last executing test programs:

1.861261909s ago: executing program 1 (id=841):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000006c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff}, 0x106, 0x5}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000001c0)={0x14, 0x88, 0xfa00, {r1, 0x30, 0x0, @ib={0x1b, 0xb, 0x32165b32, {}, 0x3, 0x107fffffff, 0x8}}}, 0x90)

1.780778526s ago: executing program 1 (id=843):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x2000c840)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000480)=0x400000001, 0x4)
setsockopt$inet6_tcp_int(r1, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000340)={0xa, 0x0, 0x100000, @loopback}, 0x1c)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020d00051400000000000000000000000800120000000200c06b6e000000000006000000000000000000000000000000e00000020000000000000000000000000000000000000000000000000000000105000500008000000a0000000000000000000000000000000000000000000001000000000000000005000600ff4700000a"], 0xa0}}, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2000c000, 0x0, 0x0)

1.471305454s ago: executing program 1 (id=844):
prctl$PR_GET_DUMPABLE(0x3)

1.391048603s ago: executing program 1 (id=846):
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000540)='./file0\x00', 0x204818, &(0x7f0000000140)={[{@map_off}, {@check_strict}, {@hide}, {@map_off}, {@unhide}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@map_off}, {}]}, 0x1, 0x544, &(0x7f0000001000)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

1.280044183s ago: executing program 1 (id=848):
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockopt$sock_buf(r0, 0x1, 0x3, &(0x7f0000000400)=""/71, &(0x7f00000001c0)=0x47)

790.674147ms ago: executing program 2 (id=854):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000180)={'pcl812\x00', [0x4f27, 0x1f, 0x3, 0xfffffffe, 0x1, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0x1, 0x6, 0x7537e112, 0x2, 0x9, 0x6, 0x40000003, 0x89, 0x2, 0xf28, 0x20001e56, 0xb, 0x6, 0x3c, 0x8, 0x6, 0x0, 0xfffffff8]})

790.419287ms ago: executing program 2 (id=855):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x800)
ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080))

741.078501ms ago: executing program 0 (id=856):
prlimit64(0x0, 0x0, &(0x7f0000000300)={0x42, 0x80}, 0x0)
setrlimit(0xf, &(0x7f00000000c0)={0x0, 0x3})
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mlock(&(0x7f0000bff000/0x400000)=nil, 0x400000)

740.802061ms ago: executing program 2 (id=857):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000000c0)='./file0\x00', 0x800, &(0x7f00000001c0)=ANY=[], 0x1, 0x185, &(0x7f0000000500)="$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")
listxattr(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)

680.80471ms ago: executing program 2 (id=858):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000680)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6e6f757365725f78617474722c636f686572656e63793d66756c6c2c646174613d77726974656261636b2c6c6f63616c616c6c6f633d30303030303030303030303030303030303030312c61636c2c6e6f61636c2c6c6f63616c616c6c6f633d30303030303030303030303030303030303030302c00a89f6b8d5800aa954e6c8735dcd52921ce08462fb4ce7c1600883251443ac332f4d17b77d29867e4321610936dbc5963e9fb59a032c92e32ebffc3b739951e866d52bff6bd63136a656222062a8eea0cf97480bc8ac6c0e8a2aa38ffa8fa758cd54b9ef39a7f536d7b85173a83c34d78e210ecf4d040817bbe989e9eb015acb84bb90577b8b405a48292eeca69f5275cb7b7027d4bf643bd69b034c0221a30"], 0x1, 0x442d, &(0x7f0000004480)="$eJzs3c9PHGUfAPBnBvoW+rZ9oW8PfZM3cRObaNQQ6EmliZTSUmixptrGeNkusG3RhW1gMR56wFsTTyYejIdGE2+cGg5e65/gxWM9N9GDFxOTRszuzgIz7IaVsGDr53NgmOc3fGeefeYw+8SJyp25pdzcUq6wkCvP3Fo6k/u4XFqeL4Z4nzTt/9D+9U97OnGdHPS190929fzFd2+cCeH72R+frK+vr4eq7tDU0Jbff/v13szWY0OcqVNtt3lre+WDEMLJbeOq6gohvP9dCFEI4VySNpoce0MIx0I978a9z27m9mg0Dx8Xz+afTt1fGz49ufpgrfXfHoXwVel/r92e//nFruGfXtmj7gEAAAAAAAAAAAAAAAAAeMaNX7t6/Z3BofAoCt2r0fb3dceTY6v3Y9f3zAsh9HX+7wUAAAAAAAAAAAAAAAAAAIC/o833/3PRiSbv/48lx5EW9dff6vwY6ZyJt6+OXRgcSvZ/j7blv54k/XKuK/Q32fc9u//7uUz95vu/b+9ntxrja/TbF6J4IHUexwMDIXyTbPx+KjoSl8pLlVdvlZcXZvdsGM+sdPzru/enopNs6N9u/Ecz7Xd+////bruaquc39+4Se66l49/Vsty3n0Ztxf98pt5+xJ/dS8e/u5bWu7XASH0CqMb/8+6d4z+Wab9T8T8eQshF1bHmUjNAdQ1TTW+1XiEtHf9DtbTU1Jn8I1vd/79n4n8h0/5Bzf8r2Q8imkrH/1+1tJ5Uic37vz/e+f6/mGn/IOJfHf+Kz/+2pON/uJ7YnSpS+0+2O/+PZ9rvVPyvx8k4j0epK2A1qqe3+r460tLx79mWv/n8F7e1/ruUqb9fz3+NfhvPf43p/+Wo/vxHc+n497Ys1+79P5Gp1+n5f6S2/mO30vE/UktLr53rX8rZbvwnM+13Kv61VUlPI/6b88kfh+vpX1v/tSUd/3/XE+OtJVZqP2vrv2jn9f/lTPsHsf6rjn8l7myvz4t0/I+2LFeN/w9tfP5fydTrfPxDGLTW37V0/I+1LFe7/3t2jv9Upl6n4/9SJxsHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeAaMJse+EMUDqfM4HhgI4XxyfiociaYLs/npUnnmo6UQxpL0XDgR3S6Vpwul/NxCebaYL5RK5ZkQLiT5J0NPtFQqV/LzhbsXN9rqje4UC4uV6WKhEkIYT9L/H4412pqeq8wX7oYQLm3k/ScuL969U1jIz84tvjk4ODgYJjbG0B8VP6kUFyr13uu5IUxu1O2Ltgyuln15YyxHow/Ly4sLhVIt/cqWOqXyTKG0pc5UkvdF6I8qi8sLM4VKMV8q3270d5BGkuPYxLX3rl0Z2pZ/M6ofR/d3WAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD8RY+G3/gyhNBdP4tDCCONX6Jm5R8+Lp7NP526vzZ8enL1wdqTVuUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgT3bgQAAAAAAAyP+1EaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwS8coDQRRGIDfjIXaeQyrZbezXVFEC1cET6DH8DB6FC/hHVKkSJsiBJJZCJtd2Capvq95MD8z78E8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYJ6n9+7jrW4iUlxtLiP+vv4Xh/lLqT/34/cvzjAjp/P82j081k3593SU35WjZZt36Xr1/Rkjtfc72JPhPu31fa4n55rat6n5+r43kXIVEW3Jb1POVTXvLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAtO3AgAAAAAADk/9oIVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVdiBYwEAAAAAYf7WUfRtAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPwKAAD//+UFHyA=")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r2, 0x2007ffb)
copy_file_range(r1, 0x0, r0, 0x0, 0xfffffbffa003e458, 0x700000000000000)

588.909563ms ago: executing program 1 (id=859):
r0 = syz_open_dev$ndb(&(0x7f0000000100), 0x0, 0x2002)
ioctl$BLKGETSIZE(r0, 0x1260, &(0x7f0000000180))

588.65322ms ago: executing program 0 (id=860):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./bus\x00', 0x3000009, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
statfs(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000340)=""/156)

588.402191ms ago: executing program 0 (id=861):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$inet6(0xa, 0x5, 0x10007)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0xb}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x3000000, 0x12, 0x0, &(0x7f0000000380)="263abd030e98ff4dc870bd6688a8640888a8", 0x0, 0x1200, 0xe00}, 0x28)

419.387199ms ago: executing program 32 (id=859):
r0 = syz_open_dev$ndb(&(0x7f0000000100), 0x0, 0x2002)
ioctl$BLKGETSIZE(r0, 0x1260, &(0x7f0000000180))

392.023632ms ago: executing program 0 (id=863):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_PMKSA(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={0x0}, 0x1, 0x0, 0x0, 0xc040}, 0xc840)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0)
syz_io_uring_setup(0x423e, &(0x7f0000000080)={0x0, 0xca40, 0x2, 0x0, 0x6}, &(0x7f0000000280)=<r1=>0x0, 0x0)
syz_io_uring_setup(0x939, &(0x7f0000000140)={0x0, 0xd47b, 0x1, 0xffffffff, 0x19a}, &(0x7f00000001c0), 0x0)
r2 = syz_open_dev$vbi(0x0, 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r2, 0xc0045627, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0)
munlockall()
r3 = syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
r4 = socket$inet(0x2, 0x3, 0x6)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x8, @remote}, {0x6, @local}, 0x24, {0x2, 0x80, @multicast2}, 'syz_tun\x00'})
ptrace(0x8, r3)
wait4(0x0, 0x0, 0x20000000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
wait4(r3, 0x0, 0x40000000, 0x0)

382.629372ms ago: executing program 2 (id=864):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f00000009c0)=@framed={{}, [@printk={@p, {0x3, 0x0, 0x6, 0xa, 0x1, 0xfff8, 0x41}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

159.507498ms ago: executing program 2 (id=865):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f0000000000), 0x651, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
listen(r1, 0x6)
r2 = dup(r0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x400, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
close(0x3)

132.589541ms ago: executing program 0 (id=866):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$cec(&(0x7f0000000200), 0xffffffffffffffff, 0x4ae60)
ioctl$CEC_TRANSMIT(r1, 0xc0386105, &(0x7f0000000000)={0x4, 0x4, 0x34759c29, 0x7fffffff, 0x8, 0x8a20, "5991678525efcc08f977cfc28131f78e", 0x10, 0x9, 0xf7, 0x7, 0x2, 0x2, 0x7})

