last executing test programs:

51.633125863s ago: executing program 1 (id=72):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fddbdf2508000000180004"], 0x2c}, 0x1, 0x0, 0x0, 0x844}, 0x4000000)

51.555839911s ago: executing program 1 (id=77):
syz_usb_connect(0x3, 0x2d, &(0x7f0000000280)={{0x12, 0x1, 0x250, 0x13, 0x60, 0xac, 0x8, 0x7c0, 0x158b, 0x5fdc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x5, 0x5, 0x90, 0x1, [{{0x9, 0x4, 0x80, 0x3, 0x1, 0xe7, 0x17, 0x3f, 0x4, [], [{{0x9, 0x5, 0x85, 0x3, 0x10, 0x8, 0x8, 0xae}}]}}]}}]}}, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0})

50.349521245s ago: executing program 1 (id=96):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x46, &(0x7f0000000000)=0x8, 0x4)
sendto$inet6(r0, &(0x7f0000000080)="9e", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0x7fffffff}, 0x1c)

50.24173058s ago: executing program 1 (id=98):
r0 = socket$kcm(0x2b, 0x1, 0x0)
close(r0)
socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0xd, &(0x7f00000001c0), 0x45)
close(r0)

50.180525668s ago: executing program 1 (id=100):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file0\x00', 0x8820, 0x0, 0x1, 0x0, 0x0)
setpgid(r0, r0)
setpgid(0x0, r0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x10082, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')

50.051089203s ago: executing program 1 (id=102):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000000000000000000000008500000030000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

42.558592126s ago: executing program 2 (id=173):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@metacopy_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

42.489208407s ago: executing program 2 (id=174):
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x7, 0x0, @void}}}}}}}, 0x0)

42.297103207s ago: executing program 2 (id=175):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0xcc010)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x150}}, 0x0)

42.164660119s ago: executing program 2 (id=176):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f0000000340)={[{@utf8no}, {@shortname_winnt}, {@rodir}, {@fat=@nfs_nostale_ro}, {}, {@uni_xlate}, {@fat=@showexec}, {@fat=@usefree}, {@fat=@nfs_nostale_ro}, {@uni_xlate}, {@fat=@showexec}, {@numtail}]}, 0x0, 0x29f, &(0x7f0000000580)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

41.998323848s ago: executing program 2 (id=177):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x20108c0, &(0x7f0000000380)=ANY=[], 0xfe, 0x6178, &(0x7f000000ca40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000080)=@shmem={0xc, 0x1, {0x2, 0x1}}, 0x0)

41.635528299s ago: executing program 2 (id=178):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f00000013c0)='./file0\x00', 0x10090, &(0x7f00000000c0)=ANY=[], 0x0, 0x14de, &(0x7f0000002a40)="$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")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

41.235886189s ago: executing program 32 (id=178):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f00000013c0)='./file0\x00', 0x10090, &(0x7f00000000c0)=ANY=[], 0x0, 0x14de, &(0x7f0000002a40)="$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")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

35.034920949s ago: executing program 33 (id=102):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000000000000000000000008500000030000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.731446949s ago: executing program 0 (id=497):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x1}}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r2 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x7278, 0x0, 0x2, 0x156}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000100)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
io_uring_enter(r2, 0x26c8, 0x0, 0x1, 0x0, 0x10)

1.720491456s ago: executing program 3 (id=509):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
timerfd_gettime(0xffffffffffffffff, 0x0)

1.660905118s ago: executing program 3 (id=510):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x244, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, {0x9}}}]}}]}}, 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x80)
close_range(r0, 0xffffffffffffffff, 0x0)

1.50529942s ago: executing program 0 (id=511):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty, 0x2}, 0x1c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @remote, 0xb}, 0x1c)
syz_emit_ethernet(0x7e, &(0x7f0000000300)={@multicast, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x48, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x48, 0x0, @wg=@cookie={0x3, 0x2, "88c73ba1f267636d01dbe5712c1c941e1cdafbbb43f09c70", "e13808ca72381f41e5fff9620915b6f78670dfaf9a2038083179cf6b7931c9b4"}}}}}}}, 0x0)

1.45110831s ago: executing program 0 (id=512):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
write$binfmt_aout(r0, &(0x7f0000000500)=ANY=[], 0xff2e)
readv(r0, &(0x7f0000000700)=[{0x0}, {&(0x7f0000000040)=""/122, 0x7a}, {0x0, 0x39}], 0x3)

551.332795ms ago: executing program 0 (id=519):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffff0001}, [@call={0x85, 0x0, 0x0, 0x7b}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000003f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20}, 0x15)

551.094568ms ago: executing program 0 (id=520):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x15, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x86}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xf4377cdead8cb97a}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r2, 0x2000012, 0xe, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50)

499.215693ms ago: executing program 4 (id=521):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000100)={0x1, "ff0f000000000000f5a72d866b0000000000f0ffdefe00"})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$kcm(0x11, 0x3, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x2, 0x7, 0x7f, 0xa9, 0x4d, 0x6, 0x5f, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x6, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x20, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x6, 0x7, 0x5, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x0, 0x8, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0xf1, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x1007, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x4, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x200009, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x4, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x1fd, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x7ff, 0x2006, 0x80a2ed, 0x4, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xfffc, 0xa620, 0x1, 0x5, 0x801, 0x2000002, 0x150, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff000, 0x10000, 0x3, 0x7e, 0x9, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

430.084808ms ago: executing program 0 (id=522):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cbec85bf8e749e04e"], 0x11, 0x443f, &(0x7f00000088c0)="$eJzs3c1PHOcdAOB3BlyD6w9wfXClSl2pllq1FQKf2mKpGGNjsKkrt7aqXtYLrG3ahbVgqXqwFHKzlFOkHKIcrETKjZPFIVfnT8glR+dsKTnkEimSFaLdnYWdYVds0C7EzvMcmJ33e/c3H+8chjdOVB4ureWW1nKFlVx54f7axdz/yqX15WKID0nL/o8dXv90phfHyVEfez9lt65c+8fdiyF8uvj5y+3t7e1Q1R9aGmv6/M3Xjxeatw1xpk613datdcu/Qwjn9oyrqi+E8K9PQohCCJeTtMlkOxhCOBXqeXcfv3Mv16XRPHtRvJR/Nfdka/zC7ObTrfbfPQrhg9Iv//hg+cvf9I1/8fsudQ8AAAAAAAAAAAAAAAAAwGtu+vatO38fHQvPo9C/Ge19X3c62bZ7P3a7a37d+y8LAAAAAAAAAAAAAAAAAAAAP1K77//norMt3v+fSrYTbepv/7VNxvHujpPemPnbramro2PJ+u/Rnvw/JUlfXe4Lwy3Wfc+u/345U7/1+u97+zmoxvga/Q6FKB7ZfmsnfyjE8chICB8lC7+fj07EpfJa5Q/3y+sri10bxmsrHf/66v2p6CQL+nca/8lM+71f//8Xe46m6v697h1ib7R0/Pvalvv47aij+F/J1DuM+HNw6fj319IGmwtM1C8A1fi/279//Kcy7fcq/qdDCLmoOtZc6gpQncNU09vNV0hLx/9YLS116Ux+yHbn/7eZ+F/NtN8u/me69g1aX/83sjciWkrH/2e1tIFUid3zfzje//y/lmn/KO7/1fFvuP93JB3/5KGtP1Wk9kt2ev2fzrTfq/jfiZNxno5SR8BmVE9v9//qSEvHf2BP/u7zX9zR/O96pv5hPf81+q09/zU9h/wuqj//0Vo6/oNty3V6/s9k6vX6+j9Rm/9xUOn4n6ilpefOQ7W/ncZ/NtN+r+Jfm5UMNOK/ez357ng9/UPzv46k4//zemLcXGKj9rc2/4v2n//fyLR/FPO/6vg34t72+qZIx/9k23LV+H/Wwf3/ZqZe7+Mfwqi5/oGl43+qbbna+T+wf/znMvV6Hf/f9rJxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgNfAZLIdClE8ktqP45GREK4k++fDiWi+sJifL5UX/rsWwlSSngtnowel8nyhlF9aKS8W84VSqbwQwtUk/1wYiNZK5Up+ufDo2k5bg9HDYmG1Ml8sVEII00n6r8KpRlvzS5XlwqMQwvWdvDNxefXRw8JKfnFp9S+jo6OjYWZnDMNR8f+V4kql3ns9N4TZnbpDUdPgatk3dsZyMvpPeX11pVCqpd9sqlMqLxRKTXXmkrz3wnBUWV1fWShUivlS+UGjv6M0kWynZm7/8/bNsT3596L6dvJwhwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAD/R8/M/vhxD663txCGGi8SFqVf7Zi+Kl/Ku5J1vjF2Y3n269bFcOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB7duBAAAAAAADI/7URqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrBLxygRA1EYgN+Mhdp5DKuQdLYJimhhRPAEegwPE4/iJbyDhYWthQhmBjTuQprd6vuaB/l5eT8kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsc3k33t+2XUSKo6/DiJfH17ff+XWZ0zDPvNg/2FNPduPqZjy/aLvy3dO//Kw8eu/zT/r58fQQG2b1PPzdX/5Ps3rneGuvaVjXv/ard08i5SYi+pKfppybZt27AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPhmBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCjtwLAAAAAAgzN86ir4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4FcAAAD//78SIGU=")
setxattr$trusted_overlay_origin(&(0x7f0000000240)='.\x00', &(0x7f0000000000), 0x0, 0x0, 0x0)

429.871674ms ago: executing program 4 (id=523):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7fe, 0xf83, 0x8}, 0x1c)
syz_emit_ethernet(0x2a, &(0x7f00000001c0)=ANY=[], 0x0)

405.312498ms ago: executing program 3 (id=524):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWRULE={0x7c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x50, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_PROTO_MIN={0x8, 0x5, 0x1, 0x0, 0x3}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa4}}, 0x0)

315.55155ms ago: executing program 4 (id=525):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB=' \x00\x00\x00i\x00\v'], 0x20}}, 0x0)

246.092693ms ago: executing program 4 (id=526):
r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000300)={0x46, 0x2, 0x1, "444900d70600e90100000004000000060ff697b9000000000000000000006400", 0x3234564e})

245.805021ms ago: executing program 3 (id=527):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)

