T10680] loop5: detected capacity change from 0 to 64
[  329.339346][ T4273] usb 1-1: Using ep0 maxpacket: 32
[  329.356688][ T4273] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  329.384361][T10638] syz.3.2422 (10638) used greatest stack depth: 20336 bytes left
[  329.408570][ T4273] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  329.429755][ T4273] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  329.492752][ T4273] usb 1-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  329.527698][ T4273] usb 1-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  329.556799][ T4272] XFS (loop3): Unmounting Filesystem
[  329.565187][ T4273] usb 1-1: Product: syz
[  329.594887][ T4273] usb 1-1: Manufacturer: syz
[  329.615642][ T4273] usb 1-1: SerialNumber: syz
[  329.739458][ T4273] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input18
[  329.880015][ T4273] usb 1-1: USB disconnect, device number 18
[  330.010173][ T4273] appletouch 1-1:1.0: input: appletouch disconnected
[  331.001910][T10687] loop4: detected capacity change from 0 to 32768
[  331.019950][ T8268] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  331.115495][T10687] XFS (loop4): Mounting V5 Filesystem
[  331.209253][ T8268] usb 6-1: Using ep0 maxpacket: 32
[  331.216319][ T8268] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  331.217251][T10687] XFS (loop4): Ending clean mount
[  331.238309][ T8268] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  331.259646][ T8268] usb 6-1: New USB device found, idVendor=0810, idProduct=0002, bcdDevice= 0.00
[  331.271216][ T8268] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.288998][T10687] XFS (loop4): Quotacheck needed: Please wait.
[  331.350797][ T8268] usb 6-1: config 0 descriptor??
[  331.438680][T10687] XFS (loop4): Quotacheck: Done.
[  331.737304][ T4271] XFS (loop4): Unmounting Filesystem
[  331.783722][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x3
[  331.809890][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  331.817382][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  331.877966][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  331.898249][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  331.918520][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  331.948967][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  331.982825][ T8268] pantherlord 0003:0810:0002.001A: unknown main item tag 0x0
[  332.024790][ T8268] pantherlord 0003:0810:0002.001A: hidraw0: USB HID v0.00 Device [HID 0810:0002] on usb-dummy_hcd.5-1/input0
[  332.051914][ T8268] pantherlord 0003:0810:0002.001A: no output reports found
[  332.140897][ T8268] usb 6-1: USB disconnect, device number 6
[  332.451470][T10747] fido_id[10747]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  332.846937][T10766] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.147734][T10774] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2477'.
[  333.489519][ T4273] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  333.709619][ T4273] usb 5-1: Using ep0 maxpacket: 32
[  333.720685][ T4273] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  333.746762][ T4273] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  333.778864][ T4273] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  333.796370][ T4273] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  333.806276][ T4273] usb 5-1: Product: syz
[  333.817343][ T4273] usb 5-1: Manufacturer: syz
[  333.838665][ T4273] hub 5-1:4.0: USB hub found
[  334.052307][T10777] loop4: detected capacity change from 0 to 64
[  334.108010][ T4273] hub 5-1:4.0: 2 ports detected
[  334.310240][ T4273] hub 5-1:4.0: hub_hub_status failed (err = -71)
[  334.310308][ T4273] hub 5-1:4.0: config failed, can't get hub status (err -71)
[  334.360825][ T4273] usb 5-1: USB disconnect, device number 13
[  334.985443][T10804] loop5: detected capacity change from 0 to 32768
[  335.008844][T10804] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 scanned by syz.5.2491 (10804)
[  335.068827][T10804] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  335.119981][T10804] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  335.155538][T10804] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  335.186363][T10824] loop4: detected capacity change from 0 to 16
[  335.199944][T10804] BTRFS info (device loop5): use zstd compression, level 3
[  335.207352][T10804] BTRFS info (device loop5): using free space tree
[  335.284375][T10824] erofs: (device loop4): mounted with root inode @ nid 36.
[  335.375812][ T4284] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[9000]
[  335.393555][T10824] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192]
[  335.466716][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  335.466733][   T26] audit: type=1800 audit(1781858456.039:258): pid=10824 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2500" name="file2" dev="loop4" ino=89 res=0 errno=0
[  335.602494][T10804] BTRFS info (device loop5): enabling ssd optimizations
[  335.613297][T10849] loop0: detected capacity change from 0 to 64
[  335.759883][ T6242] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  335.890615][ T7281] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  335.953270][ T6242] usb 4-1: Using ep0 maxpacket: 32
[  335.974072][ T6242] usb 4-1: config 0 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 148, changing to 11
[  336.015496][ T6242] usb 4-1: config 0 interface 0 altsetting 15 endpoint 0x81 has invalid maxpacket 1056, setting to 1024
[  336.073045][ T6242] usb 4-1: config 0 interface 0 altsetting 15 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  336.131911][ T6242] usb 4-1: config 0 interface 0 has no altsetting 0
[  336.163398][ T6242] usb 4-1: New USB device found, idVendor=048d, idProduct=ce50, bcdDevice= 0.00
[  336.212106][ T6242] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.290894][ T6242] usb 4-1: config 0 descriptor??
[  336.317768][T10841] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  336.783401][ T6242] hid (null): unknown global tag 0xe
[  336.792266][ T6242] asus 0003:048D:CE50.001B: unknown main item tag 0x2
[  336.811067][ T6242] asus 0003:048D:CE50.001B: unknown global tag 0xe
[  336.817842][ T6242] asus 0003:048D:CE50.001B: item 0 2 1 14 parsing failed
[  336.851632][ T6242] asus 0003:048D:CE50.001B: Asus hid parse failed: -22
[  336.869717][ T6242] asus: probe of 0003:048D:CE50.001B failed with error -22
[  336.884238][T10876] loop6: detected capacity change from 0 to 4096
[  336.946968][T10876] EXT4-fs: inline encryption not supported
[  336.975006][T10876] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  337.028931][T10876] EXT4-fs (loop6): Test dummy encryption mode enabled
[  337.060427][T10876] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c1a8, mo2=0003]
[  337.068849][ T6242] usb 4-1: USB disconnect, device number 12
[  337.079482][T10876] System zones: 0-5
[  337.121382][T10876] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  337.228009][T10888] loop4: detected capacity change from 0 to 1764
[  337.245293][ T8289] EXT4-fs (loop6): unmounting filesystem.
[  337.782707][T10905] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2530'.
[  337.858546][T10905] device netdevsim0 entered promiscuous mode
[  338.786574][T10929] loop4: detected capacity change from 0 to 8192
[  338.871453][T10929] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  338.975657][T10929] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  339.031517][T10942] netlink: 'syz.3.2546': attribute type 3 has an invalid length.
[  339.055655][T10929] REISERFS (device loop4): using ordered data mode
[  339.092714][T10929] reiserfs: using flush barriers
[  339.113980][T10929] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  339.199717][T10929] REISERFS (device loop4): checking transaction log (loop4)
[  339.485983][T10929] REISERFS (device loop4): Using tea hash to sort names
[  339.518912][T10916] loop0: detected capacity change from 0 to 40427
[  339.526802][T10929] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  339.598291][T10916] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  339.620941][T10916] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  339.706037][T10916] F2FS-fs (loop0): invalid crc value
[  339.780698][T10916] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  340.012757][T10916] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  340.030322][T10916] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  340.168029][T10944] loop5: detected capacity change from 0 to 32768
[  340.337533][T10955] loop4: detected capacity change from 0 to 2048
[  340.353169][ T4274] syz-executor: attempt to access beyond end of device
[  340.353169][ T4274] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  340.423552][T10955] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  340.703802][ T4271] EXT4-fs (loop4): unmounting filesystem.
[  342.381987][T11004] loop4: detected capacity change from 0 to 256
[  342.470426][T11004] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b1f, utbl_chksum : 0xe619d30d)
[  342.964396][T11020] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2576'.
[  342.987288][T11023] [U] 
[  343.020945][T11020] netlink: 'syz.5.2576': attribute type 6 has an invalid length.
[  343.050118][T11020] netlink: 'syz.5.2576': attribute type 5 has an invalid length.
[  343.086686][T11020] netlink: 'syz.5.2576': attribute type 4 has an invalid length.
