last executing test programs:

2m32.664884535s ago: executing program 2 (id=865):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}}, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000200)={0x114, 0x2e, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64=0x3}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x84)

2m32.614266446s ago: executing program 2 (id=866):
close(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$kcm(r0, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x20040000)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x20044080)
sendmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x20000050)

2m32.505028206s ago: executing program 2 (id=868):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x800000001fe, 0x82)
r1 = dup(r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000000)={0x23, 0x3, 0x1c, 0x0, 0x0, 0x4, 0x0})

2m32.430928395s ago: executing program 2 (id=871):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000980)={[{@nojournal_checksum}, {@nombcache}, {@barrier}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@usrquota}, {@noauto_da_alloc}, {@bh}, {@init_itable}]}, 0xff, 0x551, &(0x7f0000000cc0)="$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")
setxattr$trusted_overlay_origin(&(0x7f0000000180)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380), 0x64, 0x1)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

2m32.312406028s ago: executing program 2 (id=872):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000280)={[{@nodecompose}, {}, {@gid}, {@force}, {@umask={'umask', 0x3d, 0x18000000}}, {@gid}, {@nls={'nls', 0x3d, 'macceltic'}}]}, 0x44, 0x6fd, &(0x7f0000000500)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2800053, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
open(&(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x24403, 0x100)

2m32.04435108s ago: executing program 2 (id=877):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file2\x00', 0x404, &(0x7f0000000380)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
llistxattr(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)

2m31.761479607s ago: executing program 32 (id=877):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file2\x00', 0x404, &(0x7f0000000380)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
llistxattr(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0)

1m49.764520744s ago: executing program 1 (id=1375):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x1010c5c, &(0x7f0000000100)={[{@fat=@nocase}, {@rodir}, {@uni_xlateno}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp437'}}, {@shortname_winnt}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@uni_xlateno}, {@shortname_winnt}, {@uni_xlate}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-3'}}, {@fat=@dos1xfloppy}, {@rodir}, {@fat=@usefree}, {@shortname_lower}, {@utf8no}]}, 0x0, 0x31e, &(0x7f0000000640)="$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")

1m49.631210116s ago: executing program 1 (id=1376):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="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", @ANYRES64], 0x0, 0x54fe, &(0x7f0000006000)="$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")
listxattr(&(0x7f0000004680)='./file0\x00', 0x0, 0x0)

1m49.167868955s ago: executing program 1 (id=1379):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r0, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @empty, 0x3}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000140), 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in={{0x2, 0x4e23, @loopback}}, 0x0, 0x0, 0x0, 0x0, 0x54, 0x6}, 0x9c)

1m48.85909438s ago: executing program 1 (id=1384):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x82, &(0x7f0000000700)=ANY=[@ANYBLOB='iocharset=default,noadinicb,gid=forget,gid=ignore,nostrict,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c616e63686f723d30303030000088be0900303030303030303030312c7569643d666f726765742c00215e8c2e42462f3ab5e1f7c0527abbb422be9178aa60681964adb069ae876c4a599d560075ac47c0de1a9bb9146af6433efdcdac853a8e8f16d6bad90ecce0a1fab46f48331e6b3c325c08df3c334e4da28067a30b3b1dc64bf692c712fc273bc1702008f563765c6f3e67d97e1369973c2a87f0ecca7320819863179fb85e394a8cf1d62c70d8306633b6958ebf998a0685bc5cdd1f97291328743add4c867115fae1082f8faf482e15eb939968"], 0xfd, 0xc34, &(0x7f0000001080)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
symlink(&(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x8, 0x1a, 0xd, "ef359f413b073852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4403bc7708992e582", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204, 0x7]})
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000440)=@filename='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1m48.652711992s ago: executing program 1 (id=1391):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
syz_emit_ethernet(0x3a, &(0x7f0000000400)=ANY=[], 0x0)

1m48.370542871s ago: executing program 1 (id=1398):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffb}, [@call={0x85, 0x0, 0x0, 0x41}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1m48.123796358s ago: executing program 33 (id=1398):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffb}, [@call={0x85, 0x0, 0x0, 0x41}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1m42.136210679s ago: executing program 4 (id=1400):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x2010000, &(0x7f0000000a00)={[{@numtail}, {@fat=@check_strict}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '949'}}, {@rodir}, {@fat=@allow_utime={'allow_utime', 0x3d, 0xffff}}, {@uni_xlateno}, {@uni_xlate}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@utf8no}]}, 0x1, 0x34c, &(0x7f0000001740)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x210500, 0x80)

1m42.033498556s ago: executing program 4 (id=1440):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$FIONREAD(r2, 0x541b, 0x0)

1m41.980917977s ago: executing program 4 (id=1441):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x1532, 0x10e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xc0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000040)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x8, "9b065b6e"}]}}, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x11, 0xa, 0x0)

1m40.303534369s ago: executing program 4 (id=1456):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0x101c002, &(0x7f0000000a00)=ANY=[@ANYBLOB='discard,discard=0x0000000000020001,discard,iocharset=cp857,errors=remount-ro,iocharset=iso8859-2,uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c696f636861727365743d69736f383835392d342c00fb8602bc827d678ff4d12dba8652b9d39b4b4ff5657dd6ec1c923fb62ce2b91d41de0069a0e4d9cc00c46db0687686104197b53eeedda4d051ba690ba658ce6beb"], 0x23, 0x61c3, &(0x7f000000c9c0)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x187842, 0x0)

1m39.920400503s ago: executing program 4 (id=1460):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan1\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {}, 0x2}, 0x18)
sendmsg$can_j1939(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1d, 0x0, 0x16, {0x0, 0x1ee}}, 0x18, &(0x7f00000004c0)={&(0x7f0000000140)='\x00', 0x8}}, 0x0)

1m38.900042322s ago: executing program 4 (id=1466):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000280), 0x8)
getsockopt$inet6_opts(r0, 0x29, 0x36, 0x0, &(0x7f00000005c0))

1m38.784527894s ago: executing program 34 (id=1466):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000280), 0x8)
getsockopt$inet6_opts(r0, 0x29, 0x36, 0x0, &(0x7f00000005c0))

2.22150882s ago: executing program 3 (id=2512):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x15, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'tunl0\x00'}}, 0x1e)
sendmmsg(r0, &(0x7f0000003840)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000003b80)="87", 0x5c8}], 0x1}}], 0x1, 0x4080)

2.169875244s ago: executing program 3 (id=2513):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'dummy0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001800)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="03000000000000001c0012800c0001006d6163766c616e000c000280080001000800000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x4c}}, 0x800)

2.001315186s ago: executing program 3 (id=2518):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x210a45d, 0x0, 0x0, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
setresgid(0xee00, 0xee01, 0x0)
chown(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)

1.879575317s ago: executing program 3 (id=2520):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x2000094}, 0x4000800)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0x8b, 0x61, 0xfb, 0x10, 0xac8, 0xc301, 0xf37b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x9, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x30, 0x3, 0x0, 0xf5, 0xee, 0xdd, 0x2}}]}}]}}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, &(0x7f00000005c0)={0x14, 0x0, 0x0}, 0x0)

1.879276531s ago: executing program 5 (id=2521):
r0 = socket(0x2, 0x3, 0xff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$l2tp(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x43, &(0x7f0000000040)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$kcm(0x29, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x10000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
getrlimit(0x4, &(0x7f0000000100))
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000040)={0x4}, 0x10)
write(r2, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe020002000000", 0x1b)
sendto$inet(r0, &(0x7f0000000280)="12f0dda7f17f60b7c78be42301125e6cb51c467f", 0x14, 0x800, &(0x7f00000001c0)={0x2, 0x4e22, @multicast2}, 0x10)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sigaltstack(&(0x7f0000000040)={0x0}, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x1000)=nil, 0x1000, &(0x7f0000000080)='\x00\x00\x00')
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0)

525.297174ms ago: executing program 5 (id=2529):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20902, 0x0)
write$sequencer(r1, &(0x7f0000000400)=ANY=[@ANYBLOB="812000000000000081", @ANYRES8=r0], 0x10)

470.541197ms ago: executing program 5 (id=2532):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000880)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000940)={r1, &(0x7f0000001ac0), &(0x7f0000000680)=""/153}, 0x20)

411.25778ms ago: executing program 5 (id=2534):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0xb00, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
ioctl$PPPIOCSMRU1(r1, 0x40047452, &(0x7f0000000080)=0xffffffff)

411.009202ms ago: executing program 3 (id=2535):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@bridge_dellink={0x20, 0x13, 0x5, 0x0, 0x25dfdbfb, {0x7, 0x0, 0x0, r2, 0x40850}}, 0x20}, 0x1, 0x0, 0x0, 0x44004}, 0x0)

340.778233ms ago: executing program 0 (id=2536):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002000090002000000ffdbdf250300000008000800", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)

340.50392ms ago: executing program 3 (id=2537):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file3\x00', 0xcc0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c00535d4e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0"], 0x1, 0x442a, &(0x7f0000004480)="$eJzs3c9PHGUfAPBnBvoW+rZ9oW8PfZM3cRObaNQQ6EmliZTSUmixptrGeNkusG3RhW1gMR56wFsTTyYejIdGE2+cGg5e65/gxWM9N9GDFxOTRszuzgIz7IaVsGDr53NgmOc3+5159pnD8MSJyp25pdzcUq6wkCvP3Fo6k/u4XFqeL4Z4nzTt/9D+9U97OnGdHPS190929fzFd2+cCeH72R+frK+vr4eq7tDU0Jbff/v13szWY0OcqVNtt3lre+WDEMLJbeOq6gohvP9dCFEI4VySNpoce0MIx0I978a9z27m9mg0Dx8Xz+afTt1fGz49ufpgrfXfHoXwVel/r92e//nFruGfXtmj7gEAAAAAAAAAAAAAAAAAeMaNX7t6/Z3BofAoCt2r0fb3dceTY6v3Y9f3zAud/2MBAAAAAAAAAAAAAAAAAADgb2rz/f9cdKLJ+/9jyXGkRf31tzo/Rjpn4u2rYxcGh5L936Nt+a8nSb+c6wr9TfZ9z+7/fi5Tv/n+79v72a3G+Br99oUoHkidx/HAQAjfJBu/n4qOxKXyUuXVW+Xlhdk9G8YzKx3/+u79qegkG/q3G//RTPud3///v9uupur5zb27xJ5r6fh3tSz37adRW/E/n6m3H/Fn99Lx766l9W4tMFKfAKrx/7x75/iPZdrvVPyPhxByUXWsudQMUF3DVNNbrVdIS8f/UC0tNXUmH2Sr+//3TPwvZNo/qPl/JftFRFPp+P+rltaTKrF5//fHO9//FzPtH0T8q+Nf8f3flnT8D9cTu1NFap9ku/P/eKb9TsX/epyM83iUugJWo3p6q/9XR1o6/j3b8jef/+K21n+XMvX36/mv0W/j+a8x/b8c1Z//aC4d/96W5dq9/ycy9To9/4/U1n/sVjr+R2pp6bVzX+1nu/GfzLTfqfjXViU9jfhvzid/HK6nf23915Z0/P9dT4y3llip/ayt/6Kd1/+XM+0fxPqvOv6VuLO9Pi/S8T/aslw1/j+08f1/JVOv8/EPYdBaf9fS8T/Wslzt/u/ZOf5TmXqdjv9LnWwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Bkwmhz7QhQPpM7jeGAghPPJ+alwJJouzOanS+WZj5ZCGEvSc+FEdLtUni6U8nML5dlivlAqlWdCuJDknww90VKpXMnPF+5e3GirN7pTLCxWpouFSghhPEn/fzjWaGt6rjJfuBtCuLSR95+4vHj3TmEhPzu3+Obg4OBgmNgYQ39U/KRSXKjUe6/nhjC5Ubcv2jK4WvbljbEcjT4sLy8uFEq19Ctb6pTKM4XSljpTSd4XoT+qLC4vzBQqxXypfLvR30EaSY5jE9feu3ZlaFv+zah+HN3fYQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwFz0afuPLEEJ3/SwOIYw0fomalX/4uHg2/3Tq/trw6cnVB2tPWpUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+JMdOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7NIxSgNBFAbgN2Ohdh7DatntbFcU0cIVwRPoMTyMHsVLeIcUKdKmCIFkFsJmF7ZJqu9rHszPzHswDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHme3ruPt7qJSHG1uYz4+/pfHOYvpf7cj9+/OMOMnM7za/fwWDfl39NRfleOlm3epevV92eM1N7vYE+G+7TX97menGtq36bm6/veRMpVRLQlv005V9W8twAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgyw4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24FgAAAAAQJi/dRR9GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPArAAD///4CHxA=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0x0, 0x8ffff)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
truncate(&(0x7f0000000040)='./file1\x00', 0x40006)

292.001131ms ago: executing program 0 (id=2538):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./bus\x00', 0x1010010, &(0x7f00000003c0)={[{@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@shortname_mixed}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@utf8}, {@utf8no}, {@uni_xlateno}, {@uni_xlateno}, {@utf8}, {@numtail}, {@fat=@showexec}, {@utf8no}, {@utf8no}, {@rodir}, {@uni_xlate}, {@numtail}]}, 0x1, 0x377, &(0x7f0000000c00)="$eJzs3U9om2UYAPAn/dKkm2hzEwUhehO0bLvpxQ3pYFgEleCfgxhcp9JUocXidlhWD4pHwaOevCnowYN4UwRFBA8evKogU/Gguw0cvpJ835ekSZp1YivF3w+WvHvf93nf5/vT5Gv48vaZk7F2dj7OXblyORYWKlE9+eDJuFqJRmRRuhSTalPqAIDD4WpK8UfKjbctTA+pHEBaAMA+6r//PxcRzWjkNa9+Mat/8u4PAIde8fv/kVl9dvkcIOKlfUkJANhnE5//37Wjudb/Vy3/Wx25KwAAOKwee/Kph06tRDzabC5ErL++1dpqxf3D9lPn4oXoxGoci8W4FpFfKPQeKv3H02dWlo81m81u/NyIVkTMFYGt/ErhVNaPr8fxWIxGEV9cbaSUstMfrSwfb/ZFxKVuf/5Yr2y15uNoMf/3R2N1eOFRDtJ/ijizsnyiWQzQWi/juxHbwxsVevkvxWJ8++xgmJTKOxhXli8eL5Mexm+16nF2sBd2/QQEAAAAAAAAAAAAAAAAAAAAAAD+kaXmQGOwfk7qPecr5SwtTWnvr4+TxxfrA23n6wOleoqUfn/l3tYbWexYH2h8fZ4tCwkCAAAAAAAAAAAAAAAAAADAwOb5WrQ7ndWNzfMX1kYL3Y3N83MR0at58asPPj8Sk32uU6jmU9QjBlM0i2kvrLVTVnZOWcRkeNabvKx57+NBxqN96oOtmJpGffemTufmO396e1hzR1aO/NewTxbTNzAbSeOBsZHXb8lTupEdNSicGK2pT8z+aUSkkZrXRsMvPj05YFQiqjMO3MPf7NI0F7unmnqFLy8/f1u599ufpdzd9yw+/sNb7/661u70Zo7+EaxtbF5La+1K2XkPe6MYLvUPwfDcqEReqIyeCdVZA27vrGln3/32xO1vfr23g5JGa17unc9jfbJ8cz4cD6/lhV6aY01HhuHzxUZ0VuennPzXK9z4D+OFW9/55P2Ufvxlz1MMzU28bBSHoPEvvAIBAAAAAAAAAAAAAAAAAAClke+KF1+67uYN87Oi7nvkgNIDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAMx/Pv/I4Xtm4rWyaYZhT+7MdlUX93YjKj9x1sJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMD/3d8BAAD//2VTYTw=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001280)=""/4089, 0xff9)

291.813888ms ago: executing program 5 (id=2539):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
r0 = io_uring_setup(0x21dd, &(0x7f00000001c0)={0x0, 0x1fffff, 0x0, 0x2, 0xd5})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000040)=[{0x0, 0xffffffff00000005}], &(0x7f0000000180)=[0xffffffff, 0x7fffffff, 0x2, 0x6, 0x101, 0x1], 0x7}, 0x20)

209.981385ms ago: executing program 5 (id=2540):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f00000000c0)='./file1\x00', 0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRESOCT=0x0], 0x1, 0x446b, &(0x7f0000004480)="$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")

209.791622ms ago: executing program 0 (id=2541):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
fcntl$setlease(r0, 0x400, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)