171.104371ms ago: executing program 4 (id=528):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000001540)='./bus\x00', 0x8000, &(0x7f0000000400)=ANY=[@ANYBLOB="00e0c6e4d9182ec69e599fd4d32ba9c5146fbc43a33914b2b1a5ce8843b193dc82dbc512b6fabfe6fbdd2a8bdeeda78e17b18f1b6e80c81cd67046e6a85e7160112d613e4c6dcab2404d58291ec130b9fd2785ce8dd5538f70998f2d50005813ba6c65cd3c25a8e730e1cd7b11cf7f6cc0fba6b670c64374abd09518ffba0c5eb2e602b1a64ac897fc6ce9bee1d70bef22f10c7776c2f5077cb1de63832b1bab15c6caf549a1cd58106494d92d1159033b2e27eceae339414a62aca9cf6a00c07e2a181dd9668a64b5eefc8e5ebc6564442a8d322e89a2fbbade22dc834cff72c09dc653db003038d250e81aee10888e78a3677d68cc60de6f7d361115e53becaa81ee364dd85d11c2e56a01b87e0b194b2a5d3115f3b257fa54acf273f953e6be39e5b67fcd3a564e71fdbdf8b4ef42c07a9525ae4d7c"], 0x1, 0x1502, &(0x7f0000002a80)="$eJzs3Qu0jtX2MPA511oPm6Q3yX3NNR/e5LJIklyS5JIkSZLklpAkSRKSW25JSELuSe4hucVO7vdb7klyJEkSkluyvqFOxzn/zn90znfO//P/zp6/MdZ41xzrmetZ65177/d5njH23t+2H1S5bpUKtZkZ/iX460s3AEgBgL4AcA0ARABQIkuJLJfGM2js9q+dRPx7PTT1Sq9AXElS/7RN6p+2Sf3TNql/2ib1T9uk/mmb1D9tk/oLkZZtmZbzWmlpt/3rz/9Tfn2R5///H5LP/7RN6v+f5lSGf+Zoqf9/koshhH8uQ+qftkn90zapf9om9U/bpP5pm9RfiLTsSj9/lnZl25X++hNCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIkTacDZcZAPitf6XXJYQQQgghhBBCiH+fkP5Kr0AIIYQQQgghhBD/8xAUaDAQQTpIDymQATLCVZAJrobMcA0k4FrIAtdBVrgeskF2yAE5IRfkhjxggcABQwx5IR8k4QbIDzdCASgIhaAweCgCReEmKAY3Q3G4BUrArVASboNSUBrKQFm4HcrBHVAe7oQKcBdUhEpQGarA3VAV7oFqcC9Uh/ugBtwPNeEBqAUPQm14COrAw1AXHoF68CjUhwbQEBpB4/+r/BehM7wEXaArdIPu0ANehp7QC3pDH+gLr0A/eBX6w2swAAbCIHgdBsMbMATehKEwDIbDWzACRsIoGA1jYCyMg7dhPLwDE+BdmAiTYDJMgakwDabDezADZsIseB9mwwcwB+bCPJgPC+BDWAiLIBU+gsXwMSyBpbAMlsMKWAmrYDWsgbWwDtbDBtgIm2AzbIFPYCtsg+2wA3bCLtgNn8Ie+Az2wuewD774J/PP/Jf8DggIqFChQYPpMB2mYApmxIyYCTNhZsyMCUxgFsyCWTErZsNsmANzYC7MhXkwDxISMjLmxbyYxCTmx/xYAAtgISyEHj0WxaJYDG/G4lgcS2AJLIklsRSWxtJYFstiOSyH5bE8VsAKWBErYmWsjHfj3XgPVsNqWB2rYw2sgTWxJtbCWlgba2MdrIN1sS7Ww3pYH+tjQ2yIjbExNsEm2BSbYnNsji2wBbbEltgKW2FrbI1tsA22xbbYDtthe2yPHbAjdsQX8UV8CV/CrlhRdcce2AN7Yk/sjX2wD76C/fBVfBVfwwE4EAfh6/g6voFD8DQOxWE4HIdjOTUSR+FoZDUWx+E4HI/jcQJOwIk4CSfhFJyK03A6TscZOBNn4vs4Gz/AD3AuzsX5uAAX4EJchKmYiovxDC7BpbgMl+MKXIkrcDWuwdW4DtfjOtyIG3EzbsZP8BPchttwB+7AXbgLP8VP8TP8DAfgPtyH+3E/HsADeBAP4iE8hIfxMB7BI3gUj+IxPIbH8QSexBN4Ck/haTyDZ/EsnsfzeAEv4EW8eOmbX11ilFHpVDqVolJURpVRZVKZVGaVWSVUQmVRWVRWlVVlU9lUDpVD5VK5VB6VR5EixSpWeVVelVRJlV/lVwVUAVVIFVJeeVVUFVXFVDFVXBVXJdStqqS6TZVSpVUzX1aVVeVUc19e3akqqAqqoqqkKqsqqoqqqqqqaqqaqq6qqxqqhqqpHlC1VHfsjQ+pS5WpqwZiPTUI66sGkKIaqTfwMdVEDcGmqplqrp5Qw3AotlRNfCv1tGqtRmEb9awajc+pdmostlcvqA6qo+qkXlSdVVPfRXVVE7G76qGmYE/VS/VWfdQMrKQuVayyek0NUAPVIPW6mo9vqCHqTTVUDVPD1VtqhBqpRqnRaowaq8apt9V49Y6aoN5VE9UkNVlNUVPVNDVdvadmqJlqlnpfzVYfqDlqrpqn5qsF6kO1UC1SqeojtVh9rJaopWqZWq5WqJVqlVqt1qi1ap1arzaojWqT2qy2qE/UVrVNbVc71E61S+1Wn6o96jO1V32u9qkv1H71J3VAfakOqq/UIfW1Oqy+UUfUt+qo+k4dU9+r4+qEOql+UKfUj+q0OqPOqnPqvPpJXVA/q4sqKNColdba6Ein0+l1is6gM+qrdCZ9tc6sr9EJfa3Ooq/TWfX1OpvOrnPonDqXzq3zaKtJO8061nl1Pp3UN+j8+kZdQBfUhXRh7XURXVTfpIvpm3VxfYsuoW/VJfVtupQurcvosvp2XU7focvrO3UFfZeuqCvpyrqKvltX1ffoavpeXV3fp2vo+3VN/YCupR/UtfVDuo5+WNfVj+h6+lFdXzfQDXUj3Vg/ppvox3VT3Uw310/oFvpJ3VI/pVvpp3Vr/Yxuo5/VbfVzup1+XrfXL+gOuqPupH/WF3XQXXRX3U131z30y7qn7qV76z66r35F99Ov6v76NT1AD9SD9Ot6sH5DD9Fv6qF6mB6u39Ij9Eg9So/WY/RYPU6/rcfrd/QE/a6eqCfpyXqKnqqn6d5/nmnWP5D/zt/J7//L2TfrLfoTvVVv09v1Dr1T79K79W69R+/Re/VevU/v0/v1fn1AH9AH9UF9SB/Sh/VhfUQf0Uf1UX1MH9PH9Ql9Tv+gT+kf9Wl9Rp/R5/R5fV5f+PN7AAaNMtoYE5l0Jr1JMRnMuRBCJnO1yWyuMQlzrclirjNZzfUmm8lucpicJpfJbfIYa8g4wyY2eU0+kzQ3mPzmRlPAFDSFTGHjTRFT1Nz0L+f/vfVlNFeZ39bX2DQ2TUwT09Q0Nc1Nc9PCtDAtTUvTyrQyrU1r08a0MW1NW9POtDPtTXvTwXQwnUwn09l0NgEAuplupod52fQ0vUxv08f0Na+Yfqaf6W/6mwFmgBlkBpnBZrAZYoaYoWaoGW6GmxFmhBllRpkxZowZZ8aZ8Wa8mWAmmIlmoplsJpupZqqZbqabGWaGmWVmmdlmtplj5ph5Zp5ZYBaYhWahSTWpZrFZbJaYpWapWW6Wm5VmpVltVpu1Zq1Zb9abjWajWWLgbEgHAGG72W52mp1mt9lt9pg9Zq/Za/aZfWa/2W8OmAPmoDloDplD5rA5bI6YI+aoOWqOmWPmuDluTpqT5pQ5ZU6b0+asOWvOm/PmgrlgLpqLly77IhWpyEQmSheli1KilChjlDHKFGWKMkeZo0SUiLJEWaKs0fVRtih7lCPKGeWKckd5IhtR5CKO4ihvlC9KRjdE+aMbowJRwahQVDjyUZGoaHRTVCy6OSoe3RKViG6NSka3RaWi0lGZqGx0e1QuuiMqH90ZVYjuiipGlaLKUZXo7qhqdE9ULbo3qh7dF9WI7o9qRg9EtaIHo9rRQ1Gd6OGobvRIVC96NKofNYgaRo2ixv/W+UM4nf1x38V2td1sd9vDvmx72l62t+1j+9pXbD/7qu1vX7MD7EA7yL5uB9s37BD7ph1qh9nh9i07wo60o+xoO8aOtePs23a8fcdOsO/aiXaSnWyn2Kl2mp1u37Mz7Ew7y75vZ9sP7Bw7186z8+0C+6FdaBfZVPuRXWw/tkvsUrvMLrcr7Eq7yq62a+xau86utxvsRrvJbrZb7Cd2q91mt9sddqfdZXfbT+0e+5ndaz+3++wXdr/9kz1gv7QH7Vf2kP3aHrbf2CP2W3vUfmeP2e/tcXvCnrQ/2FP2R3vanrFn7Tl73v5kL9if7UUbLl3cX/p4J0OG0lE6SqEUykgZKRNlosyUmRKUoCyUhbJSVspG2SgH5aBclIvyUB66hIkpL+WlJCUpP+WnAlSAClEh8uSpKBWlYlSMilNxKkElqCSVpFJUisrQpfuR2+kOuoPupDvpLrqLKlElqkJVqCpVpWpUjapTdapBNagm1aRaVItqU22qQ3WoLtWlelSP6lN9akgNqTE1pibUhJpSU2pOzakFtaCW1JJaUStqTa2pDbWhttSW2lE7ak/tqQN1oE7UiTpTZ+pCXagbdaMe1IN6Uk/qTb2pL/WlftSP+lN/GkADaBANosE0mIbQEBpKw2g4vUUjaCSNotE0hsbSOBpH42k8TaAJNJEm0mSaTFNpKk2n6TSDZtAsmkWzaTbNoTk0j+bRAlpAC2khpVIqLabFtISW0DJaRitoBa2iVbSG1tA6WkcbaANtok20hbbQVtpK22k77aSdtJt20x7aQ3tpL+2jfbSf9tMBOkAH6SAdokN0mA7TETpCR+koHaNjdJyO40k6SafoFJ2m03SWztJ5+oku0M90kQKluAwuo7vKZXJXu8zuGpfiMnQFgL/EOVxOl8vldnmcddlc9r+JyTlXwBV0hVxh510RV9Td9Lu4lCvtyriy7nZXzt3hyv8ururucdXcva66u89VcXf/TVzD3e9qukdcLfeoq+0auDqukavrHnH13KOuvmvgGrpGroV70rV0T7lW7mnX2j3zu3ihW+TWuLVunVvv9rjP3Fl3zh1x37rz7ifXxXV1fd0rrp971fV3r7kBbuDv4uHuLTfCjXSj3Gg3xo39XTzZTXFT3TQ33b3nZriZv4sXuA/dbJfq5ri5bp6b/0t8aU2p7iO32H3slrilbplb7la4lW6VW/2XtS53G90mt9ntdp+6rW6b2+52uJ1u1y/xpX3sdZ+7fe4Ld9h94w64L91Bd9Qdcl//El/a31H3nTvmvnfH3Ql30v3gTrkf3Wl35pf9X9r7D+5nd9EFB4ysWLPhiNNxek7hDJyRr+JMfDVn5ms4wddyFr6Os/L1nI2zcw7Oybk4N+dhy8SOmWPOy/k4yTdwfr6RC3BBLsSF2XMRLso3cTG+mYvzLVyCb+WSfBuX4tJchsvy7VyO7+DyfCdX4Lu4IlfiylyF7+aqfA9X43u5Ot/HNfh+rskPcC1+kGvzQ1yHH+a6/AjX40e5PjfghtyIG/Nj3IQf56bcjJvzE9yCn+SW/BS34qe5NT/DbfhZbsvPcTt+ntvzC9yBO3InfpE780vchbtyN+7OPfhl7sm9uDf34b78CvfjV7k/v8YDeCAP4td5ML/BQ/hNHsrDeDi/xSN4JI/i0TyGx/I4fpvH8zs8gd/liTyJJ/MUnsrTeDq/xzN4Js/i93k2f8BzeC7P4/m8gD/khbyIU/kjXswf8xJeyst4Oa/glbyKV/MaXsvreD1v4I28iTfzFv6Et/I23s47eCfv4t38Ke/hz3gvf877+Avez3/iA/wlH+Sv+BB/zYf5Gz7C3/JR/o6P8fd8nE/wSf6BT/GPfJrP8Fk+x+f5J77AP/NFDgwxxirWsYmjOF2cPk6JM8QZ46viTPHVceb4mjgRXxtnia+Ls8bXx9ni7HGOOGecK84d54ltTLGLOY7jvHG+OBnfEOePb4wLxAXjQnHh2MdF4qLxTXGx+Oa4eHxLXCK+NS4Z3xaXikvHZeKy8e1xufiOuHx8Z1whviuuGFeKK8dV4rvjqvE9cbX43rh6fF9cPL4/rhk/ENeKH4xrxw/FdeKH47rxI3G9+NG4ftwgbhg3ihvHj8VN4sfjpnGzuHn8RNwifjJuGT8Vt4qfjlvHz/zheLe4e9wjfjl+OQ7hXj0vOT+5IPlhcmFyUTI1+VFycfLj5JLk0uSy5PLkiuTK5Krk6uSa5NrkuuT65IbkxuSm5OZkCFXSg0evvPbGRz6dT+9TfAaf0V/lM/mrfWZ/jU/4a30Wf53P6q/32Xx2n8Pn9Ll8bp/HW0/e+QwQ+7w+n0/6G3x+f6Mv4Av6Qr6w976IL+ob+ca+sW/iH/dNfTPf3D/hn/BP+if9U/4p/7Rv7Z/xbfyzvq1/zrfzz/vn/Qu+g+/oO/kXfWf/ku/iu/puvpvv4Xv4nr6n7+17+76+r+/n+/n+vr8f4Af4QX6QH+wH+yF+iB/qh/rhfrgf4Uf4UX6UH+PH+HF+nB/vx/sJfoKf6Cf6yX6yn+qn+ul+up/hZ/hZfpaf7Wf7OX6On+fn+QV+gV/oF/pUn+oX+8V+iV/il/llfoVf4Vf5VX6NX+PX+XV+g9/gN/lNfovf4rf6rX673+53+p1+t9/t9/g9fq/f6/f5fX6/3+8P+AP+oP/KH/Jf+8P+G3/Ef+uP+u/8Mf+9P+5P+JP+B3/K/+hP+zP+rD/nz/uf/AX/s7/ogx+XeDsxPvFOYkLi3cTExKTE5MSUxNTEtMT0xHuJGYmZiVmJ9xOzEx8k5iTmJuYl5icWJD5MLEwsSqQmPkosTnycWJJYmliWWJ5YkViZCCH31jjkDflCMtwQ8ocbQ4FQMBQKhYMPRULRcFMoFm4OxcMtoUS4NZQMt4VSoXQoEx4N9UOD0DA0Co3DY6FJeDw0Dc1C8/BEaBGeDC3DU6FVeDq0Ds+ENuHZ0DY8F9qF50P78ELoEDqGTuHF0Dm8FLqErqFb6B56hJdDz9Ar9A59Qt/wSugXXg39w2thQBgYBoXXw+DwRhgS3gxDw7AwPLwVRoSRYVQYHcaEsWFceDuMD++ECeHdMDFMCpPDlDA1TAvTw3thRpgZZoX3w+zwQZgT5oZ5YX5YED4MC8OikBo+CovDx2FJWBqWheVhRVgZVoXVYU1YG9aF9WFD2Bg2hc1hS/gkbA3bwvawI+wMu8Lu8GnYEz4Le8PnYV/4IuwPfwoHwpfhYPgqHApfh8Phm3AkfBuOhu/CsfB9OB5OhJPhh3Aq/BhOhzPhbDgXzoefwoXwc7gov7MmhBBCCPEP0X8w3v2/yVF/7vcAgKu35Tz0X8c3ZPu13yt9rhYJAHi6a/uHfmsVK3br1u3Pxy7REOWbCwCJy/np4HK8FJrDk9AKmkGxv4yn/NW51uXteJ7/YP7krQAZ/yrnUv5v8eX5b/67+++lRs7+w/nnAhTIdzknA1yOL89f/L+ZP3uTP5g/w5fjAJr+VU4muBxfnr8oPA7PQKu/OVIIIYQQQgghhPhVL1Wm7R/d3166P89lLuekh8vx37s/F0IIIYQQQgghxP8uz3Xs9NRjrVo1ayud/6lOuObXt/p/y3qkI51/oHOlfzIJIYQQQggh/t0uX/Rf6ZUIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBp1/+LPyf227n+6H8NCiGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEP+p/k8AAAD///wROr8=")
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)