0s ago: executing program 0 (id=867):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000040)={0x80000005, 0x5, 0x4, 0x47, 0x3, 0x6, 0x2, 0x7, 0x15})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:62166' (ED25519) to the list of known hosts.
syzkaller login: [   56.475964][ T5830] cgroup: Unknown subsys name 'net'
[   56.617199][ T5830] cgroup: Unknown subsys name 'cpuset'
[   56.620933][ T5830] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   58.035249][ T5830] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   70.987734][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[   70.989869][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[   73.365399][ T5923] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   77.076192][ T5239] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.079844][ T5239] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.082848][ T5239] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.086808][ T5239] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.089985][ T5239] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.111183][ T5962] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.114149][ T5962] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.117414][ T5962] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.120632][ T5968] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   77.124035][ T5967] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.128163][ T5967] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.135221][ T5967] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.138119][ T5967] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.151918][ T5968] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.154612][ T5968] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.500654][ T5965] chnl_net:caif_netlink_parms(): no params data found
[   77.523420][ T5959] chnl_net:caif_netlink_parms(): no params data found
[   77.570611][ T5964] chnl_net:caif_netlink_parms(): no params data found
[   77.670482][ T5965] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.673343][ T5965] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.676506][ T5965] bridge_slave_0: entered allmulticast mode
[   77.679254][ T5965] bridge_slave_0: entered promiscuous mode
[   77.699981][ T5959] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.702294][ T5959] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.705144][ T5959] bridge_slave_0: entered allmulticast mode
[   77.707817][ T5959] bridge_slave_0: entered promiscuous mode
[   77.711799][ T5965] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.714354][ T5965] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.717673][ T5965] bridge_slave_1: entered allmulticast mode
[   77.721147][ T5965] bridge_slave_1: entered promiscuous mode
[   77.737090][ T5964] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.740024][ T5964] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.743154][ T5964] bridge_slave_0: entered allmulticast mode
[   77.747532][ T5964] bridge_slave_0: entered promiscuous mode
[   77.752216][ T5959] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.755280][ T5959] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.757972][ T5959] bridge_slave_1: entered allmulticast mode
[   77.761836][ T5959] bridge_slave_1: entered promiscuous mode
[   77.797947][ T5964] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.800277][ T5964] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.802792][ T5964] bridge_slave_1: entered allmulticast mode
[   77.806455][ T5964] bridge_slave_1: entered promiscuous mode
[   77.821653][ T5965] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.828142][ T5965] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.854820][ T5959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.881945][ T5959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.887785][ T5965] team0: Port device team_slave_0 added
[   77.892342][ T5964] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.923593][ T5965] team0: Port device team_slave_1 added
[   77.927785][ T5964] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.945938][ T5959] team0: Port device team_slave_0 added
[   77.984345][ T5959] team0: Port device team_slave_1 added
[   77.989896][ T5964] team0: Port device team_slave_0 added
[   77.993130][ T5965] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.996205][ T5965] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.007540][ T5965] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.013594][ T5964] team0: Port device team_slave_1 added
[   78.036889][ T5965] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.039505][ T5965] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.051186][ T5965] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.083704][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.086979][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.096427][ T5959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.101341][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_0
[   78.104141][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.115330][ T5964] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   78.120815][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.123235][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.133607][ T5959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.160782][ T5964] batman_adv: batadv0: Adding interface: batadv_slave_1
[   78.163602][ T5964] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   78.174581][ T5964] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.183209][ T5965] hsr_slave_0: entered promiscuous mode
[   78.187686][ T5965] hsr_slave_1: entered promiscuous mode
[   78.241668][ T5959] hsr_slave_0: entered promiscuous mode
[   78.244266][ T5959] hsr_slave_1: entered promiscuous mode
[   78.247407][ T5959] debugfs: 'hsr0' already exists in 'hsr'
[   78.249781][ T5959] Cannot create hsr debugfs directory
[   78.289924][ T5964] hsr_slave_0: entered promiscuous mode
[   78.292641][ T5964] hsr_slave_1: entered promiscuous mode
[   78.295012][ T5964] debugfs: 'hsr0' already exists in 'hsr'
[   78.297144][ T5964] Cannot create hsr debugfs directory
[   78.554849][ T5965] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   78.565970][ T5965] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   78.580210][ T5965] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   78.589169][ T5965] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   78.628139][ T5964] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   78.635911][ T5964] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   78.648605][ T5964] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   78.653828][ T5964] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   78.708129][ T5959] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   78.717075][ T5959] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   78.729791][ T5959] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   78.746176][ T5959] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   78.810086][ T5965] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.832711][ T5964] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.851697][ T5965] 8021q: adding VLAN 0 to HW filter on device team0
[   78.868202][ T5964] 8021q: adding VLAN 0 to HW filter on device team0
[   78.873352][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.876636][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.891304][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.894026][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.900013][ T3577] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.902685][ T3577] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.928469][ T3577] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.931425][ T3577] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.959328][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.996254][ T5959] 8021q: adding VLAN 0 to HW filter on device team0
[   79.026934][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.029932][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.053014][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.055989][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.148556][   T54] Bluetooth: hci0: command tx timeout
[   79.197479][ T5965] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.211673][ T5964] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.225624][   T54] Bluetooth: hci1: command tx timeout
[   79.228067][   T54] Bluetooth: hci2: command tx timeout
[   79.300819][ T5964] veth0_vlan: entered promiscuous mode
[   79.308979][ T5965] veth0_vlan: entered promiscuous mode
[   79.322287][ T5964] veth1_vlan: entered promiscuous mode
[   79.332486][ T5965] veth1_vlan: entered promiscuous mode
[   79.349912][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.373268][ T5965] veth0_macvtap: entered promiscuous mode
[   79.380673][ T5965] veth1_macvtap: entered promiscuous mode
[   79.392493][ T5964] veth0_macvtap: entered promiscuous mode
[   79.406816][ T5964] veth1_macvtap: entered promiscuous mode
[   79.418076][ T5965] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.436853][ T5965] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.445287][ T5959] veth0_vlan: entered promiscuous mode
[   79.460433][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.463557][ T5927] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.470483][ T5959] veth1_vlan: entered promiscuous mode
[   79.478590][ T5927] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.487158][ T5964] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.497703][ T5940] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.509456][ T5940] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.533216][ T5940] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.538629][ T5940] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.542198][ T5940] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.566768][ T5940] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.629822][ T5959] veth0_macvtap: entered promiscuous mode
[   79.635852][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.639001][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.649418][ T5959] veth1_macvtap: entered promiscuous mode
[   79.673084][ T3548] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.678128][ T3548] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.690785][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.693945][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.707397][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.729553][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.744710][   T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.747704][   T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.755860][ T5927] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.759256][ T6001] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.762857][ T5927] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.779901][ T5927] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.888237][   T32] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.905235][   T32] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.920586][   T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.923641][   T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.995621][   T33] audit: type=1326 audit(1756940731.546:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6035 comm="syz.0.78" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.021194][   T33] audit: type=1326 audit(1756940731.546:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6035 comm="syz.0.78" exe="/syz-executor" sig=0 arch=c000003e syscall=300 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.040743][   T33] audit: type=1326 audit(1756940731.546:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6035 comm="syz.0.78" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.067709][ T6040] loop0: detected capacity change from 0 to 1024
[   80.127728][   T27] hfsplus: b-tree write err: -5, ino 4
[   80.290708][ T6051] loop1: detected capacity change from 0 to 4096
[   80.331774][ T6051] NILFS (loop1): invalid segment: Checksum error in segment payload
[   80.341567][ T6051] NILFS (loop1): trying rollback from an earlier position
[   80.369150][ T6051] NILFS (loop1): recovery complete
[   80.388924][ T6058] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   80.614803][ T6022] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   80.689225][ T6074] netlink: 64 bytes leftover after parsing attributes in process `syz.1.96'.
[   80.758882][   T33] audit: type=1326 audit(1756940732.316:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.766259][ T6022] usb 3-1: Using ep0 maxpacket: 16
[   80.769756][   T33] audit: type=1326 audit(1756940732.316:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.783786][ T6022] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   80.789898][ T6022] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   80.795019][   T33] audit: type=1326 audit(1756940732.326:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.803888][   T33] audit: type=1326 audit(1756940732.326:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.814481][ T6022] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[   80.818280][ T6022] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[   80.823233][ T6022] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   80.829975][   T33] audit: type=1326 audit(1756940732.326:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.839509][   T33] audit: type=1326 audit(1756940732.356:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.851111][ T6022] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[   80.859977][   T33] audit: type=1326 audit(1756940732.356:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6078 comm="syz.0.99" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   80.864559][ T6022] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[   80.879605][ T6022] usb 3-1: Manufacturer: syz
[   80.889982][ T6022] usb 3-1: config 0 descriptor??
[   80.972709][ T6085] loop0: detected capacity change from 0 to 1024
[   81.116837][ T6088] loop0: detected capacity change from 0 to 64
[   81.156127][ T6022] rc_core: IR keymap rc-hauppauge not found
[   81.163304][ T6022] Registered IR keymap rc-empty
[   81.173259][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.196932][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.228638][   T54] Bluetooth: hci0: command tx timeout
[   81.235835][ T6022] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[   81.241141][ T6022] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input4
[   81.248573][   T10] cfg80211: failed to load regulatory.db
[   81.295835][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.305003][   T54] Bluetooth: hci2: command tx timeout
[   81.307349][   T54] Bluetooth: hci1: command tx timeout
[   81.317076][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.329038][ T6099] =======================================================
[   81.329038][ T6099] WARNING: The mand mount option has been deprecated and
[   81.329038][ T6099]          and is ignored by this kernel. Remove the mand
[   81.329038][ T6099]          option from the mount to silence this warning.
[   81.329038][ T6099] =======================================================
[   81.343165][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.349535][ T6100] loop1: detected capacity change from 0 to 128
[   81.358857][ T6100] FAT-fs (loop1): Invalid FSINFO signature: 0x41075252, 0x80417272 (sector = 1)
[   81.364778][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.385448][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.388072][ T6100] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00070003)
[   81.406390][ T6100] FAT-fs (loop1): Filesystem has been set read-only
[   81.406770][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.425119][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.444713][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.465165][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.485037][ T6022] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[   81.506121][ T6022] mceusb 3-1:0.0: Registered  with mce emulator interface version 1
[   81.518896][ T6022] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[   81.529460][ T6106] usb usb1: check_ctrlrecip: process 6106 (syz.1.110) requesting ep 01 but needs 81
[   81.602678][   T96] usb 3-1: USB disconnect, device number 2