109.784156ms ago: executing program 0 (id=2542):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f0000001400)={{0x80}, 'port1\x00', 0xe3, 0xb1c07})
readv(r0, &(0x7f0000000080)=[{&(0x7f0000002600)=""/46, 0x2e}], 0x1)
close_range(r0, r0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8417f, 0x0)

31.76175ms ago: executing program 0 (id=2543):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}}, &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000100)={{}, {0xe}, 0xbf00, 0xbf})

0s ago: executing program 0 (id=2544):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3})
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
open_by_handle_at(r0, &(0x7f00000000c0)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x9, 0x9, 0x7, 0x5a12}}, 0x1110a0)

kernel console output (not intermixed with test programs):

 mode
[  185.427602][ T9498] veth0_macvtap: entered promiscuous mode
[  185.435439][ T9498] veth1_macvtap: entered promiscuous mode
[  185.448167][ T9498] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.455970][ T9498] batman_adv: batadv0: Interface activated: batadv_slave_1
[  185.467547][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.470808][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.475725][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.478510][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.551500][ T3658] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.554615][ T3658] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.577400][ T1178] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.580298][ T1178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.626729][ T9627] loop4: detected capacity change from 0 to 256
[  185.650288][ T9627] FAT-fs (loop4): Directory bread(block 64) failed
[  185.654265][ T9627] FAT-fs (loop4): Directory bread(block 65) failed
[  185.656557][ T9627] FAT-fs (loop4): Directory bread(block 66) failed
[  185.658876][ T9627] FAT-fs (loop4): Directory bread(block 67) failed
[  185.661111][ T9627] FAT-fs (loop4): Directory bread(block 68) failed
[  185.664268][ T9627] FAT-fs (loop4): Directory bread(block 69) failed
[  185.666858][ T9627] FAT-fs (loop4): Directory bread(block 70) failed
[  185.669423][ T9627] FAT-fs (loop4): Directory bread(block 71) failed
[  185.677262][ T9627] FAT-fs (loop4): Directory bread(block 72) failed
[  185.679301][ T9627] FAT-fs (loop4): Directory bread(block 73) failed
[  185.726692][ T9629] binder: 9628:9629 ioctl 541b 0 returned -22
[  185.772721][ T5239] Bluetooth: hci2: command 0x0405 tx timeout
[  186.000128][ T9633] loop3: detected capacity change from 0 to 32768
[  186.003953][ T9633] (syz.3.1442,9633,1):ocfs2_parse_param:1357 ERROR: Invalid cluster_stack option
[  186.031599][    T9] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  186.160901][ T9641] loop3: detected capacity change from 0 to 4096
[  186.165351][ T9641] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  186.190729][ T9641] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  186.203724][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.211458][    T9] usb 5-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00
[  186.214801][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.233126][    T9] usb 5-1: config 0 descriptor??
[  186.370163][ T9651] loop3: detected capacity change from 0 to 1764
[  186.383152][ T9651] isofs_fill_super: get root inode failed
[  186.572141][   T54] Bluetooth: hci0: command tx timeout
[  186.653119][    T9] hid (null): report_id 1851459227 is invalid
[  186.660011][    T9] razer 0003:1532:010E.000C: report_id 1851459227 is invalid
[  186.666960][    T9] razer 0003:1532:010E.000C: item 0 4 1 8 parsing failed
[  186.675194][    T9] razer 0003:1532:010E.000C: probe with driver razer failed with error -22
[  186.862230][   T24] usb 5-1: USB disconnect, device number 2
[  187.728745][ T9666] loop4: detected capacity change from 0 to 32768
[  187.782286][ T9498] read_mapping_page failed!
[  187.785206][ T9498] ERROR: (device loop4): txCommit: 
[  187.785206][ T9498] 
[  187.790481][ T9498] ERROR: (device loop4): remounting filesystem as read-only
[  187.803611][   T10] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  187.954449][   T10] usb 4-1: config 0 has an invalid interface number: 168 but max is 0
[  187.957881][   T10] usb 4-1: config 0 has no interface number 0
[  187.960356][   T10] usb 4-1: config 0 interface 168 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  187.965598][   T10] usb 4-1: config 0 interface 168 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  187.969920][   T10] usb 4-1: config 0 interface 168 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  187.975160][   T10] usb 4-1: New USB device found, idVendor=06cd, idProduct=0135, bcdDevice=a8.a4
[  187.978644][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.984649][   T10] usb 4-1: config 0 descriptor??
[  187.993736][ T9672] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  188.202638][   T10] usb 4-1: string descriptor 0 read error: -71
[  188.208623][   T10] keyspan 4-1:0.168: Keyspan 2 port adapter converter detected
[  188.213003][   T10] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 1
[  188.217487][   T10] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 84
[  188.220599][   T10] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 2
[  188.225738][   T10] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[  188.233135][   T10] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 88
[  188.236264][   T10] keyspan 4-1:0.168: found no endpoint descriptor for endpoint 6
[  188.243423][   T10] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[  188.251031][   T10] usb 4-1: USB disconnect, device number 14
[  188.258041][   T10] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[  188.264733][   T10] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[  188.269051][   T10] keyspan 4-1:0.168: device disconnected
[  188.768466][ T9682] bridge0: entered promiscuous mode
[  188.771172][ T9682] macvtap1: entered allmulticast mode
[  188.776712][ T9682] bridge0: entered allmulticast mode
[  188.782342][ T9682] bridge0: port 3(macvtap1) entered blocking state
[  188.785346][ T9682] bridge0: port 3(macvtap1) entered disabled state
[  188.792875][ T9682] bridge0: left allmulticast mode
[  188.795142][ T9682] bridge0: left promiscuous mode
[  188.896360][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.020850][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.064044][ T9689] loop3: detected capacity change from 0 to 16
[  189.088606][ T9689] erofs (device loop3): mounted with root inode @ nid 36.
[  189.117394][ T5239] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  189.122466][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.133866][ T5239] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  189.139136][ T5239] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  189.145077][ T5239] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  189.148791][ T5239] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  189.212308][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  189.484039][ T9690] chnl_net:caif_netlink_parms(): no params data found
[  189.497038][   T13] bridge_slave_1: left allmulticast mode
[  189.499385][   T13] bridge_slave_1: left promiscuous mode
[  189.502496][ T5908] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  189.515567][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.529986][   T13] bridge_slave_0: left allmulticast mode
[  189.533001][   T13] bridge_slave_0: left promiscuous mode
[  189.535035][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.653970][ T5908] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  189.657825][ T5908] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  189.676559][ T5908] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  189.680030][ T5908] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  189.696165][ T5908] usb 4-1: SerialNumber: syz
[  189.917311][ T5908] usb 4-1: 0:2 : does not exist
[  189.923053][ T9714] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1476'.
[  189.936122][ T5908] usb 4-1: USB disconnect, device number 15
[  189.980871][ T6130] udevd[6130]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  190.082448][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  190.087576][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  190.093596][   T13] bond0 (unregistering): Released all slaves
[  190.278235][ T9690] bridge0: port 1(bridge_slave_0) entered blocking state
[  190.281206][ T9690] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.287478][ T9690] bridge_slave_0: entered allmulticast mode
[  190.290835][ T9690] bridge_slave_0: entered promiscuous mode
[  190.297325][ T9690] bridge0: port 2(bridge_slave_1) entered blocking state
[  190.300071][ T9690] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.307549][ T9690] bridge_slave_1: entered allmulticast mode
[  190.311027][ T9690] bridge_slave_1: entered promiscuous mode
[  190.395116][ T9690] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  190.403190][ T9690] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  190.482571][ T9690] team0: Port device team_slave_0 added
[  190.487641][ T9690] team0: Port device team_slave_1 added
[  190.537221][   T13] hsr_slave_0: left promiscuous mode
[  190.540153][   T13] hsr_slave_1: left promiscuous mode
[  190.549928][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  190.555600][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  190.561129][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  190.574788][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  190.609151][   T13] veth1_macvtap: left promiscuous mode
[  190.623531][   T13] veth0_macvtap: left promiscuous mode
[  190.625981][   T13] veth1_vlan: left promiscuous mode
[  190.628107][   T13] veth0_vlan: left promiscuous mode
[  191.213590][   T54] Bluetooth: hci0: command tx timeout
[  191.668935][   T13] team0 (unregistering): Port device team_slave_1 removed
[  191.746936][   T13] team0 (unregistering): Port device team_slave_0 removed
[  192.549232][ T9690] batman_adv: batadv0: Adding interface: batadv_slave_0
[  192.562661][ T9690] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.579345][ T9690] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  192.588803][ T9690] batman_adv: batadv0: Adding interface: batadv_slave_1
[  192.591681][ T9690] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.600810][ T9690] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  192.814640][ T9690] hsr_slave_0: entered promiscuous mode
[  192.818195][ T9690] hsr_slave_1: entered promiscuous mode
[  192.925653][ T9752] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  192.934227][ T9752] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  193.091518][ T1272] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  193.186320][ T9690] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  193.203720][ T9690] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  193.217320][ T9690] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  193.223083][ T9690] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  193.255191][ T1272] usb 4-1: unable to get BOS descriptor or descriptor too short
[  193.267220][ T1272] usb 4-1: config 255 has an invalid interface number: 171 but max is 0
[  193.275258][ T1272] usb 4-1: config 255 has no interface number 0
[  193.277750][ T1272] usb 4-1: config 255 interface 171 has no altsetting 0
[  193.285269][ T1272] usb 4-1: New USB device found, idVendor=0c45, idProduct=6240, bcdDevice=35.eb
[  193.288495][ T1272] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.291979][   T54] Bluetooth: hci0: command tx timeout
[  193.292371][ T1272] usb 4-1: Product: syz
[  193.295924][ T1272] usb 4-1: Manufacturer: syz
[  193.297765][ T1272] usb 4-1: SerialNumber: syz
[  193.326847][ T9690] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.375532][ T9690] 8021q: adding VLAN 0 to HW filter on device team0
[  193.396292][ T1178] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.398637][ T1178] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.425288][ T1178] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.427826][ T1178] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.521774][ T1272] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:6240
[  193.528041][ T1272] gspca_sn9c20x: Write register 1000 failed -71
[  193.539080][ T1272] gspca_sn9c20x: Device initialization failed
[  193.541066][ T1272] gspca_sn9c20x 4-1:255.171: probe with driver gspca_sn9c20x failed with error -71
[  193.550994][ T1272] usb 4-1: USB disconnect, device number 16
[  193.632756][ T9690] 8021q: adding VLAN 0 to HW filter on device batadv0
[  193.804859][ T9690] veth0_vlan: entered promiscuous mode
[  193.814429][ T9690] veth1_vlan: entered promiscuous mode
[  193.853786][ T9690] veth0_macvtap: entered promiscuous mode
[  193.858594][ T9690] veth1_macvtap: entered promiscuous mode
[  193.880921][ T9690] batman_adv: batadv0: Interface activated: batadv_slave_0
[  193.900688][ T9690] batman_adv: batadv0: Interface activated: batadv_slave_1
[  193.917242][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  193.920665][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  193.938074][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  193.942319][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  193.949832][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  193.962036][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  194.070629][ T1178] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.081806][ T1178] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.135729][   T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  194.138805][   T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.324641][ T9812] loop5: detected capacity change from 0 to 512
[  194.375410][ T9812] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1500: bg 0: block 393: padding at end of block bitmap is not set
[  194.405775][ T9812] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  194.410549][ T9812] EXT4-fs (loop5): 2 truncates cleaned up
[  194.418321][ T9812] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.451150][ T9812] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  194.456752][ T9812] EXT4-fs (loop5): can't disable delalloc during remount
[  194.507334][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.335421][   T24] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  195.371994][   T54] Bluetooth: hci0: command tx timeout
[  195.376725][ T9832] loop3: detected capacity change from 0 to 1024
[  195.404339][ T9832] hfsplus: bad catalog entry type
[  195.491710][   T24] usb 6-1: Using ep0 maxpacket: 8
[  195.496725][   T24] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  195.499807][   T24] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  195.505725][   T24] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  195.509392][   T24] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  195.521958][   T24] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  195.529382][   T24] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  195.537407][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.768322][   T24] usb 6-1: GET_CAPABILITIES returned 0
[  195.770419][   T24] usbtmc 6-1:16.0: can't read capabilities
[  195.956628][   T10] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  196.121545][   T10] usb 4-1: Using ep0 maxpacket: 32
[  196.127777][   T10] usb 4-1: unable to get BOS descriptor or descriptor too short
[  196.145024][   T10] usb 4-1: config 128 has an invalid interface number: 127 but max is 3
[  196.148895][   T24] usb 6-1: USB disconnect, device number 2
[  196.151422][ T9828] usbtmc 6-1:16.0: usb_control_msg returned -71
[  196.154322][   T10] usb 4-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  196.158665][   T10] usb 4-1: config 128 has 1 interface, different from the descriptor's value: 4
[  196.170308][   T10] usb 4-1: config 128 has no interface number 0
[  196.175709][   T10] usb 4-1: config 128 interface 127 altsetting 14 has an endpoint descriptor with address 0x3F, changing to 0xF
[  196.186792][   T10] usb 4-1: config 128 interface 127 altsetting 14 endpoint 0xF has invalid maxpacket 9098, setting to 1024
[  196.193228][   T10] usb 4-1: config 128 interface 127 altsetting 14 bulk endpoint 0xF has invalid maxpacket 1024
[  196.197666][   T10] usb 4-1: config 128 interface 127 has no altsetting 0
[  196.207931][   T10] usb 4-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  196.211853][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  196.215352][   T10] usb 4-1: Product: syz
[  196.217083][   T10] usb 4-1: Manufacturer: syz
[  196.219210][   T10] usb 4-1: SerialNumber: syz
[  196.226699][ T9845] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  196.718697][   T10] usb 4-1: USB disconnect, device number 17
[  196.745169][ T6130] udevd[6130]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  196.955927][ T9872] netlink: 830 bytes leftover after parsing attributes in process `syz.5.1517'.
[  197.266929][ T9878] loop5: detected capacity change from 0 to 512
[  197.329353][ T9880] loop3: detected capacity change from 0 to 1764
[  197.374701][ T9878] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.379045][ T9878] ext4 filesystem being mounted at /6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  197.403898][ T9878] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 3: comm syz.5.1520: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1
[  197.428220][ T9878] EXT4-fs (loop5): Remounting filesystem read-only
[  197.454498][   T54] Bluetooth: hci0: command tx timeout
[  197.703659][ T9899] loop3: detected capacity change from 0 to 512
[  197.709129][ T9899] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  197.733455][ T9899] EXT4-fs (loop3): orphan cleanup on readonly fs
[  197.737876][ T9899] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  197.756891][ T9899] EXT4-fs (loop3): Remounting filesystem read-only
[  197.759662][ T9899] EXT4-fs (loop3): 1 truncate cleaned up
[  197.774570][ T9899] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  197.808661][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.067842][ T9921] overlayfs: failed to clone upperpath
[  198.108199][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.514146][ T9945] syzkaller1: entered promiscuous mode
[  198.516340][ T9945] syzkaller1: entered allmulticast mode
[  198.834076][ T9963] IPv6: addrconf: prefix option has invalid lifetime
[  198.848934][ T9961] loop5: detected capacity change from 0 to 4096
[  198.888708][ T9961] ntfs3(loop5): ino=19, mi_enum_attr
[  198.890528][ T9961] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  199.015380][ T9967] netlink: 'syz.5.1554': attribute type 1 has an invalid length.
[  199.018096][ T9967] netlink: 184 bytes leftover after parsing attributes in process `syz.5.1554'.
[  199.167808][ T9973] loop5: detected capacity change from 0 to 2048
[  199.202397][ T9973] UDF-fs: error (device loop5): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  199.216368][ T9973] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  199.218672][ T9973] UDF-fs: Scanning with blocksize 512 failed
[  199.234593][ T9973] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  199.292036][   T24] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  199.464946][   T24] usb 4-1: Using ep0 maxpacket: 32
[  199.502844][   T24] usb 4-1: config 0 has an invalid interface number: 19 but max is 0
[  199.505956][   T24] usb 4-1: config 0 has no interface number 0
[  199.508521][   T24] usb 4-1: config 0 interface 19 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  199.521883][   T24] usb 4-1: config 0 interface 19 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 16
[  199.525951][   T24] usb 4-1: config 0 interface 19 altsetting 0 has an endpoint descriptor with address 0x91, changing to 0x81
[  199.530686][   T24] usb 4-1: config 0 interface 19 altsetting 0 endpoint 0x81 has invalid maxpacket 34106, setting to 1024
[  199.547003][   T24] usb 4-1: config 0 interface 19 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024
[  199.564174][   T24] usb 4-1: config 0 interface 19 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  199.574962][   T24] usb 4-1: New USB device found, idVendor=04a4, idProduct=0014, bcdDevice=c9.57