170.933481ms ago: executing program 3 (id=529):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000001c0))

90.449245ms ago: executing program 3 (id=530):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x141201, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$TUNSETTXFILTER(r0, 0x400454d1, 0x0)

0s ago: executing program 4 (id=531):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f000000cf40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}], 0x20, 0x8000}}], 0x1, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:61249' (ED25519) to the list of known hosts.
syzkaller login: [   56.233538][ T5792] cgroup: Unknown subsys name 'net'
[   56.340342][ T5792] cgroup: Unknown subsys name 'cpuset'
[   56.346605][ T5792] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   58.523660][ T5792] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   63.358168][ T5854] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   63.361579][ T5854] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   63.365971][ T5854] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   63.368967][ T5854] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   63.373118][ T5854] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   63.375796][ T5860] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   63.380986][ T5860] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   63.384134][ T5854] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   63.388544][ T5854] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   63.391541][ T5860] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   63.410418][ T5857] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   63.430622][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   63.435271][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   63.440293][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   63.444685][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   63.624725][ T5848] chnl_net:caif_netlink_parms(): no params data found
[   63.801803][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.806130][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.809634][ T5848] bridge_slave_0: entered allmulticast mode
[   63.813837][ T5848] bridge_slave_0: entered promiscuous mode
[   63.831010][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.833944][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.838597][ T5848] bridge_slave_1: entered allmulticast mode
[   63.842652][ T5848] bridge_slave_1: entered promiscuous mode
[   63.913123][ T5855] chnl_net:caif_netlink_parms(): no params data found
[   63.933664][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.941536][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.005494][ T5848] team0: Port device team_slave_0 added
[   64.015168][ T5850] chnl_net:caif_netlink_parms(): no params data found
[   64.025347][ T5848] team0: Port device team_slave_1 added
[   64.120935][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.123436][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.132964][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.144300][ T5855] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.148789][ T5855] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.152179][ T5855] bridge_slave_0: entered allmulticast mode
[   64.156724][ T5855] bridge_slave_0: entered promiscuous mode
[   64.162334][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.165382][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.174850][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.200403][ T5855] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.203493][ T5855] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.207652][ T5855] bridge_slave_1: entered allmulticast mode
[   64.210973][ T5855] bridge_slave_1: entered promiscuous mode
[   64.255415][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.259197][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.262644][ T5850] bridge_slave_0: entered allmulticast mode
[   64.267611][ T5850] bridge_slave_0: entered promiscuous mode
[   64.273227][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.276285][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.279198][ T5850] bridge_slave_1: entered allmulticast mode
[   64.282752][ T5850] bridge_slave_1: entered promiscuous mode
[   64.298137][ T5855] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.327543][ T5855] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.338498][ T5848] hsr_slave_0: entered promiscuous mode
[   64.342074][ T5848] hsr_slave_1: entered promiscuous mode
[   64.362943][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.388493][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.411550][ T5855] team0: Port device team_slave_0 added
[   64.427158][ T5855] team0: Port device team_slave_1 added
[   64.430479][ T5850] team0: Port device team_slave_0 added
[   64.458041][ T5850] team0: Port device team_slave_1 added
[   64.481622][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.484162][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.495273][ T5855] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.517101][ T5855] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.520206][ T5855] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.532115][ T5855] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.565465][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.570802][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.582006][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.610174][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.613350][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.624749][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.659117][ T5855] hsr_slave_0: entered promiscuous mode
[   64.662481][ T5855] hsr_slave_1: entered promiscuous mode
[   64.665297][ T5855] debugfs: 'hsr0' already exists in 'hsr'
[   64.667587][ T5855] Cannot create hsr debugfs directory
[   64.774948][ T5850] hsr_slave_0: entered promiscuous mode
[   64.779982][ T5850] hsr_slave_1: entered promiscuous mode
[   64.783732][ T5850] debugfs: 'hsr0' already exists in 'hsr'
[   64.787015][ T5850] Cannot create hsr debugfs directory
[   64.930153][ T5848] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   64.949774][ T5848] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   64.956472][ T5848] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   64.986639][ T5848] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.089667][ T5855] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   65.117265][ T5855] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   65.147171][ T5855] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   65.163010][ T5855] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   65.191926][ T5850] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   65.204616][ T5850] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   65.211615][ T5850] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   65.219859][ T5850] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   65.343087][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.390733][ T5855] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.397239][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[   65.420475][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.423133][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.437731][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.440946][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.454706][ T5855] 8021q: adding VLAN 0 to HW filter on device team0
[   65.465054][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.483284][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.486796][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.491433][   T55] Bluetooth: hci2: command tx timeout
[   65.494390][   T55] Bluetooth: hci1: command tx timeout
[   65.498145][ T5856] Bluetooth: hci0: command tx timeout
[   65.521369][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.523977][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.534429][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[   65.557481][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.560441][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.584106][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.587306][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.751922][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.806566][ T5848] veth0_vlan: entered promiscuous mode
[   65.819425][ T5848] veth1_vlan: entered promiscuous mode
[   65.870753][ T5848] veth0_macvtap: entered promiscuous mode
[   65.878255][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.884762][ T5848] veth1_macvtap: entered promiscuous mode
[   65.891230][ T5855] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.924843][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.933023][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.949071][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.962671][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.981436][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.985202][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.023668][ T5850] veth0_vlan: entered promiscuous mode
[   66.041201][ T5855] veth0_vlan: entered promiscuous mode
[   66.044290][ T5850] veth1_vlan: entered promiscuous mode
[   66.077642][ T5855] veth1_vlan: entered promiscuous mode
[   66.133909][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.142350][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.154196][ T5850] veth0_macvtap: entered promiscuous mode
[   66.190504][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.191958][ T5850] veth1_macvtap: entered promiscuous mode
[   66.194642][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.230204][ T5855] veth0_macvtap: entered promiscuous mode
[   66.250186][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.259279][ T5855] veth1_macvtap: entered promiscuous mode
[   66.262066][ T5848] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   66.270626][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.285337][ T5719] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.309785][ T5719] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.317162][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.336072][ T5719] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.344996][ T5855] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.356638][ T5719] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.383935][ T5719] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.404679][ T5719] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.408836][ T5719] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.424944][ T5719] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.589568][ T3586] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.593948][ T3586] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.631127][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.634819][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.708488][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.730487][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.774210][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.785965][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.674028][ T5934] capability: warning: `syz.1.2' uses 32-bit capabilities (legacy support in use)
[   67.679196][ T5857] Bluetooth: hci2: command tx timeout
[   67.681681][   T55] Bluetooth: hci1: command tx timeout
[   67.681983][ T5856] Bluetooth: hci0: command tx timeout
[   67.912142][ T5945] loop2: detected capacity change from 0 to 2048
[   67.925435][ T5945] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[   67.958344][ T5950] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   69.337536][ T5977] netlink: 48 bytes leftover after parsing attributes in process `syz.1.26'.
[   69.608497][ T5983] loop2: detected capacity change from 0 to 128
[   69.627587][ T5983] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   69.637259][ T5983] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   69.676825][ T5855] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   69.726274][ T5856] Bluetooth: hci1: command tx timeout
[   69.729197][   T55] Bluetooth: hci2: command tx timeout
[   69.736017][ T5856] Bluetooth: hci0: command tx timeout
[   69.836483][ T5895] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   70.016917][ T5895] usb 2-1: too many endpoints for config 253 interface 0 altsetting 0: 255, using maximum allowed: 30
[   70.022162][ T5895] usb 2-1: config 253 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   70.027872][ T5895] usb 2-1: config 253 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[   70.036955][ T5895] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   70.040965][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   70.046653][ T5895] usb 2-1: SerialNumber: syz
[   70.633787][ T5895] rndis_host 2-1:253.0: RNDIS init failed, -71
[   70.637789][ T5895] rndis_host 2-1:253.0: probe with driver rndis_host failed with error -71
[   70.653443][ T5895] usb 2-1: USB disconnect, device number 2
[   70.966675][ T5895] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[   71.138556][ T5895] usb 2-1: too many endpoints for config 253 interface 0 altsetting 0: 255, using maximum allowed: 30
[   71.145207][ T5895] usb 2-1: config 253 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   71.151082][ T5895] usb 2-1: config 253 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[   71.160422][ T5895] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   71.167516][ T5895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   71.174396][ T5895] usb 2-1: SerialNumber: syz
[   71.204607][ T6011] block nbd2: not configured, cannot reconfigure
[   71.253061][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[   71.257305][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[   71.666250][ T5915] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   71.805764][ T5856] Bluetooth: hci0: command tx timeout
[   71.808259][ T5856] Bluetooth: hci1: command tx timeout
[   71.810416][ T5856] Bluetooth: hci2: command tx timeout
[   71.819329][ T5915] usb 3-1: Using ep0 maxpacket: 16
[   71.829326][ T5915] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   71.834246][ T5915] usb 3-1: config 0 interface 0 has no altsetting 0
[   71.845668][ T5915] usb 3-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[   71.852521][ T5915] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.864852][ T5915] usb 3-1: config 0 descriptor??
[   72.224773][ T6032] loop0: detected capacity change from 0 to 1024
[   72.230285][ T6032] =======================================================
[   72.230285][ T6032] WARNING: The mand mount option has been deprecated and
[   72.230285][ T6032]          and is ignored by this kernel. Remove the mand
[   72.230285][ T6032]          option from the mount to silence this warning.
[   72.230285][ T6032] =======================================================
[   72.368452][ T5915] nzxt-smart2 0003:1E71:2009.0001: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.2-1/input0
[   72.377980][ T6034] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[   72.386754][ T6034] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   72.447241][ T5895] rndis_host 2-1:253.0: RNDIS init failed, -110
[   72.450674][ T5895] rndis_host 2-1:253.0: probe with driver rndis_host failed with error -110