[   81.671802][ T6111] loop1: detected capacity change from 0 to 16
[   81.718579][ T6113] loop1: detected capacity change from 0 to 512
[   81.721627][ T6113] EXT4-fs: Ignoring removed nomblk_io_submit option
[   81.729452][ T6113] EXT4-fs (loop1): filesystem is read-only
[   81.734690][ T6113] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   81.742751][ T6113] EXT4-fs (loop1): filesystem is read-only
[   81.750482][ T6113] EXT4-fs (loop1): orphan cleanup on readonly fs
[   81.753506][ T6113] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #16: comm syz.1.113: iget: bad i_size value: 648518346341360424
[   81.760745][ T6113] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.113: couldn't read orphan inode 16 (err -117)
[   81.769597][ T6113] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   81.793297][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.565060][ T6135] gtp0: entered promiscuous mode
[   82.567780][ T6135] gtp0: entered allmulticast mode
[   82.780293][ T6141] loop1: detected capacity change from 0 to 512
[   82.786463][ T6141] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[   82.795011][ T6141] EXT4-fs (loop1): orphan cleanup on readonly fs
[   82.798096][ T6141] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.122: Block bitmap for bg 0 marked uninitialized
[   82.804367][ T6141] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   82.810347][ T6141] EXT4-fs (loop1): 1 orphan inode deleted
[   82.813750][ T6141] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   82.853243][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.305010][   T54] Bluetooth: hci0: command tx timeout
[   83.387381][ T5968] Bluetooth: hci2: command tx timeout
[   83.391147][   T54] Bluetooth: hci1: command tx timeout
[   84.381720][ T6163] loop1: detected capacity change from 0 to 512
[   84.420714][ T6163] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.432207][ T6163] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.459682][ T6163] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[   84.502970][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.597336][ T6179] loop2: detected capacity change from 0 to 256
[   84.606871][ T6179] exFAT-fs (loop2): bogus data start sector
[   84.609263][ T6179] exFAT-fs (loop2): failed to read boot sector
[   84.611732][ T6179] exFAT-fs (loop2): failed to recognize exfat type
[   84.945806][ T6198] loop2: detected capacity change from 0 to 512
[   84.973675][ T6198] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.980998][ T6198] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.995918][   T96] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   85.001381][ T6198] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   85.029261][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.159115][   T96] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   85.165261][   T96] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   85.165341][ T6206] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   85.171051][   T96] usb 2-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00
[   85.178696][   T96] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[   85.181994][   T96] usb 2-1: Manufacturer: syz
[   85.187134][   T96] usb 2-1: config 0 descriptor??
[   85.359828][ T6214] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   85.384519][   T54] Bluetooth: hci0: command tx timeout
[   85.450080][ T6220] loop2: detected capacity change from 0 to 8
[   85.457408][ T6220] MTD: Attempt to mount non-MTD device "/dev/loop2"
[   85.465101][   T54] Bluetooth: hci1: command tx timeout
[   85.467786][   T54] Bluetooth: hci2: command tx timeout
[   85.477380][ T6220] cramfs: Error -3 while decompressing!
[   85.479602][ T6220] cramfs: ffffffff99bf3688(26)->ffff8880357fe000(4096)
[   85.482894][ T6220] cramfs: Error -3 while decompressing!
[   85.485888][ T6220] cramfs: ffffffff99bf36a2(26)->ffff888035802000(4096)
[   85.488612][ T6220] cramfs: Error -3 while decompressing!
[   85.490587][ T6220] cramfs: ffffffff99bf36bc(16)->ffff88803580e000(4096)
[   85.493296][ T6220] cramfs: Error -3 while decompressing!
[   85.495852][ T6220] cramfs: ffffffff99bf3688(26)->ffff8880357fe000(4096)
[   85.498684][   T33] kauditd_printk_skb: 7 callbacks suppressed
[   85.498692][   T33] audit: type=1800 audit(1756940737.056:19): pid=6220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.155" name="file2" dev="loop2" ino=348 res=0 errno=0
[   85.640391][   T96] cougar 0003:060B:700A.0001: unknown main item tag 0x0
[   85.643458][   T96] cougar 0003:060B:700A.0001: unknown main item tag 0x0
[   85.652237][   T96] cougar 0003:060B:700A.0001: unknown main item tag 0x0
[   85.660650][   T96] cougar 0003:060B:700A.0001: unknown main item tag 0x0
[   85.663674][   T96] cougar 0003:060B:700A.0001: unknown main item tag 0x0
[   85.686090][   T24] IPVS: starting estimator thread 0...
[   85.693834][   T96] cougar 0003:060B:700A.0001: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[   85.775927][ T6229] IPVS: using max 75 ests per chain, 180000 per kthread
[   85.807167][   T33] audit: type=1326 audit(1756940737.366:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   85.820983][   T33] audit: type=1326 audit(1756940737.366:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   85.829339][   T33] audit: type=1326 audit(1756940737.366:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   85.831338][ T5988] usb 2-1: USB disconnect, device number 2
[   85.838732][   T33] audit: type=1326 audit(1756940737.366:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   85.846712][   T33] audit: type=1326 audit(1756940737.366:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   85.855210][   T33] audit: type=1326 audit(1756940737.366:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   85.862389][   T33] audit: type=1326 audit(1756940737.366:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.0.165" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[   86.069495][ T6255] loop0: detected capacity change from 0 to 512
[   86.075842][   T96] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   86.087096][ T6255] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   86.090722][ T6255] EXT4-fs (loop0): orphan cleanup on readonly fs
[   86.093969][ T6255] EXT4-fs warning (device loop0): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   86.101346][ T6255] EXT4-fs (loop0): Cannot turn on quotas: error -22
[   86.104628][ T6255] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #16: comm syz.0.172: casefold flag without casefold feature
[   86.110366][ T6255] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.172: couldn't read orphan inode 16 (err -117)
[   86.118283][ T6255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.145300][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.236100][   T96] usb 3-1: Using ep0 maxpacket: 32
[   86.240634][   T96] usb 3-1: config 0 has an invalid interface number: 20 but max is 0
[   86.244123][   T96] usb 3-1: config 0 has no interface number 0
[   86.252679][   T96] usb 3-1: New USB device found, idVendor=1485, idProduct=0001, bcdDevice=3e.65
[   86.256997][   T96] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.260397][   T96] usb 3-1: Product: syz
[   86.262159][   T96] usb 3-1: Manufacturer: syz
[   86.264154][   T96] usb 3-1: SerialNumber: syz
[   86.269633][   T96] usb 3-1: config 0 descriptor??
[   86.671266][ T6284] loop0: detected capacity change from 0 to 512
[   86.682138][ T6284] EXT4-fs (loop0): 1 truncate cleaned up
[   86.686525][ T6284] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.733265][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.735453][   T96] kaweth 3-1:0.20: Firmware present in device.
[   86.750940][   T96] kaweth 3-1:0.20: Error reading configuration (-71), no net device created
[   86.769851][   T96] kaweth 3-1:0.20: probe with driver kaweth failed with error -5
[   86.788988][   T96] usb 3-1: USB disconnect, device number 3
[   86.897739][   T54] Bluetooth: hci1: Invalid handle: 0x1300 > 0x0eff
[   87.014686][ T6292] loop0: detected capacity change from 0 to 32768
[   87.053032][ T6292] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[   87.072435][   T33] audit: type=1800 audit(1756940738.626:27): pid=6292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.187" name="file1" dev="loop0" ino=17058 res=0 errno=0
[   87.121457][ T5965] ocfs2: Unmounting device (7,0) on (node local)
[   87.385844][ T6308] netlink: 'syz.2.194': attribute type 1 has an invalid length.
[   87.447513][ T6312] block nbd1: Attempted send on invalid socket
[   87.451207][ T6312] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   87.654568][ T5988] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   87.806384][ T5988] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[   87.825334][ T5988] usb 3-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[   87.829219][ T5988] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.832680][ T5988] usb 3-1: Product: syz
[   87.844485][ T5988] usb 3-1: Manufacturer: syz
[   87.846634][ T5988] usb 3-1: SerialNumber: syz
[   87.852358][ T5988] usb 3-1: config 0 descriptor??
[   87.858898][ T5988] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[   87.858943][ T6322] loop1: detected capacity change from 0 to 16384
[   87.866792][ T6322] bcachefs: bch2_fs_parse_param() Error parsing option compression: option_value
[   87.952670][ T6326] loop1: detected capacity change from 0 to 4096
[   87.977500][ T6326] overlayfs: upper fs does not support tmpfile.
[   87.981379][ T6326] overlayfs: workdir/#2 already exists
[   88.036978][ T6330] loop1: detected capacity change from 0 to 16
[   88.049875][ T6330] erofs (device loop1): mounted with root inode @ nid 36.
[   88.056254][ T6330] erofs (device loop1): readahead error at folio 2 @ nid 89
[   88.063550][   T56] erofs (device loop1): failed to decompress 6887 in[4096, 0] out[8192]
[   88.072408][ T6330] erofs (device loop1): failed to decompress 6887 in[4096, 0] out[8192]
[   88.083346][ T5988] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -2
[   88.085142][ T6330] erofs (device loop1): read error -117 @ 1 of nid 89
[   88.093474][   T33] audit: type=1800 audit(1756940739.646:28): pid=6330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.205" name="file3" dev="loop1" ino=89 res=0 errno=0
[   88.121440][ T6109] udevd[6109]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   88.139017][ T6330] syz.1.205 (6330) used greatest stack depth: 17736 bytes left
[   88.190022][ T6335] loop1: detected capacity change from 0 to 64
[   88.214181][ T6335] syz.1.207: attempt to access beyond end of device
[   88.214181][ T6335] loop1: rw=0, sector=1024, nr_sectors = 2 limit=64
[   88.219462][ T6335] Buffer I/O error on dev loop1, logical block 512, async page read
[   88.223687][ T6335] syz.1.207: attempt to access beyond end of device
[   88.223687][ T6335] loop1: rw=0, sector=113152, nr_sectors = 2 limit=64
[   88.229343][ T6335] Buffer I/O error on dev loop1, logical block 56576, async page read
[   88.282080][    T9] usb 3-1: USB disconnect, device number 4
[   88.700835][ T6349] netlink: 'syz.0.212': attribute type 9 has an invalid length.
[   88.990311][ T6365] loop2: detected capacity change from 0 to 256
[   89.022508][ T6367] loop0: detected capacity change from 0 to 736
[   89.053688][ T6367] rock: directory entry would overflow storage
[   89.057845][ T6367] rock: sig=0x00, size=4, remaining=3
[   89.137480][ T6371] netlink: 'syz.0.222': attribute type 1 has an invalid length.
[   89.246974][ T6376] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   89.372961][ T6379] loop1: detected capacity change from 0 to 4096
[   89.389872][ T6379] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[   89.415262][ T6383] loop2: detected capacity change from 0 to 1764
[   89.449625][ T6379] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[   89.536454][ T6387] loop0: detected capacity change from 0 to 4096
[   89.541657][ T6387] ntfs3(loop0): It is recommened to use chkdsk.
[   89.544288][ T6387] ntfs3(loop0): ino=0, Correct links count -> 1.
[   89.548033][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[   89.551318][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[   89.563323][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[   89.568315][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[   89.571528][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc1c00
[   89.575568][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc2c00
[   89.578763][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc4c00
[   89.582118][ T6387] ntfs3(loop0): try to read out of volume at offset 0x3fffffc8c00
[   89.650334][ T6390] Bluetooth: MGMT ver 1.23
[   90.097474][ T6395] netlink: 'syz.0.233': attribute type 4 has an invalid length.
[   90.247284][ T6395] netlink: 'syz.0.233': attribute type 4 has an invalid length.
[   90.549229][   T33] audit: type=1326 audit(1756940742.076:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.593032][   T33] audit: type=1326 audit(1756940742.076:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.653068][   T33] audit: type=1326 audit(1756940742.086:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.712036][   T33] audit: type=1326 audit(1756940742.086:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.757208][   T33] audit: type=1326 audit(1756940742.086:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.786093][   T33] audit: type=1326 audit(1756940742.086:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.804606][   T33] audit: type=1326 audit(1756940742.086:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.815562][   T33] audit: type=1326 audit(1756940742.096:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.829575][   T33] audit: type=1326 audit(1756940742.096:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   90.839087][   T33] audit: type=1326 audit(1756940742.096:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.2.236" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f990ad8ebe9 code=0x7ffc0000
[   91.024597][    T9] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   91.194591][    T9] usb 2-1: Using ep0 maxpacket: 32
[   91.200116][    T9] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   91.208428][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[   91.212624][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   91.216927][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   91.220581][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.244370][    T9] usb 2-1: config 0 descriptor??
[   91.253944][ T6419] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   91.262580][    T9] hub 2-1:0.0: USB hub found
[   91.366237][ T6437] loop2: detected capacity change from 0 to 128
[   91.402636][ T6437] syz.2.247: attempt to access beyond end of device
[   91.402636][ T6437] loop2: rw=2049, sector=154, nr_sectors = 8 limit=128
[   91.409748][ T6437] syz.2.247: attempt to access beyond end of device
[   91.409748][ T6437] loop2: rw=2049, sector=160, nr_sectors = 2 limit=128
[   91.415949][ T6437] Buffer I/O error on dev loop2, logical block 80, lost async page write
[   91.420242][ T6437] syz.2.247: attempt to access beyond end of device
[   91.420242][ T6437] loop2: rw=2049, sector=162, nr_sectors = 8 limit=128
[   91.426280][ T6437] syz.2.247: attempt to access beyond end of device
[   91.426280][ T6437] loop2: rw=2049, sector=168, nr_sectors = 2 limit=128
[   91.430928][ T6437] Buffer I/O error on dev loop2, logical block 84, lost async page write
[   91.436284][ T6437] syz.2.247: attempt to access beyond end of device
[   91.436284][ T6437] loop2: rw=2049, sector=186, nr_sectors = 8 limit=128
[   91.443083][ T6437] syz.2.247: attempt to access beyond end of device
[   91.443083][ T6437] loop2: rw=2049, sector=192, nr_sectors = 2 limit=128
[   91.448061][ T6437] Buffer I/O error on dev loop2, logical block 96, lost async page write
[   91.451732][ T6437] syz.2.247: attempt to access beyond end of device
[   91.451732][ T6437] loop2: rw=2049, sector=194, nr_sectors = 8 limit=128
[   91.457789][ T6437] syz.2.247: attempt to access beyond end of device
[   91.457789][ T6437] loop2: rw=2049, sector=200, nr_sectors = 2 limit=128
[   91.462625][ T6437] Buffer I/O error on dev loop2, logical block 100, lost async page write
[   91.468198][    T9] hub 2-1:0.0: 11 ports detected
[   91.470628][    T9] hub 2-1:0.0: insufficient power available to use all downstream ports