[  199.578547][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.582667][   T24] usb 4-1: Product: syz
[  199.584331][   T24] usb 4-1: Manufacturer: syz
[  199.592067][   T24] usb 4-1: SerialNumber: syz
[  199.596333][   T24] usb 4-1: config 0 descriptor??
[  199.600297][ T9969] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  199.604495][ T9969] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  199.617138][   T24] ipaq 4-1:0.19: PocketPC PDA converter detected
[  199.619919][   T24] usb 4-1: active config #0 != 1 ??
[  199.846264][   T24] usb 4-1: USB disconnect, device number 18
[  200.152266][ T9835] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  200.303346][ T9835] usb 6-1: Using ep0 maxpacket: 16
[  200.309710][ T9835] usb 6-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=10.00
[  200.318198][ T9835] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.332885][ T9835] usb 6-1: Product: syz
[  200.334662][ T9835] usb 6-1: Manufacturer: syz
[  200.336522][ T9835] usb 6-1: SerialNumber: syz
[  200.353060][ T9835] usb 6-1: config 0 descriptor??
[  200.360530][ T9835] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[  200.373063][ T9835] usb 6-1: Detected FT-X
[  200.586813][ T9835] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  200.596195][ T9835] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  200.599585][ T9835] ftdi_sio 6-1:0.0: GPIO initialisation failed: -71
[  200.606243][ T9835] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  200.612402][ T9835] usb 6-1: USB disconnect, device number 3
[  200.640461][ T9835] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  200.645115][ T9835] ftdi_sio 6-1:0.0: device disconnected
[  200.997890][T10020] loop3: detected capacity change from 0 to 256
[  201.011213][T10020] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xecfd5def, utbl_chksum : 0xe619d30d)
[  201.148299][T10024] loop3: detected capacity change from 0 to 4096
[  201.170884][T10027] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  201.186457][   T33] audit: type=1800 audit(1757318786.932:68): pid=10024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1578" name="file1" dev="loop3" ino=15 res=0 errno=0
[  201.591411][    T9] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  201.879692][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  201.900415][    T9] usb 6-1: New USB device found, idVendor=15f4, idProduct=0015, bcdDevice=74.72
[  201.906194][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.909352][    T9] usb 6-1: Product: syz
[  201.911204][    T9] usb 6-1: Manufacturer: syz
[  201.913911][    T9] usb 6-1: SerialNumber: syz
[  201.918552][    T9] usb 6-1: config 0 descriptor??
[  201.924099][    T9] dvb-usb: found a 'Hanftek UMT-010 DVB-T USB2.0' in warm state.
[  201.928884][    T9] dvb-usb: bulk message failed: -22 (3/0)
[  201.971202][    T9] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  201.985180][    T9] dvb-usb: Hanftek UMT-010 DVB-T USB2.0 error while loading driver (-19)
[  201.988711][    T9] dvb_usb_umt_010 6-1:0.0: probe with driver dvb_usb_umt_010 failed with error -22
[  202.136567][    T9] usb 6-1: USB disconnect, device number 4
[  202.365674][T10043] loop3: detected capacity change from 0 to 128
[  202.490027][T10049] loop3: detected capacity change from 0 to 1024
[  202.542524][T10049] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.567852][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.785250][T10071] loop3: detected capacity change from 0 to 512
[  202.804259][T10071] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  202.825664][T10071] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1599: iget: bad extended attribute block 851968
[  202.842699][T10071] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1599: couldn't read orphan inode 15 (err -117)
[  202.850679][T10071] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  202.873574][   T33] audit: type=1800 audit(1757318788.622:69): pid=10071 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1599" name="file0" dev="loop3" ino=13 res=0 errno=0
[  202.944484][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.013768][T10081] loop3: detected capacity change from 0 to 1024
[  203.220944][T10085] loop3: detected capacity change from 0 to 512
[  203.233770][T10085] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  203.237397][T10085] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  203.247302][T10085] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  203.252549][T10085] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  203.256279][T10085] System zones: 0-2, 18-18, 34-34
[  203.263269][T10085] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.1604: iget: bad i_size value: 360287970189639680
[  203.270451][T10085] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1604: couldn't read orphan inode 15 (err -117)
[  203.278347][T10085] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.420729][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.586520][T10100] loop3: detected capacity change from 0 to 1024
[  203.612359][T10100] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  203.618934][T10100] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.649005][T10100] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.1611: Freeing blocks not in datazone - block = 0, count = 16
[  203.680239][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  203.731105][T10104] loop3: detected capacity change from 0 to 256
[  203.850294][T10108] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1614'.
[  204.006985][T10114] loop5: detected capacity change from 0 to 1024
[  204.010265][T10114] EXT4-fs: inline encryption not supported
[  204.053037][T10114] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  204.136083][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.239333][T10125] loop5: detected capacity change from 0 to 512
[  204.255989][T10125] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  204.258804][T10122] loop3: detected capacity change from 0 to 4096
[  204.274944][T10125] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.1621: invalid indirect mapped block 83886080 (level 1)
[  204.277509][T10122] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  204.288939][T10125] EXT4-fs (loop5): Remounting filesystem read-only
[  204.294868][T10125] EXT4-fs (loop5): 1 orphan inode deleted
[  204.297167][T10125] EXT4-fs (loop5): 1 truncate cleaned up
[  204.300893][T10125] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.314695][T10122] ntfs3(loop3): Failed to load $Extend (-22).
[  204.317514][T10122] ntfs3(loop3): Failed to initialize $Extend.
[  204.385243][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  204.526816][T10133] loop3: detected capacity change from 0 to 1764
[  204.555940][T10133] iso9660: Corrupted directory entry in block 2 of inode 1920
[  204.649020][T10137] loop3: detected capacity change from 0 to 1024
[  204.682042][ T5922] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  204.769120][T10139] loop3: detected capacity change from 0 to 2048
[  204.801080][T10140] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  204.834435][ T5922] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.839049][ T5922] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  204.843919][ T5922] usb 6-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  204.854191][ T5922] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.867892][ T5922] usb 6-1: config 0 descriptor??
[  204.899872][T10142] comedi comedi0: aio_iiro_16: I/O port conflict (0x5,8)
[  205.201676][   T10] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  205.296397][ T5922] cp2112 0003:10C4:EA90.000D: unknown main item tag 0x0
[  205.308993][ T5922] cp2112 0003:10C4:EA90.000D: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.5-1/input0
[  205.373582][   T10] usb 4-1: Using ep0 maxpacket: 16
[  205.378841][   T10] usb 4-1: config 0 has an invalid interface number: 214 but max is 0
[  205.383713][   T10] usb 4-1: config 0 has no interface number 0
[  205.388883][   T10] usb 4-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[  205.403941][   T10] usb 4-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  205.406681][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.419038][   T10] usb 4-1: Product: syz
[  205.420757][   T10] usb 4-1: Manufacturer: syz
[  205.423437][   T10] usb 4-1: SerialNumber: syz
[  205.426645][   T10] usb 4-1: config 0 descriptor??
[  205.495512][ T5922] cp2112 0003:10C4:EA90.000D: error requesting version
[  205.500639][ T5922] cp2112 0003:10C4:EA90.000D: probe with driver cp2112 failed with error -32
[  205.514959][ T5922] usb 6-1: USB disconnect, device number 5
[  206.051028][   T10] usbtouchscreen 4-1:0.214: probe with driver usbtouchscreen failed with error -71
[  206.058426][   T10] usb 4-1: USB disconnect, device number 19
[  206.271742][ T5922] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  206.421704][ T5922] usb 6-1: Using ep0 maxpacket: 8
[  206.426391][ T5922] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  206.430119][ T5922] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.447132][ T5922] pvrusb2: Hardware description: Terratec Grabster AV400
[  206.449876][ T5922] pvrusb2: **********
[  206.451936][ T5922] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  206.455689][ T5922] pvrusb2: Important functionality might not be entirely working.
[  206.458777][ T5922] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  206.464471][ T5922] pvrusb2: **********
[  206.660413][ T2397] pvrusb2: Invalid write control endpoint
[  206.775018][ T2397] pvrusb2: Invalid write control endpoint
[  206.777588][ T2397] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  206.786891][ T2397] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  206.789797][ T2397] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  206.795827][ T2397] pvrusb2: Device being rendered inoperable
[  206.804351][ T2397] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  206.808400][ T2397] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  206.826901][ T2397] pvrusb2: Attached sub-driver cx25840
[  206.831837][ T2397] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  206.839957][ T2397] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  206.861087][ T5922] usb 6-1: USB disconnect, device number 6
[  206.928410][T10202] loop3: detected capacity change from 0 to 32768
[  206.939067][T10202] 
[  206.939067][T10202]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  206.939067][T10202] 
[  206.964324][T10202] find_entry called with index = 0
[  206.968058][T10202] read_mapping_page failed!
[  206.973728][T10202] ERROR: (device loop3): txCommit: 
[  206.973728][T10202] 
[  206.982237][T10202] jfs_unlink: dtDelete returned -116
[  206.984778][T10202] jfs_unlink: dtDelete returned -116
[  207.012685][ T3555] ERROR: (device loop3): diWrite: ixpxd invalid
[  207.012685][ T3555] 
[  207.016682][ T3555] ERROR: (device loop3): txCommit: 
[  207.016682][ T3555] 
[  207.019100][ T3555] jfs_write_inode: jfs_commit_inode failed!
[  207.023659][ T8175] 
[  207.023659][ T8175]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  207.023659][ T8175] 
[  207.028559][ T8175] 
[  207.028559][ T8175]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  207.028559][ T8175] 
[  207.391867][T10213] loop3: detected capacity change from 0 to 32768
[  207.395125][T10213] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1650 (10213)
[  207.409256][T10213] BTRFS info (device loop3): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  207.415360][T10213] BTRFS error (device loop3): unsupported checksum algorithm: 5
[  207.418390][T10213] BTRFS error (device loop3): open_ctree failed: -22
[  207.581167][T10221] loop5: detected capacity change from 0 to 4096
[  208.055952][T10226] loop3: detected capacity change from 0 to 32768
[  208.207484][T10228] loop5: detected capacity change from 0 to 40427
[  208.233696][T10228] F2FS-fs (loop5): invalid crc value
[  208.314542][T10228] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  208.326132][T10228] F2FS-fs (loop5): Start checkpoint disabled!
[  208.347613][T10228] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  208.408176][ T3556] kworker/u9:5: attempt to access beyond end of device
[  208.408176][ T3556] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  208.419334][T10245] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1664'.
[  208.424897][ T3556] CPU: 0 UID: 0 PID: 3556 Comm: kworker/u9:5 Not tainted syzkaller #0 PREEMPT(full) 
[  208.424910][ T3556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  208.424916][ T3556] Workqueue: writeback wb_workfn (flush-7:5)
[  208.424931][ T3556] Call Trace:
[  208.424935][ T3556]  <TASK>
[  208.424940][ T3556]  dump_stack_lvl+0x189/0x250
[  208.424957][ T3556]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.424969][ T3556]  ? __pfx_queue_work_on+0x10/0x10
[  208.424981][ T3556]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  208.424997][ T3556]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  208.425014][ T3556]  f2fs_handle_critical_error+0x37c/0x540
[  208.425029][ T3556]  f2fs_write_end_io+0x886/0xb60
[  208.425070][ T3556]  __submit_merged_bio+0x27a/0x6a0
[  208.425095][ T3556]  __submit_merged_write_cond+0x255/0x530
[  208.425119][ T3556]  f2fs_write_data_pages+0x261d/0x3000
[  208.425156][ T3556]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  208.425175][ T3556]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  208.425205][ T3556]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  208.425224][ T3556]  ? look_up_lock_class+0x74/0x170
[  208.425251][ T3556]  ? trace_f2fs_writepages+0x7f/0x200
[  208.425270][ T3556]  ? f2fs_write_node_pages+0x478/0x6e0
[  208.425291][ T3556]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  208.425312][ T3556]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  208.425333][ T3556]  do_writepages+0x32e/0x550
[  208.425355][ T3556]  ? reacquire_held_locks+0x127/0x1d0
[  208.425369][ T3556]  ? writeback_sb_inodes+0x384/0x1010
[  208.425393][ T3556]  __writeback_single_inode+0x145/0xff0
[  208.425411][ T3556]  ? do_raw_spin_unlock+0x4d/0x240
[  208.425423][ T3556]  writeback_sb_inodes+0x6c7/0x1010
[  208.425460][ T3556]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  208.425512][ T3556]  ? rcu_is_watching+0x15/0xb0
[  208.425530][ T3556]  wb_writeback+0x43b/0xaf0
[  208.425551][ T3556]  ? queue_io+0x331/0x590
[  208.425569][ T3556]  ? __pfx_wb_writeback+0x10/0x10
[  208.425593][ T3556]  ? _raw_spin_unlock_irq+0x23/0x50
[  208.425615][ T3556]  wb_workfn+0x409/0xef0
[  208.425639][ T3556]  ? __pfx_wb_workfn+0x10/0x10
[  208.425651][ T3556]  ? __lock_acquire+0xab9/0xd20
[  208.425679][ T3556]  ? process_scheduled_works+0x9ef/0x17b0
[  208.425697][ T3556]  ? _raw_spin_unlock_irq+0x23/0x50
[  208.425713][ T3556]  ? process_scheduled_works+0x9ef/0x17b0
[  208.425725][ T3556]  ? process_scheduled_works+0x9ef/0x17b0
[  208.425740][ T3556]  process_scheduled_works+0xae1/0x17b0
[  208.425769][ T3556]  ? __pfx_process_scheduled_works+0x10/0x10
[  208.425795][ T3556]  worker_thread+0x8a0/0xda0
[  208.425831][ T3556]  kthread+0x711/0x8a0
[  208.425850][ T3556]  ? __pfx_worker_thread+0x10/0x10
[  208.425863][ T3556]  ? __pfx_kthread+0x10/0x10
[  208.425876][ T3556]  ? _raw_spin_unlock_irq+0x23/0x50
[  208.425889][ T3556]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.425906][ T3556]  ? __pfx_kthread+0x10/0x10
[  208.425922][ T3556]  ret_from_fork+0x3fc/0x770
[  208.425939][ T3556]  ? __pfx_ret_from_fork+0x10/0x10
[  208.425958][ T3556]  ? __switch_to_asm+0x39/0x70
[  208.425974][ T3556]  ? __switch_to_asm+0x33/0x70
[  208.425987][ T3556]  ? __pfx_kthread+0x10/0x10
[  208.425998][ T3556]  ret_from_fork_asm+0x1a/0x30
[  208.426028][ T3556]  </TASK>
[  208.426034][ T3556] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  208.823660][T10260] loop3: detected capacity change from 0 to 2048
[  208.836614][T10260] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  208.840369][T10260] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  208.846650][T10260] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 not in group (block 1)!
[  208.850808][T10260] EXT4-fs (loop3): group descriptors corrupted!
[  209.107121][ T1272] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  209.311724][ T1272] usb 6-1: Using ep0 maxpacket: 16
[  209.317673][ T1272] usb 6-1: config 7 has an invalid interface number: 148 but max is 0
[  209.320774][ T1272] usb 6-1: config 7 has no interface number 0
[  209.324042][ T1272] usb 6-1: config 7 interface 148 altsetting 6 endpoint 0x5 has invalid maxpacket 512, setting to 64
[  209.328308][ T1272] usb 6-1: config 7 interface 148 has no altsetting 0
[  209.334177][ T1272] usb 6-1: New USB device found, idVendor=0424, idProduct=012c, bcdDevice=58.61
[  209.337713][ T1272] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.340753][ T1272] usb 6-1: Product: syz
[  209.343242][ T1272] usb 6-1: Manufacturer: syz
[  209.345096][ T1272] usb 6-1: SerialNumber: syz
[  209.744623][ T1272] usb 6-1: probing VID:PID(0424:012C)   
[  209.750624][ T1272] usb 6-1: vub300 testing UNKNOWN EndPoint(0) 01
[  209.753427][ T1272] usb 6-1: vub300 ignoring EndPoint(0) 01
[  209.755710][ T1272] usb 6-1: vub300 testing UNKNOWN EndPoint(1) 05
[  209.759069][ T1272] usb 6-1: vub300 ignoring EndPoint(1) 05
[  209.761602][ T1272] usb 6-1: Could not find two sets of bulk-in/out endpoint pairs
[  209.765474][ T1272] vub300 6-1:7.148: probe with driver vub300 failed with error -22
[  209.781642][ T1272] usb 6-1: USB disconnect, device number 7
[  210.908850][T10283] loop3: detected capacity change from 0 to 128
[  210.918709][T10283] EXT4-fs (loop3): Test dummy encryption mode enabled
[  210.929008][T10283] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  210.935585][T10283] ext4 filesystem being mounted at /228/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  210.967778][ T8175] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  211.001599][    T9] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  211.012096][T10291] loop3: detected capacity change from 0 to 2048
[  211.026001][T10292] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  211.046014][   T33] audit: type=1800 audit(1757318796.792:70): pid=10291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1683" name="file1" dev="loop3" ino=18 res=0 errno=0
[  211.060583][T10292] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  211.066442][T10292] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4)
[  211.076201][T10292] Remounting filesystem read-only
[  211.079232][ T8175] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer
[  211.163325][    T9] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  211.168202][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 203, changing to 4
[  211.175377][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 46388, setting to 1023
[  211.180908][    T9] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  211.191098][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.199747][    T9] usb 6-1: config 0 descriptor??
[  211.426101][T10309] loop3: detected capacity change from 0 to 4096
[  211.433066][T10309] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  211.435911][    T9] ath6kl: Failed to submit usb control message: -71
[  211.439100][    T9] ath6kl: unable to send the bmi data to the device: -71
[  211.444316][    T9] ath6kl: Unable to send get target info: -71
[  211.447635][    T9] ath6kl: Failed to init ath6kl core: -71
[  211.459717][    T9] ath6kl_usb 6-1:0.0: probe with driver ath6kl_usb failed with error -71
[  211.488667][    T9] usb 6-1: USB disconnect, device number 8
[  212.347945][T10342] loop5: detected capacity change from 0 to 4096
[  212.357555][T10342] ntfs3(loop5): ino=0, mi_enum_attr
[  212.359569][T10342] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  212.365678][T10342] ntfs3(loop5): mft corrupted
[  212.367616][T10342] ntfs3(loop5): Failed to load $MFT.
[  213.807099][T10369] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  213.822949][T10369] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  214.615934][T10400] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1727'.
[  214.995025][T10420] loop3: detected capacity change from 0 to 512