[  343.279541][T11029] loop0: detected capacity change from 0 to 256
[  343.355794][T11029] FAT-fs (loop0): Directory bread(block 64) failed
[  343.355838][T11029] FAT-fs (loop0): Directory bread(block 65) failed
[  343.355958][T11029] FAT-fs (loop0): Directory bread(block 66) failed
[  343.355987][T11029] FAT-fs (loop0): Directory bread(block 67) failed
[  343.356067][T11029] FAT-fs (loop0): Directory bread(block 68) failed
[  343.356097][T11029] FAT-fs (loop0): Directory bread(block 69) failed
[  343.356172][T11029] FAT-fs (loop0): Directory bread(block 70) failed
[  343.356215][T11029] FAT-fs (loop0): Directory bread(block 71) failed
[  343.356292][T11029] FAT-fs (loop0): Directory bread(block 72) failed
[  343.356321][T11029] FAT-fs (loop0): Directory bread(block 73) failed
[  343.776969][T11038] loop3: detected capacity change from 0 to 512
[  343.796912][T11038] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  343.868332][T11038] EXT4-fs error (device loop3): ext4_orphan_get:1431: comm syz.3.2582: bad orphan inode 131083
[  343.893206][T11038] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  343.990983][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  344.484867][ T8268] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  344.687352][ T8268] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  344.731231][ T8268] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  344.769826][ T8268] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  344.829975][ T8268] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  344.870605][ T8268] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  344.917336][ T8268] usb 1-1: config 0 descriptor??
[  344.931044][T11067] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2591'.
[  345.412023][ T8268] plantronics 0003:047F:FFFF.001C: unknown main item tag 0x4
[  345.436644][ T8268] plantronics 0003:047F:FFFF.001C: No inputs registered, leaving
[  345.522715][ T8268] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  345.677987][ T8268] usb 1-1: USB disconnect, device number 19
[  345.724046][T11056] loop5: detected capacity change from 0 to 32768
[  345.941365][T11076] fido_id[11076]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  346.210559][T11066] loop3: detected capacity change from 0 to 32768
[  346.295144][T11066] (syz.3.2590,11066,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  346.390263][T11066] (syz.3.2590,11066,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  346.520449][T11066] JBD2: Ignoring recovery information on journal
[  346.661035][T11066] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  346.944778][ T4272] ocfs2: Unmounting device (7,3) on (node local)
[  347.140790][T10940] Set syz1 is full, maxelem 65536 reached
[  347.240233][ T6248] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  347.450023][ T6248] usb 5-1: Using ep0 maxpacket: 16
[  347.473122][ T6248] usb 5-1: New USB device found, idVendor=046d, idProduct=08b5, bcdDevice=d7.01
[  347.520018][ T6248] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  347.547490][ T6248] usb 5-1: Product: syz
[  347.562608][ T6248] usb 5-1: Manufacturer: syz
[  347.572077][ T6248] usb 5-1: SerialNumber: syz
[  347.589749][ T6248] usb 5-1: config 0 descriptor??
[  347.627885][ T6248] pwc: Logitech QuickCam Orbit/Sphere USB webcam detected.
[  347.631925][T11120] loop6: detected capacity change from 0 to 128
[  347.808279][ T6248] pwc: Warning: more than 1 configuration available.
[  347.849711][ T8268] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  347.999392][T11124] ptrace attach of "ci2-linux-6-1-kasan/syz-executor exec"[7281] was attempted by ""[11124]
[  348.049829][ T8268] usb 1-1: Using ep0 maxpacket: 16
[  348.058459][ T8268] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[  348.089877][ T8268] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 0, changing to 7
[  348.119519][ T8268] usb 1-1: config 0 interface 0 has no altsetting 0
[  348.136637][ T8268] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice= 2.eb
[  348.157262][ T8268] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.174489][ T8268] usb 1-1: config 0 descriptor??
[  348.228417][ T6248] pwc: send_video_command error -71
[  348.240217][ T6248] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  348.264371][ T6248] Philips webcam: probe of 5-1:0.0 failed with error -71
[  348.295094][ T6248] usb 5-1: USB disconnect, device number 14
[  348.392435][ T8268] input: USB Synaptics Device 06cb:0006 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input19
[  348.525831][T11130] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2616'.
[  348.643601][ T6248] usb 1-1: USB disconnect, device number 20
[  348.643629][    C0] synaptics_usb 1-1:0.0: synusb_irq - usb_submit_urb failed with result: -19
[  348.727179][   T26] audit: type=1326 audit(1781858469.299:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11136 comm="syz.6.2619" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  348.799228][   T26] audit: type=1326 audit(1781858469.329:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11136 comm="syz.6.2619" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  348.925831][   T26] audit: type=1326 audit(1781858469.329:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11136 comm="syz.6.2619" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  348.969250][   T26] audit: type=1326 audit(1781858469.329:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11136 comm="syz.6.2619" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  349.218124][T11149] loop4: detected capacity change from 0 to 512
[  349.362126][T11149] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  349.389424][T11149] ext4 filesystem being mounted at /532/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  349.608975][T11143] loop6: detected capacity change from 0 to 32768
[  349.634373][ T4271] EXT4-fs (loop4): unmounting filesystem.
[  349.966603][T11145] loop3: detected capacity change from 0 to 32768
[  350.558187][T11168] genirq: Flags mismatch irq 31. 00000000 (comedi_parport) vs. 00000000 (virtio1-input.0)
[  351.845654][T11209] loop4: detected capacity change from 0 to 256
[  351.916867][T11215] netlink: 'syz.5.2656': attribute type 4 has an invalid length.
[  351.929673][T11215] netlink: 17 bytes leftover after parsing attributes in process `syz.5.2656'.
[  352.084502][T11219] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2658'.
[  352.433298][T11232] loop0: detected capacity change from 0 to 256
[  352.905864][T11247] loop4: detected capacity change from 0 to 64
[  353.257289][T11260] loop0: detected capacity change from 0 to 512
[  353.313504][T11260] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  353.379814][T11260] EXT4-fs error (device loop0): ext4_iget_extra_inode:4763: inode #15: comm syz.0.2677: corrupted in-inode xattr
[  353.402676][T11260] EXT4-fs error (device loop0): ext4_orphan_get:1410: comm syz.0.2677: couldn't read orphan inode 15 (err -117)
[  353.423034][T11260] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  353.460007][ T6248] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  353.588707][T11258] loop5: detected capacity change from 0 to 8192
[  353.607073][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  353.625011][T11271] loop6: detected capacity change from 0 to 512
[  353.633999][T11258] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  353.660791][T11258] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  353.670262][T11258] REISERFS (device loop5): using ordered data mode
[  353.676895][T11258] reiserfs: using flush barriers
[  353.678692][ T6248] usb 5-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64
[  353.700064][T11258] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  353.730052][ T6248] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.733203][T11258] REISERFS (device loop5): checking transaction log (loop5)
[  353.741517][ T6248] usb 5-1: Product: syz
[  353.750483][ T6248] usb 5-1: Manufacturer: syz
[  353.755124][ T6248] usb 5-1: SerialNumber: syz
[  353.763309][ T6248] usb 5-1: config 0 descriptor??
[  353.778772][ T6248] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state.
[  353.810470][ T6248] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  353.819533][T11271] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  353.824144][ T6248] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0))
[  353.846536][ T6248] usb 5-1: media controller created
[  353.853093][T11271] ext4 filesystem being mounted at /188/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  353.887883][ T6248] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  353.910047][ T6242] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  354.088912][ T8289] EXT4-fs (loop6): unmounting filesystem.
[  354.106581][ T6248] DVB: Unable to find symbol mt352_attach()
[  354.116129][ T6242] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  354.159293][T11258] REISERFS (device loop5): Using tea hash to sort names
[  354.165211][ T6242] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  354.179996][T11258] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  354.224911][ T6242] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  354.229370][T11258] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  354.285100][ T6242] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.286558][T11258] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  354.334675][ T6242] usb 4-1: config 0 descriptor??
[  354.344954][T11258] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 4) not found (pos 2)
[  354.412623][T11258] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  354.438712][ T6248] DVB: Unable to find symbol nxt6000_attach()
[  354.451097][ T6248] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)'
[  354.484207][ T6248] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.4/usb5/5-1/input/input20
[  354.549044][ T6248] dvb-usb: schedule remote query interval to 1000 msecs.
[  354.603179][ T6248] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected.