[   72.477325][ T5895] usb 2-1: USB disconnect, device number 3
[   72.629987][ T6036] loop0: detected capacity change from 0 to 32768
[   72.652573][ T6036] ea_get: invalid extended attribute
[   72.655018][ T6036] ffff88802a72b148: 04 00 00 00                                      ....
[   72.780901][ T5915] usb 3-1: USB disconnect, device number 2
[   72.834653][ T6038] process 'syz.1.54' launched './file0' with NULL argv: empty string added
[   73.157039][ T5895] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   73.289013][ T6054] loop1: detected capacity change from 0 to 32768
[   73.305723][ T5895] usb 1-1: Using ep0 maxpacket: 16
[   73.312180][ T5895] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   73.337085][ T5895] usb 1-1: New USB device found, idVendor=0c72, idProduct=000c, bcdDevice=f6.59
[   73.352698][ T5895] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   73.356440][ T5895] usb 1-1: Product: syz
[   73.358213][ T5895] usb 1-1: Manufacturer: syz
[   73.360138][ T5895] usb 1-1: SerialNumber: syz
[   73.371192][ T5895] usb 1-1: config 0 descriptor??
[   73.399013][ T5895] peak_usb 1-1:0.0 can0: sending cmd f=0x6 n=0x1 failure: -22
[   73.403662][ T5895] peak_usb 1-1:0.0: unable to read PCAN-USB serial number (err -22)
[   73.859465][ T5895] peak_usb 1-1:0.0: probe with driver peak_usb failed with error -22
[   73.885360][ T5895] usb 1-1: USB disconnect, device number 2
[   74.453838][ T6075] netlink: 201392 bytes leftover after parsing attributes in process `syz.0.70'.
[   74.461585][ T6075] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[   74.471189][ T6075] openvswitch: netlink: Message has 8454 unknown bytes.
[   74.534361][ T6080] netlink: 20 bytes leftover after parsing attributes in process `syz.1.72'.
[   74.584106][ T6086] loop2: detected capacity change from 0 to 1024
[   74.588571][ T6086] EXT4-fs: Ignoring removed orlov option
[   74.625004][ T6086] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.643675][   T33] audit: type=1326 audit(1756997730.576:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.660098][ T6086] EXT4-fs: Ignoring sb option on remount
[   74.662034][ T6086] EXT4-fs: Ignoring removed orlov option
[   74.664051][   T33] audit: type=1326 audit(1756997730.576:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.669062][ T6086] EXT4-fs: Ignoring removed nomblk_io_submit option
[   74.675498][ T6086] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[   74.679885][ T6086] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000.
[   74.688780][   T33] audit: type=1326 audit(1756997730.586:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.699470][   T33] audit: type=1326 audit(1756997730.586:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.712539][ T5855] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.719085][   T33] audit: type=1326 audit(1756997730.586:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.728971][   T33] audit: type=1326 audit(1756997730.586:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.780189][   T33] audit: type=1326 audit(1756997730.586:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.0.76" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   74.865875][ T5888] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   74.977037][ T5915] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   74.978688][ T6110] loop2: detected capacity change from 0 to 4096
[   74.984894][ T5915] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   75.015637][ T5888] usb 2-1: Using ep0 maxpacket: 8
[   75.020400][ T5888] usb 2-1: unable to get BOS descriptor or descriptor too short
[   75.028927][ T5888] usb 2-1: config 5 has an invalid interface number: 128 but max is 0
[   75.032168][ T5888] usb 2-1: config 5 has no interface number 0
[   75.034754][ T5888] usb 2-1: config 5 interface 128 has no altsetting 0
[   75.038985][ T6110] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   75.048445][ T6110] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22.
[   75.048624][ T5888] usb 2-1: New USB device found, idVendor=07c0, idProduct=158b, bcdDevice=5f.dc
[   75.056026][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.064938][ T5888] usb 2-1: Product: syz
[   75.067213][ T5888] usb 2-1: Manufacturer: syz
[   75.068928][ T5888] usb 2-1: SerialNumber: syz
[   75.283081][ T6119] vim2m vim2m.0: Fourcc format (0x42474752) invalid.
[   75.298364][ T5888] iowarrior 2-1:5.128: no interrupt-out endpoint found
[   75.318172][ T5888] usb 2-1: USB disconnect, device number 4
[   75.395191][ T6121] loop2: detected capacity change from 0 to 1024
[   75.400279][ T6121] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.413417][ T6121] EXT4-fs: inline encryption not supported
[   75.422361][ T6121] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   75.430319][ T6121] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c842e018, mo2=0000]
[   75.448579][ T6121] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.90: bad orphan inode 11
[   75.461208][ T6121] ext4_test_bit(bit=10, block=4) = 1
[   75.463701][ T6121] is_bad_inode(inode)=0
[   75.468716][ T6121] NEXT_ORPHAN(inode)=3254779904
[   75.473883][ T6121] max_ino=32
[   75.475474][ T6121] i_nlink=0
[   75.482954][ T6121] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.90: lblock 2 mapped to illegal pblock 2 (length 1)
[   75.493884][ T6121] Quota error (device loop2): qtree_write_dquot: dquota write failed
[   75.497714][ T6121] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.90: lblock 0 mapped to illegal pblock 48 (length 1)
[   75.503917][ T6121] Quota error (device loop2): v2_write_file_info: Can't write info structure
[   75.508845][ T6121] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.90: Failed to acquire dquot type 0
[   75.513749][ T6121] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   75.521235][ T6121] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.90: mark_inode_dirty error
[   75.528971][ T6121] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[   75.533635][ T6121] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.541664][ T6121] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz.2.90: Invalid inode table block 1 in block_group 0
[   75.548038][ T6121] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   75.566960][ T5855] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.572559][ T5855] EXT4-fs error (device loop2): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[   75.579780][ T5855] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6334: Corrupt filesystem
[   75.584509][ T5855] EXT4-fs error (device loop2): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[   75.625217][ T6127] loop2: detected capacity change from 0 to 256
[   75.656319][ T6127] FAT-fs (loop2): Directory bread(block 64) failed
[   75.659661][ T6127] FAT-fs (loop2): Directory bread(block 65) failed
[   75.662576][ T6127] FAT-fs (loop2): Directory bread(block 66) failed
[   75.665339][ T6127] FAT-fs (loop2): Directory bread(block 67) failed
[   75.669827][ T6127] FAT-fs (loop2): Directory bread(block 68) failed
[   75.672215][ T6127] FAT-fs (loop2): Directory bread(block 69) failed
[   75.674809][ T6127] FAT-fs (loop2): Directory bread(block 70) failed
[   75.678396][ T6127] FAT-fs (loop2): Directory bread(block 71) failed
[   75.681497][ T6127] FAT-fs (loop2): Directory bread(block 72) failed
[   75.684351][ T6127] FAT-fs (loop2): Directory bread(block 73) failed
[   75.705863][  T791] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   75.812309][ T6133] warning: `syz.2.95' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   75.858060][  T791] usb 1-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=de.ad
[   75.862098][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.882183][  T791] usb 1-1: config 0 descriptor??
[   76.092153][  T791] usb 1-1: can't set first interface for hiFace device.
[   76.100863][  T791] snd-usb-hiface 1-1:0.0: probe with driver snd-usb-hiface failed with error -5
[   76.108994][  T791] usb 1-1: USB disconnect, device number 3
[   76.419228][ T6162] loop2: detected capacity change from 0 to 256
[   76.426668][ T6162] exfat: Deprecated parameter 'namecase'
[   76.435222][ T6162] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[   76.664953][ T6164] loop2: detected capacity change from 0 to 32768
[   77.691001][ T6178] loop0: detected capacity change from 0 to 256
[   77.694717][ T6178] exfat: Deprecated parameter 'utf8'
[   77.699540][ T6178] exfat: Deprecated parameter 'utf8'
[   77.708622][ T6178] exfat: Deprecated parameter 'utf8'
[   77.728260][ T6178] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[   78.348565][ T6176] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   78.351387][ T6176] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   78.360613][ T6176] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   78.367657][ T6176] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   78.370667][ T6176] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   78.375182][ T6176] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   78.379612][ T6176] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   78.382361][ T6176] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   78.388396][ T6176] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   78.504415][ T6197] loop0: detected capacity change from 0 to 2048
[   78.534605][ T6197] FAT-fs (loop0): Directory bread(block 131102) failed
[   78.539027][ T6197] FAT-fs (loop0): Directory bread(block 131103) failed
[   78.542031][ T6197] FAT-fs (loop0): Directory bread(block 131104) failed
[   78.546260][ T6197] FAT-fs (loop0): Directory bread(block 131105) failed
[   78.548221][ T6199] loop2: detected capacity change from 0 to 4096
[   78.549520][ T6197] FAT-fs (loop0): Directory bread(block 131106) failed
[   78.555328][ T6197] FAT-fs (loop0): Directory bread(block 131107) failed
[   78.560335][ T6197] FAT-fs (loop0): Directory bread(block 131108) failed
[   78.564410][ T6197] FAT-fs (loop0): Directory bread(block 131109) failed
[   78.569010][ T6197] FAT-fs (loop0): Directory bread(block 131110) failed
[   78.571866][ T6197] FAT-fs (loop0): Directory bread(block 131111) failed
[   78.800836][ T6213] loop2: detected capacity change from 0 to 2048
[   78.855175][ T6213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.884536][ T5855] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.969831][ T6211] loop0: detected capacity change from 0 to 32768
[   78.983940][ T6211] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.131 (6211)
[   79.011604][ T6211] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   79.018428][ T6211] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[   79.094958][ T6211] BTRFS info (device loop0): enabling ssd optimizations
[   79.105734][ T6211] BTRFS info (device loop0): enabling free space tree
[   79.186993][ T5848] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   79.454636][ T6246] netlink: 'syz.0.137': attribute type 1 has an invalid length.
[   79.726594][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout
[   79.787330][ T6268] capability: warning: `syz.0.150' uses deprecated v2 capabilities in a way that may be insecure
[   79.974362][ T6282] netlink: 48 bytes leftover after parsing attributes in process `syz.2.156'.
[   80.043801][ T6284] loop0: detected capacity change from 0 to 4096
[   80.120213][ T6287] loop2: detected capacity change from 0 to 128
[   80.154639][ T6287] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[   80.208328][ T6287] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   80.347562][ T6289] loop0: detected capacity change from 0 to 1024
[   80.354283][ T6289] EXT4-fs: inline encryption not supported
[   80.376405][ T6289] EXT4-fs: Mount option(s) incompatible with ext3
[   80.445883][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout
[   80.446684][ T5857] Bluetooth: hci1: command 0x0c1a tx timeout
[   80.872493][ T6295] netlink: 8 bytes leftover after parsing attributes in process `syz.0.162'.
[   81.285687][  T791] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   81.446705][  T791] usb 1-1: Using ep0 maxpacket: 8
[   81.452639][  T791] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[   81.458215][  T791] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   81.462869][  T791] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   81.467843][  T791] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   81.472106][  T791] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   81.478142][  T791] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   81.481949][  T791] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.561034][ T6301] loop2: detected capacity change from 0 to 512
[   81.567207][ T6301] EXT4-fs: Ignoring removed bh option
[   81.570615][ T6301] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[   81.591771][ T6301] EXT4-fs (loop2): 1 truncate cleaned up
[   81.597532][ T6301] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.711861][  T791] usb 1-1: usb_control_msg returned -32
[   81.714154][  T791] usbtmc 1-1:16.0: can't read capabilities
[   81.805787][   T55] Bluetooth: hci0: command 0x0c1a tx timeout
[   82.077636][ T6308] usbtmc 1-1:16.0: usb_control_msg returned -32
[   82.086580][  T791] usb 1-1: USB disconnect, device number 4
[   82.477642][ T5855] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.525683][   T55] Bluetooth: hci1: command 0x0c1a tx timeout
[   82.525834][ T5856] Bluetooth: hci2: command 0x0c1a tx timeout
[   82.758835][ T6318] netlink: 'syz.0.169': attribute type 21 has an invalid length.
[   82.762500][ T6318] netlink: 132 bytes leftover after parsing attributes in process `syz.0.169'.
[   83.099332][ T6320] loop0: detected capacity change from 0 to 32768
[   83.178154][ T6320] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   83.310330][ T5848] ocfs2: Unmounting device (7,0) on (node local)
[   83.538514][ T6326] netlink: 'syz.2.172': attribute type 12 has an invalid length.
[   83.541277][ T6326] netlink: 132 bytes leftover after parsing attributes in process `syz.2.172'.
[   83.558366][ T6325] loop0: detected capacity change from 0 to 256
[   83.562691][ T6325] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   83.568823][ T6325] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   83.572852][ T6325] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   83.576642][ T6325] UDF-fs: Scanning with blocksize 512 failed
[   83.582247][ T6325] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   83.590990][ T6325] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   83.891250][ T5856] Bluetooth: hci0: command 0x0c1a tx timeout
[   83.923028][ T6334] netlink: 168 bytes leftover after parsing attributes in process `syz.2.175'.
[   84.032547][ T6336] loop2: detected capacity change from 0 to 128
[   84.573122][   T13] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.618360][ T5856] Bluetooth: hci1: command 0x0c1a tx timeout
[   84.671689][   T13] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.753016][   T13] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.888441][   T13] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.287566][   T13] bridge_slave_1: left allmulticast mode
[   85.290264][   T13] bridge_slave_1: left promiscuous mode
[   85.294640][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.350985][   T13] bridge_slave_0: left allmulticast mode