[  215.016527][   T33] audit: type=1326 audit(1757318800.762:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10421 comm="syz.5.1738" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  215.035693][T10420] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  215.041754][   T33] audit: type=1326 audit(1757318800.762:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10421 comm="syz.5.1738" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  215.050631][   T33] audit: type=1326 audit(1757318800.762:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10421 comm="syz.5.1738" exe="/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  215.083859][   T33] audit: type=1326 audit(1757318800.762:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10421 comm="syz.5.1738" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  215.094188][   T33] audit: type=1326 audit(1757318800.762:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10421 comm="syz.5.1738" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  215.099415][T10420] EXT4-fs (loop3): 1 truncate cleaned up
[  215.119940][T10420] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.199113][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.264408][T10432] loop5: detected capacity change from 0 to 2048
[  215.283908][T10432] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  215.295940][T10432] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  215.576088][T10443] loop5: detected capacity change from 0 to 256
[  215.621943][T10443] exFAT-fs (loop5): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d)
[  215.654029][T10443] exFAT-fs (loop5): valid_size(10) is greater than size(0)
[  216.409251][T10449] loop5: detected capacity change from 0 to 32768
[  216.477078][T10449] read_mapping_page failed!
[  216.479459][T10449] ialloc: diAlloc returned -5!
[  216.790176][T10459] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1756'.
[  216.801377][T10459] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1756'.
[  217.315068][T10475] loop5: detected capacity change from 0 to 32768
[  217.318415][T10475] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1763 (10475)
[  217.334785][T10475] BTRFS info (device loop5): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  217.338961][T10475] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  217.367379][T10475] BTRFS info (device loop5): enabling ssd optimizations
[  217.370242][T10475] BTRFS info (device loop5): enabling free space tree
[  217.381750][   T54] Bluetooth: hci0: command tx timeout
[  217.416975][ T9690] BTRFS info (device loop5): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  217.515932][ T1272] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  217.722520][ T1272] usb 4-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  217.726207][ T1272] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.729429][ T1272] usb 4-1: Product: syz
[  217.731108][ T1272] usb 4-1: Manufacturer: syz
[  217.742515][ T1272] usb 4-1: SerialNumber: syz
[  217.752780][ T1272] usb 4-1: config 0 descriptor??
[  217.758070][ T1272] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  217.828856][T10504] loop5: detected capacity change from 0 to 32768
[  217.852779][T10504] ocfs2: Slot 0 on device (7,5) was already allocated to this node!
[  217.865695][T10504] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  217.878300][T10504] (syz.5.1769,10504,1):ocfs2_read_blocks_sync:112 ERROR: status = -12
[  217.882970][T10504] (syz.5.1769,10504,1):ocfs2_get_suballoc_slot_bit:2812 ERROR: read block 47244640256 failed -12
[  217.886270][T10504] (syz.5.1769,10504,1):ocfs2_get_suballoc_slot_bit:2844 ERROR: status = -12
[  217.889388][T10504] (syz.5.1769,10504,1):ocfs2_test_inode_bit:2926 ERROR: get alloc slot and bit failed -12
[  217.895096][T10504] (syz.5.1769,10504,1):ocfs2_test_inode_bit:2967 ERROR: status = -12
[  217.897916][T10504] (syz.5.1769,10504,1):ocfs2_get_dentry:78 ERROR: test inode bit failed -12
[  217.926682][ T9690] ocfs2: Unmounting device (7,5) on (node local)
[  218.159434][ T1272] gspca_sunplus: reg_w_riv err -71
[  218.161198][ T1272] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[  218.175510][ T1272] usb 4-1: USB disconnect, device number 20
[  218.899390][T10541] kAFS: No cell specified
[  219.921497][    T9] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  220.091457][    T9] usb 6-1: Using ep0 maxpacket: 32
[  220.096976][    T9] usb 6-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=67.fe
[  220.100177][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.102919][    T9] usb 6-1: Product: syz
[  220.104579][    T9] usb 6-1: Manufacturer: syz
[  220.106031][    T9] usb 6-1: SerialNumber: syz
[  220.109400][    T9] usb 6-1: config 0 descriptor??
[  220.320567][    T9] snd-usb-6fire 6-1:0.0: unknown device firmware state received from device:
[  220.324303][    T9] eb 9a 47 80 9b f8 7a f0 
[  220.326272][    T9] snd-usb-6fire 6-1:0.0: probe with driver snd-usb-6fire failed with error -5
[  220.530262][ T1272] usb 6-1: USB disconnect, device number 9
[  221.188938][T10606] loop3: detected capacity change from 0 to 64
[  221.537342][T10621] netlink: 'syz.5.1819': attribute type 10 has an invalid length.
[  221.680348][T10627] loop5: detected capacity change from 0 to 4096
[  221.695637][T10627] ntfs3(loop5): ino=3, Correct links count -> 2.
[  221.721115][T10627] ntfs3(loop5): ino=1a, mi_enum_attr
[  221.725044][T10627] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  221.742433][T10627] ntfs3(loop5): failed to convert "0000" to iso8859-9
[  221.752859][T10627] ntfs3(loop5): failed to convert name for inode 1e.
[  221.762254][T10627] ntfs3(loop5): ino=1f, mi_enum_attr
[  221.901245][T10633] loop5: detected capacity change from 0 to 4096
[  221.907034][T10633] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[  221.993705][T10633] ntfs3(loop5): ino=5, "/" ntfs_readdir
[  222.561750][   T24] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  222.642239][ T1272] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  222.711663][   T24] usb 6-1: Using ep0 maxpacket: 16
[  222.716965][   T24] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 192, changing to 11
[  222.722824][   T24] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  222.726550][   T24] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18
[  222.734980][   T24] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  222.738460][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  222.742134][   T24] usb 6-1: SerialNumber: syz
[  222.749133][T10646] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  222.791621][ T1272] usb 4-1: Using ep0 maxpacket: 32
[  222.795452][ T1272] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[  222.798022][ T1272] usb 4-1: config 0 has no interface number 0
[  222.803617][ T1272] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  222.806562][ T1272] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  222.809082][ T1272] usb 4-1: Product: syz
[  222.810375][ T1272] usb 4-1: Manufacturer: syz
[  222.812889][ T1272] usb 4-1: SerialNumber: syz
[  222.817392][ T1272] usb 4-1: config 0 descriptor??
[  222.825117][ T1272] smsc95xx v2.0.0
[  222.971716][   T24] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[  222.978389][   T24] usb 6-1: USB disconnect, device number 10
[  223.121504][T10670] netlink: 71 bytes leftover after parsing attributes in process `syz.0.1843'.
[  223.226968][ T1272] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  223.230917][ T1272] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  223.837526][ T1272] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000104: -71
[  223.849720][ T1272] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71
[  223.857210][ T1272] usb 4-1: USB disconnect, device number 21
[  224.381002][T10706] syzkaller1: entered promiscuous mode
[  224.384908][T10706] syzkaller1: entered allmulticast mode
[  225.041407][ T1272] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  225.201517][ T1272] usb 6-1: Using ep0 maxpacket: 8
[  225.209980][ T1272] usb 6-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[  225.213740][ T1272] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.216523][ T1272] usb 6-1: Product: syz
[  225.218354][ T1272] usb 6-1: Manufacturer: syz
[  225.220182][ T1272] usb 6-1: SerialNumber: syz
[  225.228362][ T1272] usb 6-1: config 0 descriptor??
[  225.237254][ T1272] gspca_main: sonixj-2.14.0 probing 0c45:613a
[  225.439467][ T1272] gspca_sonixj: reg_w1 err -71
[  225.441179][ T1272] sonixj 6-1:0.0: probe with driver sonixj failed with error -71
[  225.450521][ T1272] usb 6-1: USB disconnect, device number 11
[  227.979907][T10801] tipc: Started in network mode
[  227.987352][T10801] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  228.003811][T10801] tipc: Enabled bearer <udp:syz0>, priority 10
[  228.018049][T10801] loop5: detected capacity change from 0 to 1024
[  228.023312][T10801] EXT4-fs: Ignoring removed orlov option
[  228.026508][T10801] EXT4-fs warning (device loop5): read_mmp_block:115: Error -117 while reading MMP block 0
[  228.105932][T10803] netdevsim netdevsim5: loading /lib/firmware/. failed with error -22
[  228.109588][T10803] netdevsim netdevsim5: Direct firmware load for . failed with error -22
[  228.129546][T10803] netdevsim netdevsim5: Falling back to sysfs fallback for: .
[  228.241673][ T1272] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  228.411498][ T1272] usb 4-1: Using ep0 maxpacket: 8
[  228.416467][ T1272] usb 4-1: unable to get BOS descriptor or descriptor too short
[  228.431072][ T1272] usb 4-1: config 2 has an invalid interface number: 153 but max is 1
[  228.434818][ T1272] usb 4-1: config 2 has an invalid descriptor of length 131, skipping remainder of the config
[  228.439187][ T1272] usb 4-1: config 2 has 1 interface, different from the descriptor's value: 2
[  228.442977][ T1272] usb 4-1: config 2 has no interface number 0
[  228.445026][ T1272] usb 4-1: config 2 interface 153 has no altsetting 0
[  228.450004][ T1272] usb 4-1: New USB device found, idVendor=1199, idProduct=683b, bcdDevice=95.ac
[  228.453905][ T1272] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.456651][ T1272] usb 4-1: Product: syz
[  228.458327][ T1272] usb 4-1: Manufacturer: syz
[  228.460317][ T1272] usb 4-1: SerialNumber: syz
[  228.680880][ T1272] hub 4-1:2.153: bad descriptor, ignoring hub
[  228.688798][ T1272] hub 4-1:2.153: probe with driver hub failed with error -5
[  228.693659][ T1272] sierra 4-1:2.153: Sierra USB modem converter detected
[  228.726767][ T1272] usb 4-1: USB disconnect, device number 22
[  228.730921][ T1272] sierra 4-1:2.153: device disconnected
[  228.774684][T10809] IPv6: Can't replace route, no match found
[  229.124719][   T10] tipc: Node number set to 1
[  229.179986][T10834] loop5: detected capacity change from 0 to 1764
[  229.407045][   T33] audit: type=1326 audit(1757318815.152:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.0.1921" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  229.431505][   T33] audit: type=1326 audit(1757318815.172:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.0.1921" exe="/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  229.454392][   T33] audit: type=1326 audit(1757318815.172:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10845 comm="syz.0.1921" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  229.597780][T10844] loop5: detected capacity change from 0 to 32768
[  229.633642][T10844] JBD2: Ignoring recovery information on journal
[  229.680895][T10844] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[  229.721198][ T9690] ocfs2: Unmounting device (7,5) on (node local)
[  229.826496][T10854] loop3: detected capacity change from 0 to 32768
[  229.859771][T10854] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  229.891778][ T5887] (kworker/u8:3,5887,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[  229.921196][T10862] netlink: 'syz.5.1926': attribute type 10 has an invalid length.
[  229.932279][T10862] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  229.953679][ T8175] (syz-executor,8175,1):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 70
[  229.957313][ T8175] (syz-executor,8175,1):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72
[  229.965332][ T8175] ocfs2: Unmounting device (7,3) on (node local)
[  230.120439][T10874] sd 0:0:0:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x24 ascq=0x0
[  230.831848][   T24] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  230.981464][ T5908] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  230.987004][   T24] usb 6-1: config index 0 descriptor too short (expected 65069, got 45)
[  230.990230][   T24] usb 6-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 0
[  230.995811][   T24] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  230.999795][   T24] usb 6-1: config 0 has no interfaces?
[  231.002900][   T24] usb 6-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00
[  231.006587][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.017264][   T24] usb 6-1: config 0 descriptor??
[  231.022175][T10906] overlayfs: failed to clone upperpath
[  231.131527][ T5908] usb 4-1: Using ep0 maxpacket: 32
[  231.139051][ T5908] usb 4-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[  231.149635][ T5908] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  231.153588][ T5908] usb 4-1: Product: syz
[  231.154993][ T5908] usb 4-1: Manufacturer: syz
[  231.156525][ T5908] usb 4-1: SerialNumber: syz
[  231.160143][ T5908] usb 4-1: config 0 descriptor??
[  231.167660][ T5908] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  231.211536][ T5239] Bluetooth: hci2: command 0x0405 tx timeout
[  231.224333][   T10] usb 6-1: USB disconnect, device number 12
[  231.977874][T10923] loop5: detected capacity change from 0 to 32768
[  232.074503][T10927] overlayfs: failed to clone upperpath
[  232.497747][T10947] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  232.500612][T10947] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  232.509605][T10947] vhci_hcd vhci_hcd.0: Device attached
[  232.519692][T10948] vhci_hcd: connection closed
[  232.523215][ T5887] vhci_hcd: stop threads
[  232.529834][ T5887] vhci_hcd: release socket
[  232.532722][ T5887] vhci_hcd: disconnect device
[  232.579780][ T5908] gspca_topro: reg_r err -71
[  232.582905][ T5908] gspca_topro: Sensor soi763a
[  232.589753][ T5908] usb 4-1: USB disconnect, device number 23
[  233.490325][T10982] input: syz0 as /devices/virtual/input/input13
[  233.618410][T10990] loop3: detected capacity change from 0 to 512
[  233.629321][T10990] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  233.648157][T10990] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  233.664649][T10990] EXT4-fs (loop3): orphan cleanup on readonly fs
[  233.669497][T10990] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.1980: bad orphan inode 15
[  233.679198][T10990] ext4_test_bit(bit=14, block=18) = 1
[  233.690097][T10990] is_bad_inode(inode)=0
[  233.692284][T10990] NEXT_ORPHAN(inode)=1023
[  233.693919][T10990] max_ino=32
[  233.695165][T10990] i_nlink=0
[  233.706153][T10990] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #15: comm syz.3.1980: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled
[  233.718612][T10990] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  233.727303][T10990] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  233.750235][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.820144][T10997] loop3: detected capacity change from 0 to 2048
[  233.849282][T10997] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  233.858745][T10997] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  233.884297][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.932501][ T9835] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  234.028243][T11006] bridge0: port 2(bridge_slave_1) entered disabled state
[  234.033925][T11006] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.036688][T11006] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.092208][ T9835] usb 6-1: Using ep0 maxpacket: 32
[  234.097127][ T9835] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  234.100571][ T9835] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.128340][ T9835] usb 6-1: config 0 descriptor??
[  234.134926][T11015] No buffer was provided with the request
[  234.151163][ T9835] gspca_main: nw80x-2.14.0 probing 055f:d001
[  234.536216][T11024] Invalid ELF header magic: != ELF
[  235.056943][ T9835] gspca_nw80x: reg_r err -71
[  235.059204][ T9835] nw80x 6-1:0.0: probe with driver nw80x failed with error -71
[  235.069483][ T9835] usb 6-1: USB disconnect, device number 13
[  236.098743][T11046] loop3: detected capacity change from 0 to 256
[  236.199150][ T9835] kernel write not supported for file bpf-prog (pid: 9835 comm: kworker/1:6)
[  236.233624][T11044] loop5: detected capacity change from 0 to 32768
[  236.325979][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_delay=2013266920,journal_reclaim_delay=10,nojournal_transaction_names
[  236.325996][T11044]   allowing incompatible features above 0.0: (unknown version)
[  236.326001][T11044]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  236.326007][T11044]   with devices loop5
[  236.344764][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  236.348048][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing new filesystem
[  236.357387][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-write
[  236.370507][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking superblocks
[  236.377282][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing freespace
[  236.381958][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done initializing freespace
[  236.386031][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots table
[  236.388820][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots done
[  236.414485][T11044] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done starting filesystem
[  236.540984][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutting down
[  236.543678][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-only
[  236.546209][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): finished waiting for writes to stop
[  236.555205][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators, journal seq 2
[  236.643363][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators complete, journal seq 3
[  236.650728][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): clean shutdown complete, journal seq 4
[  236.656018][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking filesystem clean
[  236.695392][ T9690] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete
[  236.746122][T11069] 9pnet_fd: Insufficient options for proto=fd
[  238.046576][T11082] 9pnet_fd: Insufficient options for proto=fd
[  238.095780][T11080] loop3: detected capacity change from 0 to 8192
[  238.346875][T11097] loop3: detected capacity change from 0 to 1024
[  238.366541][T11097] hfsplus: request for non-existent node 65536 in B*Tree
[  238.369760][T11097] hfsplus: request for non-existent node 65536 in B*Tree
[  238.385575][T11097] hfsplus: failed to load root directory
[  238.615359][   T33] audit: type=1326 audit(1757318824.362:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11110 comm="syz.0.2031" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x0
[  239.928478][T11125] loop5: detected capacity change from 0 to 2048
[  239.956224][T11125] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.980067][T11124] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  239.986890][   T33] audit: type=1800 audit(1757318825.722:80): pid=11125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2035" name="file1" dev="loop5" ino=15 res=0 errno=0
[  240.000702][   T33] audit: type=1800 audit(1757318825.722:81): pid=11125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2035" name="file1" dev="loop5" ino=15 res=0 errno=0
[  240.006950][T11124] EXT4-fs (loop5): Remounting filesystem read-only
[  240.019922][T11124] EXT4-fs (loop5): error restoring inline_data for inode -- potential data loss! (inode 15, error -30)
[  240.047843][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.240587][T11136] loop5: detected capacity change from 0 to 1024
[  240.258859][T11136] EXT4-fs: Ignoring removed nobh option
[  240.274624][T11136] EXT4-fs (loop5): Invalid log cluster size: 63
[  240.312533][T11136] overlayfs: failed to resolve '/'ȇ'_?/~<ıL<6XW"fWrv>;ز*YF#1H|RDԀJ?TslRG%t<}Ƶػ': -2