[   91.672359][    T9] hub 2-1:0.0: hub_hub_status failed (err = -71)
[   91.677517][    T9] hub 2-1:0.0: config failed, can't get hub status (err -71)
[   91.683932][    T9] usbhid 2-1:0.0: can't add hid device: -71
[   91.686809][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[   91.706202][    T9] usb 2-1: USB disconnect, device number 3
[   92.092506][ T6440] loop2: detected capacity change from 0 to 40427
[   92.114841][ T6440] F2FS-fs (loop2): Image doesn't support compression
[   92.129578][ T6440] F2FS-fs (loop2): invalid crc value
[   92.180567][ T6440] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   92.195127][ T6440] F2FS-fs (loop2): Start checkpoint disabled!
[   92.203778][ T6440] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[   92.255879][ T6440] F2FS-fs (loop2): Image doesn't support compression
[   92.462723][ T6465] loop0: detected capacity change from 0 to 256
[   92.477985][ T6466] capability: warning: `syz.2.258' uses deprecated v2 capabilities in a way that may be insecure
[   92.632997][ T6470] loop0: detected capacity change from 0 to 1024
[   92.651097][ T6470] EXT4-fs: Ignoring removed orlov option
[   92.674138][ T6470] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.731115][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.902438][ T6479] loop0: detected capacity change from 0 to 256
[   92.927260][ T6479] FAT-fs (loop0): Directory bread(block 64) failed
[   92.934894][ T6479] FAT-fs (loop0): Directory bread(block 65) failed
[   92.940736][ T6479] FAT-fs (loop0): Directory bread(block 66) failed
[   92.948626][ T6479] FAT-fs (loop0): Directory bread(block 67) failed
[   92.955683][ T6479] FAT-fs (loop0): Directory bread(block 68) failed
[   92.958599][ T6479] FAT-fs (loop0): Directory bread(block 69) failed
[   92.961580][ T6479] FAT-fs (loop0): Directory bread(block 70) failed
[   92.965996][ T6479] FAT-fs (loop0): Directory bread(block 71) failed
[   92.968841][ T6479] FAT-fs (loop0): Directory bread(block 72) failed
[   92.971707][ T6479] FAT-fs (loop0): Directory bread(block 73) failed
[   93.151592][ T6489] loop1: detected capacity change from 0 to 256
[   93.163965][ T6489] FAT-fs (loop1): Directory bread(block 64) failed
[   93.168605][ T6489] FAT-fs (loop1): Directory bread(block 65) failed
[   93.171283][ T6489] FAT-fs (loop1): Directory bread(block 66) failed
[   93.173453][ T6489] FAT-fs (loop1): Directory bread(block 67) failed
[   93.179006][ T6489] FAT-fs (loop1): Directory bread(block 68) failed
[   93.181082][ T6489] FAT-fs (loop1): Directory bread(block 69) failed
[   93.183635][ T6489] FAT-fs (loop1): Directory bread(block 70) failed
[   93.186989][ T6489] FAT-fs (loop1): Directory bread(block 71) failed
[   93.189755][ T6489] FAT-fs (loop1): Directory bread(block 72) failed
[   93.191865][ T6489] FAT-fs (loop1): Directory bread(block 73) failed
[   94.588164][ T6519] loop2: detected capacity change from 0 to 32768
[   94.598361][ T6519] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.283 (6519)
[   94.633032][ T6519] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   94.639199][ T6519] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   94.791470][ T6519] BTRFS info (device loop2): setting nodatasum
[   94.893738][ T6519] BTRFS info (device loop2): enabling free space tree
[   94.896930][ T6519] BTRFS info (device loop2): use zlib compression, level 3
[   94.900596][ T6519] BTRFS info (device loop2): max_inline set to 0
[   94.934763][ T6541] loop0: detected capacity change from 0 to 1024
[   94.947963][ T6541] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[   94.951588][ T6541] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869)
[   94.969327][ T6541] EXT4-fs (loop0): journal inode is deleted
[   95.271062][ T5959] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   95.625331][ T6550] loop1: detected capacity change from 0 to 512
[   95.663075][ T6550] EXT4-fs error (device loop1): ext4_xattr_inode_iget:437: inode #11: comm syz.1.290: missing EA_INODE flag
[   95.678293][ T6550] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.290: error while reading EA inode 11 err=-117
[   95.684036][ T6550] EXT4-fs (loop1): 1 orphan inode deleted
[   95.688892][ T6550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.729433][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.815538][ T6554] loop1: detected capacity change from 0 to 4096
[   97.044638][ T6581] loop1: detected capacity change from 0 to 128
[   97.069939][ T6581] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   97.075055][ T6581] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.787892][ T6598] loop0: detected capacity change from 0 to 1024
[   97.792128][ T6598] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[   98.008481][ T5964] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   98.141934][ T6604] loop0: detected capacity change from 0 to 512
[   98.248137][ T6604] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102]
[   98.252178][ T6604] System zones: 1-12
[   98.266177][ T6604] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.309: error while reading EA inode 32 err=-116
[   98.275526][ T6604] EXT4-fs (loop0): Remounting filesystem read-only
[   98.278767][ T6604] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   98.284257][ T6604] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30)
[   98.289536][ T6604] EXT4-fs (loop0): 1 orphan inode deleted
[   98.298420][ T6604] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.128135][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.436500][ T6618] loop1: detected capacity change from 0 to 2048
[   99.444207][ T6618] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[   99.454674][ T6618] UDF-fs: Scanning with blocksize 512 failed
[   99.461630][ T6618] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   99.499585][ T6618] overlayfs: conflicting options: userxattr,redirect_dir=on
[   99.531156][ T6622] loop2: detected capacity change from 0 to 8
[   99.651133][ T6629] overlayfs: empty lowerdir
[   99.788546][ T6635] Zero length message leads to an empty skb
[  100.442228][ T6646] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  101.145091][ T6664] netlink: 12 bytes leftover after parsing attributes in process `syz.2.335'.
[  101.173952][ T6664] vlan2: entered promiscuous mode
[  101.178610][ T6664] gretap0: entered promiscuous mode
[  101.471898][ T6666] sctp: [Deprecated]: syz.2.336 (pid 6666) Use of int in max_burst socket option.
[  101.471898][ T6666] Use struct sctp_assoc_value instead
[  102.329095][ T6676] loop1: detected capacity change from 0 to 32768
[  102.359680][   T33] kauditd_printk_skb: 2 callbacks suppressed
[  102.359696][   T33] audit: type=1800 audit(1756940753.916:41): pid=6676 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.340" name="file1" dev="loop1" ino=4 res=0 errno=0
[  102.460421][ T6682] loop2: detected capacity change from 0 to 128
[  102.467134][ T6682] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  102.475658][ T6682] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  102.491430][   T33] audit: type=1800 audit(1756940754.046:42): pid=6682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.344" name="file1" dev="loop2" ino=104 res=0 errno=0
[  102.678516][ T6690] netlink: 10 bytes leftover after parsing attributes in process `syz.0.348'.
[  102.904328][ T6696] loop0: detected capacity change from 0 to 512
[  102.971705][ T6696] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  102.979499][ T6696] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.354350][ T6704] evm: overlay not supported
[  104.078038][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  104.177145][ T6729] loop2: detected capacity change from 0 to 512
[  104.181214][ T6729] EXT4-fs (loop2): Test dummy encryption mode enabled
[  104.183645][ T6729] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  104.191741][ T6729] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  104.198248][ T6729] EXT4-fs (loop2): 1 truncate cleaned up
[  104.204210][ T6729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.219495][ T6729] EXT4-fs: Can't set or change test_dummy_encryption on remount
[  104.236674][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.683157][ T6740] loop1: detected capacity change from 0 to 32768
[  104.694789][ T6740] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section clean: entry type clock overruns end of section
[  104.694789][ T6740] clean (size 2912):
[  104.694789][ T6740] flags:          0
[  104.694789][ T6740] journal_seq:    10
[  104.694789][ T6740] dev_usage: 
[  104.694789][ T6740] usage: type=key_version v=0
[  104.694789][ T6740] (unknown jset_entry_type 255)
[  104.694789][ T6740] usage: type=reserved v=0
[  104.694789][ T6740] usage: type=reserved v=0
[  104.694789][ T6740] usage: type=reserved v=0
[  104.694789][ T6740] data_usage: btree: 1/1 [0]=2816
[  104.694789][ T6740] data_usage: journal: 1/1 [0]=0
[  104.694789][ T6740] data_usage: user: 1/1 [0]=16
[  104.694789][ T6740] dev_usage: dev=0  
[  104.694789][ T6740]   free: buckets=83 sectors=0 fragmented=0
[  104.694789][ T6740]   sb: buckets=25 sectors=6152 fragmented=248
[  104.694789][ T6740]   journal: buckets=8 sectors=2048 fragmented=0
[  104.694789][ T6740]   btree: buckets=11 sectors=2816 fragmented=0
[  104.694789][ T6740]   user: buckets=1 sectors=16 fragmented=240
[  104.694789][ T6740]   cached: buckets=0 sectors=0 fragmented=0
[  104.694789][ T6740]   parity: buckets=0 sectors=0 fragmented=0
[  104.694789][ T6740]   stripe: buckets=0 sectors=0 fragmented=0
[  104.694789][ T6740]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[  104.694789][ T6740]   need_discard: buckets=0 sectors=0 fragmented=0
[  104.694789][ T6740] 
[  104.782111][ T6742] netlink: 36 bytes leftover after parsing attributes in process `syz.2.366'.
[  104.787899][ T6742] netlink: 16 bytes leftover after parsing attributes in process `syz.2.366'.
[  104.791321][ T6742] netlink: 36 bytes leftover after parsing attributes in process `syz.2.366'.
[  104.795818][ T6742] netlink: 36 bytes leftover after parsing attributes in process `syz.2.366'.
[  104.810743][ T6740] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  104.930511][ T6746] loop2: detected capacity change from 0 to 512
[  104.958844][ T6746] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  105.002274][ T6746] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  105.006678][ T6746] System zones: 0-2, 18-18, 34-34
[  105.024961][ T6746] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.030251][ T6746] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.217402][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.252578][ T6757] pim6reg: entered allmulticast mode
[  105.275510][ T6757] pim6reg: left allmulticast mode
[  105.325317][ T6761] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.328679][ T6761] batman_adv: batadv0: Removing interface: batadv_slave_0
[  105.333351][ T6761] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  105.336060][ T6761] batman_adv: batadv0: Removing interface: batadv_slave_1
[  105.410866][ T6752] loop1: detected capacity change from 0 to 32768
[  105.436131][ T6752] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  105.464216][ T6752] XFS (loop1): Ending clean mount
[  105.493388][ T6752] XFS (loop1): Quotacheck needed: Please wait.
[  105.544256][ T6752] XFS (loop1): Quotacheck: Done.
[  105.596856][ T5964] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  105.922496][ T6788] tc_dump_action: action bad kind
[  106.218615][ T6803] loop1: detected capacity change from 0 to 1764
[  106.457613][ T6817] overlayfs: failed to clone lowerpath
[  106.551553][   T33] audit: type=1326 audit(1756940758.106:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[  106.564648][ T6025] usb 2-1: new low-speed USB device number 4 using dummy_hcd
[  106.572079][   T33] audit: type=1326 audit(1756940758.116:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[  106.582989][   T33] audit: type=1326 audit(1756940758.116:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[  106.594658][   T33] audit: type=1326 audit(1756940758.116:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f985392adb9 code=0x7ffc0000
[  106.614485][   T33] audit: type=1326 audit(1756940758.116:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[  106.625376][   T33] audit: type=1326 audit(1756940758.126:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f985392adb9 code=0x7ffc0000
[  106.637824][   T33] audit: type=1326 audit(1756940758.126:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7ffc0000
[  106.646916][   T33] audit: type=1326 audit(1756940758.126:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6820 comm="syz.0.398" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f985392adb9 code=0x7ffc0000
[  106.716555][ T6025] usb 2-1: No LPM exit latency info found, disabling LPM.
[  106.726831][ T6025] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  106.740769][ T6025] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  106.746429][ T6025] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  106.763572][ T6025] usb 2-1: string descriptor 0 read error: -22
[  106.767290][ T6025] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  106.771222][ T6025] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.783865][ T6025] usb 2-1: 0:2 : does not exist
[  106.987290][ T6025] usb 2-1: USB disconnect, device number 4
[  107.374504][    C1] vcan0: j1939_tp_rxtimer: 0xffff88801e43fc00: rx timeout, send abort
[  107.380416][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88801e43fc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  107.423508][ T6832] QAT: Stopping all acceleration devices.
[  107.538918][ T6838] loop1: detected capacity change from 0 to 1024
[  107.775605][ T6847] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  107.778456][ T6847] overlayfs: failed to set xattr on upper
[  107.780997][ T6847] overlayfs: ...falling back to redirect_dir=nofollow.
[  107.783453][ T6847] overlayfs: ...falling back to index=off.
[  107.999108][ T6847] overlayfs: ...falling back to uuid=null.
[  108.002013][ T6847] overlayfs: maximum fs stacking depth exceeded
[  108.731206][ T6870] netlink: 8 bytes leftover after parsing attributes in process `syz.2.418'.
[  109.552203][ T6896] loop1: detected capacity change from 0 to 256
[  109.560882][ T6896] exFAT-fs (loop1): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d)
[  109.577835][ T6896] exFAT-fs (loop1): error, in sector 160, dentry 11 should be unused, but 0xc1
[  109.581737][ T6896] exFAT-fs (loop1): Filesystem has been set read-only
[  109.918493][ T6918] loop1: detected capacity change from 0 to 16
[  109.930413][ T6918] erofs (device loop1): mounted with root inode @ nid 36.
[  109.972118][ T6920] loop2: detected capacity change from 0 to 512
[  109.981485][ T6920] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  110.005170][ T6920] EXT4-fs (loop2): 1 truncate cleaned up
[  110.008834][ T6920] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.062486][   T33] kauditd_printk_skb: 274 callbacks suppressed
[  110.062502][   T33] audit: type=1800 audit(1756940761.616:325): pid=6920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.433" name="file1" dev="loop2" ino=15 res=0 errno=0
[  110.150603][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.209420][ T6934] loop1: detected capacity change from 0 to 256
[  110.324368][ T6934] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  110.330416][ T6934] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  110.581261][ T6944] loop1: detected capacity change from 0 to 65
[  110.593674][ T6944] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  110.669207][ T6948] loop2: detected capacity change from 0 to 256
[  111.298249][   T33] audit: type=1326 audit(1756940762.606:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6957 comm="syz.1.449" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f373758ebe9 code=0x0
[  111.376529][ T6965] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  111.376529][ T6965]    program syz.0.451 not setting count and/or reply_len properly
[  111.463781][ T6969] loop0: detected capacity change from 0 to 256
[  111.495060][ T6969] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  111.607650][ T6975] loop2: detected capacity change from 0 to 1024
[  111.627255][ T6975] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  111.675562][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.752580][ T6981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.458'.