[  354.661706][T11258] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  354.665333][ T6248] dvb-usb: bulk message failed: -22 (7/0)
[  354.705095][T11258] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  354.715191][ T6248] dvb-usb: bulk message failed: -22 (7/0)
[  354.739312][T11258] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP
[  354.781477][ T6242] cm6533_jd 0003:0D8C:0022.001D: bogus close delimiter
[  354.788505][ T6242] cm6533_jd 0003:0D8C:0022.001D: item 0 4 2 10 parsing failed
[  354.817587][ T6248] usb 5-1: USB disconnect, device number 15
[  354.850709][ T6242] cm6533_jd 0003:0D8C:0022.001D: parse failed
[  354.857103][ T6242] cm6533_jd: probe of 0003:0D8C:0022.001D failed with error -22
[  354.878165][T11290] netlink: 'syz.4.2687': attribute type 298 has an invalid length.
[  354.961474][ T6248] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected.
[  354.989951][T11294] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2688'.
[  355.025112][ T6242] usb 4-1: USB disconnect, device number 13
[  355.548041][T11310] loop9: detected capacity change from 0 to 524287935
[  355.596771][T11311] loop0: detected capacity change from 0 to 2048
[  355.616690][T11311] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  355.659260][ T5066] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  355.687765][T11311] syz.0.2697: attempt to access beyond end of device
[  355.687765][T11311] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  355.703246][T11313] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  355.845140][ T5066] usb 5-1: Using ep0 maxpacket: 8
[  355.856606][ T5066] usb 5-1: New USB device found, idVendor=12ba, idProduct=074b, bcdDevice= 0.00
[  355.876458][ T5066] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  355.919512][ T5066] usb 5-1: config 0 descriptor??
[  356.013509][T11319] device veth1_macvtap left promiscuous mode
[  356.050090][T11319] device macsec0 entered promiscuous mode
[  356.126806][T11322] device veth1_macvtap entered promiscuous mode
[  356.177358][T11322] device macsec0 left promiscuous mode
[  356.201832][ T1120] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  356.352826][ T5066] sony 0003:12BA:074B.001E: unknown main item tag 0x0
[  356.381603][ T5066] sony 0003:12BA:074B.001E: unknown main item tag 0x5
[  356.388472][ T5066] sony 0003:12BA:074B.001E: item fetching failed at offset 36/40
[  356.401228][ T5066] sony 0003:12BA:074B.001E: parse failed
[  356.407193][ T5066] sony: probe of 0003:12BA:074B.001E failed with error -22
[  356.585478][ T6242] usb 5-1: USB disconnect, device number 16
[  356.656631][T11312] loop5: detected capacity change from 0 to 32768
[  356.737506][T11312] XFS (loop5): Mounting V5 Filesystem
[  356.901592][T11312] XFS (loop5): Ending clean mount
[  356.957551][ T7281] XFS (loop5): Unmounting Filesystem
[  357.697800][T11365] netlink: 'syz.5.2717': attribute type 2 has an invalid length.
[  358.766142][T11400] netlink: 'syz.4.2735': attribute type 29 has an invalid length.
[  358.817541][T11400] netlink: 'syz.4.2735': attribute type 29 has an invalid length.
[  358.850355][T11407] netlink: 'syz.4.2735': attribute type 29 has an invalid length.
[  359.589842][ T6242] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  359.781099][ T6242] usb 5-1: Using ep0 maxpacket: 16
[  359.788311][ T6242] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  359.849847][ T6242] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  359.877771][T11412] loop5: detected capacity change from 0 to 32768
[  359.884293][ T6242] usb 5-1: New USB device found, idVendor=172f, idProduct=0500, bcdDevice= 0.00
[  359.920468][T11412] JBD2: Ignoring recovery information on journal
[  359.929699][ T6242] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.958120][T11412] jbd2_journal_bmap: journal block not found at offset 32 on loop5-75
[  359.969939][T11412] JBD2: bad block at offset 32
[  359.975985][ T6242] usb 5-1: config 0 descriptor??
[  360.075670][T11412] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  360.187241][T11415] loop3: detected capacity change from 0 to 32768
[  360.308757][T11415] XFS (loop3): Mounting V5 Filesystem
[  360.349598][ T4284] Bluetooth: hci3: command 0x0406 tx timeout
[  360.364334][ T7281] ocfs2: Unmounting device (7,5) on (node local)
[  360.492704][ T6242] waltop 0003:172F:0500.001F: unknown main item tag 0x7
[  360.503796][ T6242] waltop 0003:172F:0500.001F: collection stack underflow
[  360.513000][ T6242] waltop 0003:172F:0500.001F: item 0 2 0 12 parsing failed
[  360.524820][ T6242] waltop: probe of 0003:172F:0500.001F failed with error -22
[  360.561072][T11415] XFS (loop3): Ending clean mount
[  360.584528][T11415] XFS (loop3): Quotacheck needed: Please wait.
[  360.692447][ T4273] usb 5-1: USB disconnect, device number 17
[  360.711357][ T5066] XFS (loop3): Metadata CRC error detected at xfs_allocbt_read_verify+0x3a/0xd0, xfs_bnobt block 0x4 
[  360.737983][ T5066] XFS (loop3): Unmount and run xfs_repair
[  360.766325][ T5066] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  360.790830][ T5066] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  360.814993][ T5066] 00000010: 00 00 00 00 00 00 00 04 00 00 00 01 00 00 00 80  ................
[  360.840785][ T5066] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[  360.867553][ T5066] 00000030: 00 00 00 00 ac 5e af fe 00 00 00 0d 00 00 00 13  .....^..........
[  360.895408][ T5066] 00000040: 00 00 12 48 00 00 0d b8 00 00 00 00 00 00 00 00  ...H............
[  360.910661][ T5066] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  360.929800][ T5066] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  360.938935][ T5066] 00000070: 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  360.972629][ T4334] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x1db/0x2d0" at daddr 0x4 len 4 error 74
[  361.015086][T11415] XFS (loop3): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  361.090027][   T26] audit: type=1326 audit(1781858481.659:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.0.2759" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f000399ce59 code=0x0
[  361.195069][ T4272] XFS (loop3): Unmounting Filesystem
[  361.367460][T11464] loop5: detected capacity change from 0 to 4096
[  361.456340][T11464] ntfs: (device loop5): ntfs_read_locked_inode(): $DATA attribute is missing.
[  361.498207][T11464] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  361.533333][T11464] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  361.576496][T11464] ntfs: volume version 3.1.
[  361.729930][T11454] loop6: detected capacity change from 0 to 32768
[  361.890965][ T7281] ntfs: (device loop5): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  361.947166][T11454] XFS (loop6): Mounting V5 Filesystem
[  362.051360][   T26] audit: type=1326 audit(1781858482.629:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11481 comm="syz.0.2767" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f000399ce59 code=0x7ffc0000
[  362.076428][    C0] vkms_vblank_simulate: vblank timer overrun
[  362.084092][   T26] audit: type=1326 audit(1781858482.639:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11481 comm="syz.0.2767" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f000395d68e code=0x7ffc0000
[  362.088298][T11454] XFS (loop6): Ending clean mount
[  362.108209][    C0] vkms_vblank_simulate: vblank timer overrun
[  362.109995][   T26] audit: type=1326 audit(1781858482.639:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11481 comm="syz.0.2767" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f000399ce59 code=0x7ffc0000
[  362.267505][   T26] audit: type=1326 audit(1781858482.709:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11481 comm="syz.0.2767" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f000399ce59 code=0x7ffc0000
[  362.291978][    C0] vkms_vblank_simulate: vblank timer overrun
[  362.395106][T11480] loop3: detected capacity change from 0 to 4096
[  362.399329][   T26] audit: type=1326 audit(1781858482.769:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11481 comm="syz.0.2767" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f000399ce59 code=0x7ffc0000
[  362.426052][    C0] vkms_vblank_simulate: vblank timer overrun
[  362.497079][ T8289] XFS (loop6): Unmounting Filesystem
[  362.780816][T11480] ntfs3: loop3: failed to convert "0080" to cp852
[  362.807853][T11480] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  362.929964][T11480] ntfs3: loop3: failed to convert name for inode 1e.