[  240.771579][ T1272] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  240.931480][ T1272] usb 6-1: Using ep0 maxpacket: 32
[  240.936119][ T1272] usb 6-1: unable to get BOS descriptor or descriptor too short
[  240.946364][ T1272] usb 6-1: config 244 has an invalid interface number: 68 but max is 0
[  240.949658][ T1272] usb 6-1: config 244 has no interface number 0
[  240.952252][ T1272] usb 6-1: config 244 interface 68 altsetting 3 bulk endpoint 0x3 has invalid maxpacket 8
[  240.956358][ T1272] usb 6-1: config 244 interface 68 altsetting 3 endpoint 0x4 has invalid maxpacket 1023, setting to 64
[  240.960664][ T1272] usb 6-1: config 244 interface 68 altsetting 3 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  240.967022][ T1272] usb 6-1: config 244 interface 68 has no altsetting 0
[  240.973810][ T1272] usb 6-1: New USB device found, idVendor=0867, idProduct=9812, bcdDevice=24.0f
[  240.977393][ T1272] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.980502][ T1272] usb 6-1: Product: syz
[  240.984487][ T1272] usb 6-1: Manufacturer: syz
[  240.986385][ T1272] usb 6-1: SerialNumber: syz
[  240.995450][T11144] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  241.550486][ T1272] comedi comedi5: Endpoint has wrong direction
[  241.553742][ T1272] dt9812 6-1:244.68: driver 'dt9812' failed to auto-configure device.
[  241.569738][ T1272] usb 6-1: USB disconnect, device number 14
[  242.192666][T11167] loop3: detected capacity change from 0 to 32768
[  242.214255][T11167] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  242.230845][T11167] XFS (loop3): Metadata corruption detected at xfs_dinode_verify+0x1a6/0x1570, inode 0x1141 dinode
[  242.234821][T11167] XFS (loop3): Unmount and run xfs_repair
[  242.236642][T11167] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  242.239024][T11167] 00000000: 49 4e 80 00 03 02 00 00 00 00 00 00 00 00 00 00  IN..............
[  242.243750][T11167] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  242.247255][T11167] 00000020: 1d cd 65 00 00 00 00 00 34 f7 58 68 80 1f e2 68  ..e.....4.Xh...h
[  242.250860][T11167] 00000030: 34 f7 58 68 80 1f e2 68 00 00 00 00 00 00 00 00  4.Xh...h........
[  242.257785][T11167] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  242.262578][T11167] 00000050: 00 00 00 02 00 00 00 00 00 00 00 04 00 00 00 00  ................
[  242.266225][T11167] 00000060: ff ff ff ff 22 b5 cb 17 00 00 00 00 00 00 00 02  ...."...........
[  242.269946][T11167] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08  ................
[  242.279240][T11167] XFS (loop3): metadata inode 0x1141 type 5 is corrupt
[  242.283149][T11167] XFS (loop3): failed to read RT inodes
[  242.290435][T11167] XFS (loop3): Uncorrected metadata errors detected; please run xfs_repair.
[  243.420102][T11197] loop5: detected capacity change from 0 to 2048
[  243.483626][T11197] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.543575][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.679408][T11208] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2064'.
[  244.584792][T11239] loop3: detected capacity change from 0 to 1024
[  244.600139][T11239] hfsplus: bad catalog entry type
[  244.616336][ T3555] hfsplus: b-tree write err: -5, ino 4
[  245.465864][   T33] audit: type=1326 audit(1757318831.212:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.480348][   T33] audit: type=1326 audit(1757318831.212:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.489247][   T33] audit: type=1326 audit(1757318831.212:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.497649][   T33] audit: type=1326 audit(1757318831.212:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.506927][   T33] audit: type=1326 audit(1757318831.212:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.515919][   T33] audit: type=1326 audit(1757318831.212:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.525328][   T33] audit: type=1326 audit(1757318831.212:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.539571][   T33] audit: type=1326 audit(1757318831.212:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.557443][   T33] audit: type=1326 audit(1757318831.232:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.575033][   T33] audit: type=1326 audit(1757318831.232:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11275 comm="syz.5.2096" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  245.853699][T11286] loop3: detected capacity change from 0 to 4096
[  245.873223][T11286] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  245.899593][T11286] ntfs3(loop3): Failed to load $Extend (-22).
[  245.902443][T11286] ntfs3(loop3): Failed to initialize $Extend.
[  246.124442][T11298] loop5: detected capacity change from 0 to 8
[  246.135366][T11298] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  246.311203][T11294] loop3: detected capacity change from 0 to 40427
[  246.322443][T11294] F2FS-fs (loop3): build fault injection rate: 771
[  246.326906][T11294] F2FS-fs (loop3): invalid crc value
[  246.359793][T11301] cramfs: Error -3 while decompressing!
[  246.366463][T11301] cramfs: ffffffff99bf3668(26)->ffff88811f0d8000(4096)
[  246.369977][T11301] cramfs: Error -3 while decompressing!
[  246.372859][T11301] cramfs: ffffffff99bf3682(26)->ffff88811f0d7000(4096)
[  246.375719][T11301] cramfs: Error -3 while decompressing!
[  246.378067][T11301] cramfs: ffffffff99bf369c(16)->ffff88811f0d6000(4096)
[  246.380977][T11301] cramfs: Error -3 while decompressing!
[  246.387291][T11301] cramfs: ffffffff99bf3668(26)->ffff88811f0d8000(4096)
[  246.401463][T11294] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  246.406015][T11294] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  246.430545][T11294] syz.3.2103: attempt to access beyond end of device
[  246.430545][T11294] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  246.462036][ T8175] syz-executor: attempt to access beyond end of device
[  246.462036][ T8175] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  246.482412][ T8175] CPU: 0 UID: 0 PID: 8175 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  246.482434][ T8175] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  246.482444][ T8175] Call Trace:
[  246.482450][ T8175]  <TASK>
[  246.482457][ T8175]  dump_stack_lvl+0x189/0x250
[  246.482482][ T8175]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.482500][ T8175]  ? __pfx_queue_work_on+0x10/0x10
[  246.482514][ T8175]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  246.482533][ T8175]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  246.482563][ T8175]  f2fs_handle_critical_error+0x37c/0x540
[  246.482590][ T8175]  f2fs_write_end_io+0x886/0xb60
[  246.482621][ T8175]  __submit_merged_bio+0x27a/0x6a0
[  246.482647][ T8175]  __submit_merged_write_cond+0x255/0x530
[  246.482674][ T8175]  f2fs_write_data_pages+0x261d/0x3000
[  246.482727][ T8175]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  246.482788][ T8175]  ? __mod_zone_page_state+0xd7/0x140
[  246.482848][ T8175]  ? folios_put_refs+0x560/0x640
[  246.482872][ T8175]  ? __pfx_folios_put_refs+0x10/0x10
[  246.482886][ T8175]  ? rcu_is_watching+0x15/0xb0
[  246.482908][ T8175]  ? __lock_acquire+0xab9/0xd20
[  246.482942][ T8175]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  246.482964][ T8175]  do_writepages+0x32e/0x550
[  246.482993][ T8175]  ? do_raw_spin_unlock+0x4d/0x240
[  246.483013][ T8175]  filemap_fdatawrite+0x199/0x240
[  246.483032][ T8175]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  246.483094][ T8175]  ? do_raw_spin_unlock+0x4d/0x240
[  246.483123][ T8175]  f2fs_sync_dirty_inodes+0x31f/0x830
[  246.483151][ T8175]  f2fs_write_checkpoint+0x95a/0x1df0
[  246.483188][ T8175]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  246.483240][ T8175]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  246.483254][ T8175]  ? kfree+0x18e/0x440
[  246.483272][ T8175]  ? kill_f2fs_super+0x298/0x6c0
[  246.483290][ T8175]  kill_f2fs_super+0x2c3/0x6c0
[  246.483310][ T8175]  ? __pfx_kill_f2fs_super+0x10/0x10
[  246.483322][ T8175]  ? radix_tree_delete_item+0x2b6/0x400
[  246.483348][ T8175]  ? shrinker_free+0x2ce/0x3e0
[  246.483365][ T8175]  deactivate_locked_super+0xbc/0x130
[  246.483384][ T8175]  cleanup_mnt+0x425/0x4c0
[  246.483399][ T8175]  ? lockdep_hardirqs_on+0x9c/0x150
[  246.483421][ T8175]  task_work_run+0x1d4/0x260
[  246.483442][ T8175]  ? __pfx_task_work_run+0x10/0x10
[  246.483458][ T8175]  ? __x64_sys_umount+0x122/0x160
[  246.483479][ T8175]  ? exit_to_user_mode_loop+0x40/0x110
[  246.483502][ T8175]  exit_to_user_mode_loop+0xec/0x110
[  246.483522][ T8175]  do_syscall_64+0x2bd/0x3b0
[  246.483533][ T8175]  ? lockdep_hardirqs_on+0x9c/0x150
[  246.483551][ T8175]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.483564][ T8175]  ? exc_page_fault+0x9f/0xf0
[  246.483585][ T8175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.483598][ T8175] RIP: 0033:0x7efc1c58ff17
[  246.483611][ T8175] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  246.483623][ T8175] RSP: 002b:00007ffe92aea948 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  246.483639][ T8175] RAX: 0000000000000000 RBX: 00007efc1c611c05 RCX: 00007efc1c58ff17
[  246.483648][ T8175] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe92aeaa00
[  246.483656][ T8175] RBP: 00007ffe92aeaa00 R08: 0000000000000000 R09: 0000000000000000
[  246.483664][ T8175] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe92aeba90
[  246.483673][ T8175] R13: 00007efc1c611c05 R14: 000000000003c23f R15: 00007ffe92aebad0
[  246.483699][ T8175]  </TASK>
[  246.483705][ T8175] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  247.253117][ T1272] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  247.279125][T11338] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  247.284071][T11338] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  247.286496][T11338] overlayfs: missing 'lowerdir'
[  247.411838][ T1272] usb 6-1: Using ep0 maxpacket: 8
[  247.420715][ T1272] usb 6-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=3a.b2
[  247.424573][ T1272] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  247.427855][ T1272] usb 6-1: Product: syz
[  247.429516][ T1272] usb 6-1: Manufacturer: syz
[  247.433400][ T1272] usb 6-1: SerialNumber: syz
[  247.442258][ T1272] usb 6-1: config 0 descriptor??
[  247.635657][T11343] loop3: detected capacity change from 0 to 4096
[  247.641731][T11343] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  247.650289][T11343] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  247.654574][ T1272] gspca_main: sunplus-2.14.0 probing 04a5:3003
[  247.661967][T11343] ntfs3(loop3): volume is dirty and "force" flag is not set!
[  248.059525][ T1272] gspca_sunplus: reg_w_riv err -71
[  248.071044][ T1272] sunplus 6-1:0.0: probe with driver sunplus failed with error -71
[  248.090114][ T1272] usb 6-1: USB disconnect, device number 15
[  248.169597][T11349] loop3: detected capacity change from 0 to 40427
[  248.175119][T11349] F2FS-fs (loop3): build fault injection rate: 771
[  248.180635][T11349] F2FS-fs (loop3): invalid crc value
[  248.245272][T11349] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  248.253763][T11349] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  248.279265][ T8175] syz-executor: attempt to access beyond end of device
[  248.279265][ T8175] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  248.284627][ T8175] CPU: 0 UID: 0 PID: 8175 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  248.284641][ T8175] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  248.284672][ T8175] Call Trace:
[  248.284677][ T8175]  <TASK>
[  248.284681][ T8175]  dump_stack_lvl+0x189/0x250
[  248.284697][ T8175]  ? __pfx_dump_stack_lvl+0x10/0x10
[  248.284707][ T8175]  ? __pfx_queue_work_on+0x10/0x10
[  248.284715][ T8175]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  248.284727][ T8175]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  248.284744][ T8175]  f2fs_handle_critical_error+0x37c/0x540
[  248.284760][ T8175]  f2fs_write_end_io+0x886/0xb60
[  248.284777][ T8175]  __submit_merged_bio+0x27a/0x6a0
[  248.284792][ T8175]  __submit_merged_write_cond+0x255/0x530
[  248.284807][ T8175]  f2fs_write_data_pages+0x261d/0x3000
[  248.284837][ T8175]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  248.284883][ T8175]  ? folios_put_refs+0x559/0x640
[  248.284898][ T8175]  ? __pfx_folios_put_refs+0x10/0x10
[  248.284906][ T8175]  ? rcu_is_watching+0x15/0xb0
[  248.284919][ T8175]  ? __lock_acquire+0xab9/0xd20
[  248.284939][ T8175]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  248.284952][ T8175]  do_writepages+0x32e/0x550
[  248.284968][ T8175]  ? do_raw_spin_unlock+0x4d/0x240
[  248.284980][ T8175]  filemap_fdatawrite+0x199/0x240
[  248.284992][ T8175]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  248.285027][ T8175]  ? do_raw_spin_unlock+0x4d/0x240
[  248.285039][ T8175]  f2fs_sync_dirty_inodes+0x31f/0x830
[  248.285055][ T8175]  f2fs_write_checkpoint+0x95a/0x1df0
[  248.285075][ T8175]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  248.285105][ T8175]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  248.285114][ T8175]  ? kfree+0x18e/0x440
[  248.285124][ T8175]  ? kill_f2fs_super+0x298/0x6c0
[  248.285135][ T8175]  kill_f2fs_super+0x2c3/0x6c0
[  248.285146][ T8175]  ? __pfx_kill_f2fs_super+0x10/0x10
[  248.285152][ T8175]  ? radix_tree_delete_item+0x2b6/0x400
[  248.285168][ T8175]  ? shrinker_free+0x2ce/0x3e0
[  248.285178][ T8175]  deactivate_locked_super+0xbc/0x130
[  248.285189][ T8175]  cleanup_mnt+0x425/0x4c0
[  248.285198][ T8175]  ? lockdep_hardirqs_on+0x9c/0x150
[  248.285211][ T8175]  task_work_run+0x1d4/0x260
[  248.285224][ T8175]  ? __pfx_task_work_run+0x10/0x10
[  248.285233][ T8175]  ? __x64_sys_umount+0x122/0x160
[  248.285246][ T8175]  ? exit_to_user_mode_loop+0x40/0x110
[  248.285260][ T8175]  exit_to_user_mode_loop+0xec/0x110
[  248.285271][ T8175]  do_syscall_64+0x2bd/0x3b0
[  248.285278][ T8175]  ? lockdep_hardirqs_on+0x9c/0x150
[  248.285289][ T8175]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.285296][ T8175]  ? exc_page_fault+0x9f/0xf0
[  248.285308][ T8175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.285315][ T8175] RIP: 0033:0x7efc1c58ff17
[  248.285324][ T8175] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  248.285331][ T8175] RSP: 002b:00007ffe92aea948 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  248.285339][ T8175] RAX: 0000000000000000 RBX: 00007efc1c611c05 RCX: 00007efc1c58ff17
[  248.285344][ T8175] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe92aeaa00
[  248.285349][ T8175] RBP: 00007ffe92aeaa00 R08: 0000000000000000 R09: 0000000000000000
[  248.285354][ T8175] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe92aeba90
[  248.285359][ T8175] R13: 00007efc1c611c05 R14: 000000000003c95e R15: 00007ffe92aebad0
[  248.285373][ T8175]  </TASK>
[  248.285377][ T8175] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  249.112548][T11384] loop5: detected capacity change from 0 to 40427
[  249.120089][T11384] F2FS-fs (loop5): Small segment_count (9 < 1 * 24)
[  249.147271][T11384] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  249.366482][T11384] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  249.398953][T11384] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  249.404833][T11384] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  249.562943][T11384] syz.5.2143: attempt to access beyond end of device
[  249.562943][T11384] loop5: rw=34817, sector=53248, nr_sectors = 128 limit=40427
[  249.674887][ T9690] syz-executor: attempt to access beyond end of device
[  249.674887][ T9690] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  249.680297][ T9690] CPU: 1 UID: 0 PID: 9690 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  249.680316][ T9690] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  249.680324][ T9690] Call Trace:
[  249.680330][ T9690]  <TASK>
[  249.680335][ T9690]  dump_stack_lvl+0x189/0x250
[  249.680361][ T9690]  ? __pfx_dump_stack_lvl+0x10/0x10
[  249.680375][ T9690]  ? __pfx_queue_work_on+0x10/0x10
[  249.680387][ T9690]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  249.680405][ T9690]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  249.680432][ T9690]  f2fs_handle_critical_error+0x37c/0x540
[  249.680450][ T9690]  f2fs_write_end_io+0x886/0xb60
[  249.680477][ T9690]  __submit_merged_bio+0x27a/0x6a0
[  249.680500][ T9690]  __submit_merged_write_cond+0x255/0x530
[  249.680550][ T9690]  f2fs_write_data_pages+0x261d/0x3000
[  249.680598][ T9690]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  249.680664][ T9690]  ? folios_put_refs+0x559/0x640
[  249.680687][ T9690]  ? __pfx_folios_put_refs+0x10/0x10
[  249.680699][ T9690]  ? rcu_is_watching+0x15/0xb0
[  249.680721][ T9690]  ? __lock_acquire+0xab9/0xd20
[  249.680756][ T9690]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  249.680777][ T9690]  do_writepages+0x32e/0x550
[  249.680806][ T9690]  ? do_raw_spin_unlock+0x4d/0x240
[  249.680827][ T9690]  filemap_fdatawrite+0x199/0x240
[  249.680845][ T9690]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  249.680908][ T9690]  ? do_raw_spin_unlock+0x4d/0x240
[  249.680928][ T9690]  f2fs_sync_dirty_inodes+0x31f/0x830
[  249.680957][ T9690]  f2fs_write_checkpoint+0x95a/0x1df0
[  249.680994][ T9690]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  249.681053][ T9690]  ? call_rcu+0x6ff/0x9c0
[  249.681067][ T9690]  ? lockdep_hardirqs_on+0x9c/0x150
[  249.681086][ T9690]  ? kill_f2fs_super+0x298/0x6c0
[  249.681105][ T9690]  kill_f2fs_super+0x2c3/0x6c0
[  249.681125][ T9690]  ? __pfx_kill_f2fs_super+0x10/0x10
[  249.681137][ T9690]  ? radix_tree_delete_item+0x2b6/0x400
[  249.681161][ T9690]  ? shrinker_free+0x2ce/0x3e0
[  249.681179][ T9690]  deactivate_locked_super+0xbc/0x130
[  249.681198][ T9690]  cleanup_mnt+0x425/0x4c0
[  249.681214][ T9690]  ? lockdep_hardirqs_on+0x9c/0x150
[  249.681235][ T9690]  task_work_run+0x1d4/0x260
[  249.681275][ T9690]  ? __pfx_task_work_run+0x10/0x10
[  249.681291][ T9690]  ? __x64_sys_umount+0x122/0x160
[  249.681312][ T9690]  ? exit_to_user_mode_loop+0x40/0x110
[  249.681332][ T9690]  exit_to_user_mode_loop+0xec/0x110
[  249.681351][ T9690]  do_syscall_64+0x2bd/0x3b0
[  249.681363][ T9690]  ? lockdep_hardirqs_on+0x9c/0x150
[  249.681379][ T9690]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.681393][ T9690]  ? exc_page_fault+0x9f/0xf0
[  249.681412][ T9690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.681423][ T9690] RIP: 0033:0x7f96bcb8ff17
[  249.681437][ T9690] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  249.681448][ T9690] RSP: 002b:00007ffdf1f71488 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  249.681464][ T9690] RAX: 0000000000000000 RBX: 00007f96bcc11c05 RCX: 00007f96bcb8ff17
[  249.681472][ T9690] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf1f71540
[  249.681479][ T9690] RBP: 00007ffdf1f71540 R08: 0000000000000000 R09: 0000000000000000
[  249.681487][ T9690] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf1f725d0
[  249.681495][ T9690] R13: 00007f96bcc11c05 R14: 000000000003ce93 R15: 00007ffdf1f72610
[  249.681513][ T9690]  </TASK>
[  249.880139][ T9690] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  250.562678][T11431] loop3: detected capacity change from 0 to 32768
[  250.620206][T11431] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,read_only
[  250.620226][T11431]   allowing incompatible features above 0.0: (unknown version)
[  250.620234][T11431]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  250.635653][T11431] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[  250.638870][T11431] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  250.642186][T11431] bcachefs (loop3): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive
[  250.642186][T11431]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  250.675203][T11431] bcachefs (loop3): btree node read error at btree lru level 0/0
[  250.675260][T11431]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  250.675263][T11425] loop5: detected capacity change from 0 to 32768
[  250.675273][T11431]   loop3 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  250.675283][T11431]   loop3 btree validate error
[  250.675290][T11431]   flagging btree lru lost data