[   85.353604][   T13] bridge_slave_0: left promiscuous mode
[   85.369927][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.672631][   T55] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   85.686449][   T55] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   85.689978][   T55] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   85.698757][   T55] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   85.701774][   T55] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   85.992514][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   86.000277][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   86.006253][   T13] bond0 (unregistering): Released all slaves
[   86.354807][   T13] hsr_slave_0: left promiscuous mode
[   86.362201][   T13] hsr_slave_1: left promiscuous mode
[   86.372232][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.376317][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.380552][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.383603][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.398633][   T13] veth1_macvtap: left promiscuous mode
[   86.401497][   T13] veth0_macvtap: left promiscuous mode
[   86.404101][   T13] veth1_vlan: left promiscuous mode
[   86.406798][   T13] veth0_vlan: left promiscuous mode
[   86.613014][  T790] cfg80211: failed to load regulatory.db
[   86.744623][ T6373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.188'.
[   86.884308][   T13] team0 (unregistering): Port device team_slave_1 removed
[   86.921015][   T13] team0 (unregistering): Port device team_slave_0 removed
[   87.373531][ T6354] chnl_net:caif_netlink_parms(): no params data found
[   87.585264][ T6385] loop0: detected capacity change from 0 to 16
[   87.590122][ T6385] MTD: Attempt to mount non-MTD device "/dev/loop0"
[   87.597826][ T6354] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.615435][ T6354] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.626930][ T6354] bridge_slave_0: entered allmulticast mode
[   87.656189][ T6354] bridge_slave_0: entered promiscuous mode
[   87.666856][ T6354] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.678918][ T6354] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.683060][ T6354] bridge_slave_1: entered allmulticast mode
[   87.691872][ T6354] bridge_slave_1: entered promiscuous mode
[   87.726866][   T55] Bluetooth: hci2: command tx timeout
[   87.754526][ T6388] loop0: detected capacity change from 0 to 512
[   87.760568][ T6388] EXT4-fs: Ignoring removed bh option
[   87.774042][ T6388] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   87.802290][ T6354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.808280][ T6388] EXT4-fs (loop0): 1 truncate cleaned up
[   87.811441][ T6388] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.828347][ T6354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.945117][ T6354] team0: Port device team_slave_0 added
[   87.950325][ T6354] team0: Port device team_slave_1 added
[   88.369016][ T6354] batman_adv: batadv0: Adding interface: batadv_slave_0
[   88.379129][ T6354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.391736][ T6354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   88.402222][ T6354] batman_adv: batadv0: Adding interface: batadv_slave_1
[   88.405356][ T6354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.418247][ T6354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   88.488665][ T6354] hsr_slave_0: entered promiscuous mode
[   88.491967][ T6354] hsr_slave_1: entered promiscuous mode
[   88.495350][ T6354] debugfs: 'hsr0' already exists in 'hsr'
[   88.499888][ T6354] Cannot create hsr debugfs directory
[   88.642243][ T5848] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.757007][ T6354] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   88.764154][ T6354] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   88.770373][ T6354] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   88.793090][ T6354] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   88.964556][ T6354] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.992528][ T6354] 8021q: adding VLAN 0 to HW filter on device team0
[   89.021062][ T6419] can0: slcan on ptm0.
[   89.030591][ T3586] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.033965][ T3586] bridge0: port 1(bridge_slave_0) entered forwarding state
[   89.052294][ T3586] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.056386][ T3586] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.137854][ T6418] can0 (unregistered): slcan off ptm0.
[   89.325366][ T6432] netlink: 12 bytes leftover after parsing attributes in process `syz.0.197'.
[   89.364478][ T6354] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.589720][ T6354] veth0_vlan: entered promiscuous mode
[   89.630550][ T6354] veth1_vlan: entered promiscuous mode
[   89.720514][ T6354] veth0_macvtap: entered promiscuous mode
[   89.752687][ T6354] veth1_macvtap: entered promiscuous mode
[   89.807224][   T55] Bluetooth: hci2: command tx timeout
[   89.812463][ T6354] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.865596][ T6354] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.906764][ T5719] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.910789][ T5719] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.941863][ T5719] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.947951][ T5719] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.224368][ T1087] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.229964][ T1087] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.363602][ T1087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.370755][ T1087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.236167][  T790] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   91.388295][  T790] usb 4-1: Using ep0 maxpacket: 8
[   91.399225][  T790] usb 4-1: unable to get BOS descriptor or descriptor too short
[   91.407553][  T790] usb 4-1: config 7 has an invalid interface number: 84 but max is 0
[   91.410736][  T790] usb 4-1: config 7 has no interface number 0
[   91.422535][  T790] usb 4-1: New USB device found, idVendor=04b4, idProduct=5500, bcdDevice=9e.50
[   91.431054][  T790] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.433687][  T790] usb 4-1: Product: syz
[   91.435072][  T790] usb 4-1: Manufacturer: syz
[   91.439215][  T790] usb 4-1: SerialNumber: syz
[   91.510330][ T5856] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   91.517484][ T5856] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   91.518010][ T6471] loop0: detected capacity change from 0 to 2048
[   91.527716][ T5856] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   91.539181][ T5856] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   91.546109][ T5856] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   91.549258][ T6471] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[   91.599587][ T5719] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.662615][  T790] cypress_m8 4-1:7.84: HID->COM RS232 Adapter converter detected
[   91.678360][  T790] cyphidcom ttyUSB0: required endpoint is missing
[   91.692270][  T790] usb 4-1: USB disconnect, device number 2
[   91.698869][ T6475] netlink: 56 bytes leftover after parsing attributes in process `syz.0.210'.
[   91.708389][  T790] cypress_m8 4-1:7.84: device disconnected
[   91.740496][ T5719] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.837012][ T5719] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.879015][ T6472] chnl_net:caif_netlink_parms(): no params data found
[   91.885676][ T5856] Bluetooth: hci2: command tx timeout
[   91.907153][ T5719] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.980335][ T6472] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.984377][ T6472] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.988632][ T6472] bridge_slave_0: entered allmulticast mode
[   91.992316][ T6472] bridge_slave_0: entered promiscuous mode
[   92.004255][ T6472] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.012463][ T6472] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.015347][ T6472] bridge_slave_1: entered allmulticast mode
[   92.020140][ T6472] bridge_slave_1: entered promiscuous mode
[   92.073300][ T6472] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.087936][ T6472] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.124875][ T5719] bridge_slave_1: left allmulticast mode
[   92.129440][ T5719] bridge_slave_1: left promiscuous mode
[   92.131577][ T5719] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.138452][ T5719] bridge_slave_0: left allmulticast mode
[   92.140534][ T5719] bridge_slave_0: left promiscuous mode
[   92.142696][ T5719] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.271027][ T6489] loop3: detected capacity change from 0 to 256
[   92.291046][ T6489] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   92.305320][ T6489] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[   92.320813][ T6489] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   92.493724][   T33] audit: type=1326 audit(1756997748.426:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.519818][   T33] audit: type=1326 audit(1756997748.426:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.533544][   T33] audit: type=1326 audit(1756997748.456:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.545172][   T33] audit: type=1326 audit(1756997748.456:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.564407][   T33] audit: type=1326 audit(1756997748.456:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.578349][   T33] audit: type=1326 audit(1756997748.456:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.590237][   T33] audit: type=1326 audit(1756997748.456:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd64418ebe9 code=0x7ffc0000
[   92.602217][   T33] audit: type=1326 audit(1756997748.456:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd644185ba7 code=0x7ffc0000
[   92.614698][   T33] audit: type=1326 audit(1756997748.456:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd64412adb9 code=0x7ffc0000
[   92.622608][   T33] audit: type=1326 audit(1756997748.456:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.3.216" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd644185ba7 code=0x7ffc0000
[   92.806850][ T5719] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   92.814170][ T5719] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   92.820966][ T5719] bond0 (unregistering): Released all slaves
[   92.834063][ T6472] team0: Port device team_slave_0 added
[   92.839521][ T6472] team0: Port device team_slave_1 added
[   93.022237][ T6472] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.024722][ T6472] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.038240][ T6472] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.043452][ T6472] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.046515][ T6472] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.058072][ T6472] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.189490][ T6511] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   93.225348][ T6472] hsr_slave_0: entered promiscuous mode
[   93.230038][ T6472] hsr_slave_1: entered promiscuous mode
[   93.241102][ T6472] debugfs: 'hsr0' already exists in 'hsr'
[   93.243967][ T6472] Cannot create hsr debugfs directory
[   93.273670][ T6514] mmap: syz.3.223 (6514) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   93.284510][ T5719] hsr_slave_0: left promiscuous mode
[   93.288753][ T5719] hsr_slave_1: left promiscuous mode
[   93.292670][ T5719] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   93.298324][ T5719] batman_adv: batadv0: Removing interface: batadv_slave_0
[   93.302261][ T5719] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   93.305487][ T5719] batman_adv: batadv0: Removing interface: batadv_slave_1
[   93.338160][ T5719] veth1_macvtap: left promiscuous mode
[   93.340747][ T5719] veth0_macvtap: left promiscuous mode
[   93.343310][ T5719] veth1_vlan: left promiscuous mode
[   93.347988][ T5719] veth0_vlan: left promiscuous mode
[   93.647740][ T5856] Bluetooth: hci1: command tx timeout
[   93.966285][ T5856] Bluetooth: hci2: command tx timeout
[   95.160109][ T6540] loop3: detected capacity change from 0 to 136
[   95.199332][ T5719] team0 (unregistering): Port device team_slave_1 removed
[   95.368793][ T5719] team0 (unregistering): Port device team_slave_0 removed
[   95.593865][ T6553] syz.3.239 uses obsolete (PF_INET,SOCK_PACKET)
[   95.725873][ T5856] Bluetooth: hci1: command tx timeout
[   96.870894][ T6472] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   96.880562][ T6472] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   96.894358][ T6472] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   96.903998][ T6472] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   97.026893][ T6472] 8021q: adding VLAN 0 to HW filter on device bond0
[   97.058432][ T6472] 8021q: adding VLAN 0 to HW filter on device team0
[   97.068735][ T6569] loop3: detected capacity change from 0 to 32768
[   97.081542][ T6569] JBD2: Ignoring recovery information on journal
[   97.094540][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.097691][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.121980][ T6569] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[   97.153538][ T6569] OCFS2: ERROR (device loop3): int ocfs2_xattr_find_entry(struct inode *, int, const char *, struct ocfs2_xattr_search *): corrupted xattr entries
[   97.153638][ T6569] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[   97.165753][ T6569] OCFS2: File system is now read-only.
[   97.168256][ T6569] (syz.3.244,6569,0):ocfs2_calc_xattr_init:638 ERROR: status = -117
[   97.171891][ T6569] (syz.3.244,6569,0):ocfs2_mknod:337 ERROR: status = -117
[   97.175129][ T6569] (syz.3.244,6569,0):ocfs2_mknod:505 ERROR: status = -117
[   97.180355][ T6569] (syz.3.244,6569,0):ocfs2_create:678 ERROR: status = -117
[   97.181208][   T27] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.186128][ T6569] syz.3.244 (6569) used greatest stack depth: 18984 bytes left
[   97.186488][   T27] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.285890][ T6354] ocfs2: Unmounting device (7,3) on (node local)
[   97.381010][ T6472] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   97.701070][ T6472] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.806527][ T5856] Bluetooth: hci1: command tx timeout
[   98.073983][ T6636] netlink: 'syz.0.256': attribute type 4 has an invalid length.
[   98.183656][ T6472] veth0_vlan: entered promiscuous mode
[   98.204155][ T6472] veth1_vlan: entered promiscuous mode
[   98.282831][ T6472] veth0_macvtap: entered promiscuous mode
[   98.300024][ T6472] veth1_macvtap: entered promiscuous mode
[   98.355118][ T6650] loop3: detected capacity change from 0 to 512
[   98.356351][ T6472] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.377280][ T6650] EXT4-fs (loop3): bad geometry: block count 1024 exceeds size of device (256 blocks)
[   98.387073][ T6472] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.410639][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.413518][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.420488][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.424373][   T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.564290][   T33] kauditd_printk_skb: 110 callbacks suppressed