[  111.969180][ T6994] loop1: detected capacity change from 0 to 128
[  112.069834][ T6998] loop1: detected capacity change from 0 to 1024
[  112.101189][ T6998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  112.107228][ T6998] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.121548][ T6998] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 3: comm syz.1.466: lblock 3 mapped to illegal pblock 3 (length 3)
[  112.128937][ T6998] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  112.133923][ T6998] EXT4-fs (loop1): This should not happen!! Data will be lost
[  112.133923][ T6998] 
[  112.141744][ T6998] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm syz.1.466: lblock 0 mapped to illegal pblock 0 (length 3)
[  112.147958][ T6998] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117
[  112.152930][ T6998] EXT4-fs (loop1): This should not happen!! Data will be lost
[  112.152930][ T6998] 
[  112.184225][   T27] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 7: comm kworker/u10:0: lblock 7 mapped to illegal pblock 7 (length 9)
[  112.192621][   T27] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 7 with max blocks 9 with error 117
[  112.198085][   T27] EXT4-fs (loop1): This should not happen!! Data will be lost
[  112.198085][   T27] 
[  112.208285][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  112.353940][ T7011] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  114.139462][ T7027] loop2: detected capacity change from 0 to 1024
[  114.700574][ T7047] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  114.706708][ T7047] overlayfs: missing 'lowerdir'
[  115.132615][ T7051] sp0: Synchronizing with TNC
[  115.264364][ T7059] netlink: 8 bytes leftover after parsing attributes in process `syz.0.490'.
[  115.416487][ T7069] loop2: detected capacity change from 0 to 1024
[  115.469170][ T7069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.478649][ T7076] loop0: detected capacity change from 0 to 8
[  115.495154][ T7069] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.503920][ T7076] unable to read inode lookup table
[  115.521754][ T7069] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 16: comm syz.2.495: path /140/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0
[  115.554313][ T7069] EXT4-fs (loop2): Remounting filesystem read-only
[  115.589328][ T7080] loop1: detected capacity change from 0 to 256
[  115.608312][ T7080] exfat: Deprecated parameter 'utf8'
[  115.610632][ T7080] exfat: Deprecated parameter 'utf8'
[  115.612994][ T7080] exfat: Deprecated parameter 'utf8'
[  115.628860][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.671378][ T7080] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  117.003004][ T7102] loop1: detected capacity change from 0 to 256
[  117.183449][ T7102] FAT-fs (loop1): Directory bread(block 64) failed
[  117.208079][ T7102] FAT-fs (loop1): Directory bread(block 65) failed
[  117.236629][ T7102] FAT-fs (loop1): Directory bread(block 66) failed
[  117.239360][ T7102] FAT-fs (loop1): Directory bread(block 67) failed
[  117.260472][ T7102] FAT-fs (loop1): Directory bread(block 68) failed
[  117.278286][ T7102] FAT-fs (loop1): Directory bread(block 69) failed
[  117.297463][ T7102] FAT-fs (loop1): Directory bread(block 70) failed
[  117.317733][ T7102] FAT-fs (loop1): Directory bread(block 71) failed
[  117.321164][ T7102] FAT-fs (loop1): Directory bread(block 72) failed
[  117.349619][ T7102] FAT-fs (loop1): Directory bread(block 73) failed
[  118.001880][ T7117] loop2: detected capacity change from 0 to 1024
[  118.005542][ T7117] EXT4-fs: inline encryption not supported
[  118.014047][ T7117] EXT4-fs (loop2): orphan cleanup on readonly fs
[  118.022393][ T7117] EXT4-fs (loop2): 1 truncate cleaned up
[  118.034169][ T7117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  118.092841][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.170977][ T7123] netlink: 8 bytes leftover after parsing attributes in process `syz.0.518'.
[  118.584351][ T7151] netlink: 8 bytes leftover after parsing attributes in process `syz.0.531'.
[  118.596408][ T7151] netlink: 28 bytes leftover after parsing attributes in process `syz.0.531'.
[  118.713825][ T7159] 9pnet_fd: Insufficient options for proto=fd
[  118.781707][ T7163] loop1: detected capacity change from 0 to 256
[  118.910260][ T7165] loop0: detected capacity change from 0 to 4096
[  118.924658][ T7165] ntfs3(loop0): Primary boot: invalid bytes per MFT record 0 (0).
[  118.931185][ T7165] ntfs3(loop0): try to read out of volume at offset 0x1ffe00
[  119.258258][ T7170] loop0: detected capacity change from 0 to 32768
[  119.283224][ T7170] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  119.293823][ T7170] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  119.312270][   T33] audit: type=1800 audit(1756940770.866:327): pid=7170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.540" name="file1" dev="loop0" ino=17058 res=0 errno=0
[  119.383297][ T5965] ocfs2: Unmounting device (7,0) on (node local)
[  119.552533][ T7183] netlink: 28 bytes leftover after parsing attributes in process `syz.0.544'.
[  119.558275][ T7183] netlink: 28 bytes leftover after parsing attributes in process `syz.0.544'.
[  119.661622][ T7189] overlayfs: failed to resolve './file1metacopy=off': -2
[  119.754858][ T2207] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  119.816534][ T7197] netlink: 8 bytes leftover after parsing attributes in process `syz.0.552'.
[  119.860137][ T7199] loop0: detected capacity change from 0 to 256
[  119.868870][ T7199] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000e8a4, chksum : 0x7bc75166, utbl_chksum : 0xe619d30d)
[  119.881594][ T7199] exFAT-fs (loop0): error, in sector 160, dentry 11 should be unused, but 0xc1
[  119.885714][ T7199] exFAT-fs (loop0): Filesystem has been set read-only
[  119.914634][ T2207] usb 3-1: Using ep0 maxpacket: 8
[  119.919822][ T2207] usb 3-1: config 0 has an invalid interface number: 246 but max is 0
[  119.926453][ T2207] usb 3-1: config 0 has no interface number 0
[  119.933424][ T7201] loop0: detected capacity change from 0 to 512
[  119.940588][ T2207] usb 3-1: New USB device found, idVendor=2040, idProduct=d300, bcdDevice=16.b3
[  119.943984][ T2207] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.950996][ T2207] usb 3-1: Product: syz
[  119.952933][ T2207] usb 3-1: Manufacturer: syz
[  119.955453][ T2207] usb 3-1: SerialNumber: syz
[  119.959547][ T2207] usb 3-1: config 0 descriptor??
[  119.970308][ T7201] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.985238][ T7201] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.025278][ T2207] msi2500 3-1:0.246: Registered as swradio24
[  120.028363][ T2207] msi2500 3-1:0.246: SDR API is still slightly experimental and functionality changes may follow
[  120.057226][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.126053][ T7211] vivid-000: disconnect
[  120.132446][ T7210] vivid-000: reconnect
[  120.176636][ T6025] usb 3-1: USB disconnect, device number 5
[  120.303076][ T7222] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  120.964846][ T7232] loop1: detected capacity change from 0 to 8
[  120.977466][ T7232] SQUASHFS error: Unable to read inode 0xe3
[  121.186667][ T7224] orangefs_mount: mount request failed with -4
[  121.294589][ T2207] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  121.320809][ T5940] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  121.322598][ T7242] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  121.444880][ T2207] usb 2-1: Using ep0 maxpacket: 8
[  121.451107][ T2207] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  121.456846][ T2207] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.460850][ T7248] loop0: detected capacity change from 0 to 2048
[  121.480438][ T2207] pvrusb2: Hardware description: Terratec Grabster AV400
[  121.489353][ T2207] pvrusb2: **********
[  121.490906][ T7248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.491133][ T2207] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  121.496573][ T7248] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.504679][ T2207] pvrusb2: Important functionality might not be entirely working.
[  121.512024][ T2207] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  121.516941][   T33] audit: type=1800 audit(1756940773.066:328): pid=7248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.572" name="file1" dev="loop0" ino=15 res=0 errno=0
[  121.525869][ T2207] pvrusb2: **********
[  121.539165][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.585599][ T7252] loop0: detected capacity change from 0 to 2048
[  121.607410][ T7252] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  121.682021][ T2397] pvrusb2: Invalid write control endpoint
[  121.726183][ T2397] pvrusb2: Invalid write control endpoint
[  121.728972][ T2397] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  121.733605][ T2397] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  121.738353][ T2397] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  121.742621][ T2397] pvrusb2: Device being rendered inoperable
[  121.748695][ T2397] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  121.752225][ T2397] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  121.759666][ T2397] pvrusb2: Attached sub-driver cx25840
[  121.762206][ T2397] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  121.766928][ T2397] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  121.889500][ T6025] usb 2-1: USB disconnect, device number 5
[  122.001821][ T7259] loop0: detected capacity change from 0 to 32768
[  122.007572][ T7259] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.575 (7259)
[  122.021926][ T7259] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  122.026927][ T7259] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  122.095112][ T7259] BTRFS info (device loop0): enabling ssd optimizations
[  122.098126][ T7259] BTRFS info (device loop0): enabling free space tree
[  122.141896][ T5965] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  122.268368][ T7278] syz.0.576 uses obsolete (PF_INET,SOCK_PACKET)
[  122.463648][ T7282] loop2: detected capacity change from 0 to 4096
[  122.481617][ T7282] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  122.555606][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.653549][ T7294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.583'.
[  122.658340][ T7294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.583'.
[  122.675435][ T7293] loop2: detected capacity change from 0 to 4096
[  122.684591][ T7293] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  122.714923][ T7293] ntfs3(loop2): ino=1a, mi_enum_attr
[  122.716834][ T7293] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  122.743516][ T7286] loop1: detected capacity change from 0 to 32768
[  122.752143][ T7286] (syz.1.580,7286,1):ocfs2_verify_volume:2290 ERROR: found superblock with incorrect block size bits: found 265, should be 9, 10, 11, or 12
[  122.760643][ T7286] (syz.1.580,7286,1):ocfs2_verify_volume:2331 ERROR: status = -22
[  122.763613][ T7286] (syz.1.580,7286,1):ocfs2_fill_super:989 ERROR: superblock probe failed!
[  122.768299][ T7286] (syz.1.580,7286,1):ocfs2_fill_super:1177 ERROR: status = -22
[  123.009469][ T7304] loop1: detected capacity change from 0 to 164
[  123.054192][ T5964] iso9660: Corrupted directory entry in block 2 of inode 1920
[  123.062096][ T5964] iso9660: Corrupted directory entry in block 2 of inode 1920
[  123.084825][ T7298] loop2: detected capacity change from 0 to 40427
[  123.111840][ T7298] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  123.168407][ T7298] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  123.180491][ T7298] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  123.248285][ T5959] bio_check_eod: 3 callbacks suppressed
[  123.248296][ T5959] syz-executor: attempt to access beyond end of device
[  123.248296][ T5959] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  123.263152][ T5959] CPU: 1 UID: 0 PID: 5959 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  123.263173][ T5959] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  123.263180][ T5959] Call Trace:
[  123.263185][ T5959]  <TASK>
[  123.263191][ T5959]  dump_stack_lvl+0x189/0x250
[  123.263212][ T5959]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.263226][ T5959]  ? __pfx_queue_work_on+0x10/0x10
[  123.263237][ T5959]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  123.263250][ T5959]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  123.263273][ T5959]  f2fs_handle_critical_error+0x37c/0x540
[  123.263295][ T5959]  f2fs_write_end_io+0x886/0xb60
[  123.263319][ T5959]  __submit_merged_bio+0x27a/0x6a0
[  123.263338][ T5959]  __submit_merged_write_cond+0x255/0x530
[  123.263356][ T5959]  f2fs_write_data_pages+0x261d/0x3000
[  123.263367][ T5959]  ? __lock_acquire+0xab9/0xd20
[  123.263404][ T5959]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  123.263446][ T5959]  ? check_path+0x21/0x40
[  123.263456][ T5959]  ? check_noncircular+0xe0/0x160
[  123.263492][ T5959]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  123.263505][ T5959]  do_writepages+0x32e/0x550
[  123.263528][ T5959]  ? do_raw_spin_unlock+0x4d/0x240
[  123.263544][ T5959]  filemap_fdatawrite+0x199/0x240
[  123.263559][ T5959]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  123.263596][ T5959]  ? do_raw_spin_unlock+0x4d/0x240
[  123.263612][ T5959]  f2fs_sync_dirty_inodes+0x31f/0x830
[  123.263635][ T5959]  f2fs_write_checkpoint+0x95a/0x1df0
[  123.263663][ T5959]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  123.263736][ T5959]  ? kill_f2fs_super+0x298/0x6c0
[  123.263754][ T5959]  kill_f2fs_super+0x2c3/0x6c0
[  123.263767][ T5959]  ? __pfx_kill_f2fs_super+0x10/0x10
[  123.263777][ T5959]  ? radix_tree_delete_item+0x2b6/0x400
[  123.263797][ T5959]  ? shrinker_free+0x2ce/0x3e0
[  123.263812][ T5959]  deactivate_locked_super+0xbc/0x130
[  123.263828][ T5959]  cleanup_mnt+0x425/0x4c0
[  123.263842][ T5959]  ? lockdep_hardirqs_on+0x9c/0x150
[  123.263854][ T5959]  task_work_run+0x1d4/0x260
[  123.263867][ T5959]  ? __pfx_task_work_run+0x10/0x10
[  123.263880][ T5959]  ? __x64_sys_umount+0x122/0x160
[  123.263898][ T5959]  ? exit_to_user_mode_loop+0x40/0x110
[  123.263917][ T5959]  exit_to_user_mode_loop+0xec/0x110
[  123.263932][ T5959]  do_syscall_64+0x2bd/0x3b0
[  123.263943][ T5959]  ? lockdep_hardirqs_on+0x9c/0x150
[  123.263950][ T5959]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.263959][ T5959]  ? exc_page_fault+0x9f/0xf0
[  123.263976][ T5959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.263987][ T5959] RIP: 0033:0x7f990ad8ff17
[  123.263999][ T5959] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  123.264008][ T5959] RSP: 002b:00007ffee48feb98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  123.264022][ T5959] RAX: 0000000000000000 RBX: 00007f990ae11c05 RCX: 00007f990ad8ff17
[  123.264029][ T5959] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee48fec50
[  123.264036][ T5959] RBP: 00007ffee48fec50 R08: 0000000000000000 R09: 0000000000000000
[  123.264042][ T5959] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee48ffce0
[  123.264049][ T5959] R13: 00007f990ae11c05 R14: 000000000001e0dc R15: 00007ffee48ffd20
[  123.264062][ T5959]  </TASK>
[  123.264067][ T5959] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  123.409549][ T7324] netlink: 20 bytes leftover after parsing attributes in process `syz.1.597'.
[  125.234595][    T9] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  125.283063][ T7366] loop2: detected capacity change from 0 to 32768
[  125.292674][ T7366] 
[  125.292674][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.292674][ T7366] 
[  125.314789][ T7366] 
[  125.314789][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.314789][ T7366] 
[  125.320238][ T7366] 
[  125.320238][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.320238][ T7366] 
[  125.324643][ T7366] 
[  125.324643][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.324643][ T7366] 
[  125.328033][ T7366] 
[  125.328033][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.328033][ T7366] 
[  125.331988][ T7366] 
[  125.331988][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.331988][ T7366] 
[  125.337053][ T7366] 
[  125.337053][ T7366]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.337053][ T7366] 
[  125.349203][  T116] 
[  125.349203][  T116]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.349203][  T116] 