[  250.675297][T11431]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  250.675307][T11431]   running recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[  250.675317][T11431]   running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[  250.675327][T11431]   running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0)
[  250.675336][T11431]   ret btree_node_read_err_bad_node
[  250.685594][T11425] jfs_mount: Failed to read FILESYSTEM_I
[  250.688169][T11431] bcachefs (loop3): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  250.690856][T11425] Mount JFS Failure: -5
[  250.693647][T11431] bcachefs (loop3): btree node read error at btree freespace level 0/0
[  250.702826][T11425] jfs_mount failed w/return code = -5
[  250.705541][T11431]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  250.705558][T11431]   loop3 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295
[  250.705570][T11431]   u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0
[  250.705578][T11431]   loop3 btree validate error
[  250.705585][T11431]   flagging btree freespace lost data
[  250.705592][T11431]   ret btree_node_read_err_bad_node
[  250.705774][T11431] bcachefs (loop3): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  250.753094][T11431] bcachefs (loop3): check_topology... done
[  250.757634][T11431] bcachefs (loop3): accounting_read... done
[  250.760396][T11431] bcachefs (loop3): alloc_read... done
[  250.763074][T11431] bcachefs (loop3): snapshots_read... done
[  250.765868][T11431] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean
[  250.769693][T11431] bcachefs (loop3): done starting filesystem
[  250.896944][ T8175] bcachefs (loop3): shutting down
[  250.942266][ T8175] bcachefs (loop3): shutdown complete
[  251.047330][   T54] Bluetooth: hci2: unexpected event for opcode 0x2027
[  251.095550][T11446] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2172'.
[  251.214732][T11454] loop5: detected capacity change from 0 to 1024
[  251.223256][T11454] EXT4-fs: Ignoring removed nomblk_io_submit option
[  251.240247][T11454] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.297922][   T33] kauditd_printk_skb: 61 callbacks suppressed
[  251.297936][   T33] audit: type=1326 audit(1757318837.042:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.0.2178" exe="/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7fb204985ba7 code=0x0
[  251.317452][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.379708][T11463] loop5: detected capacity change from 0 to 2048
[  251.544478][T11467] loop5: detected capacity change from 0 to 256
[  251.574067][T11467] FAT-fs (loop5): Directory bread(block 64) failed
[  251.577123][T11467] FAT-fs (loop5): Directory bread(block 65) failed
[  251.580004][T11467] FAT-fs (loop5): Directory bread(block 66) failed
[  251.583147][T11467] FAT-fs (loop5): Directory bread(block 67) failed
[  251.585811][T11467] FAT-fs (loop5): Directory bread(block 68) failed
[  251.588317][T11467] FAT-fs (loop5): Directory bread(block 69) failed
[  251.592789][T11467] FAT-fs (loop5): Directory bread(block 70) failed
[  251.595359][T11467] FAT-fs (loop5): Directory bread(block 71) failed
[  251.597953][T11467] FAT-fs (loop5): Directory bread(block 72) failed
[  251.600515][T11467] FAT-fs (loop5): Directory bread(block 73) failed
[  251.952526][ T5908] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  252.101708][ T5908] usb 6-1: Using ep0 maxpacket: 32
[  252.105435][ T5908] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  252.110677][ T5908] usb 6-1: New USB device found, idVendor=04b4, idProduct=ed81, bcdDevice= 0.00
[  252.116064][ T5908] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.120040][ T5908] usb 6-1: config 0 descriptor??
[  252.538323][ T5908] cypress 0003:04B4:ED81.000E: unknown main item tag 0x0
[  252.541113][ T5908] cypress 0003:04B4:ED81.000E: item fetching failed at offset 3/5
[  252.552166][ T5908] cypress 0003:04B4:ED81.000E: parse failed
[  252.556435][ T5908] cypress 0003:04B4:ED81.000E: probe with driver cypress failed with error -22
[  252.753999][ T1272] usb 6-1: USB disconnect, device number 16
[  253.036448][T11498] loop3: detected capacity change from 0 to 764
[  253.059591][T11498] rock: directory entry would overflow storage
[  253.062977][T11498] rock: sig=0x5245, size=8, remaining=5
[  253.521788][   T10] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  253.702448][   T10] usb 4-1: Using ep0 maxpacket: 8
[  253.712248][   T10] usb 4-1: unable to get BOS descriptor or descriptor too short
[  253.719565][   T10] usb 4-1: config 5 has an invalid interface number: 41 but max is 0
[  253.726366][   T10] usb 4-1: config 5 has no interface number 0
[  253.735691][   T10] usb 4-1: config 5 interface 41 altsetting 2 bulk endpoint 0x83 has invalid maxpacket 1023
[  253.739607][   T10] usb 4-1: config 5 interface 41 altsetting 2 bulk endpoint 0x8 has invalid maxpacket 64
[  253.744606][   T10] usb 4-1: config 5 interface 41 altsetting 2 endpoint 0x5 has invalid maxpacket 1024, setting to 64
[  253.748628][   T10] usb 4-1: config 5 interface 41 has no altsetting 0
[  253.761145][   T10] usb 4-1: New USB device found, idVendor=2c7c, idProduct=0125, bcdDevice= a.30
[  253.769136][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  253.777625][   T10] usb 4-1: Product: syz
[  253.780173][   T10] usb 4-1: Manufacturer: syz
[  253.782628][   T10] usb 4-1: SerialNumber: syz
[  253.798594][T11508] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  253.802155][T11508] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  254.070378][   T10] qmi_wwan 4-1:5.41: probe with driver qmi_wwan failed with error -71
[  254.094482][   T10] usb 4-1: USB disconnect, device number 24
[  254.636557][T11531] loop3: detected capacity change from 0 to 256
[  254.694035][T11531] FAT-fs (loop3): Directory bread(block 64) failed
[  254.696661][T11531] FAT-fs (loop3): Directory bread(block 65) failed
[  254.699313][T11531] FAT-fs (loop3): Directory bread(block 66) failed
[  254.704026][T11531] FAT-fs (loop3): Directory bread(block 67) failed
[  254.706746][T11531] FAT-fs (loop3): Directory bread(block 68) failed
[  254.709546][T11531] FAT-fs (loop3): Directory bread(block 69) failed
[  254.714497][T11531] FAT-fs (loop3): Directory bread(block 70) failed
[  254.717260][T11531] FAT-fs (loop3): Directory bread(block 71) failed
[  254.719942][T11531] FAT-fs (loop3): Directory bread(block 72) failed
[  254.725490][T11531] FAT-fs (loop3): Directory bread(block 73) failed
[  254.995013][   T10] IPVS: starting estimator thread 0...
[  254.998776][T11551] IPVS: sh: SCTP 127.0.0.1:0 - no destination available
[  255.101596][T11552] IPVS: using max 38 ests per chain, 91200 per kthread
[  255.375826][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  255.378110][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  255.862032][ T5922] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  256.021831][ T5922] usb 4-1: Using ep0 maxpacket: 32
[  256.025977][ T5922] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  256.029948][ T5922] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  256.043057][ T5922] usb 4-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice=25.11
[  256.046526][ T5922] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  256.049921][ T5922] usb 4-1: Product: syz
[  256.053744][ T5922] usb 4-1: Manufacturer: syz
[  256.055561][ T5922] usb 4-1: SerialNumber: syz
[  256.059818][ T5922] usb 4-1: config 0 descriptor??
[  256.072670][ T5922] usb 4-1: no audio or video endpoints found
[  256.174888][T11583] netlink: 172 bytes leftover after parsing attributes in process `syz.0.2231'.
[  256.178745][T11583] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2231'.
[  256.188467][T11583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2231'.
[  256.273871][   T24] usb 4-1: USB disconnect, device number 25
[  256.681404][ T1272] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  256.842269][ T1272] usb 6-1: Using ep0 maxpacket: 16
[  256.853909][ T1272] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  256.858572][ T1272] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  256.871498][ T1272] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  256.875376][ T1272] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  256.879190][ T1272] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  256.887340][ T1272] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  256.890976][ T1272] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  256.895840][ T1272] usb 6-1: Manufacturer: syz
[  256.903863][ T1272] usb 6-1: config 0 descriptor??
[  257.136190][   T33] audit: type=1326 audit(1757318842.882:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.0.2240" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  257.145319][   T33] audit: type=1326 audit(1757318842.882:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.0.2240" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  257.152818][   T33] audit: type=1326 audit(1757318842.882:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.0.2240" exe="/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  257.160422][   T33] audit: type=1326 audit(1757318842.882:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.0.2240" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  257.169693][   T33] audit: type=1326 audit(1757318842.882:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11602 comm="syz.0.2240" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  257.173317][ T1272] rc_core: IR keymap rc-hauppauge not found
[  257.180054][ T1272] Registered IR keymap rc-empty
[  257.187667][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.213050][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.243604][ T1272] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0
[  257.248920][ T1272] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/rc/rc0/input14
[  257.254819][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.272932][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.308242][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.331589][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.352230][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.381545][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.411714][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.431601][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.451519][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.471950][ T1272] mceusb 6-1:0.0: Error: mce write submit urb error = -90
[  257.503423][ T1272] mceusb 6-1:0.0: Registered  with mce emulator interface version 1
[  257.507884][ T1272] mceusb 6-1:0.0: 2 tx ports (0x1 cabled) and 2 rx sensors (0x0 active)
[  257.587021][T11614] loop3: detected capacity change from 0 to 256
[  257.625433][   T24] usb 6-1: USB disconnect, device number 17
[  257.766625][T11620] loop3: detected capacity change from 0 to 512
[  257.784959][T11620] EXT4-fs (loop3): 1 truncate cleaned up
[  257.788677][T11620] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  257.853963][ T8175] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  258.107562][T11636] overlayfs: missing 'lowerdir'
[  258.225767][T11646] loop5: detected capacity change from 0 to 256
[  258.236488][T11646] exfat: Deprecated parameter 'namecase'
[  258.246994][T11646] exfat: Deprecated parameter 'utf8'
[  258.263250][T11646] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  258.449731][T11660] loop5: detected capacity change from 0 to 64
[  258.764015][   T24] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  258.911845][   T24] usb 6-1: Using ep0 maxpacket: 32
[  258.916903][   T24] usb 6-1: unable to get BOS descriptor or descriptor too short
[  258.923910][   T24] usb 6-1: config 128 has an invalid interface number: 127 but max is 3
[  258.927252][   T24] usb 6-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  258.931149][   T24] usb 6-1: config 128 has 1 interface, different from the descriptor's value: 4
[  258.935571][   T24] usb 6-1: config 128 has no interface number 0
[  258.951930][   T24] usb 6-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid maxpacket 1828, setting to 1024
[  258.956370][   T24] usb 6-1: config 128 interface 127 has no altsetting 0
[  258.962596][   T24] usb 6-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  258.971904][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.975036][   T24] usb 6-1: Product: syz
[  258.976648][   T24] usb 6-1: Manufacturer: syz
[  258.978527][   T24] usb 6-1: SerialNumber: syz
[  259.010107][T11662] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  259.161556][T11673] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2271'.
[  259.267342][   T24] usb 6-1: USB disconnect, device number 18
[  259.301123][ T6130] udevd[6130]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  260.089756][T11698] input: syz1 as /devices/virtual/input/input15
[  260.834968][T11711] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2288'.
[  260.891770][   T54] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  260.895264][   T54] Bluetooth: hci1: Injecting HCI hardware error event
[  260.900846][ T5239] Bluetooth: hci1: hardware error 0x00
[  261.107058][T11714] loop3: detected capacity change from 0 to 256
[  261.161925][T11714] MINIX-fs: mounting file system with errors, running fsck is recommended
[  261.514984][T11720] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 3946
[  261.621422][ T1272] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  261.751862][ T5922] usb 6-1: new full-speed USB device number 19 using dummy_hcd
[  261.773731][ T1272] usb 4-1: Using ep0 maxpacket: 32
[  261.778342][ T1272] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  261.783622][ T1272] usb 4-1: config 0 has no interface number 0
[  261.788437][ T1272] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  261.792363][ T1272] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.795538][ T1272] usb 4-1: Product: syz
[  261.797316][ T1272] usb 4-1: Manufacturer: syz
[  261.799214][ T1272] usb 4-1: SerialNumber: syz
[  261.807740][ T1272] usb 4-1: config 0 descriptor??
[  261.817175][ T1272] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  261.820633][ T1272] usb 4-1: selecting invalid altsetting 1
[  261.823283][ T1272] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  261.828537][ T1272] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  261.834336][ T1272] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  261.838018][ T1272] usb 4-1: media controller created
[  261.858961][ T1272] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  261.904099][ T5922] usb 6-1: config 0 interface 0 altsetting 252 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  261.908523][ T5922] usb 6-1: config 0 interface 0 has no altsetting 0
[  261.911138][ T5922] usb 6-1: New USB device found, idVendor=1b1c, idProduct=0a1a, bcdDevice= 0.00
[  261.915550][ T5922] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.922011][ T5922] usb 6-1: config 0 descriptor??
[  261.925272][T11722] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  262.022311][ T1272] usb 4-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  262.027471][ T1272] zl10353_read_register: readreg error (reg=127, ret==-71)
[  262.031202][ T1272] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  262.075588][ T1272] usb 4-1: USB disconnect, device number 26
[  262.361999][ T5922] hid-corsair-void 0003:1B1C:0A1A.000F: hidraw0: USB HID v0.07 Device [HID 1b1c:0a1a] on usb-dummy_hcd.5-1/input0
[  262.576680][ T9835] usb 6-1: USB disconnect, device number 19
[  262.581858][ T5922] hid-corsair-void 0003:1B1C:0A1A.000F: failed to request firmware (reason: -71)
[  262.586587][   T24] hid-corsair-void 0003:1B1C:0A1A.000F: failed to request battery (reason: -71)
[  263.128500][ T5239] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  263.427411][T11755] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2304'.
[  263.965688][T11764] block device autoloading is deprecated and will be removed.
[  264.974444][T11780] loop3: detected capacity change from 0 to 1024
[  265.264710][ T5908] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  267.669856][ T5908] usb 6-1: config 1 has an invalid descriptor of length 126, skipping remainder of the config
[  267.673732][ T5908] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  267.678884][ T5908] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  267.683178][ T5908] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  267.685765][ T5908] usb 6-1: SerialNumber: syz
[  267.899843][ T5908] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[  267.908650][ T5908] usb 6-1: USB disconnect, device number 20
[  268.379306][T11814] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  269.441428][T11844] loop3: detected capacity change from 0 to 16
[  269.510971][T11844] erofs (device loop3): mounted with root inode @ nid 36.
[  269.824492][   T33] audit: type=1326 audit(1757318855.562:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11865 comm="syz.0.2355" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x0
[  270.700383][T11883] netdevsim netdevsim0: Direct firmware load for .. failed with error -2
[  270.704036][T11883] netdevsim netdevsim0: Falling back to sysfs fallback for: ..
[  271.170219][T11900] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2368'.
[  271.206841][T11894] loop5: detected capacity change from 0 to 40427
[  271.209877][T11894] F2FS-fs (loop5): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  271.216365][T11894] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  271.224565][T11894] F2FS-fs (loop5): Image doesn't support compression
[  271.228943][T11894] F2FS-fs (loop5): build fault injection rate: 690
[  271.234231][T11894] F2FS-fs (loop5): build fault injection type: 0x35f7
[  271.241510][T11894] F2FS-fs (loop5): invalid crc value
[  271.298291][T11894] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  271.303487][T11894] F2FS-fs (loop5): Start checkpoint disabled!
[  271.308163][T11894] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  271.310646][T11894] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  271.354895][ T3556] kworker/u9:5: attempt to access beyond end of device
[  271.354895][ T3556] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  271.361131][ T3556] CPU: 0 UID: 0 PID: 3556 Comm: kworker/u9:5 Not tainted syzkaller #0 PREEMPT(full) 
[  271.361152][ T3556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  271.361162][ T3556] Workqueue: writeback wb_workfn (flush-7:5)
[  271.361184][ T3556] Call Trace:
[  271.361197][ T3556]  <TASK>
[  271.361204][ T3556]  dump_stack_lvl+0x189/0x250
[  271.361226][ T3556]  ? __pfx_dump_stack_lvl+0x10/0x10
[  271.361241][ T3556]  ? __pfx_queue_work_on+0x10/0x10
[  271.361269][ T3556]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  271.361286][ T3556]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  271.361308][ T3556]  f2fs_handle_critical_error+0x37c/0x540
[  271.361334][ T3556]  f2fs_write_end_io+0x886/0xb60
[  271.361357][ T3556]  __submit_merged_bio+0x27a/0x6a0
[  271.361380][ T3556]  __submit_merged_write_cond+0x255/0x530
[  271.361402][ T3556]  f2fs_write_data_pages+0x261d/0x3000
[  271.361450][ T3556]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  271.361506][ T3556]  ? unwind_next_frame+0xa5/0x2390
[  271.361524][ T3556]  ? unwind_next_frame+0xa5/0x2390
[  271.361577][ T3556]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  271.361596][ T3556]  do_writepages+0x32e/0x550
[  271.361618][ T3556]  ? reacquire_held_locks+0x127/0x1d0
[  271.361631][ T3556]  ? writeback_sb_inodes+0x384/0x1010
[  271.361655][ T3556]  __writeback_single_inode+0x145/0xff0
[  271.361672][ T3556]  ? do_raw_spin_unlock+0x4d/0x240
[  271.361719][ T3556]  writeback_sb_inodes+0x6c7/0x1010
[  271.361737][ T3556]  ? __lock_acquire+0xab9/0xd20
[  271.361776][ T3556]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  271.361831][ T3556]  ? rcu_is_watching+0x15/0xb0
[  271.361853][ T3556]  wb_writeback+0x43b/0xaf0
[  271.361876][ T3556]  ? queue_io+0x331/0x590
[  271.361896][ T3556]  ? __pfx_wb_writeback+0x10/0x10
[  271.361919][ T3556]  ? _raw_spin_unlock_irq+0x23/0x50
[  271.361940][ T3556]  wb_workfn+0x409/0xef0
[  271.361967][ T3556]  ? __pfx_wb_workfn+0x10/0x10
[  271.361985][ T3556]  ? __lock_acquire+0xab9/0xd20
[  271.362011][ T3556]  ? process_scheduled_works+0x9ef/0x17b0
[  271.362030][ T3556]  ? _raw_spin_unlock_irq+0x23/0x50