[   98.564305][   T33] audit: type=1800 audit(1756997754.496:129): pid=6658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.264" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   98.598729][   T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.602371][   T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.681382][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.684818][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.779129][ T6666] netlink: 8 bytes leftover after parsing attributes in process `syz.4.206'.
[   98.992750][ T6662] loop3: detected capacity change from 0 to 40427
[   99.001247][ T6662] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   99.006460][ T6662] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   99.015209][ T6662] F2FS-fs (loop3): invalid crc value
[   99.101643][ T6662] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   99.113968][ T6662] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   99.117138][ T6662] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   99.888192][ T5856] Bluetooth: hci1: command tx timeout
[   99.925438][   T33] audit: type=1326 audit(1756997755.856:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[   99.959764][   T33] audit: type=1326 audit(1756997755.856:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.001083][   T33] audit: type=1326 audit(1756997755.856:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.031152][   T33] audit: type=1326 audit(1756997755.856:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.051800][   T33] audit: type=1326 audit(1756997755.856:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.071381][   T33] audit: type=1326 audit(1756997755.856:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.085762][   T33] audit: type=1326 audit(1756997755.856:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.103898][   T33] audit: type=1326 audit(1756997755.856:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.134916][   T33] audit: type=1326 audit(1756997755.856:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.0.278" exe="/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fb8a918ebe9 code=0x7ffc0000
[  100.291168][ T6694] loop4: detected capacity change from 0 to 40427
[  100.336060][ T6694] F2FS-fs (loop4): invalid crc value
[  100.360833][ T6709] loop3: detected capacity change from 0 to 1024
[  100.466269][ T6694] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  100.477895][ T6694] F2FS-fs (loop4): Start checkpoint disabled!
[  100.493115][ T6694] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  100.548703][   T27] kworker/u10:0: attempt to access beyond end of device
[  100.548703][   T27] loop4: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  100.561160][   T27] kworker/u10:0: attempt to access beyond end of device
[  100.561160][   T27] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  100.572674][   T27] CPU: 1 UID: 0 PID: 27 Comm: kworker/u10:0 Not tainted syzkaller #0 PREEMPT(full) 
[  100.572696][   T27] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  100.572704][   T27] Workqueue: writeback wb_workfn (flush-7:4)
[  100.572724][   T27] Call Trace:
[  100.572730][   T27]  <TASK>
[  100.572736][   T27]  dump_stack_lvl+0x189/0x250
[  100.572754][   T27]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.572766][   T27]  ? __pfx_queue_work_on+0x10/0x10
[  100.572775][   T27]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  100.572790][   T27]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  100.572811][   T27]  f2fs_handle_critical_error+0x37c/0x540
[  100.572840][   T27]  f2fs_write_end_io+0x886/0xb60
[  100.572864][   T27]  __submit_merged_bio+0x27a/0x6a0
[  100.572884][   T27]  __submit_merged_write_cond+0x255/0x530
[  100.572904][   T27]  f2fs_write_data_pages+0x261d/0x3000
[  100.572948][   T27]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.572974][   T27]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  100.573013][   T27]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  100.573038][   T27]  ? trace_f2fs_writepages+0x7f/0x200
[  100.573053][   T27]  ? f2fs_write_node_pages+0x478/0x6e0
[  100.573079][   T27]  ? __lock_acquire+0xab9/0xd20
[  100.573097][   T27]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.573112][   T27]  do_writepages+0x32e/0x550
[  100.573131][   T27]  ? reacquire_held_locks+0x127/0x1d0
[  100.573140][   T27]  ? writeback_sb_inodes+0x384/0x1010
[  100.573161][   T27]  __writeback_single_inode+0x145/0xff0
[  100.573174][   T27]  ? do_raw_spin_unlock+0x4d/0x240
[  100.573189][   T27]  writeback_sb_inodes+0x6c7/0x1010
[  100.573224][   T27]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  100.573270][   T27]  ? rcu_is_watching+0x15/0xb0
[  100.573288][   T27]  wb_writeback+0x43b/0xaf0
[  100.573307][   T27]  ? queue_io+0x331/0x590
[  100.573321][   T27]  ? __pfx_wb_writeback+0x10/0x10
[  100.573340][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  100.573357][   T27]  wb_workfn+0x409/0xef0
[  100.573381][   T27]  ? __pfx_wb_workfn+0x10/0x10
[  100.573395][   T27]  ? __lock_acquire+0xab9/0xd20
[  100.573418][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[  100.573434][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  100.573445][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[  100.573452][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[  100.573463][   T27]  process_scheduled_works+0xae1/0x17b0
[  100.573498][   T27]  ? __pfx_process_scheduled_works+0x10/0x10
[  100.573522][   T27]  worker_thread+0x8a0/0xda0
[  100.573555][   T27]  kthread+0x711/0x8a0
[  100.573606][   T27]  ? __pfx_worker_thread+0x10/0x10
[  100.573617][   T27]  ? __pfx_kthread+0x10/0x10
[  100.573631][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  100.573642][   T27]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.573656][   T27]  ? __pfx_kthread+0x10/0x10
[  100.573668][   T27]  ret_from_fork+0x3fc/0x770
[  100.573681][   T27]  ? __pfx_ret_from_fork+0x10/0x10
[  100.573696][   T27]  ? __switch_to_asm+0x39/0x70
[  100.573708][   T27]  ? __switch_to_asm+0x33/0x70
[  100.573718][   T27]  ? __pfx_kthread+0x10/0x10
[  100.573731][   T27]  ret_from_fork_asm+0x1a/0x30
[  100.573754][   T27]  </TASK>
[  100.573760][   T27] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  100.657256][  T790] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  100.834061][ T6715] loop3: detected capacity change from 0 to 32768
[  100.841238][ T6715] bcachefs (/dev/loop3): error validating superblock: Invalid superblock layout: max_size_bits too high
[  100.849440][ T6715] bcachefs: bch2_fs_get_tree() error: invalid_sb_layout_sb_max_size_bits
[  100.944211][ T6723] loop3: detected capacity change from 0 to 512
[  100.961614][  T790] usb 1-1: Using ep0 maxpacket: 16
[  100.966701][  T790] usb 1-1: config 0 has an invalid interface number: 214 but max is 0
[  100.970333][  T790] usb 1-1: config 0 has no interface number 0
[  100.987919][  T790] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has an invalid bInterval 255, changing to 11
[  100.992669][  T790] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 59391, setting to 1024
[  101.030447][  T790] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  101.034525][  T790] usb 1-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[  101.050318][ T6723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.055927][  T790] usb 1-1: Manufacturer: syz
[  101.057918][  T790] usb 1-1: SerialNumber: syz
[  101.060169][ T6723] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.067766][  T790] usb 1-1: config 0 descriptor??
[  101.071806][ T6712] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  101.213194][ T6354] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.501066][  T790] usbtouchscreen 1-1:0.214: probe with driver usbtouchscreen failed with error -71
[  101.907527][  T790] usb 1-1: USB disconnect, device number 5
[  102.187626][ T6761] netlink: 'syz.4.294': attribute type 11 has an invalid length.
[  102.294189][ T6770] syz_tun: entered promiscuous mode
[  102.303317][ T6770] batadv_slave_0: entered promiscuous mode
[  102.308447][ T6770] hsr1: entered allmulticast mode
[  102.310614][ T6770] syz_tun: entered allmulticast mode
[  102.312724][ T6770] batadv_slave_0: entered allmulticast mode
[  102.378469][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  102.556357][    T9] usb 4-1: Using ep0 maxpacket: 8
[  102.559596][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.563716][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  102.575658][    T9] usb 4-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00
[  102.579220][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.584047][    T9] usb 4-1: config 0 descriptor??
[  102.598761][ T6781] loop4: detected capacity change from 0 to 32768
[  102.634004][ T6781] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  102.704312][ T6472] ocfs2: Unmounting device (7,4) on (node local)
[  102.793697][ T6786] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  102.911744][ T6790] loop0: detected capacity change from 0 to 2048
[  102.924428][ T6790] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  103.003781][ T6792] PKCS7: Unknown OID: [4] 5.25.373.87(bad)
[  103.008636][    T9] lenovo 0003:17EF:6009.0003: hidraw0: USB HID v0.00 Device [HID 17ef:6009] on usb-dummy_hcd.3-1/input0
[  103.013117][ T6792] PKCS7: Only support pkcs7_signedData type
[  103.044484][ T6794] loop0: detected capacity change from 0 to 512
[  103.069988][ T6794] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.305: attempt to clear invalid blocks 1 len 1
[  103.091263][ T6794] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.305: bg 0: block 343: padding at end of block bitmap is not set
[  103.100859][ T6794] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  103.104325][ T6794] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.305: invalid indirect mapped block 1819239214 (level 0)
[  103.109461][ T6794] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.305: invalid indirect mapped block 1819239214 (level 1)
[  103.118989][ T6794] EXT4-fs (loop0): 1 truncate cleaned up
[  103.121808][ T6794] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.148599][ T5848] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.227141][ T6798] netlink: 36 bytes leftover after parsing attributes in process `syz.4.307'.
[  103.231049][ T6798] netlink: 16 bytes leftover after parsing attributes in process `syz.4.307'.
[  103.234419][ T6798] netlink: 36 bytes leftover after parsing attributes in process `syz.4.307'.
[  103.238177][ T6798] netlink: 36 bytes leftover after parsing attributes in process `syz.4.307'.
[  103.258712][   T47] usb 4-1: USB disconnect, device number 3
[  103.486569][ T6810] wlan0 speed is unknown, defaulting to 1000
[  103.490230][ T6810] wlan0 speed is unknown, defaulting to 1000
[  103.503265][ T6810] wlan0 speed is unknown, defaulting to 1000
[  103.521028][ T6810] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  103.554319][ T6810] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  103.654052][ T6810] wlan0 speed is unknown, defaulting to 1000
[  103.664012][ T6810] wlan0 speed is unknown, defaulting to 1000
[  103.673577][ T6810] wlan0 speed is unknown, defaulting to 1000
[  104.526619][ T6821] loop0: detected capacity change from 0 to 32768
[  104.932785][ T6841] loop3: detected capacity change from 0 to 32768
[  104.955083][ T6841] 
[  104.955083][ T6841]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  104.955083][ T6841] 
[  104.968507][ T6841] ERROR: (device loop3): diWrite: ixpxd invalid
[  104.968507][ T6841] 
[  104.976819][ T6841] ERROR: (device loop3): remounting filesystem as read-only
[  104.980240][ T6841] ERROR: (device loop3): txCommit: 
[  104.980240][ T6841] 
[  104.991707][ T6841] ERROR: (device loop3): dtSearch: stack overrun!
[  104.991707][ T6841] 
[  104.995838][ T6841] ERROR: (device loop3): remounting filesystem as read-only
[  104.999036][ T6841] btstack dump:
[  105.000504][ T6841] bn = 0, index = 0
[  105.002035][ T6841] bn = 30, index = 0
[  105.003778][ T6841] bn = 0, index = 0
[  105.005387][ T6841] bn = 30, index = 0
[  105.009164][ T6841] bn = 0, index = 0
[  105.010980][ T6841] bn = 30, index = 0
[  105.012613][ T6841] bn = 0, index = 0
[  105.014621][ T6841] bn = 0, index = 0
[  105.017452][ T6841] jfs_lookup: dtSearch returned -5
[  105.145811][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  105.183904][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802f729000: rx timeout, send abort
[  105.322228][    T9] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  105.330219][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.334147][    T9] usb 1-1: Product: syz
[  105.338250][    T9] usb 1-1: Manufacturer: syz
[  105.340473][    T9] usb 1-1: SerialNumber: syz
[  105.368983][    T9] usb 1-1: config 0 descriptor??
[  105.485683][  T791] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  105.582820][ T5915] usb 1-1: USB disconnect, device number 6
[  105.636967][  T791] usb 4-1: too many configurations: 67, using maximum allowed: 8
[  105.651384][  T791] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  105.654953][  T791] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.658351][  T791] usb 4-1: Product: syz
[  105.660119][  T791] usb 4-1: Manufacturer: syz
[  105.662055][  T791] usb 4-1: SerialNumber: syz
[  105.672710][  T791] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  105.687804][    C0] vcan0: j1939_tp_rxtimer: 0xffff88802f729000: abort rx timeout. Force session deactivation
[  105.700640][  T791] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  106.116104][ T6855] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  106.120114][ T6855] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  106.210555][ T6863] netlink: 4 bytes leftover after parsing attributes in process `syz.0.323'.
[  106.289029][ T6863] netlink: 28 bytes leftover after parsing attributes in process `syz.0.323'.
[  106.331826][    T9] usb 4-1: USB disconnect, device number 4
[  106.937773][  T791] usb 4-1: Service connection timeout for: 256
[  106.940833][  T791] ath9k_htc 4-1:1.0: ath9k_htc: Unable to initialize HTC services
[  106.956226][  T791] ath9k_htc: Failed to initialize the device
[  106.966192][    T9] usb 4-1: ath9k_htc: USB layer deinitialized
[  107.707831][ T6874] loop4: detected capacity change from 0 to 40427
[  107.716472][ T6874] F2FS-fs (loop4): invalid crc value
[  107.784798][ T6889] loop3: detected capacity change from 0 to 2048
[  107.793295][ T6874] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  107.803904][ T6889] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  107.809835][ T6889] UDF-fs: Scanning with blocksize 512 failed
[  107.811420][ T6874] F2FS-fs (loop4): Start checkpoint disabled!
[  107.822295][ T6874] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  107.822559][ T6889] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  107.916169][   T27] kworker/u10:0: attempt to access beyond end of device
[  107.916169][   T27] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  107.922104][   T27] CPU: 1 UID: 0 PID: 27 Comm: kworker/u10:0 Not tainted syzkaller #0 PREEMPT(full) 
[  107.922124][   T27] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  107.922132][   T27] Workqueue: writeback wb_workfn (flush-7:4)
[  107.922155][   T27] Call Trace:
[  107.922161][   T27]  <TASK>
[  107.922167][   T27]  dump_stack_lvl+0x189/0x250
[  107.922186][   T27]  ? __pfx_dump_stack_lvl+0x10/0x10