[  125.374939][ T5959] 
[  125.374939][ T5959]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.374939][ T5959] 
[  125.381764][ T5959] 
[  125.381764][ T5959]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  125.381764][ T5959] 
[  125.392092][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 65535, setting to 64
[  125.400428][    T9] usb 2-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66
[  125.404308][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.410513][    T9] usb 2-1: Product: syz
[  125.412262][    T9] usb 2-1: Manufacturer: syz
[  125.414188][    T9] usb 2-1: SerialNumber: syz
[  125.430781][    T9] usb 2-1: config 0 descriptor??
[  125.433608][ T7362] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  125.454702][    T9] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -71
[  125.464831][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  125.664978][    T9] usb 2-1: USB disconnect, device number 6
[  125.917706][ T7390] netlink: 'syz.2.625': attribute type 12 has an invalid length.
[  126.306883][ T7399] loop1: detected capacity change from 0 to 512
[  126.332893][ T7399] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.341986][ T7399] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.367215][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.406732][ T7404] loop1: detected capacity change from 0 to 512
[  126.422430][ T7404] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.436085][ T7404] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.509527][ T5964] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.136096][    T9] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  128.292708][    T9] usb 2-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0x47, changing to 0x7
[  128.306245][    T9] usb 2-1: config 36 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 0, changing to 10
[  128.321081][    T9] usb 2-1: config 36 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  128.332327][    T9] usb 2-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=3d.29
[  128.338159][    T9] usb 2-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  128.341054][    T9] usb 2-1: Manufacturer: syz
[  128.344243][ T7440] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  128.365441][    T9] usb 2-1: SerialNumber: syz
[  128.597220][    T9] usbhid 2-1:36.0: couldn't find an input interrupt endpoint
[  128.634908][    T9] usb 2-1: USB disconnect, device number 7
[  128.667583][ T7456] Illegal XDP return value 4294967294 on prog  (id 55) dev N/A, expect packet loss!
[  128.972020][ T7464] loop2: detected capacity change from 0 to 512
[  129.003586][ T7464] EXT4-fs (loop2): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  129.017748][ T7464] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  129.029245][ T7464] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829)
[  129.038058][ T7464] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities
[  129.538534][ T7471] loop1: detected capacity change from 0 to 4096
[  130.089726][ T7475] loop2: detected capacity change from 0 to 32768
[  130.142522][ T7475] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  130.199504][ T7475] XFS (loop2): Ending clean mount
[  130.264255][ T5959] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  130.272502][ T7492] loop1: detected capacity change from 0 to 128
[  130.288151][ T7492] vfat: Unknown parameter 'shortn^e'
[  130.508115][ T7496] loop1: detected capacity change from 0 to 256
[  130.533764][ T7496] exfat: Deprecated parameter 'namecase'
[  130.550802][ T7496] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[  130.747405][ T7505] loop1: detected capacity change from 0 to 128
[  130.751095][ T7505] EXT4-fs: Ignoring removed nomblk_io_submit option
[  130.754241][ T7505] EXT4-fs: Ignoring removed nomblk_io_submit option
[  130.757968][ T7505] EXT4-fs (loop1): Test dummy encryption mode enabled
[  130.779958][ T7505] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  130.785413][ T7505] ext4 filesystem being mounted at /206/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  130.867187][ T7505] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))"
[  131.293198][ T7514] loop0: detected capacity change from 0 to 16
[  131.322496][ T7514] erofs (device loop0): EXPERIMENTAL 48-bit layout support in use. Use at your own risk!
[  131.329975][ T7514] erofs (device loop0): unsupported i_format 65280 of nid 255
[  131.370617][ T7516] loop2: detected capacity change from 0 to 512
[  131.376333][ T7516] EXT4-fs: Ignoring removed nobh option
[  131.427557][ T7516] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.489784][ T7516] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.669: iget: bad i_size value: 15393162788874
[  131.801664][ T5959] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.431531][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  132.434196][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  132.446947][ T5964] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  133.151448][ T7541] loop2: detected capacity change from 0 to 4096
[  133.208355][ T7550] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  133.251061][ T7552] mkiss: ax0: crc mode is auto.
[  133.537331][ T7566] loop0: detected capacity change from 0 to 2048
[  133.569526][ T7566] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  133.820266][ T6025] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  133.919227][ T7575] binder_alloc: 7573: binder_alloc_buf, no vma
[  133.985870][ T6025] usb 2-1: Using ep0 maxpacket: 16
[  133.994114][ T6025] usb 2-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.006400][ T6025] usb 2-1: config 0 interface 0 has no altsetting 0
[  134.009276][ T6025] usb 2-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  134.013061][ T6025] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.026938][ T6025] usb 2-1: config 0 descriptor??
[  134.276607][ T7581] loop2: detected capacity change from 0 to 32768
[  134.331824][ T7581] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  134.331838][ T7581]   allowing incompatible features above 0.0: (unknown version)
[  134.331843][ T7581]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  134.349492][ T7581] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[  134.352332][ T7581] bcachefs (loop2): initializing new filesystem
[  134.355860][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  134.363752][ T7581] bcachefs (loop2): going read-write
[  134.373508][ T7581] bcachefs (loop2): marking superblocks
[  134.400515][ T7581] bcachefs (loop2): initializing freespace
[  134.407808][ T7581] bcachefs (loop2): done initializing freespace
[  134.415148][ T7581] bcachefs (loop2): reading snapshots table
[  134.417471][ T7581] bcachefs (loop2): reading snapshots done
[  134.442968][ T7581] bcachefs (loop2): done starting filesystem
[  134.460001][ T6025] nzxt-smart2 0003:1E71:2009.0002: unknown main item tag 0x0
[  134.464512][ T6025] nzxt-smart2 0003:1E71:2009.0002: unknown main item tag 0x0
[  134.475592][ T6025] nzxt-smart2 0003:1E71:2009.0002: unknown main item tag 0x0
[  134.492576][ T6025] nzxt-smart2 0003:1E71:2009.0002: unknown main item tag 0x0
[  134.497354][ T6025] nzxt-smart2 0003:1E71:2009.0002: unknown main item tag 0x0
[  134.503849][ T6025] nzxt-smart2 0003:1E71:2009.0002: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.1-1/input0
[  134.577164][ T7581] syz.2.697 (7581) used greatest stack depth: 15864 bytes left
[  134.615054][ T5959] bcachefs (loop2): shutting down
[  134.617445][ T5959] bcachefs (loop2): going read-only
[  134.621605][ T5959] bcachefs (loop2): finished waiting for writes to stop
[  134.650889][ T5959] bcachefs (loop2): flushing journal and stopping allocators, journal seq 4
[  134.657305][   T33] audit: type=1326 audit(1756940786.206:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7573 comm="syz.0.694" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x7fc00000
[  134.673095][    C1] usb 2-1: input irq status -75 received
[  134.766808][ T5959] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 5
[  134.774865][ T5959] bcachefs (loop2): clean shutdown complete, journal seq 6
[  134.779026][ T5959] bcachefs (loop2): marking filesystem clean
[  134.814286][ T5959] bcachefs (loop2): shutdown complete
[  134.880705][ T6025] usb 2-1: USB disconnect, device number 8
[  135.062855][   T33] audit: type=1326 audit(1756940786.626:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7605 comm="syz.0.704" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f985398ebe9 code=0x0
[  135.336624][ T7619] netlink: 132 bytes leftover after parsing attributes in process `syz.0.709'.
[  135.437616][ T7622] netlink: 36 bytes leftover after parsing attributes in process `syz.0.710'.
[  135.442356][ T7622] netlink: 36 bytes leftover after parsing attributes in process `syz.0.710'.
[  135.464639][ T7622] netlink: 36 bytes leftover after parsing attributes in process `syz.0.710'.
[  135.570238][ T7622] loop0: detected capacity change from 0 to 2048
[  135.622327][ T7622] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  135.634264][   T54] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  135.638306][   T54] Bluetooth: hci0: Injecting HCI hardware error event
[  135.642553][ T5968] Bluetooth: hci0: hardware error 0x00
[  136.968028][ T7645] loop0: detected capacity change from 0 to 128
[  137.484077][ T7654] loop0: detected capacity change from 0 to 32768
[  137.535253][ T7654] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  137.558734][ T7654] XFS (loop0): Ending clean mount
[  137.562184][ T7664] loop1: detected capacity change from 0 to 16
[  137.565686][ T7654] XFS (loop0): Quotacheck needed: Please wait.
[  137.570940][ T7664] erofs (device loop1): rootino(nid 36) is not a directory(i_mode 120040)
[  137.589138][ T7654] XFS (loop0): Quotacheck: Done.
[  137.671755][ T5965] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  137.784786][ T5968] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  138.378575][ T7677] loop2: detected capacity change from 0 to 128
[  138.381916][ T7677] EXT4-fs: Ignoring removed nobh option
[  138.400978][ T7677] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  138.408109][ T7677] ext4 filesystem being mounted at /211/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  138.446885][ T7677] syz.2.729 (pid 7677) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  138.527856][ T5959] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  138.600221][ T7683] loop2: detected capacity change from 0 to 1024
[  138.650902][ T7683] hfsplus: bad catalog entry type
[  139.103370][ T7696] loop2: detected capacity change from 0 to 40427
[  139.109398][ T7696] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  139.117167][ T7696] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  139.120739][ T7699] loop1: detected capacity change from 0 to 32768
[  139.147822][ T7696] F2FS-fs (loop2): invalid crc value
[  139.150194][ T7696] F2FS-fs (loop2): Failed to get valid F2FS checkpoint
[  139.564587][ T2207] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  139.720400][ T2207] usb 3-1: New USB device found, idVendor=0582, idProduct=008d, bcdDevice=7a.ac
[  139.724382][ T2207] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.730993][ T2207] usb 3-1: Product: syz
[  139.732778][ T2207] usb 3-1: Manufacturer: syz
[  139.736228][ T2207] usb 3-1: SerialNumber: syz
[  139.742153][ T2207] usb 3-1: config 0 descriptor??
[  139.748861][ T2207] usb 3-1: interface 1 not found
[  140.056132][   T96] usb 3-1: USB disconnect, device number 6
[  140.528390][ T7706] loop2: detected capacity change from 0 to 1024
[  140.538002][ T7706] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  140.554969][ T7706] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869)
[  140.570064][ T7706] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  140.578113][ T7706] EXT4-fs (loop2): invalid journal inode
[  140.908878][   T54] Bluetooth: hci2: command 0x0406 tx timeout
[  141.058350][   T33] audit: type=1326 audit(1756940792.626:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.2.750" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f990ad8ebe9 code=0x0
[  141.118792][ T7724] loop2: detected capacity change from 0 to 16
[  141.134029][ T7724] erofs (device loop2): mounted with root inode @ nid 36.
[  141.251290][ T7726] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma?
[  142.477577][ T7738] loop1: detected capacity change from 0 to 2048
[  142.491342][ T7738] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  142.524982][ T7738] syz.1.756: attempt to access beyond end of device
[  142.524982][ T7738] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  142.532790][ T7739] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  142.829855][ T7736] loop0: detected capacity change from 0 to 32768
[  142.867606][ T7736] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  142.931830][ T5965] ocfs2: Unmounting device (7,0) on (node local)
[  143.069745][ T7757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.765'.
[  143.076012][ T7757] netlink: 6 bytes leftover after parsing attributes in process `syz.2.765'.
[  143.153112][ T7763] loop2: detected capacity change from 0 to 164
[  143.579217][ T7786] netlink: 'syz.0.778': attribute type 1 has an invalid length.
[  143.582790][ T7786] netlink: 'syz.0.778': attribute type 1 has an invalid length.
[  143.588887][ T7786] netlink: 'syz.0.778': attribute type 1 has an invalid length.
[  143.593772][ T7786] block nbd0: shutting down sockets
[  143.624589][ T6025] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  143.774916][ T6025] usb 3-1: Using ep0 maxpacket: 16
[  143.783725][ T6025] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.793582][ T6025] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  143.801295][ T6025] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.814990][ T6025] usb 3-1: config 0 descriptor??
[  144.095680][ T7794] loop1: detected capacity change from 0 to 32768
[  144.229430][ T6025] mcp2221 0003:04D8:00DD.0003: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  144.370687][ T7801] pim6reg1: entered promiscuous mode
[  144.372905][ T7801] pim6reg1: entered allmulticast mode
[  144.536433][ T7805] loop1: detected capacity change from 0 to 1024
[  144.564664][ T7805] hfsplus: bad catalog entry type
[  144.588648][ T3548] hfsplus: b-tree write err: -5, ino 4
[  144.631829][ T6025] usb 3-1: USB disconnect, device number 7
[  144.872685][ T7808] loop0: detected capacity change from 0 to 32768
[  144.887819][ T7808] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  144.927022][ T5965] ocfs2: Unmounting device (7,0) on (node local)
[  144.995195][   T24] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  145.165420][   T24] usb 2-1: Using ep0 maxpacket: 32
[  145.170566][   T24] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  145.179560][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  145.184134][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  145.196260][   T24] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  145.201876][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.218064][   T24] usb 2-1: config 0 descriptor??
[  145.220949][ T7811] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  145.229246][   T24] hub 2-1:0.0: USB hub found
[  145.256545][ T7825] netlink: 'syz.0.796': attribute type 10 has an invalid length.
[  145.265171][ T7825] netlink: 40 bytes leftover after parsing attributes in process `syz.0.796'.
[  145.269321][ T7825] vcan0: entered promiscuous mode
[  145.277012][ T7825] A link change request failed with some changes committed already. Interface vcan0 may have been left with an inconsistent configuration, please check.
[  145.553311][ T7843] netlink: 16 bytes leftover after parsing attributes in process `syz.2.805'.
[  145.575105][   T24] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  145.588090][   T24] usbhid 2-1:0.0: can't add hid device: -71
[  145.590744][   T24] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  145.625783][   T24] usb 2-1: USB disconnect, device number 9
[  145.711303][ T7847] netlink: 'syz.0.800': attribute type 1 has an invalid length.
[  146.039210][ T7852] netlink: 'syz.2.808': attribute type 1 has an invalid length.
[  146.042488][ T7852] netlink: 232 bytes leftover after parsing attributes in process `syz.2.808'.
[  146.047076][ T7852] netlink: 8 bytes leftover after parsing attributes in process `syz.2.808'.