[  271.362046][ T3556]  ? process_scheduled_works+0x9ef/0x17b0
[  271.362058][ T3556]  ? process_scheduled_works+0x9ef/0x17b0
[  271.362072][ T3556]  process_scheduled_works+0xae1/0x17b0
[  271.362111][ T3556]  ? __pfx_process_scheduled_works+0x10/0x10
[  271.362141][ T3556]  worker_thread+0x8a0/0xda0
[  271.362181][ T3556]  kthread+0x711/0x8a0
[  271.362210][ T3556]  ? __pfx_worker_thread+0x10/0x10
[  271.362223][ T3556]  ? __pfx_kthread+0x10/0x10
[  271.362240][ T3556]  ? _raw_spin_unlock_irq+0x23/0x50
[  271.362255][ T3556]  ? lockdep_hardirqs_on+0x9c/0x150
[  271.362271][ T3556]  ? __pfx_kthread+0x10/0x10
[  271.362288][ T3556]  ret_from_fork+0x3fc/0x770
[  271.362304][ T3556]  ? __pfx_ret_from_fork+0x10/0x10
[  271.362322][ T3556]  ? __switch_to_asm+0x39/0x70
[  271.362336][ T3556]  ? __switch_to_asm+0x33/0x70
[  271.362349][ T3556]  ? __pfx_kthread+0x10/0x10
[  271.362364][ T3556]  ret_from_fork_asm+0x1a/0x30
[  271.362394][ T3556]  </TASK>
[  271.469097][ T3556] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  272.045739][T11929] loop5: detected capacity change from 0 to 64
[  272.053103][T11929] BFS-fs: bfs_fill_super(): loop5 is unclean, continuing
[  272.322200][T11934] syz.5.2380 (11934): /proc/11930/oom_adj is deprecated, please use /proc/11930/oom_score_adj instead.
[  272.337917][T11926] loop3: detected capacity change from 0 to 32768
[  272.404510][T11926] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  272.991937][ T8175] (syz-executor,8175,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72
[  273.011075][ T8175] ocfs2: Unmounting device (7,3) on (node local)
[  273.119796][T11940] !: renamed from dummy0 (while UP)
[  273.297094][T11948] tmpfs: Bad value for 'mpol'
[  273.700416][T11962] loop3: detected capacity change from 0 to 128
[  273.720585][T11962] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  273.740676][T11962] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  274.224345][T11975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2397'.
[  275.457639][   T33] audit: type=1326 audit(1757318861.202:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11992 comm="syz.0.2406" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x0
[  275.499820][T12003] loop3: detected capacity change from 0 to 2048
[  275.535068][T12004] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  275.550660][   T33] audit: type=1800 audit(1757318861.292:161): pid=12003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2409" name="file1" dev="loop3" ino=15 res=0 errno=0
[  275.552604][T12003] NILFS error (device loop3): nilfs_lookup: deleted inode referenced: 12
[  275.582289][T12003] Remounting filesystem read-only
[  275.631718][ T8175] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[  275.823381][   T33] audit: type=1326 audit(1757318861.572:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12009 comm="syz.3.2413" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1c58ebe9 code=0x7ffc0000
[  275.841071][   T33] audit: type=1326 audit(1757318861.572:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12009 comm="syz.3.2413" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1c58ebe9 code=0x7ffc0000
[  275.852289][   T33] audit: type=1326 audit(1757318861.582:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12009 comm="syz.3.2413" exe="/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7efc1c58ebe9 code=0x7ffc0000
[  275.858578][   T33] audit: type=1326 audit(1757318861.582:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12009 comm="syz.3.2413" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1c58ebe9 code=0x7ffc0000
[  275.889592][   T33] audit: type=1326 audit(1757318861.582:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12009 comm="syz.3.2413" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc1c58ebe9 code=0x7ffc0000
[  275.964228][T12022] loop5: detected capacity change from 0 to 512
[  275.999971][T12022] EXT4-fs error (device loop5): ext4_quota_enable:7124: comm syz.5.2417: Bad quota inum: 1, type: 2
[  276.006011][T12022] EXT4-fs warning (device loop5): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=1). Please run e2fsck to fix.
[  276.020722][T12022] EXT4-fs (loop5): mount failed
[  276.933741][T12048] loop5: detected capacity change from 0 to 8
[  278.193953][   T10] usb 4-1: new full-speed USB device number 27 using dummy_hcd
[  278.353553][   T10] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  278.356655][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.361202][   T10] usb 4-1: config 0 descriptor??
[  278.366364][   T10] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  278.644508][   T10] gp8psk: usb in 128 operation failed.
[  278.849224][   T10] gp8psk: usb in 146 operation failed.
[  278.851649][   T10] gp8psk: failed to get FW version
[  278.855944][   T10] gp8psk: FPGA Version = 0
[  279.113604][   T10] gp8psk: usb in 138 operation failed.
[  279.116499][   T10] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  279.120442][   T10] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  279.127933][   T10] usb 4-1: USB disconnect, device number 27
[  279.249085][T12095] loop5: detected capacity change from 0 to 128
[  279.365674][T12099] input: syz1 as /devices/virtual/input/input16
[  280.402298][   T33] audit: type=1326 audit(1757318866.152:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12116 comm="syz.5.2455" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  280.417601][   T33] audit: type=1326 audit(1757318866.152:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12116 comm="syz.5.2455" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  280.428583][   T33] audit: type=1326 audit(1757318866.162:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12116 comm="syz.5.2455" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f96bcb8ebe9 code=0x7ffc0000
[  281.288080][T12134] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2463'.
[  281.369982][T12144] loop3: detected capacity change from 0 to 512
[  281.380505][T12144] EXT4-fs: Ignoring removed nobh option
[  281.404889][T12144] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.2468: iget: bad i_size value: 38620345925642
[  281.433603][T12144] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.2468: couldn't read orphan inode 15 (err -117)
[  281.447476][T12144] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.454748][T12150] loop5: detected capacity change from 0 to 512
[  281.458214][T12150] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  281.510944][T12150] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.518377][T12150] ext4 filesystem being mounted at /257/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.541100][T12150] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  281.553971][T12150] __quota_error: 7 callbacks suppressed
[  281.553988][T12150] Quota error (device loop5): write_blk: dquota write failed
[  281.559563][T12150] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  281.566766][T12150] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.2470: Failed to acquire dquot type 0
[  281.623397][ T9690] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.246687][ T1089] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm kworker/u10:5: bg 0: block 5: invalid block bitmap
[  282.258242][ T1089] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  282.267459][ T1089] EXT4-fs (loop3): This should not happen!! Data will be lost
[  282.267459][ T1089] 
[  282.271872][ T1089] EXT4-fs (loop3): Total free blocks count 0
[  282.274329][ T1089] EXT4-fs (loop3): Free/Dirty block details
[  282.276708][ T1089] EXT4-fs (loop3): free_blocks=0
[  282.280312][ T1089] EXT4-fs (loop3): dirty_blocks=14484
[  282.285419][ T1089] EXT4-fs (loop3): Block reservation details
[  282.287879][ T1089] EXT4-fs (loop3): i_reserved_data_blocks=14484
[  282.339780][ T1089] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  283.048985][T12188] overlayfs: failed to resolve './file1': -2
[  283.322094][   T54] Bluetooth: hci0: command 0x0405 tx timeout
[  284.167343][ T5239] Bluetooth: hci0: unexpected event for opcode 0x2012
[  284.497895][T12239] loop3: detected capacity change from 0 to 512
[  284.515531][T12239] EXT4-fs (loop3): Invalid log block size: 15
[  285.321154][T12258] loop5: detected capacity change from 0 to 1764
[  285.339467][T12258] iso9660: Corrupted directory entry in block 2 of inode 1920
[  285.555537][T12268] dummy0: entered promiscuous mode
[  285.574093][T12268] dummy0: left promiscuous mode
[  285.685060][T12276] loop5: detected capacity change from 0 to 16
[  285.690098][T12276] erofs (device loop5): rootino(nid 36) is not a directory(i_mode 122700)
[  286.211470][   T10] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  286.347205][T12289] 9pnet_fd: Insufficient options for proto=fd
[  286.381482][   T10] usb 4-1: Using ep0 maxpacket: 16
[  286.402357][   T10] usb 4-1: unable to get BOS descriptor or descriptor too short
[  286.415855][   T10] usb 4-1: config 9 has an invalid interface number: 48 but max is 0
[  286.432363][   T10] usb 4-1: config 9 has no interface number 0
[  286.441528][   T10] usb 4-1: config 9 interface 48 has no altsetting 0
[  286.460694][   T10] usb 4-1: New USB device found, idVendor=0ac8, idProduct=c301, bcdDevice=f3.7b
[  286.479887][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.483567][   T10] usb 4-1: Product: syz
[  286.485512][   T10] usb 4-1: Manufacturer: syz
[  286.487702][   T10] usb 4-1: SerialNumber: syz
[  286.731735][    C0] raw-gadget.0 gadget.3: ignoring, device is not running
[  286.735625][    C0] raw-gadget.0 gadget.3: ignoring, device is not running
[  286.741791][    C0] raw-gadget.0 gadget.3: ignoring, device is not running
[  286.745074][    C0] raw-gadget.0 gadget.3: ignoring, device is not running
[  286.748126][    C0] raw-gadget.0 gadget.3: ignoring, device is not running
[  286.753476][   T10] gspca_main: vc032x-2.14.0 probing 0ac8:c301
[  286.761963][   T10] gspca_vc032x: reg_w err -71
[  286.763820][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.765928][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.786413][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.788455][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.790136][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.805230][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.806959][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.808642][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.810268][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.813921][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.817177][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.818921][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.820573][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.826380][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.828106][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.829755][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.831453][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.833634][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.836042][   T10] gspca_vc032x: I2c Bus Busy Wait 00
[  286.846284][   T10] gspca_vc032x: Unknown sensor...
[  286.848471][   T10] vc032x 4-1:9.48: probe with driver vc032x failed with error -22
[  286.868029][   T10] usb 4-1: USB disconnect, device number 28
[  287.172811][   T33] audit: type=1326 audit(1757318872.922:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.0.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  287.180145][   T33] audit: type=1326 audit(1757318872.922:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.0.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  287.192409][   T33] audit: type=1326 audit(1757318872.942:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.0.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  287.208413][   T33] audit: type=1326 audit(1757318872.942:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.0.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  287.225999][   T33] audit: type=1326 audit(1757318872.942:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12300 comm="syz.0.2530" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb20498ebe9 code=0x7ffc0000
[  287.729873][T12317] loop3: detected capacity change from 0 to 32768
[  287.761763][T12317] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  287.808751][T12323] loop5: detected capacity change from 0 to 32768
[  287.845899][T12316] 
[  287.846901][T12316] ======================================================
[  287.849517][T12316] WARNING: possible circular locking dependency detected
[  287.852625][T12316] syzkaller #0 Not tainted
[  287.854449][T12316] ------------------------------------------------------
[  287.858137][T12316] syz.3.2537/12316 is trying to acquire lock:
[  287.860478][T12316] ffff8881146314e0 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_page_mkwrite+0x2ff/0xc40
[  287.861792][T12323] debugfs: 'B1DE653C5FFC4D88B33B244AAB9EB3E9' already exists in 'ocfs2'
[  287.864437][T12316] 
[  287.864437][T12316] but task is already holding lock:
[  287.864446][T12316] ffff88803be62520 (sb_pagefaults#3){.+.+}-{0:0}, at: do_page_mkwrite+0x14d/0x310
[  287.864485][T12316] 
[  287.864485][T12316] which lock already depends on the new lock.
[  287.864485][T12316] 
[  287.864490][T12316] 
[  287.864490][T12316] the existing dependency chain (in reverse order) is:
[  287.868651][T12323] OCFS2: ERROR (device loop5): int ocfs2_validate_inode_block(struct super_block *, struct buffer_head *): Invalid dinode #74: fs_generation is 16737473
[  287.870554][T12316] 
[  287.870554][T12316] -> #2 (sb_pagefaults#3){.+.+}-{0:0}:
[  287.870586][T12316]        lock_acquire+0x120/0x360
[  287.870607][T12316]        ocfs2_page_mkwrite+0x1da/0xc40
[  287.876495][T12323] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  287.878157][T12316]        do_page_mkwrite+0x14d/0x310
[  287.878176][T12316]        do_wp_page+0x268d/0x5800
[  287.878191][T12316]        __handle_mm_fault+0x1033/0x5440
[  287.878206][T12316]        handle_mm_fault+0x40a/0x8e0
[  287.878220][T12316]        do_user_addr_fault+0x764/0x1390
[  287.882633][T12323] (syz.5.2540,12323,1):ocfs2_read_locked_inode:597 ERROR: status = -30
[  287.887406][T12316]        exc_page_fault+0x76/0xf0
[  287.887432][T12316]        asm_exc_page_fault+0x26/0x30
[  287.887446][T12316] 
[  287.887446][T12316] -> #1 (&mm->mmap_lock){++++}-{4:4}:
[  287.887468][T12316]        lock_acquire+0x120/0x360
[  287.887486][T12316]        __might_fault+0xcc/0x130
[  287.890541][T12323] (syz.5.2540,12323,1):_ocfs2_get_system_file_inode:144 ERROR: status = -30
[  287.892200][T12316]        _copy_to_user+0x2c/0xb0
[  287.892221][T12316]        fiemap_fill_next_extent+0x1c0/0x390
[  287.892236][T12316]        ocfs2_fiemap+0x888/0xc90
[  287.892252][T12316]        do_vfs_ioctl+0x1173/0x1430
[  287.892297][T12316]        __se_sys_ioctl+0x82/0x170
[  287.892311][T12316]        do_syscall_64+0xfa/0x3b0
[  287.892322][T12316]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  287.892334][T12316] 
[  287.892334][T12316] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[  287.892354][T12316]        validate_chain+0xb9b/0x2140
[  287.892367][T12316]        __lock_acquire+0xab9/0xd20
[  287.892383][T12316]        lock_acquire+0x120/0x360
[  287.892399][T12316]        down_write+0x96/0x1f0
[  287.892410][T12316]        ocfs2_page_mkwrite+0x2ff/0xc40
[  287.892420][T12316]        do_page_mkwrite+0x14d/0x310
[  287.892430][T12316]        do_wp_page+0x268d/0x5800
[  287.892444][T12316]        __handle_mm_fault+0x1033/0x5440
[  287.892457][T12316]        handle_mm_fault+0x40a/0x8e0
[  287.892470][T12316]        do_user_addr_fault+0x764/0x1390
[  287.892487][T12316]        exc_page_fault+0x76/0xf0
[  287.892502][T12316]        asm_exc_page_fault+0x26/0x30
[  287.892513][T12316] 
[  287.892513][T12316] other info that might help us debug this:
[  287.892513][T12316] 
[  287.892518][T12316] Chain exists of:
[  287.892518][T12316]   &ocfs2_file_ip_alloc_sem_key --> &mm->mmap_lock --> sb_pagefaults#3
[  287.892518][T12316] 
[  287.892547][T12316]  Possible unsafe locking scenario:
[  287.892547][T12316] 
[  287.892551][T12316]        CPU0                    CPU1
[  287.892555][T12316]        ----                    ----
[  287.892560][T12316]   rlock(sb_pagefaults#3);
[  287.892573][T12316]                                lock(&mm->mmap_lock);
[  287.892583][T12316]                                lock(sb_pagefaults#3);
[  287.892597][T12316]   lock(&ocfs2_file_ip_alloc_sem_key);
[  287.892607][T12316] 
[  287.892607][T12316]  *** DEADLOCK ***
[  287.892607][T12316] 
[  287.892612][T12316] 2 locks held by syz.3.2537/12316:
[  287.892619][T12316]  #0: ffff8880276aace0 (&mm->mmap_lock){++++}-{4:4}, at: lock_mm_and_find_vma+0x32/0x300
[  287.892657][T12316]  #1: ffff88803be62520 (sb_pagefaults#3){.+.+}-{0:0}, at: do_page_mkwrite+0x14d/0x310
[  288.005655][T12316] 
[  288.005655][T12316] stack backtrace:
[  288.007832][T12316] CPU: 0 UID: 0 PID: 12316 Comm: syz.3.2537 Not tainted syzkaller #0 PREEMPT(full) 
[  288.007848][T12316] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  288.007856][T12316] Call Trace:
[  288.007864][T12316]  <TASK>
[  288.007871][T12316]  dump_stack_lvl+0x189/0x250
[  288.007891][T12316]  ? __pfx_dump_stack_lvl+0x10/0x10
[  288.007906][T12316]  ? __pfx__printk+0x10/0x10
[  288.007922][T12316]  ? print_lock_name+0xde/0x100
[  288.007937][T12316]  print_circular_bug+0x2ee/0x310
[  288.007952][T12316]  check_noncircular+0x134/0x160
[  288.007967][T12316]  validate_chain+0xb9b/0x2140
[  288.007980][T12316]  ? do_raw_spin_unlock+0x4d/0x240
[  288.007999][T12316]  __lock_acquire+0xab9/0xd20
[  288.008018][T12316]  ? ocfs2_page_mkwrite+0x2ff/0xc40
[  288.008030][T12316]  lock_acquire+0x120/0x360
[  288.008047][T12316]  ? ocfs2_page_mkwrite+0x2ff/0xc40
[  288.008058][T12316]  ? lockdep_hardirqs_on+0x9c/0x150
[  288.008076][T12316]  ? sigprocmask+0x15d/0x1a0
[  288.008089][T12316]  down_write+0x96/0x1f0
[  288.008102][T12316]  ? ocfs2_page_mkwrite+0x2ff/0xc40
[  288.008112][T12316]  ? __pfx_down_write+0x10/0x10
[  288.008123][T12316]  ? __schedule+0x17ae/0x4cc0
[  288.008142][T12316]  ocfs2_page_mkwrite+0x2ff/0xc40
[  288.008155][T12316]  ? do_page_mkwrite+0x14d/0x310
[  288.008167][T12316]  ? __pfx_ocfs2_page_mkwrite+0x10/0x10
[  288.008179][T12316]  ? __lock_acquire+0xab9/0xd20
[  288.008202][T12316]  do_page_mkwrite+0x14d/0x310
[  288.008216][T12316]  do_wp_page+0x268d/0x5800
[  288.008237][T12316]  ? __pfx_do_wp_page+0x10/0x10
[  288.008250][T12316]  ? do_raw_spin_lock+0x121/0x290
[  288.008291][T12316]  ? __handle_mm_fault+0xf87/0x5440
[  288.008307][T12316]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  288.008325][T12316]  __handle_mm_fault+0x1033/0x5440
[  288.008346][T12316]  ? __pfx___handle_mm_fault+0x10/0x10
[  288.008367][T12316]  ? find_vma+0xe7/0x160
[  288.008382][T12316]  ? __pfx_find_vma+0x10/0x10
[  288.008398][T12316]  handle_mm_fault+0x40a/0x8e0
[  288.008416][T12316]  do_user_addr_fault+0x764/0x1390
[  288.008439][T12316]  exc_page_fault+0x76/0xf0
[  288.008456][T12316]  asm_exc_page_fault+0x26/0x30
[  288.008470][T12316] RIP: 0033:0x7efc1c5588d8
[  288.008485][T12316] Code: 10 8a 0e 74 0a 0f b7 74 16 fe 66 89 74 17 fe 88 0f c3 8b 4c 16 fc 8b 36 89 4c 17 fc 89 37 c3 0f 1f 00 48 8b 4c 16 f8 48 8b 36 <48> 89 37 48 89 4c 17 f8 c3 0f 10 54 16 f0 0f 10 5c 16 e0 0f 11 07
[  288.008495][T12316] RSP: 002b:00007ffe92aeb818 EFLAGS: 00010246
[  288.008506][T12316] RAX: 0000200000000040 RBX: 0000000000000004 RCX: 0031656c69662f2e
[  288.008516][T12316] RDX: 0000000000000008 RSI: 0031656c69662f2e RDI: 0000200000000040
[  288.008524][T12316] RBP: 00007efc1c7c7da0 R08: 0000001b32520000 R09: 0000000000000001
[  288.008532][T12316] R10: 0000000000000001 R11: 0000000000000009 R12: 00007efc1c7c5fac
[  288.008539][T12316] R13: 00007efc1c7c5fa0 R14: fffffffffffffffe R15: 00007ffe92aeb930
[  288.008554][T12316]  </TASK>
[  288.009068][T12323] (syz.5.2540,12323,1):ocfs2_init_local_system_inodes:496 ERROR: status=-30, sysfile=9, slot=0
[  288.125126][T12323] (syz.5.2540,12323,1):ocfs2_init_local_system_inodes:505 ERROR: status = -30
[  288.128498][T12323] (syz.5.2540,12323,1):ocfs2_mount_volume:1758 ERROR: status = -30
[  288.133599][T12323] (syz.5.2540,12323,1):ocfs2_fill_super:1177 ERROR: status = -30
[  288.134125][ T8175] ocfs2: Unmounting device (7,3) on (node local)