[  363.070370][ T8268] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  363.269917][ T8268] usb 6-1: Using ep0 maxpacket: 32
[  363.277399][ T8268] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  363.339859][ T8268] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  363.379658][ T8268] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  363.441228][ T8268] usb 6-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[  363.479615][ T8268] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[  363.513147][ T8268] usb 6-1: Product: syz
[  363.538063][ T8268] usb 6-1: Manufacturer: syz
[  363.560055][ T8268] usb 6-1: SerialNumber: syz
[  363.588041][ T8268] input: appletouch as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/input/input21
[  363.854737][ T8268] usb 6-1: USB disconnect, device number 7
[  363.926638][T11515] loop6: detected capacity change from 0 to 8
[  363.945301][ T8268] appletouch 6-1:1.0: input: appletouch disconnected
[  364.087689][T11515] SQUASHFS error: Unable to read inode 0xe3
[  364.394771][T11523] netem: change failed
[  364.493444][T11527] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2786'.
[  364.523479][T11509] loop3: detected capacity change from 0 to 32768
[  364.545009][T11509] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[  364.708884][T11533] loop0: detected capacity change from 0 to 128
[  364.791017][T11533] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  364.849630][ T5066] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  364.857922][T11533] ext4 filesystem being mounted at /585/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  364.976687][ T4366] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[  365.109526][ T5066] usb 6-1: Using ep0 maxpacket: 8
[  365.119067][ T5066] usb 6-1: config 0 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 7
[  365.141837][T11541] tipc: Started in network mode
[  365.160098][T11541] tipc: Node identity fe800000000000000000000000000013, cluster identity 8
[  365.169242][ T5066] usb 6-1: config 0 interface 0 has no altsetting 0
[  365.180266][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  365.215630][T11541] tipc: Enabled bearer <udp:syz0>, priority 10
[  365.223818][ T5066] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[  365.253452][ T5066] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.304797][ T5066] usb 6-1: config 0 descriptor??
[  365.341804][T11545] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2793'.
[  365.586966][T11526] loop6: detected capacity change from 0 to 32768
[  365.656310][T11526] XFS (loop6): Mounting V5 Filesystem
[  365.730129][ T8268] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  365.747116][ T5066] lua 0003:1E7D:2C2E.0020: unknown main item tag 0x2
[  365.754917][ T5066] lua 0003:1E7D:2C2E.0020: unknown main item tag 0x0
[  365.761868][ T5066] lua 0003:1E7D:2C2E.0020: unknown main item tag 0x0
[  365.763546][T11526] XFS (loop6): Ending clean mount
[  365.768753][ T5066] lua 0003:1E7D:2C2E.0020: unknown main item tag 0x0
[  365.781322][ T5066] lua 0003:1E7D:2C2E.0020: unknown main item tag 0x0
[  365.789549][ T5066] lua 0003:1E7D:2C2E.0020: unknown main item tag 0x0
[  365.796627][ T5066] lua 0003:1E7D:2C2E.0020: unexpected long global item
[  365.804856][ T5066] lua 0003:1E7D:2C2E.0020: parse failed
[  365.811419][ T5066] lua: probe of 0003:1E7D:2C2E.0020 failed with error -22
[  365.950853][ T8268] usb 4-1: Using ep0 maxpacket: 16
[  365.962115][ T8268] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  365.993646][ T8268] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  366.036616][ T4320] usb 6-1: USB disconnect, device number 8
[  366.048606][ T8268] usb 4-1: New USB device found, idVendor=041e, idProduct=3100, bcdDevice= 0.00
[  366.066000][ T8289] XFS (loop6): Unmounting Filesystem
[  366.067165][ T8268] usb 4-1: New USB device strings: Mfr=34, Product=0, SerialNumber=0
[  366.099848][ T8268] usb 4-1: Manufacturer: syz
[  366.122344][ T8268] usb 4-1: config 0 descriptor??
[  366.334066][ T4320] tipc: Node number set to 4269801491
[  366.475106][   T26] audit: type=1326 audit(1781858487.049:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11571 comm="syz.4.2804" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe351b9ce59 code=0x7ffc0000
[  366.569198][   T26] audit: type=1326 audit(1781858487.089:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11571 comm="syz.4.2804" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fe351b9bcc7 code=0x7ffc0000
[  366.581784][ T8268] creative-sb0540 0003:041E:3100.0021: No inputs registered, leaving
[  366.623510][ T8268] creative-sb0540 0003:041E:3100.0021: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  366.656646][   T26] audit: type=1326 audit(1781858487.089:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11571 comm="syz.4.2804" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe351b9ce59 code=0x7ffc0000
[  366.685051][   T26] audit: type=1326 audit(1781858487.099:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11571 comm="syz.4.2804" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7fe351b9ce59 code=0x7ffc0000
[  366.718017][   T26] audit: type=1326 audit(1781858487.119:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11571 comm="syz.4.2804" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe351b9ce59 code=0x7ffc0000
[  366.753748][T11574] loop6: detected capacity change from 0 to 512
[  366.857113][T11574] EXT4-fs error (device loop6): ext4_orphan_get:1405: inode #15: comm syz.6.2800: inode has both inline data and extents flags
[  366.897839][T11581] netlink: 'syz.4.2806': attribute type 2 has an invalid length.
[  366.948270][T11574] EXT4-fs error (device loop6): ext4_orphan_get:1410: comm syz.6.2800: couldn't read orphan inode 15 (err -117)
[  366.969894][ T5066] usb 4-1: USB disconnect, device number 14
[  367.001696][T11583] loop5: detected capacity change from 0 to 512
[  367.021690][T11574] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  367.053384][T11583] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  367.123826][T11583] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  367.202561][T11583] EXT4-fs (loop5): 1 truncate cleaned up
[  367.211944][ T8289] EXT4-fs (loop6): unmounting filesystem.
[  367.217894][T11583] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  367.471681][T11583] overlayfs: failed to verify upper (/file0, ino=12, err=-28)
[  367.502792][T11583] overlayfs: failed to verify index dir 'upper' xattr
[  367.511739][T11583] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  367.661444][ T5066] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  367.731817][T11596] loop3: detected capacity change from 0 to 4096
[  367.761461][T11596] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  367.828569][ T7281] EXT4-fs (loop5): unmounting filesystem.
[  367.864471][ T5066] usb 1-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64
[  367.895270][ T5066] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.918722][ T5066] usb 1-1: Product: syz
[  367.923513][T11596] ntfs3: loop3: failed to convert "c46c" to iso8859-9
[  367.930948][ T5066] usb 1-1: Manufacturer: syz
[  367.962861][ T5066] usb 1-1: SerialNumber: syz
[  367.998653][ T5066] usb 1-1: config 0 descriptor??
[  368.021700][ T5066] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state.
[  368.108779][ T5066] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  368.146442][ T5066] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0))
[  368.154150][T11606] loop6: detected capacity change from 0 to 64
[  368.186892][ T5066] usb 1-1: media controller created
[  368.206855][T11606] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  368.276268][ T5066] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  368.668397][ T5066] DVB: Unable to find symbol mt352_attach()
[  368.741460][T11622] netlink: 48 bytes leftover after parsing attributes in process `syz.6.2825'.
[  368.787180][T11622] team0: Device vlan2 is already an upper device of the team interface
[  368.885844][ T5066] DVB: Unable to find symbol nxt6000_attach()
[  368.894819][ T5066] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)'
[  368.942165][ T5066] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input22
[  369.010398][ T5066] dvb-usb: schedule remote query interval to 1000 msecs.
[  369.037979][ T5066] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected.
[  369.076322][ T5066] dvb-usb: bulk message failed: -22 (7/0)
[  369.126728][ T5066] dvb-usb: bulk message failed: -22 (7/0)
[  369.176579][ T5066] usb 1-1: USB disconnect, device number 21
[  369.210275][T11634] loop0: detected capacity change from 0 to 16
[  369.250956][T11634] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  369.332700][ T5066] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected.
[  369.669647][T11644] program syz.3.2836 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  369.820345][T11647] loop6: detected capacity change from 0 to 2048
[  369.894797][T11651] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  369.942451][T11651] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  369.976025][T11651] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[  370.007320][T11652] loop0: detected capacity change from 0 to 2048
[  370.011430][T11612] loop5: detected capacity change from 0 to 40427
[  370.044791][T11651] Remounting filesystem read-only
[  370.081380][T11612] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  370.124981][T11656] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  370.147356][T11612] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  370.198867][T11612] F2FS-fs (loop5): invalid crc value
[  370.253034][ T8289] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[  370.290926][T11656] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  370.318540][T11656] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[  370.354873][T11612] F2FS-fs (loop5): Found nat_bits in checkpoint
[  370.369824][T11656] Remounting filesystem read-only
[  370.413920][T11652] NILFS (loop0): error -2 truncating bmap (ino=16)
[  370.580439][ T4274] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[  370.611729][T11612] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  370.639470][T11612] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  370.979300][T11678] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2848'.