[  107.922198][   T27]  ? __pfx_queue_work_on+0x10/0x10
[  107.922210][   T27]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  107.922225][   T27]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  107.922248][   T27]  f2fs_handle_critical_error+0x37c/0x540
[  107.922268][   T27]  f2fs_write_end_io+0x886/0xb60
[  107.922288][   T27]  __submit_merged_bio+0x27a/0x6a0
[  107.922306][   T27]  __submit_merged_write_cond+0x255/0x530
[  107.922323][   T27]  f2fs_write_data_pages+0x261d/0x3000
[  107.922361][   T27]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  107.922376][   T27]  ? __local_bh_enable_ip+0x12d/0x1c0
[  107.922399][   T27]  ? rcu_is_watching+0x15/0xb0
[  107.922438][   T27]  ? rcu_is_watching+0x15/0xb0
[  107.922450][   T27]  ? trace_pelt_se_tp+0x39/0x130
[  107.922496][   T27]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  107.922556][   T27]  do_writepages+0x32e/0x550
[  107.922577][   T27]  ? reacquire_held_locks+0x127/0x1d0
[  107.922589][   T27]  ? writeback_sb_inodes+0x384/0x1010
[  107.922611][   T27]  __writeback_single_inode+0x145/0xff0
[  107.922625][   T27]  ? do_raw_spin_unlock+0x4d/0x240
[  107.922642][   T27]  writeback_sb_inodes+0x6c7/0x1010
[  107.922677][   T27]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  107.922725][   T27]  ? rcu_is_watching+0x15/0xb0
[  107.922744][   T27]  wb_writeback+0x43b/0xaf0
[  107.922765][   T27]  ? queue_io+0x331/0x590
[  107.922782][   T27]  ? __pfx_wb_writeback+0x10/0x10
[  107.922802][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  107.922819][   T27]  wb_workfn+0x409/0xef0
[  107.922841][   T27]  ? __pfx_wb_workfn+0x10/0x10
[  107.922858][   T27]  ? __lock_acquire+0xab9/0xd20
[  107.922883][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[  107.922899][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  107.922913][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[  107.922923][   T27]  ? process_scheduled_works+0x9ef/0x17b0
[  107.922936][   T27]  process_scheduled_works+0xae1/0x17b0
[  107.922970][   T27]  ? __pfx_process_scheduled_works+0x10/0x10
[  107.922994][   T27]  worker_thread+0x8a0/0xda0
[  107.923026][   T27]  kthread+0x711/0x8a0
[  107.923043][   T27]  ? __pfx_worker_thread+0x10/0x10
[  107.923055][   T27]  ? __pfx_kthread+0x10/0x10
[  107.923070][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  107.923085][   T27]  ? lockdep_hardirqs_on+0x9c/0x150
[  107.923100][   T27]  ? __pfx_kthread+0x10/0x10
[  107.923115][   T27]  ret_from_fork+0x3fc/0x770
[  107.923131][   T27]  ? __pfx_ret_from_fork+0x10/0x10
[  107.923148][   T27]  ? __switch_to_asm+0x39/0x70
[  107.923161][   T27]  ? __switch_to_asm+0x33/0x70
[  107.923174][   T27]  ? __pfx_kthread+0x10/0x10
[  107.923189][   T27]  ret_from_fork_asm+0x1a/0x30
[  107.923215][   T27]  </TASK>
[  107.923221][   T27] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  108.773302][ T6933] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  109.148609][ T5915] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  109.393652][ T5915] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  109.400610][ T5915] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  109.408306][ T5915] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  109.412516][ T5915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.421464][ T5915] usb 1-1: config 0 descriptor??
[  109.444287][ T5915] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  109.450997][ T5915] dvb-usb: bulk message failed: -22 (3/0)
[  109.478617][ T5915] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  109.493967][ T5915] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  109.503251][ T5915] usb 1-1: media controller created
[  109.519992][ T5915] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  109.555337][ T5915] dvb-usb: bulk message failed: -22 (6/0)
[  109.564623][ T5915] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  109.571774][ T5915] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input6
[  109.598809][ T5915] dvb-usb: schedule remote query interval to 150 msecs.
[  109.608068][ T5915] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  109.645282][ T5915] usb 1-1: USB disconnect, device number 7
[  109.764191][ T5915] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  109.788880][    T9] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  110.008793][    T9] usb 4-1: Using ep0 maxpacket: 8
[  110.024642][    T9] usb 4-1: unable to get BOS descriptor or descriptor too short
[  110.420579][    T9] usb 4-1: config 4 has an invalid interface number: 147 but max is 0
[  110.423408][    T9] usb 4-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[  110.426777][    T9] usb 4-1: config 4 has no interface number 0
[  110.432300][    T9] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[  110.445656][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.448334][    T9] usb 4-1: Product: syz
[  110.449838][    T9] usb 4-1: Manufacturer: syz
[  110.451411][    T9] usb 4-1: SerialNumber: syz
[  110.863664][    T9] usb 4-1: Found UVC 0.02 device syz (04f2:b746)
[  110.872433][    T9] usb 4-1: No valid video chain found.
[  110.885090][    T9] usb 4-1: USB disconnect, device number 5
[  111.208285][ T6974] loop0: detected capacity change from 0 to 131072
[  111.211561][ T6974] F2FS-fs (loop0): Wrong CP boundary, start(512) end(1536) blocks(0)
[  111.216077][ T6974] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  111.226024][ T6974] F2FS-fs (loop0): invalid crc value
[  111.264217][ T6974] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  111.269994][ T6974] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  111.272663][ T6974] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  111.300710][ T6994] tmpfs: Bad value for 'mpol'
[  112.276402][  T790] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  112.457987][  T790] usb 5-1: Using ep0 maxpacket: 16
[  112.472061][  T790] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  112.491126][  T790] usb 5-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice=7a.5a
[  112.494639][  T790] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.515712][  T790] usb 5-1: Product: syz
[  112.517592][  T790] usb 5-1: Manufacturer: syz
[  112.525785][  T790] usb 5-1: SerialNumber: syz
[  112.541896][  T790] usb 5-1: config 0 descriptor??
[  112.568623][  T790] pegasus_notetaker 5-1:0.0: Invalid number of endpoints
[  112.572669][  T790] pegasus_notetaker 5-1:0.0: probe with driver pegasus_notetaker failed with error -22
[  112.769763][ T5915] usb 5-1: USB disconnect, device number 2
[  113.254795][ T7016] loop0: detected capacity change from 0 to 2048
[  113.264091][ T7016] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  113.278678][ T5851] udevd[5851]: incorrect nilfs2 checksum on /dev/loop0
[  113.282185][ T7017] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  113.297152][ T7016] kAFS: unable to lookup cell '̅?ۛkմ]-״8ވ>~OC1sߘi?Ϯaya<C'
[  113.488139][ T7025] loop4: detected capacity change from 0 to 2048
[  113.521694][ T7025] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  113.748175][ T6472] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.878242][ T7046] loop3: detected capacity change from 0 to 512
[  113.891035][ T7046] EXT4-fs: Ignoring removed i_version option
[  113.906534][ T7046] EXT4-fs error (device loop3): ext4_get_journal_inode:5800: comm syz.3.385: inode #196608: comm syz.3.385: iget: illegal inode #
[  113.930524][ T7046] EXT4-fs (loop3): no journal found
[  113.932788][ T7046] EXT4-fs (loop3): can't get journal size
[  113.940437][ T7046] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  113.960420][ T7046] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[  113.990057][ T7046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.046805][ T6354] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.070179][ T7045] loop0: detected capacity change from 0 to 32768
[  114.074133][ T7045] XFS: attr2 mount option is deprecated.
[  114.189636][ T7045] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  114.199688][ T7045] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  114.220781][ T7045] XFS (loop0): Ending clean mount
[  114.242130][ T7045] XFS (loop0): Quotacheck needed: Please wait.
[  114.307422][ T7045] XFS (loop0): Quotacheck: Done.
[  114.394308][ T5848] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  114.489920][ T7060] loop3: detected capacity change from 0 to 32768
[  114.560170][ T7060] ialloc: diAlloc returned -5!
[  115.319332][ T7090] loop4: detected capacity change from 0 to 512
[  115.341506][ T7090] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  115.347359][ T7090] EXT4-fs (loop4): orphan cleanup on readonly fs
[  115.355877][ T7090] __quota_error: 226 callbacks suppressed
[  115.355897][ T7090] Quota error (device loop4): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  115.379324][ T7090] EXT4-fs warning (device loop4): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  115.393173][ T7090] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  115.400500][ T7090] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.400: bg 0: block 40: padding at end of block bitmap is not set
[  115.407912][ T7090] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  115.413566][ T7090] EXT4-fs (loop4): 1 truncate cleaned up
[  115.419392][ T7090] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  115.460809][ T6472] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.751976][ T7093] loop3: detected capacity change from 0 to 32768
[  115.771918][ T7093] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.402 (7093)
[  115.827720][ T7093] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  115.836118][ T7093] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  115.905031][ T7126] netlink: 'syz.4.412': attribute type 7 has an invalid length.
[  115.981520][ T7093] BTRFS info (device loop3): setting nodatasum
[  115.985908][ T7093] BTRFS info (device loop3): setting nodatacow
[  115.988160][ T7093] BTRFS info (device loop3): enabling free space tree
[  115.990839][ T7093] BTRFS info (device loop3): max_inline set to 0
[  116.264854][ T6354] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  116.274523][ T7145] input: syz0 as /devices/virtual/input/input7
[  116.420800][ T7152] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  116.737615][ T7162] random: crng reseeded on system resumption
[  117.312589][ T7161] loop0: detected capacity change from 0 to 32768
[  117.374691][ T7161] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  117.429666][ T7172] loop3: detected capacity change from 0 to 1024
[  117.435455][ T7172] EXT4-fs: Ignoring removed orlov option
[  117.451029][ T7172] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.463491][ T7170] loop4: detected capacity change from 0 to 4096
[  117.496712][ T7172] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  117.499585][ T7170] ntfs3(loop4): ino=19, mi_enum_attr
[  117.508467][ T5848] ocfs2: Unmounting device (7,0) on (node local)
[  117.511718][ T7170] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  117.529658][ T6354] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.874160][  T790] kernel write not supported for file /amidi2 (pid: 790 comm: kworker/0:2)
[  118.006315][   T47] kernel write not supported for file /387/clear_refs (pid: 47 comm: kworker/1:1)
[  118.046080][ T5915] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  118.215876][ T5915] usb 5-1: Using ep0 maxpacket: 8
[  118.243196][ T5915] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  118.254090][ T5915] usb 5-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  118.262752][ T5915] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.289044][ T5915] usb 5-1: config 0 descriptor??
[  118.348371][ T5915] gspca_main: vc032x-2.14.0 probing 046d:0892
[  118.963366][ T5915] gspca_vc032x: reg_r err -71
[  118.971986][ T5915] vc032x 5-1:0.0: probe with driver vc032x failed with error -71
[  118.984441][ T5915] usb 5-1: USB disconnect, device number 3
[  120.474023][ T7234] loop3: detected capacity change from 0 to 1764
[  120.807437][ T7258] loop3: detected capacity change from 0 to 128
[  120.812093][   T33] audit: type=1326 audit(1756997776.746:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.4.467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5e18ebe9 code=0x7ffc0000
[  120.823436][   T33] audit: type=1326 audit(1756997776.756:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.4.467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5e18ebe9 code=0x7ffc0000
[  120.843750][ T7258] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  120.848856][   T33] audit: type=1326 audit(1756997776.766:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.4.467" exe="/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7fcb5e18ebe9 code=0x7ffc0000
[  120.954058][   T33] audit: type=1326 audit(1756997776.766:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.4.467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5e18ebe9 code=0x7ffc0000
[  120.963551][   T33] audit: type=1326 audit(1756997776.766:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.4.467" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb5e18ebe9 code=0x7ffc0000
[  121.126031][ T7269] FAT-fs (loop3): FAT read failed (blocknr 128)
[  122.073257][ T7277] loop4: detected capacity change from 0 to 32768
[  122.095145][ T7277] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  122.134477][ T6472] ocfs2: Unmounting device (7,4) on (node local)
[  122.187333][   T47] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  122.350111][   T47] usb 4-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  122.357617][   T47] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  122.368899][   T47] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 65535, setting to 64
[  122.374441][ T7291] loop4: detected capacity change from 0 to 64
[  122.377586][   T47] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  122.401494][   T47] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  122.408070][   T47] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  122.414312][   T47] usb 4-1: SerialNumber: syz
[  122.423323][ T7282] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  122.555215][ T7295] netlink: 'syz.4.480': attribute type 3 has an invalid length.
[  122.670449][   T47] cdc_acm 4-1:1.0: ttyACM0: USB ACM device
[  122.681243][   T47] usb 4-1: USB disconnect, device number 6
[  122.794528][ T7303] loop4: detected capacity change from 0 to 2048
[  123.026561][ T7317] loop4: detected capacity change from 0 to 2048
[  123.040000][ T7317] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  123.144706][ T7319] loop4: detected capacity change from 0 to 4096
[  123.186209][ T7319] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  123.212037][ T7319] ntfs3(loop4): Failed to load $Extend (-22).
[  123.214998][ T7319] ntfs3(loop4): Failed to initialize $Extend.
[  123.223587][ T5856] Bluetooth: hci0: unexpected event for opcode 0x0c20
[  123.868945][ T7347] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  123.895791][    T9] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  124.062620][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  124.076522][    T9] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  124.092026][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  124.104984][    T9] usb 5-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  124.111338][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.119915][    T9] usb 5-1: Product: syz