VM DIAGNOSIS:
08:07:53  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000002d RBX=000000000000002d RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900065dee30
R8 =ffff888106a08237 R9 =1ffff11020d41046 R10=dffffc0000000000 R11=ffffffff854f3b00
R12=dffffc0000000000 R13=ffffffff99afd8f5 R14=ffffffff99df2420 R15=0000000000000000
RIP=ffffffff854f3b7c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055558b923500 ffffffff 00c00000
GS =0000 ffff8880b8618000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000000040 CR3=0000000029034000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007efc1c797498 00007efc1c797470 XMM03=00007efc1c7974a8 00007efc1c7974a0
XMM04=00007efc1d2fd100 00007efc1c797460 XMM05=00007efc1c797478 00007efc1c7974c0
XMM06=00007efc1c7974b8 00007efc1c7974b0 XMM07=00007efc1c7974a8 00007efc1c7974a0
XMM08=0000000000000000 00001b7d1475bf98 XMM09=0000000000000000 00007efc1c612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff822e5142 RBX=0000000000000000 RCX=ffff88810f21d640 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000000 RSP=ffffc9000445f348
R8 =ffffea000466fd07 R9 =1ffffd40008cdfa0 R10=dffffc0000000000 R11=fffff940008cdfa1
R12=0000000000000000 R13=0000000000000000 R14=ffff88810916def8 R15=dffffc0000000000
RIP=ffffffff81bfae21 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055557021b500 ffffffff 00c00000
GS =0000 ffff8881a3c18000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb2056f56c0 CR3=0000000108316000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000001 XMM01=8803500800028003 09800401ee8a0800
XMM02=0298030000000208 0602900308080002 XMM03=0345020811800311 800402a003000800
XMM04=0606011baa091000 02c00302100002b0 XMM05=0102800401ee8a08 0001000000080606
XMM06=011baa09100002c0 0302100002b00345 XMM07=0208118003118004 02a0030008000298
XMM08=0300000002080602 9003080800028803 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