[  146.722878][ T7896] netlink: 28 bytes leftover after parsing attributes in process `syz.0.828'.
[  147.001251][ T7918] loop0: detected capacity change from 0 to 512
[  147.054186][ T7918] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.059547][ T7918] ext4 filesystem being mounted at /261/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  147.083265][ T7918] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 18: comm syz.0.834: lblock 23 mapped to illegal pblock 18 (length 1)
[  147.099593][ T7918] EXT4-fs (loop0): Remounting filesystem read-only
[  147.126152][ T5965] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.683821][ T7929] warning: `syz.2.837' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  148.071568][ T7933] loop2: detected capacity change from 0 to 32768
[  148.096438][ T7933] OCFS2: ERROR (device loop2): int ocfs2_validate_inode_block(struct super_block *, struct buffer_head *): Invalid dinode #74: fs_generation is 16737473
[  148.104942][ T7933] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  148.109056][ T7933] (syz.2.839,7933,1):ocfs2_read_locked_inode:597 ERROR: status = -30
[  148.112576][ T7933] (syz.2.839,7933,1):_ocfs2_get_system_file_inode:144 ERROR: status = -30
[  148.132045][ T7933] (syz.2.839,7933,1):ocfs2_init_local_system_inodes:496 ERROR: status=-30, sysfile=9, slot=0
[  148.144499][ T7933] (syz.2.839,7933,1):ocfs2_init_local_system_inodes:505 ERROR: status = -30
[  148.147975][ T7933] (syz.2.839,7933,1):ocfs2_mount_volume:1758 ERROR: status = -30
[  148.164707][ T7933] (syz.2.839,7933,1):ocfs2_fill_super:1177 ERROR: status = -30
[  148.433248][ T7949] loop1: detected capacity change from 0 to 164
[  148.507657][ T5964] iso9660: Corrupted directory entry in block 2 of inode 1920
[  148.512411][ T5964] iso9660: Corrupted directory entry in block 2 of inode 1920
[  148.516175][ T5964] iso9660: Corrupted directory entry in block 2 of inode 1920
[  148.520671][ T5964] iso9660: Corrupted directory entry in block 2 of inode 1920
[  149.036710][ T7969] loop2: detected capacity change from 0 to 8
[  149.292527][ T7972] loop2: detected capacity change from 0 to 32768
[  149.330483][ T7972] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  149.355731][   T33] audit: type=1800 audit(1756940800.926:332): pid=7972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.858" name="file1" dev="loop2" ino=17058 res=0 errno=0
[  149.417555][ T5959] ocfs2: Unmounting device (7,2) on (node local)
[  149.679930][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  149.683400][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  149.686806][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  149.690875][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  149.693844][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  149.847167][ T7989] chnl_net:caif_netlink_parms(): no params data found
[  149.892982][ T7989] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.895553][ T7989] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.898037][ T7989] bridge_slave_0: entered allmulticast mode
[  149.900757][ T7989] bridge_slave_0: entered promiscuous mode
[  149.903935][ T7989] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.906961][ T7989] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.909463][ T7989] bridge_slave_1: entered allmulticast mode
[  149.912608][ T7989] bridge_slave_1: entered promiscuous mode
[  149.933417][ T7989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.940283][ T7989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.970849][ T7995] loop0: detected capacity change from 0 to 32768
[  149.971454][ T7989] team0: Port device team_slave_0 added
[  149.983389][ T7995] (syz.0.867,7995,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  149.991549][ T7989] team0: Port device team_slave_1 added
[  149.996661][ T7995] (syz.0.867,7995,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  150.022900][ T7995] JBD2: Ignoring recovery information on journal
[  150.032498][ T7989] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.042172][ T7989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.086012][ T7989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.095765][ T7995] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  150.099851][ T7989] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.102190][ T7989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.112988][ T7989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.134308][ T7995] 
[  150.135404][ T7995] ======================================================
[  150.138305][ T7995] WARNING: possible circular locking dependency detected
[  150.141219][ T7995] syzkaller #0 Not tainted
[  150.143651][ T7995] ------------------------------------------------------
[  150.146946][ T7995] syz.0.867/7995 is trying to acquire lock:
[  150.149311][ T7995] ffff88802923e618 (sb_internal#2){.+.+}-{0:0}, at: ocfs2_acquire_dquot+0x455/0xb30
[  150.152559][ T7995] 
[  150.152559][ T7995] but task is already holding lock:
[  150.155397][ T7995] ffff88803d45cee0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270
[  150.159426][ T7995] 
[  150.159426][ T7995] which lock already depends on the new lock.
[  150.159426][ T7995] 
[  150.162961][ T7995] 
[  150.162961][ T7995] the existing dependency chain (in reverse order) is:
[  150.166527][ T7995] 
[  150.166527][ T7995] -> #6 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}:
[  150.169963][ T7995]        lock_acquire+0x120/0x360
[  150.171672][ T7995]        down_write+0x96/0x1f0
[  150.173452][ T7995]        ocfs2_lock_global_qf+0x1e8/0x270
[  150.175436][ T7995]        ocfs2_acquire_dquot+0x2b0/0xb30
[  150.177495][ T7995]        dqget+0x7b1/0xf10
[  150.179187][ T7995]        dquot_set_dqblk+0x2b/0xfa0
[  150.181283][ T7995]        quota_setquota+0x4b7/0x540
[  150.183204][ T7995]        __se_sys_quotactl+0x279/0x950
[  150.185119][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.187214][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.189745][ T7995] 
[  150.189745][ T7995] -> #5 (&ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}:
[  150.193018][ T7995]        lock_acquire+0x120/0x360
[  150.194819][ T7995]        down_write+0x96/0x1f0
[  150.196549][ T7995]        ocfs2_lock_global_qf+0x1ca/0x270
[  150.198817][ T7995]        ocfs2_acquire_dquot+0x2b0/0xb30
[  150.200781][ T7995]        dqget+0x7b1/0xf10
[  150.202495][ T7995]        dquot_set_dqblk+0x2b/0xfa0
[  150.204450][ T7995]        quota_setquota+0x4b7/0x540
[  150.206182][ T7995]        __se_sys_quotactl+0x279/0x950
[  150.207946][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.209829][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.212210][ T7995] 
[  150.212210][ T7995] -> #4 (&dquot->dq_lock){+.+.}-{4:4}:
[  150.214755][ T7995]        lock_acquire+0x120/0x360
[  150.216753][ T7995]        __mutex_lock+0x187/0x1350
[  150.218753][ T7995]        dqget+0x72a/0xf10
[  150.220491][ T7995]        __dquot_initialize+0x3b3/0xcb0
[  150.222516][ T7995]        __ext4_new_inode+0x7dd/0x3cb0
[  150.224472][ T7995]        ext4_xattr_inode_lookup_create+0xa3a/0x1c20
[  150.226771][ T7995]        ext4_xattr_block_set+0x223/0x2ac0
[  150.229082][ T7995]        ext4_xattr_set_handle+0x1350/0x1590
[  150.231299][ T7995]        __ext4_set_acl+0x56c/0x650
[  150.233397][ T7995]        ext4_set_acl+0x35c/0x530
[  150.235367][ T7995]        vfs_set_acl+0x887/0xb00
[  150.237140][ T7995]        do_set_acl+0xf6/0x190
[  150.239007][ T7995]        filename_setxattr+0x2e0/0x600
[  150.241183][ T7995]        path_setxattrat+0x364/0x3a0
[  150.243076][ T7995]        __x64_sys_setxattr+0xbc/0xe0
[  150.244850][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.246529][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.248840][ T7995] 
[  150.248840][ T7995] -> #3 (&ei->xattr_sem){++++}-{4:4}:
[  150.251423][ T7995]        lock_acquire+0x120/0x360
[  150.253485][ T7995]        down_read+0x46/0x2e0
[  150.255168][ T7995]        ext4_setattr+0x855/0x1bc0
[  150.256784][ T7995]        notify_change+0xb36/0xe40
[  150.258357][ T7995]        chown_common+0x40c/0x5c0
[  150.260117][ T7995]        do_fchownat+0x161/0x270
[  150.262050][ T7995]        __x64_sys_chown+0x82/0xa0
[  150.263990][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.265566][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.267569][ T7995] 
[  150.267569][ T7995] -> #2 (jbd2_handle){++++}-{0:0}:
[  150.270245][ T7995]        lock_acquire+0x120/0x360
[  150.272041][ T7995]        start_this_handle+0x1fa7/0x21c0
[  150.274046][ T7995]        jbd2__journal_start+0x2c1/0x5b0
[  150.276133][ T7995]        jbd2_journal_start+0x2a/0x40
[  150.277931][ T7995]        ocfs2_start_trans+0x376/0x6d0
[  150.279999][ T7995]        ocfs2_mknod+0xe93/0x2050
[  150.282041][ T7995]        ocfs2_create+0x1a5/0x440
[  150.283950][ T7995]        path_openat+0x14f4/0x3830
[  150.285968][ T7995]        do_filp_open+0x1fa/0x410
[  150.287992][ T7995]        do_sys_openat2+0x121/0x1c0
[  150.290122][ T7995]        __x64_sys_open+0x11e/0x150
[  150.292204][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.294237][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.296769][ T7995] 
[  150.296769][ T7995] -> #1 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  150.300101][ T7995]        lock_acquire+0x120/0x360
[  150.302080][ T7995]        down_read+0x46/0x2e0
[  150.304075][ T7995]        ocfs2_start_trans+0x36a/0x6d0
[  150.306311][ T7995]        ocfs2_mknod+0xe93/0x2050
[  150.308406][ T7995]        ocfs2_create+0x1a5/0x440
[  150.310295][ T7995]        path_openat+0x14f4/0x3830
[  150.312242][ T7995]        do_filp_open+0x1fa/0x410
[  150.313969][ T7995]        do_sys_openat2+0x121/0x1c0
[  150.315996][ T7995]        __x64_sys_open+0x11e/0x150
[  150.317983][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.319846][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.322191][ T7995] 
[  150.322191][ T7995] -> #0 (sb_internal#2){.+.+}-{0:0}:
[  150.325053][ T7995]        validate_chain+0xb9b/0x2140
[  150.327180][ T7995]        __lock_acquire+0xab9/0xd20
[  150.329067][ T7995]        lock_acquire+0x120/0x360
[  150.330988][ T7995]        ocfs2_start_trans+0x26b/0x6d0
[  150.332862][ T7995]        ocfs2_acquire_dquot+0x455/0xb30
[  150.334946][ T7995]        dqget+0x7b1/0xf10
[  150.336727][ T7995]        dquot_set_dqblk+0x2b/0xfa0
[  150.338563][ T7995]        quota_setquota+0x4b7/0x540
[  150.340399][ T7995]        __se_sys_quotactl+0x279/0x950
[  150.342557][ T7995]        do_syscall_64+0xfa/0x3b0
[  150.344287][ T7995]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.346658][ T7995] 
[  150.346658][ T7995] other info that might help us debug this:
[  150.346658][ T7995] 
[  150.350250][ T7995] Chain exists of:
[  150.350250][ T7995]   sb_internal#2 --> &ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE] --> &ocfs2_quota_ip_alloc_sem_key
[  150.350250][ T7995] 
[  150.356736][ T7995]  Possible unsafe locking scenario:
[  150.356736][ T7995] 
[  150.359599][ T7995]        CPU0                    CPU1
[  150.361581][ T7995]        ----                    ----
[  150.363574][ T7995]   lock(&ocfs2_quota_ip_alloc_sem_key);
[  150.365467][ T7995]                                lock(&ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE]);
[  150.368776][ T7995]                                lock(&ocfs2_quota_ip_alloc_sem_key);
[  150.371830][ T7995]   rlock(sb_internal#2);
[  150.373488][ T7995] 
[  150.373488][ T7995]  *** DEADLOCK ***
[  150.373488][ T7995] 
[  150.376697][ T7995] 4 locks held by syz.0.867/7995:
[  150.378449][ T7995]  #0: ffff88802923e0e0 (&type->s_umount_key#86){++++}-{4:4}, at: super_lock+0x2a9/0x3b0
[  150.382076][ T7995]  #1: ffff888113af60a8 (&dquot->dq_lock){+.+.}-{4:4}, at: ocfs2_acquire_dquot+0x2a3/0xb30
[  150.386128][ T7995]  #2: ffff88803d45d240 (&ocfs2_sysfile_lock_key[GROUP_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_lock_global_qf+0x1ca/0x270
[  150.390820][ T7995]  #3: ffff88803d45cee0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270
[  150.395273][ T7995] 
[  150.395273][ T7995] stack backtrace:
[  150.397682][ T7995] CPU: 1 UID: 0 PID: 7995 Comm: syz.0.867 Not tainted syzkaller #0 PREEMPT(full) 
[  150.397698][ T7995] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  150.397706][ T7995] Call Trace:
[  150.397713][ T7995]  <TASK>
[  150.397719][ T7995]  dump_stack_lvl+0x189/0x250
[  150.397741][ T7995]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.397755][ T7995]  ? __pfx__printk+0x10/0x10
[  150.397774][ T7995]  ? print_lock_name+0xde/0x100
[  150.397791][ T7995]  print_circular_bug+0x2ee/0x310
[  150.397806][ T7995]  check_noncircular+0x134/0x160
[  150.397820][ T7995]  validate_chain+0xb9b/0x2140
[  150.397837][ T7995]  __lock_acquire+0xab9/0xd20
[  150.397856][ T7995]  ? ocfs2_acquire_dquot+0x455/0xb30
[  150.397870][ T7995]  lock_acquire+0x120/0x360
[  150.397886][ T7995]  ? ocfs2_acquire_dquot+0x455/0xb30
[  150.397901][ T7995]  ? do_raw_spin_unlock+0x4d/0x240
[  150.397923][ T7995]  ocfs2_start_trans+0x26b/0x6d0
[  150.397938][ T7995]  ? ocfs2_acquire_dquot+0x455/0xb30
[  150.397954][ T7995]  ? __pfx_ocfs2_start_trans+0x10/0x10
[  150.397967][ T7995]  ? do_raw_spin_unlock+0x4d/0x240
[  150.397982][ T7995]  ? _raw_spin_unlock+0x28/0x50
[  150.398002][ T7995]  ? ocfs2_qinfo_unlock+0x121/0x150
[  150.398017][ T7995]  ocfs2_acquire_dquot+0x455/0xb30
[  150.398034][ T7995]  ? from_kgid+0x1b0/0x650
[  150.398048][ T7995]  ? __pfx_ocfs2_acquire_dquot+0x10/0x10
[  150.398066][ T7995]  ? percpu_counter_add_batch+0xea/0x1e0
[  150.398083][ T7995]  dqget+0x7b1/0xf10
[  150.398100][ T7995]  dquot_set_dqblk+0x2b/0xfa0
[  150.398116][ T7995]  quota_setquota+0x4b7/0x540
[  150.398130][ T7995]  ? __pfx_quota_setquota+0x10/0x10
[  150.398145][ T7995]  ? do_quotactl+0x734/0x860
[  150.398167][ T7995]  __se_sys_quotactl+0x279/0x950
[  150.398181][ T7995]  ? __se_sys_futex+0x36f/0x400
[  150.398198][ T7995]  ? __pfx___se_sys_quotactl+0x10/0x10
[  150.398213][ T7995]  ? rcu_is_watching+0x15/0xb0
[  150.398225][ T7995]  ? do_syscall_64+0xbe/0x3b0
[  150.398238][ T7995]  do_syscall_64+0xfa/0x3b0
[  150.398248][ T7995]  ? lockdep_hardirqs_on+0x9c/0x150
[  150.398259][ T7995]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.398271][ T7995]  ? exc_page_fault+0x9f/0xf0
[  150.398287][ T7995]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.398298][ T7995] RIP: 0033:0x7f985398ebe9
[  150.398311][ T7995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.398346][ T7995] RSP: 002b:00007f9854831038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  150.398361][ T7995] RAX: ffffffffffffffda RBX: 00007f9853bc5fa0 RCX: 00007f985398ebe9
[  150.398370][ T7995] RDX: 0000000000000000 RSI: 0000200000000000 RDI: ffffffff80000801
[  150.398378][ T7995] RBP: 00007f9853a11e19 R08: 0000000000000000 R09: 0000000000000000
[  150.398386][ T7995] R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
[  150.398394][ T7995] R13: 00007f9853bc6038 R14: 00007f9853bc5fa0 R15: 00007ffd6ab2e448
[  150.398406][ T7995]  </TASK>
[  150.523924][ T7989] hsr_slave_0: entered promiscuous mode
[  150.527115][ T7989] hsr_slave_1: entered promiscuous mode
[  150.530531][ T7989] debugfs: 'hsr0' already exists in 'hsr'
[  150.539775][ T7989] Cannot create hsr debugfs directory
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  150.690877][ T7995] ocfs2: Unmounting device (7,0) on (node local)
[  150.966561][ T5940] bridge_slave_1: left allmulticast mode
[  150.969054][ T5940] bridge_slave_1: left promiscuous mode
[  150.971643][ T5940] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.976593][ T5940] bridge_slave_0: left allmulticast mode
[  150.978897][ T5940] bridge_slave_0: left promiscuous mode
[  150.981431][ T5940] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.046545][ T5940] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  151.050481][ T5940] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  151.054989][ T5940] bond0 (unregistering): Released all slaves
[  151.125769][ T5940] hsr_slave_0: left promiscuous mode
[  151.127965][ T5940] hsr_slave_1: left promiscuous mode
[  151.130452][ T5940] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.133583][ T5940] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.171126][ T5940] team0 (unregistering): Port device team_slave_1 removed
[  151.188293][ T5940] team0 (unregistering): Port device team_slave_0 removed
[  151.624616][    C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!