[  371.218567][T11684] loop3: detected capacity change from 0 to 512
[  371.279705][T11684] EXT4-fs error (device loop3): ext4_iget_extra_inode:4763: inode #15: comm syz.3.2852: corrupted in-inode xattr
[  371.301479][T11684] EXT4-fs error (device loop3): ext4_orphan_get:1410: comm syz.3.2852: couldn't read orphan inode 15 (err -117)
[  371.362886][T11684] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  371.460256][T11688] loop4: detected capacity change from 0 to 1024
[  371.522219][T11684] EXT4-fs warning (device loop3): ext4_resize_begin:74: won't resize using backup superblock at 1
[  371.576911][T11688] smb3: Unexpected value for 'rdma'
[  371.848018][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  372.202015][T11705] loop5: detected capacity change from 0 to 64
[  372.407110][T11713] netlink: 104 bytes leftover after parsing attributes in process `syz.4.2864'.
[  372.593752][   T26] audit: type=1326 audit(1781858493.159:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  372.632424][T11715] netlink: 'syz.5.2865': attribute type 1 has an invalid length.
[  372.710261][   T26] audit: type=1326 audit(1781858493.229:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  372.819743][   T26] audit: type=1326 audit(1781858493.229:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  372.921825][   T26] audit: type=1326 audit(1781858493.229:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.016971][T11733] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2874'.
[  373.047032][   T26] audit: type=1326 audit(1781858493.229:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.210415][   T26] audit: type=1326 audit(1781858493.229:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.320242][   T26] audit: type=1326 audit(1781858493.229:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.480236][   T26] audit: type=1326 audit(1781858493.229:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.569821][   T26] audit: type=1326 audit(1781858493.229:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.608063][T11749] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2880'.
[  373.651858][T11751] vivid-000: disconnect
[  373.696785][T11755] netlink: 'syz.3.2883': attribute type 4 has an invalid length.
[  373.700219][T11750] vivid-000: reconnect
[  373.725548][T11755] netlink: 'syz.3.2883': attribute type 1 has an invalid length.
[  373.740682][   T26] audit: type=1326 audit(1781858493.229:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11716 comm="syz.6.2866" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fc62039ce59 code=0x7ffc0000
[  373.759365][T11755] netlink: 181400 bytes leftover after parsing attributes in process `syz.3.2883'.
[  373.840401][T11754] loop6: detected capacity change from 0 to 4096
[  374.914803][T11788] loop3: detected capacity change from 0 to 512
[  374.978230][T11788] EXT4-fs error (device loop3): ext4_xattr_inode_iget:401: inode #12: comm syz.3.2900: missing EA_INODE flag
[  375.009737][T11788] EXT4-fs error (device loop3): ext4_xattr_inode_iget:406: comm syz.3.2900: error while reading EA inode 12 err=-117
[  375.033030][T11794] loop6: detected capacity change from 0 to 256
[  375.137184][T11788] EXT4-fs (loop3): 1 orphan inode deleted
[  375.154654][T11788] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  375.199251][T11794] exfat: Deprecated parameter 'utf8'
[  375.216725][T11788] EXT4-fs error (device loop3): ext4_empty_dir:3136: inode #2: comm syz.3.2900: invalid size
[  375.252321][T11794] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0x68f9dcd5, utbl_chksum : 0xe619d30d)
[  375.472021][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  375.491881][T11802] netlink: 'syz.5.2905': attribute type 3 has an invalid length.
[  375.957806][T11817] tipc: Started in network mode
[  375.990418][T11817] tipc: Node identity bbbbbb, cluster identity 4711
[  376.010413][T11817] tipc: Enabled bearer <eth:nr0>, priority 10
[  376.407164][T11830] syz.3.2918 uses obsolete (PF_INET,SOCK_PACKET)
[  376.725420][T11837] loop3: detected capacity change from 0 to 256
[  376.797309][T11837] exfat: Deprecated parameter 'utf8'
[  376.827132][T11835] loop5: detected capacity change from 0 to 4096
[  376.862253][T11837] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf4f74c50, utbl_chksum : 0xe619d30d)
[  377.129960][ T6248] tipc: Node number set to 3149642496
[  377.988617][T11876] loop0: detected capacity change from 0 to 256
[  378.040516][T11876] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xba6f1341, utbl_chksum : 0xe619d30d)
[  378.085748][T11867] syz.4.2937 (11867) used greatest stack depth: 18096 bytes left
[  378.748391][T11901] loop5: detected capacity change from 0 to 256
[  378.758428][ T1279] ieee802154 phy0 wpan0: encryption failed: -22
[  378.758536][ T1279] ieee802154 phy1 wpan1: encryption failed: -22
[  378.852421][T11901] FAT-fs (loop5): Directory bread(block 64) failed
[  378.908575][T11901] FAT-fs (loop5): Directory bread(block 65) failed
[  378.949943][T11901] FAT-fs (loop5): Directory bread(block 66) failed
[  378.983999][T11901] FAT-fs (loop5): Directory bread(block 67) failed
[  379.023505][T11901] FAT-fs (loop5): Directory bread(block 68) failed
[  379.049750][T11901] FAT-fs (loop5): Directory bread(block 69) failed
[  379.070322][T11901] FAT-fs (loop5): Directory bread(block 70) failed
[  379.094240][T11901] FAT-fs (loop5): Directory bread(block 71) failed
[  379.124196][T11901] FAT-fs (loop5): Directory bread(block 72) failed
[  379.148784][T11901] FAT-fs (loop5): Directory bread(block 73) failed
[  379.794793][T11925] lo speed is unknown, defaulting to 1000
[  379.872355][T11925] lo speed is unknown, defaulting to 1000
[  379.903566][T11925] lo speed is unknown, defaulting to 1000
[  379.978955][T11925] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  380.071861][T11925] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  380.235282][T11925] lo speed is unknown, defaulting to 1000
[  380.277512][T11925] lo speed is unknown, defaulting to 1000
[  380.300891][T11925] lo speed is unknown, defaulting to 1000
[  380.338630][T11925] lo speed is unknown, defaulting to 1000
[  380.362230][T11925] lo speed is unknown, defaulting to 1000
[  380.805618][T11959] netlink: 'syz.0.2980': attribute type 1 has an invalid length.
[  381.064258][T11966] sp0: Synchronizing with TNC
[  381.386455][T11978] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2989'.
[  381.417266][T11981] kernel profiling enabled (shift: 9)
[  381.421377][T11978] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2989'.
[  381.673533][T11990] netem: change failed
[  383.393893][T12052] loop0: detected capacity change from 0 to 2048
[  383.458790][T12027] loop3: detected capacity change from 0 to 32768
[  383.476480][T12052] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  383.643039][T12027] XFS (loop3): Mounting V5 Filesystem
[  383.767539][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  383.767622][T12027] XFS (loop3): Ending clean mount
[  383.973622][ T4272] XFS (loop3): Unmounting Filesystem
[  384.165737][T12083] random: crng reseeded on system resumption
[  384.803864][T12070] loop6: detected capacity change from 0 to 32768
[  384.852680][T12070] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop6 scanned by syz.6.3027 (12070)
[  384.921388][T12070] BTRFS info (device loop6): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  384.959772][T12070] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  384.996641][T12070] BTRFS info (device loop6): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  385.053236][T12070] BTRFS info (device loop6): use zstd compression, level 3
[  385.100570][T12070] BTRFS info (device loop6): using free space tree
[  385.163737][T12102] loop0: detected capacity change from 0 to 512
[  385.340035][T12070] BTRFS info (device loop6): enabling ssd optimizations
[  385.369406][ T5066] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  385.370308][T12089] loop4: detected capacity change from 0 to 32768
[  385.463145][T12089] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  385.463539][T12102] EXT4-fs (loop0): 1 truncate cleaned up
[  385.484947][ T1120] __quota_error: 4 callbacks suppressed
[  385.484962][ T1120] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  385.507876][T12089] XFS (loop4): Mounting V5 Filesystem
[  385.546679][T12102] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  385.564289][T12102] ext4 filesystem being mounted at /641/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  385.600146][ T1120] EXT4-fs error (device loop0): ext4_release_dquot:6877: comm kworker/u4:4: Failed to release dquot type 1
[  385.621540][ T5066] usb 6-1: config 0 has no interfaces?
[  385.627138][ T5066] usb 6-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  385.659838][ T5066] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.690121][ T5066] usb 6-1: config 0 descriptor??
[  385.723083][T12134] IPVS: ip_vs_add_dest(): server weight less than zero
[  385.736888][T12089] XFS (loop4): Ending clean mount
[  385.775345][T12089] XFS (loop4): Quotacheck needed: Please wait.
[  385.905209][T12089] XFS (loop4): Quotacheck: Done.
[  385.941619][ T8289] BTRFS info (device loop6): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  386.058862][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  386.143911][ T6248] usb 6-1: USB disconnect, device number 9
[  386.680135][ T4271] XFS (loop4): Unmounting Filesystem
[  386.719827][ T6248] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  386.909922][ T6248] usb 4-1: Using ep0 maxpacket: 32
[  386.927094][ T6248] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  386.969742][ T6248] usb 4-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  386.999979][ T6248] usb 4-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  387.025800][ T6248] usb 4-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  387.072844][ T6248] usb 4-1: config 0 interface 0 has no altsetting 0
[  387.107241][ T6248] usb 4-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  387.119587][ T6248] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.160105][ T6248] usb 4-1: config 0 descriptor??
[  387.208079][T12161] IPVS: ip_vs_add_dest(): server weight less than zero
[  387.582973][ T6248] corsair-cpro 0003:1B1C:0C10.0022: unknown main item tag 0x0
[  387.595195][ T6248] corsair-cpro 0003:1B1C:0C10.0022: unknown main item tag 0x0
[  387.626449][ T6248] corsair-cpro 0003:1B1C:0C10.0022: unknown main item tag 0x0
[  387.658154][ T6248] corsair-cpro 0003:1B1C:0C10.0022: unknown main item tag 0x0
[  387.679834][ T6248] corsair-cpro 0003:1B1C:0C10.0022: unknown main item tag 0x0
[  387.697964][ T6248] corsair-cpro 0003:1B1C:0C10.0022: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.3-1/input0
[  387.830039][ T6248] corsair-cpro: probe of 0003:1B1C:0C10.0022 failed with error -38
[  387.868774][ T6248] usb 4-1: USB disconnect, device number 15
[  388.011645][T12179] loop0: detected capacity change from 0 to 4096
[  388.054786][T12179] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  388.170030][T12186] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3068'.
[  388.267818][T12182] fido_id[12182]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  388.762670][T12201] loop6: detected capacity change from 0 to 512
[  388.783535][T12201] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  388.888453][T12207] nftables ruleset with unbound set
[  388.891822][T12201] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  388.959376][T12201] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  389.228826][T12217] loop5: detected capacity change from 0 to 256
[  389.271131][ T8289] EXT4-fs (loop6): unmounting filesystem.
[  389.399788][T12217] FAT-fs (loop5): Directory bread(block 64) failed
[  389.424905][T12217] FAT-fs (loop5): Directory bread(block 65) failed
[  389.455883][T12217] FAT-fs (loop5): Directory bread(block 66) failed
[  389.499062][T12217] FAT-fs (loop5): Directory bread(block 67) failed
[  389.538717][T12217] FAT-fs (loop5): Directory bread(block 68) failed
[  389.570616][T12217] FAT-fs (loop5): Directory bread(block 69) failed
[  389.594184][T12217] FAT-fs (loop5): Directory bread(block 70) failed
[  389.617532][T12217] FAT-fs (loop5): Directory bread(block 71) failed
[  389.649924][T12217] FAT-fs (loop5): Directory bread(block 72) failed
[  389.664859][T12226] loop6: detected capacity change from 0 to 4096
[  389.679856][T12217] FAT-fs (loop5): Directory bread(block 73) failed
[  389.713057][T12226] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512)
[  389.808292][T12226] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  390.090545][T12234] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3089'.
[  390.377693][T12241] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3092'.
[  390.959984][   T26] audit: type=1326 audit(1781858511.539:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12261 comm="syz.0.3102" exe="/root/ci2-linux-6-1-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f000399ce59 code=0x0
[  391.146515][T12270] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3105'.
[  391.172812][T12271] netlink: 'syz.4.3106': attribute type 3 has an invalid length.
[  392.000324][T12297] loop3: detected capacity change from 0 to 128
[  392.062587][T12297] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002]
[  392.071886][T12297] System zones: 1-3, 19-19, 35-36
[  392.092488][T12297] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  392.103422][T12297] ext4 filesystem being mounted at /631/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  392.148142][T12297] EXT4-fs warning (device loop3): verify_group_input:169: Last group not full
[  392.202375][T12305] loop6: detected capacity change from 0 to 256
[  392.211651][ T4272] EXT4-fs (loop3): unmounting filesystem.
[  392.279615][ T4273] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  392.489638][ T4273] usb 1-1: Using ep0 maxpacket: 32
[  392.496942][ T4273] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  392.544433][ T4273] usb 1-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  392.583305][ T4273] usb 1-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  392.623140][T12315] loop6: detected capacity change from 0 to 256
[  392.628735][ T4273] usb 1-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  392.646564][T12315] exfat: Deprecated parameter 'utf8'
[  392.670462][ T4273] usb 1-1: config 0 interface 0 has no altsetting 0
[  392.679826][ T4273] usb 1-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  392.705338][ T4273] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.745051][ T4273] usb 1-1: config 0 descriptor??
[  392.816050][T12312] device team0 entered promiscuous mode
[  392.823160][T12312] device team_slave_0 entered promiscuous mode
[  392.851394][T12312] device team_slave_1 entered promiscuous mode
[  392.884310][T12312] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  393.193573][ T4273] corsair-cpro 0003:1B1C:0C10.0023: unknown main item tag 0x0
[  393.210795][ T4273] corsair-cpro 0003:1B1C:0C10.0023: unknown main item tag 0x0
[  393.237726][ T4273] corsair-cpro 0003:1B1C:0C10.0023: unknown main item tag 0x0
[  393.270884][ T4273] corsair-cpro 0003:1B1C:0C10.0023: unknown main item tag 0x0
[  393.288704][ T4273] corsair-cpro 0003:1B1C:0C10.0023: unknown main item tag 0x0
[  393.299015][ T4273] corsair-cpro 0003:1B1C:0C10.0023: hidraw0: USB HID v4.06 Device [HID 1b1c:0c10] on usb-dummy_hcd.0-1/input0
[  393.410832][ T4273] corsair-cpro: probe of 0003:1B1C:0C10.0023 failed with error -38
[  393.449464][ T4273] usb 1-1: USB disconnect, device number 22
[  393.846909][T12335] fido_id[12335]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  393.995705][T12346] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3141'.
[  394.380503][T12358] netlink: 96 bytes leftover after parsing attributes in process `syz.3.3147'.
[  394.439389][T12358] netlink: 'syz.3.3147': attribute type 1 has an invalid length.
[  394.469277][T12358] netlink: 634 bytes leftover after parsing attributes in process `syz.3.3147'.
[  394.802472][T12370] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3154'.
[  395.392061][ T4284] Bluetooth: hci3: ISO packet for unknown connection handle 14
[  396.350359][T12410] loop4: detected capacity change from 0 to 4096
[  396.374469][T12410] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  396.876264][ T4271] ntfs3: loop4: ntfs_sync_fs r=1a failed, -22.
[  396.913312][ T4271] ntfs3: loop4: ntfs_evict_inode r=1a failed, -22.
[  396.946759][ T4271] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  396.950431][T12435] netlink: 140 bytes leftover after parsing attributes in process `syz.5.3184'.
[  397.005172][T12435] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3184'.
[  397.240914][T12445] sp0: Synchronizing with TNC
[  397.388175][T12451] loop6: detected capacity change from 0 to 512
[  397.555042][T12451] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  397.689961][T12451] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.3190: bg 0: block 393: padding at end of block bitmap is not set
[  397.751096][T12460] netlink: 'syz.3.3193': attribute type 29 has an invalid length.
[  397.771627][T12464] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  397.792599][T12451] EXT4-fs (loop6): Remounting filesystem read-only
[  397.801354][T12451] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  397.818929][T12460] netlink: 'syz.3.3193': attribute type 29 has an invalid length.