VM DIAGNOSIS:
23:06:41  Registers:
info registers vcpu 0

CPU#0
RAX=ff7039cfb2f63a00 RBX=ffffffff819683a8 RCX=ff7039cfb2f63a00 RDX=0000000000000001
RSI=ffffffff8be33860 RDI=ffffffff819683a8 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa39530 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7a0d13 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8614000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f98539733e0 CR3=000000010ee16000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=000000ff00000000 0000000000000000 XMM05=0000000000000000 00007f8ee4212e53
XMM06=0000000000000000 00007f8ee4212e4d XMM07=0000000000000000 00007f8ee4212e61
XMM08=0000000000000000 00007f8ee4212ee7 XMM09=0000000000000000 00007f8ee4212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002e RBX=000000000000002e RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000002728 RDI=0000000000002729 RBP=00000000000003f8 RSP=ffffc90006be6f90
R8 =ffff888107800237 R9 =1ffff11020f00046 R10=dffffc0000000000 R11=ffffffff854f9ae0
R12=dffffc0000000000 R13=ffffffff99b018c7 R14=ffffffff99df6460 R15=0000000000000000
RIP=ffffffff854f9b5c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f98548316c0 ffffffff 00c00000
GS =0000 ffff8881a3c14000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b31616ff8 CR3=000000001ef6e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8133c56e ffffffff8133c56e
XMM02=00007f990af97498 ffffffff8133c56e XMM03=00007f990af974a8 00007f990af974a0
XMM04=00007f990bafd100 00007f990af97460 XMM05=00007f990af97478 00007f990af974c0
XMM06=00007f990af974b8 00007f990af974b0 XMM07=00007f990af974a8 00007f990af974a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f990ae12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