[  397.857163][T12451] EXT4-fs (loop6): Remounting filesystem read-only
[  397.866905][T12451] EXT4-fs (loop6): 2 truncates cleaned up
[  397.913496][T12451] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  398.016179][T12451] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1450: inode #12: block 7: comm syz.6.3190: path /290/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  398.151714][T12451] EXT4-fs (loop6): Remounting filesystem read-only
[  398.324212][ T8289] EXT4-fs (loop6): unmounting filesystem.
[  400.245959][T12550] team0: Port device syz_tun added
[  400.492152][T12558] sg_write: process 1368 (syz.4.3230) changed security contexts after opening file descriptor, this is not allowed.
[  400.581836][T12560] device geneve1 entered promiscuous mode
[  400.651046][T12560] device geneve1 left promiscuous mode
[  400.740405][ T4273] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  400.971410][ T4273] usb 4-1: config 0 has an invalid interface number: 88 but max is 0
[  400.992019][ T4273] usb 4-1: config 0 has no interface number 0
[  401.035621][ T4273] usb 4-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=49.83
[  401.060595][ T4273] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  401.089022][ T4273] usb 4-1: Product: syz
[  401.098219][ T4273] usb 4-1: Manufacturer: syz
[  401.123350][ T4273] usb 4-1: SerialNumber: syz
[  401.154689][T12572] loop6: detected capacity change from 0 to 256
[  401.172670][ T4273] usb 4-1: config 0 descriptor??
[  401.218289][T12498] loop0: detected capacity change from 0 to 65536
[  401.298924][T12572] FAT-fs (loop6): Directory bread(block 64) failed
[  401.306460][T12572] FAT-fs (loop6): Directory bread(block 65) failed
[  401.327285][T12498] XFS (loop0): Mounting V5 Filesystem
[  401.335112][T12572] FAT-fs (loop6): Directory bread(block 66) failed
[  401.374026][T12498] XFS (loop0): Ending clean mount
[  401.398326][ T4273] gspca_main: ALi m5602-2.14.0 probing 0402:5602
[  401.398522][T12572] FAT-fs (loop6): Directory bread(block 67) failed
[  401.424255][T12572] FAT-fs (loop6): Directory bread(block 68) failed
[  401.437328][T12572] FAT-fs (loop6): Directory bread(block 69) failed
[  401.466648][T12572] FAT-fs (loop6): Directory bread(block 70) failed
[  401.478828][T12574] loop5: detected capacity change from 0 to 8192
[  401.490452][T12572] FAT-fs (loop6): Directory bread(block 71) failed
[  401.515435][T12572] FAT-fs (loop6): Directory bread(block 72) failed
[  401.532962][ T4274] XFS (loop0): Unmounting Filesystem
[  401.543905][T12574] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  401.563069][ T6248] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  401.570157][T12572] FAT-fs (loop6): Directory bread(block 73) failed
[  401.619945][T12574] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  401.633034][T12574] REISERFS (device loop5): using ordered data mode
[  401.640378][T12574] reiserfs: using flush barriers
[  401.653941][T12574] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  401.710683][T12574] REISERFS (device loop5): checking transaction log (loop5)
[  401.761716][ T6248] usb 5-1: Using ep0 maxpacket: 8
[  401.771793][ T6248] usb 5-1: config 2 has an invalid interface number: 31 but max is 0
[  401.781087][T12574] REISERFS (device loop5): Using r5 hash to sort names
[  401.781444][T12574] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  401.802813][ T6248] usb 5-1: config 2 has no interface number 0
[  401.810290][ T4273] gspca_m5602: Failed to find a sensor
[  401.815042][ T6248] usb 5-1: config 2 interface 31 has no altsetting 0
[  401.824046][T12574] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  401.826226][ T4273] ALi m5602 4-1:0.88: ALi m5602 webcam failed
[  401.867895][ T6248] usb 5-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  401.883353][ T4273] usb 4-1: USB disconnect, device number 16
[  401.896051][ T6248] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  401.925650][ T6248] usb 5-1: Product: syz
[  401.942193][ T6248] usb 5-1: Manufacturer: syz
[  401.946906][ T6248] usb 5-1: SerialNumber: syz
[  402.586130][T12594] loop0: detected capacity change from 0 to 1024
[  402.599580][ T6248] ch9200: probe of 5-1:2.31 failed with error -22
[  402.621358][ T6248] usb 5-1: USB disconnect, device number 18
[  402.746915][T12599] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3245'.
[  402.770183][ T4348] hfsplus: b-tree write err: -5, ino 25
[  402.775984][ T4348] hfsplus: b-tree write err: -5, ino 4
[  402.792866][ T4348] hfsplus: b-tree write err: -5, ino 2
[  403.108063][T12609] loop5: detected capacity change from 0 to 512
[  403.238468][T12614] loop0: detected capacity change from 0 to 512
[  403.248330][T12614] EXT4-fs: Ignoring removed bh option
[  403.256997][T12609] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  403.270121][T12609] ext4 filesystem being mounted at /389/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  403.311826][T12614] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  403.345982][T12614] EXT4-fs (loop0): 1 truncate cleaned up
[  403.359900][T12614] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  403.514642][T12609] Quota error (device loop5): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  403.560769][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  403.569346][T12609] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  403.604504][T12609] EXT4-fs error (device loop5): ext4_acquire_dquot:6841: comm syz.5.3250: Failed to acquire dquot type 0
[  403.649902][ T6248] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  403.795292][ T7281] EXT4-fs (loop5): unmounting filesystem.
[  403.840372][ T6248] usb 5-1: Using ep0 maxpacket: 8
[  403.857662][ T6248] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  403.896900][ T6248] usb 5-1: config 179 has no interface number 0
[  403.920266][ T6248] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  403.978498][ T6248] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  404.027931][ T6248] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  404.041452][T12639] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3263'.
[  404.041839][ T6248] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[  404.063300][ T6248] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  404.077913][ T6248] usb 5-1: config 179 interface 65 has no altsetting 0
[  404.098798][ T6248] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  404.119808][ T6248] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.212946][ T6248] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input24
[  404.549073][T12650] loop5: detected capacity change from 0 to 256
[  404.572468][T12650] exfat: Deprecated parameter 'utf8'
[  404.582256][ T6242] usb 5-1: USB disconnect, device number 19
[  404.593532][ T6242] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  404.607189][T12650] exfat: Deprecated parameter 'namecase'
[  404.628753][T12650] exfat: Deprecated parameter 'namecase'
[  404.641929][T12650] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0x9420891b, utbl_chksum : 0xe619d30d)
[  405.241576][ T5069] kernel write not supported for file /snd/seq (pid: 5069 comm: kworker/0:16)
[  405.323502][T12670] loop3: detected capacity change from 0 to 256
[  405.444536][T12670] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  405.541600][T12677] loop5: detected capacity change from 0 to 512
[  405.602701][T12677] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  405.723924][T12677] EXT4-fs error (device loop5): ext4_orphan_get:1431: comm syz.5.3280: bad orphan inode 131083
[  405.766310][T12677] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  405.804542][T12677] overlayfs: upper fs needs to support d_type.
[  406.371713][ T7281] EXT4-fs (loop5): unmounting filesystem.
[  406.538285][T12699] xt_NFQUEUE: number of queues (4096) out of range (got 67070)
[  406.604576][   T11] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.666180][T12704] loop0: detected capacity change from 0 to 512
[  406.807563][T12704] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  406.817067][T12704] ext4 filesystem being mounted at /686/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  406.873206][T12704] Quota error (device loop0): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  406.886863][T12704] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  406.897366][T12704] EXT4-fs error (device loop0): ext4_acquire_dquot:6841: comm syz.0.3296: Failed to acquire dquot type 0
[  406.913939][   T11] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.966708][ T4274] EXT4-fs (loop0): unmounting filesystem.
[  407.138392][   T11] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.356238][   T11] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.821048][T12733] loop6: detected capacity change from 0 to 256
[  407.889615][ T5069] usb 4-1: new full-speed USB device number 17 using dummy_hcd
[  407.900828][T12733] FAT-fs (loop6): bogus logical sector size 58182
[  407.907402][T12733] FAT-fs (loop6): Can't find a valid FAT filesystem
[  407.963163][T12735] IPVS: length: 24 != 1610634264
[  408.038872][   T48] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  408.053246][   T48] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  408.068533][   T48] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  408.081329][   T48] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  408.089675][   T48] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  408.099617][   T48] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  408.119917][ T5069] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  408.132004][ T5069] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  408.142566][ T5069] usb 4-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  408.152069][ T5069] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.166809][ T5069] usb 4-1: config 0 descriptor??
[  408.437749][T12736] lo speed is unknown, defaulting to 1000
[  408.607283][ T5069] isku 0003:1E7D:319C.0024: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.3-1/input0
[  408.641606][T12751] loop4: detected capacity change from 0 to 512
[  408.648077][T12751] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  408.712450][T12751] EXT4-fs error (device loop4): ext4_orphan_get:1431: comm syz.4.3314: bad orphan inode 131083
[  408.713827][T12751] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  408.797552][ T5069] isku 0003:1E7D:319C.0024: couldn't init struct isku_device
[  408.801530][T12751] overlayfs: upper fs needs to support d_type.
[  408.814028][ T5069] isku 0003:1E7D:319C.0024: couldn't install keyboard
[  408.847180][ T5069] isku: probe of 0003:1E7D:319C.0024 failed with error -71
[  408.879314][ T5069] usb 4-1: USB disconnect, device number 17
[  409.066229][T12757] loop0: detected capacity change from 0 to 4096
[  409.180149][T12758] fido_id[12758]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  409.215052][T12757] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  409.835076][T12276] EXT4-fs (loop4): unmounting filesystem.
[  410.189259][   T48] Bluetooth: hci3: command 0x0409 tx timeout
[  410.358938][T12736] chnl_net:caif_netlink_parms(): no params data found
[  410.486378][T12791] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3330'.
[  410.973775][T12736] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.051802][T12736] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.068537][T12736] device bridge_slave_0 entered promiscuous mode
[  411.084854][ T4284] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  411.094661][T12736] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.105884][ T4284] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  411.112975][T12736] bridge0: port 2(bridge_slave_1) entered disabled state
[  411.129803][ T4284] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  411.138352][ T4284] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  411.145763][T12736] device bridge_slave_1 entered promiscuous mode
[  411.155235][ T4284] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  411.163257][ T4284] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  411.219584][T12806] loop0: detected capacity change from 0 to 4096
[  411.365854][T12813] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  411.464930][   T11] device hsr_slave_0 left promiscuous mode
[  411.478924][   T11] device hsr_slave_1 left promiscuous mode
[  411.493118][T12806] NILFS error (device loop0): nilfs_check_page: bad entry in directory #12: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0
[  411.517476][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  411.534126][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  411.582731][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  411.595722][T12806] Remounting filesystem read-only
[  411.604790][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  411.669162][   T11] device bridge_slave_1 left promiscuous mode
[  411.682588][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  411.710378][   T11] device bridge_slave_0 left promiscuous mode
[  411.720991][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.866474][   T11] device veth1_macvtap left promiscuous mode
[  411.879612][   T11] device veth0_macvtap left promiscuous mode
[  411.905429][   T11] device veth1_vlan left promiscuous mode
[  411.921695][   T11] device veth0_vlan left promiscuous mode
[  412.269689][ T4284] Bluetooth: hci3: command 0x041b tx timeout
[  412.419703][T12811] loop3: detected capacity change from 0 to 40427
[  412.455444][T12811] F2FS-fs (loop3): build fault injection attr: rate: 14, type: 0x3ffff
[  412.485590][T12811] F2FS-fs (loop3): invalid crc value
[  412.538774][T12811] F2FS-fs (loop3): Found nat_bits in checkpoint
[  412.699994][T12811] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  412.774890][T12821] loop6: detected capacity change from 0 to 32768
[  412.900908][T12821] read_mapping_page failed!
[  412.906458][T12821] ERROR: (device loop6): txCommit: 
[  412.906458][T12821] 
[  413.091273][  T105] BUG at fs/jfs/jfs_txnmgr.c:932 assert(mp->nohomeok > 0)
[  413.109519][  T105] ------------[ cut here ]------------
[  413.115053][  T105] kernel BUG at fs/jfs/jfs_txnmgr.c:932!
[  413.128200][  T105] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  413.134724][  T105] CPU: 0 PID: 105 Comm: jfsCommit Not tainted syzkaller #0
[  413.142214][  T105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  413.152299][  T105] RIP: 0010:txUnlock+0xc87/0xcb0
[  413.157334][  T105] Code: 9f 99 2f 07 0f 0b e8 88 f7 8d fe 48 c7 c7 00 55 c6 8a 48 c7 c6 f9 50 c6 8a ba a4 03 00 00 48 c7 c1 e0 61 c6 8a e8 79 99 2f 07 <0f> 0b e8 62 f7 8d fe 48 c7 c7 00 55 c6 8a 48 c7 c6 f9 50 c6 8a ba
[  413.177285][  T105] RSP: 0018:ffffc900025f7d28 EFLAGS: 00010246
[  413.183438][  T105] RAX: 0000000000000037 RBX: 0000000000001000 RCX: 8ec0e9fafa814100
[  413.191445][  T105] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  413.199457][  T105] RBP: ffffc9000289a1b0 R08: ffffc900025f7a27 R09: 1ffff920004bef44
[  413.207460][  T105] R10: dffffc0000000000 R11: fffff520004bef45 R12: ffff8880756e84d8
[  413.215465][  T105] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88807b51b094
[  413.223472][  T105] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  413.229584][ T4284] Bluetooth: hci0: command 0x0409 tx timeout
[  413.232436][  T105] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  413.245469][  T105] CR2: 00007fff8e236ff8 CR3: 000000007fad7000 CR4: 00000000003506f0
[  413.253662][  T105] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  413.261674][  T105] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  413.269690][  T105] Call Trace:
[  413.273040][  T105]  <TASK>
[  413.276037][  T105]  ? lockdep_hardirqs_on+0x94/0x140
[  413.281356][  T105]  jfs_lazycommit+0x56a/0xa70
[  413.286084][  T105]  ? txFreelock+0x5a0/0x5a0
[  413.290623][  T105]  ? _raw_spin_unlock_irqrestore+0x82/0x120
[  413.296704][  T105]  ? do_task_dead+0xd0/0xd0
[  413.301299][  T105]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[  413.307230][  T105]  ? __kthread_parkme+0x162/0x1c0
[  413.312375][  T105]  kthread+0x29d/0x330
[  413.316478][  T105]  ? txFreelock+0x5a0/0x5a0
[  413.321018][  T105]  ? kthread_blkcg+0xd0/0xd0
[  413.325639][  T105]  ret_from_fork+0x1f/0x30
[  413.330171][  T105]  </TASK>
[  413.333228][  T105] Modules linked in:
[  413.337201][    C0] vkms_vblank_simulate: vblank timer overrun
[  413.447130][T12833] loop3: detected capacity change from 0 to 32768
[  413.449123][  T105] ---[ end trace 0000000000000000 ]---
[  413.476342][  T105] RIP: 0010:txUnlock+0xc87/0xcb0
[  413.481962][  T105] Code: 9f 99 2f 07 0f 0b e8 88 f7 8d fe 48 c7 c7 00 55 c6 8a 48 c7 c6 f9 50 c6 8a ba a4 03 00 00 48 c7 c1 e0 61 c6 8a e8 79 99 2f 07 <0f> 0b e8 62 f7 8d fe 48 c7 c7 00 55 c6 8a 48 c7 c6 f9 50 c6 8a ba
[  413.486484][T12833] JBD2: Ignoring recovery information on journal
[  413.502136][    C0] vkms_vblank_simulate: vblank timer overrun
[  413.503265][  T105] RSP: 0018:ffffc900025f7d28 EFLAGS: 00010246
[  413.577249][  T105] RAX: 0000000000000037 RBX: 0000000000001000 RCX: 8ec0e9fafa814100
[  413.586548][  T105] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  413.600128][  T105] RBP: ffffc9000289a1b0 R08: ffffc900025f7a27 R09: 1ffff920004bef44
[  413.608992][  T105] R10: dffffc0000000000 R11: fffff520004bef45 R12: ffff8880756e84d8
[  413.617550][  T105] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88807b51b094
[  413.619680][T12833] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  413.625988][  T105] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  413.656065][  T105] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  413.663150][  T105] CR2: 00007f8274894000 CR3: 000000007cd92000 CR4: 00000000003506e0
[  413.671574][  T105] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  413.680644][  T105] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  413.688713][  T105] Kernel panic - not syncing: Fatal exception
[  413.694910][  T105] Kernel Offset: disabled
[  413.699534][  T105] Rebooting in 86400 seconds..