[  124.124248][    T9] usb 5-1: Manufacturer: syz
[  124.134259][    T9] usb 5-1: SerialNumber: syz
[  124.164563][    T9] usb 5-1: config 0 descriptor??
[  124.172835][ T7343] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  124.193726][    T9] usb 5-1: ucan: probing device on interface #0
[  124.201542][    T9] usb 5-1: ucan: invalid in_ep MaxPacketSize
[  124.208328][    T9] usb 5-1: ucan: probe failed; try to update the device firmware
[  124.214309][ T7353] loop3: detected capacity change from 0 to 512
[  124.408229][    T9] usb 5-1: USB disconnect, device number 4
[  124.736307][   T47] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  124.885757][   T47] usb 4-1: Using ep0 maxpacket: 16
[  124.890036][   T47] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  124.896185][   T47] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  124.900191][   T47] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.906715][   T47] usb 4-1: config 0 descriptor??
[  124.915815][   T47] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input8
[  125.032154][ T7368] loop4: detected capacity change from 0 to 256
[  125.173110][ T5281] bcm5974 4-1:0.0: could not read from device
[  125.192114][   T47] bcm5974 4-1:0.0: could not read from device
[  125.199962][ T5281] bcm5974 4-1:0.0: could not read from device
[  125.208325][   T47] input: failed to attach handler mousedev to device input8, error: -5
[  125.222681][ T5281] bcm5974 4-1:0.0: could not read from device
[  125.226844][   T47] usb 4-1: USB disconnect, device number 7
[  125.231851][ T5281] bcm5974 4-1:0.0: could not read from device
[  125.400788][ T7376] loop4: detected capacity change from 0 to 764
[  125.853785][ T7394] netlink: 8 bytes leftover after parsing attributes in process `syz.4.525'.
[  126.022570][ T7400] loop4: detected capacity change from 0 to 256
[  126.080468][ T7400] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d)
[  126.147934][ T7388] loop0: detected capacity change from 0 to 32768
[  126.189115][ T7388] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  126.210933][ T7388] 
[  126.212063][ T7388] ======================================================
[  126.215093][ T7388] WARNING: possible circular locking dependency detected
[  126.218136][ T7388] syzkaller #0 Not tainted
[  126.220294][ T7388] ------------------------------------------------------
[  126.224473][ T7388] syz.0.522/7388 is trying to acquire lock:
[  126.227127][ T7388] ffff8881220143c0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  126.232832][ T7388] 
[  126.232832][ T7388] but task is already holding lock:
[  126.236320][ T7388] ffff888122015df8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[  126.241096][ T7388] 
[  126.241096][ T7388] which lock already depends on the new lock.
[  126.241096][ T7388] 
[  126.245155][ T7388] 
[  126.245155][ T7388] the existing dependency chain (in reverse order) is:
[  126.249033][ T7388] 
[  126.249033][ T7388] -> #5 (&oi->ip_xattr_sem){++++}-{4:4}:
[  126.252537][ T7388]        lock_acquire+0x120/0x360
[  126.254790][ T7388]        down_read+0x46/0x2e0
[  126.256944][ T7388]        ocfs2_init_acl+0x2f9/0x720
[  126.259487][ T7388]        ocfs2_mknod+0x1321/0x2050
[  126.262035][ T7388]        ocfs2_create+0x1a5/0x440
[  126.264374][ T7388]        path_openat+0x14f4/0x3830
[  126.266648][ T7388]        do_filp_open+0x1fa/0x410
[  126.268893][ T7388]        do_sys_openat2+0x121/0x1c0
[  126.271200][ T7388]        __x64_sys_openat+0x138/0x170
[  126.273529][ T7388]        do_syscall_64+0xfa/0x3b0
[  126.275716][ T7388]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.278368][ T7388] 
[  126.278368][ T7388] -> #4 (jbd2_handle){++++}-{0:0}:
[  126.281432][ T7388]        lock_acquire+0x120/0x360
[  126.283729][ T7388]        start_this_handle+0x1fa7/0x21c0
[  126.286311][ T7388]        jbd2__journal_start+0x2c1/0x5b0
[  126.289324][ T7388]        jbd2_journal_start+0x2a/0x40
[  126.292241][ T7388]        ocfs2_start_trans+0x376/0x6d0
[  126.294727][ T7388]        ocfs2_mknod+0xe93/0x2050
[  126.297002][ T7388]        ocfs2_create+0x1a5/0x440
[  126.299281][ T7388]        path_openat+0x14f4/0x3830
[  126.301605][ T7388]        do_filp_open+0x1fa/0x410
[  126.303846][ T7388]        do_sys_openat2+0x121/0x1c0
[  126.306086][ T7388]        __x64_sys_openat+0x138/0x170
[  126.308434][ T7388]        do_syscall_64+0xfa/0x3b0
[  126.310736][ T7388]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.313609][ T7388] 
[  126.313609][ T7388] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  126.317575][ T7388]        lock_acquire+0x120/0x360
[  126.319691][ T7388]        down_read+0x46/0x2e0
[  126.321742][ T7388]        ocfs2_start_trans+0x36a/0x6d0
[  126.324068][ T7388]        ocfs2_mknod+0xe93/0x2050
[  126.326181][ T7388]        ocfs2_create+0x1a5/0x440
[  126.328329][ T7388]        path_openat+0x14f4/0x3830
[  126.330679][ T7388]        do_filp_open+0x1fa/0x410
[  126.333186][ T7388]        do_sys_openat2+0x121/0x1c0
[  126.335651][ T7388]        __x64_sys_openat+0x138/0x170
[  126.338021][ T7388]        do_syscall_64+0xfa/0x3b0
[  126.340302][ T7388]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.342849][ T7388] 
[  126.342849][ T7388] -> #2 (sb_internal#3){.+.+}-{0:0}:
[  126.345995][ T7388]        lock_acquire+0x120/0x360
[  126.348247][ T7388]        ocfs2_start_trans+0x26b/0x6d0
[  126.350666][ T7388]        ocfs2_mknod+0xe93/0x2050
[  126.352767][ T7388]        ocfs2_create+0x1a5/0x440
[  126.354884][ T7388]        path_openat+0x14f4/0x3830
[  126.357164][ T7388]        do_filp_open+0x1fa/0x410
[  126.359669][ T7388]        do_sys_openat2+0x121/0x1c0
[  126.362255][ T7388]        __x64_sys_openat+0x138/0x170
[  126.364768][ T7388]        do_syscall_64+0xfa/0x3b0
[  126.367030][ T7388]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.369933][ T7388] 
[  126.369933][ T7388] -> #1 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  126.374276][ T7388]        lock_acquire+0x120/0x360
[  126.376527][ T7388]        down_write+0x96/0x1f0
[  126.378693][ T7388]        ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  126.381771][ T7388]        ocfs2_reserve_clusters_with_limit+0x1be/0xba0
[  126.385299][ T7388]        ocfs2_mknod+0xe32/0x2050
[  126.387992][ T7388]        ocfs2_create+0x1a5/0x440
[  126.390311][ T7388]        path_openat+0x14f4/0x3830
[  126.392712][ T7388]        do_filp_open+0x1fa/0x410
[  126.394946][ T7388]        do_sys_openat2+0x121/0x1c0
[  126.397141][ T7388]        __x64_sys_openat+0x138/0x170
[  126.399456][ T7388]        do_syscall_64+0xfa/0x3b0
[  126.401655][ T7388]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.404295][ T7388] 
[  126.404295][ T7388] -> #0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  126.408801][ T7388]        validate_chain+0xb9b/0x2140
[  126.411066][ T7388]        __lock_acquire+0xab9/0xd20
[  126.413221][ T7388]        lock_acquire+0x120/0x360
[  126.415426][ T7388]        down_write+0x96/0x1f0
[  126.417410][ T7388]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  126.419999][ T7388]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  126.422957][ T7388]        ocfs2_init_xattr_set_ctxt+0x307/0x700
[  126.425578][ T7388]        ocfs2_xattr_set+0xb70/0x11f0
[  126.427895][ T7388]        __vfs_setxattr+0x43c/0x480
[  126.430240][ T7388]        __vfs_setxattr_noperm+0x12d/0x660
[  126.432818][ T7388]        vfs_setxattr+0x16b/0x2f0
[  126.435047][ T7388]        filename_setxattr+0x274/0x600
[  126.437429][ T7388]        path_setxattrat+0x364/0x3a0
[  126.439757][ T7388]        __x64_sys_setxattr+0xbc/0xe0
[  126.442061][ T7388]        do_syscall_64+0xfa/0x3b0
[  126.444189][ T7388]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.446961][ T7388] 
[  126.446961][ T7388] other info that might help us debug this:
[  126.446961][ T7388] 
[  126.451379][ T7388] Chain exists of:
[  126.451379][ T7388]   &ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem
[  126.451379][ T7388] 
[  126.458014][ T7388]  Possible unsafe locking scenario:
[  126.458014][ T7388] 
[  126.461265][ T7388]        CPU0                    CPU1
[  126.463745][ T7388]        ----                    ----
[  126.466287][ T7388]   lock(&oi->ip_xattr_sem);
[  126.468401][ T7388]                                lock(jbd2_handle);
[  126.471179][ T7388]                                lock(&oi->ip_xattr_sem);
[  126.474068][ T7388]   lock(&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]);
[  126.477106][ T7388] 
[  126.477106][ T7388]  *** DEADLOCK ***
[  126.477106][ T7388] 
[  126.480434][ T7388] 3 locks held by syz.0.522/7388:
[  126.482597][ T7388]  #0: ffff888108376428 (sb_writers#23){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  126.486648][ T7388]  #1: ffff8881220160c0 (&type->i_mutex_dir_key#13){+.+.}-{4:4}, at: vfs_setxattr+0x144/0x2f0
[  126.491382][ T7388]  #2: ffff888122015df8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[  126.495669][ T7388] 
[  126.495669][ T7388] stack backtrace:
[  126.498046][ T7388] CPU: 1 UID: 0 PID: 7388 Comm: syz.0.522 Not tainted syzkaller #0 PREEMPT(full) 
[  126.498067][ T7388] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  126.498075][ T7388] Call Trace:
[  126.498082][ T7388]  <TASK>
[  126.498089][ T7388]  dump_stack_lvl+0x189/0x250
[  126.498112][ T7388]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.498127][ T7388]  ? __pfx__printk+0x10/0x10
[  126.498144][ T7388]  ? print_lock_name+0xde/0x100
[  126.498161][ T7388]  print_circular_bug+0x2ee/0x310
[  126.498177][ T7388]  check_noncircular+0x134/0x160
[  126.498193][ T7388]  validate_chain+0xb9b/0x2140
[  126.498210][ T7388]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  126.498229][ T7388]  ? look_up_lock_class+0x74/0x170
[  126.498246][ T7388]  ? register_lock_class+0x51/0x320
[  126.498263][ T7388]  __lock_acquire+0xab9/0xd20
[  126.498281][ T7388]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  126.498295][ T7388]  lock_acquire+0x120/0x360
[  126.498311][ T7388]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  126.498327][ T7388]  down_write+0x96/0x1f0
[  126.498336][ T7388]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  126.498386][ T7388]  ? __pfx_down_write+0x10/0x10
[  126.498401][ T7388]  ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  126.498419][ T7388]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  126.498436][ T7388]  ? lockdep_hardirqs_on+0x9c/0x150
[  126.498453][ T7388]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  126.498469][ T7388]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  126.498487][ T7388]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[  126.498501][ T7388]  ? stack_depot_save_flags+0x41b/0x860
[  126.498520][ T7388]  ? kasan_save_track+0x4f/0x80
[  126.498533][ T7388]  ? kasan_save_track+0x3e/0x80
[  126.498545][ T7388]  ? __kasan_kmalloc+0x93/0xb0
[  126.498559][ T7388]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  126.498573][ T7388]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[  126.498591][ T7388]  ? ocfs2_init_xattr_set_ctxt+0x307/0x700
[  126.498606][ T7388]  ? ocfs2_xattr_set+0xb70/0x11f0
[  126.498619][ T7388]  ? __vfs_setxattr+0x43c/0x480
[  126.498634][ T7388]  ? __vfs_setxattr_noperm+0x12d/0x660
[  126.498649][ T7388]  ? vfs_setxattr+0x16b/0x2f0
[  126.498663][ T7388]  ? filename_setxattr+0x274/0x600
[  126.498679][ T7388]  ? path_setxattrat+0x364/0x3a0
[  126.498692][ T7388]  ? __x64_sys_setxattr+0xbc/0xe0
[  126.498702][ T7388]  ? do_syscall_64+0xfa/0x3b0
[  126.498713][ T7388]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.498737][ T7388]  ? __kasan_kmalloc+0x93/0xb0
[  126.498753][ T7388]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[  126.498768][ T7388]  ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  126.498784][ T7388]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[  126.498798][ T7388]  ? __pfx_ocfs2_calc_xattr_set_need+0x10/0x10
[  126.498816][ T7388]  ? __lock_acquire+0xab9/0xd20
[  126.498834][ T7388]  ocfs2_init_xattr_set_ctxt+0x307/0x700
[  126.498850][ T7388]  ? __pfx_ocfs2_init_xattr_set_ctxt+0x10/0x10
[  126.498866][ T7388]  ? ocfs2_xattr_set+0xb36/0x11f0
[  126.498881][ T7388]  ? up_write+0x1c4/0x420
[  126.498892][ T7388]  ? ocfs2_xattr_set+0x334/0x11f0
[  126.498906][ T7388]  ocfs2_xattr_set+0xb70/0x11f0
[  126.498926][ T7388]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  126.498939][ T7388]  ? ocfs2_permission+0x107/0x1b0
[  126.498955][ T7388]  ? __pfx_ocfs2_permission+0x10/0x10
[  126.498976][ T7388]  ? inode_permission+0x149/0x470
[  126.498986][ T7388]  ? __pfx_ocfs2_permission+0x10/0x10
[  126.499003][ T7388]  ? look_up_lock_class+0x74/0x170
[  126.499019][ T7388]  ? register_lock_class+0x51/0x320
[  126.499036][ T7388]  ? posix_xattr_acl+0x93/0xc0
[  126.499050][ T7388]  ? evm_protect_xattr+0x4d4/0xa90
[  126.499065][ T7388]  ? __pfx_evm_protect_xattr+0x10/0x10
[  126.499078][ T7388]  ? __pfx_ocfs2_xattr_trusted_set+0x10/0x10
[  126.499093][ T7388]  __vfs_setxattr+0x43c/0x480
[  126.499112][ T7388]  __vfs_setxattr_noperm+0x12d/0x660
[  126.499129][ T7388]  vfs_setxattr+0x16b/0x2f0
[  126.499147][ T7388]  ? __pfx_vfs_setxattr+0x10/0x10
[  126.499162][ T7388]  ? mnt_get_write_access+0x223/0x2a0
[  126.499176][ T7388]  filename_setxattr+0x274/0x600
[  126.499195][ T7388]  ? __pfx_filename_setxattr+0x10/0x10
[  126.499212][ T7388]  ? getname_flags+0x1e5/0x540
[  126.499224][ T7388]  path_setxattrat+0x364/0x3a0
[  126.499239][ T7388]  ? __pfx_path_setxattrat+0x10/0x10
[  126.499250][ T7388]  ? do_futex+0x333/0x420
[  126.499271][ T7388]  ? __pfx___se_sys_futex+0x10/0x10
[  126.499286][ T7388]  __x64_sys_setxattr+0xbc/0xe0
[  126.499297][ T7388]  do_syscall_64+0xfa/0x3b0
[  126.499307][ T7388]  ? lockdep_hardirqs_on+0x9c/0x150
[  126.499323][ T7388]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.499332][ T7388]  ? exc_page_fault+0x9f/0xf0
[  126.499378][ T7388]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.499391][ T7388] RIP: 0033:0x7fb8a918ebe9
[  126.499404][ T7388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.499414][ T7388] RSP: 002b:00007fb8aa051038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  126.499428][ T7388] RAX: ffffffffffffffda RBX: 00007fb8a93c5fa0 RCX: 00007fb8a918ebe9
[  126.499437][ T7388] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000200000000240
[  126.499444][ T7388] RBP: 00007fb8a9211e19 R08: 0000000000000000 R09: 0000000000000000
[  126.499451][ T7388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  126.499458][ T7388] R13: 00007fb8a93c6038 R14: 00007fb8a93c5fa0 R15: 00007ffc60e58438
[  126.499470][ T7388]  </TASK>
[  126.728663][ T7420] netlink: 8 bytes leftover after parsing attributes in process `syz.4.537'.
[  126.735327][ T5848] ocfs2: Unmounting device (7,0) on (node local)
[  128.125685][ T5856] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  128.129256][ T5856] Bluetooth: hci2: Injecting HCI hardware error event
[  128.132485][   T55] Bluetooth: hci2: hardware error 0x00
[  130.205620][   T55] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  132.688067][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  132.691044][ T1363] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
14:56:22  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8e139f20 RBP=ffffffff8172c195 RSP=ffffc9000338ef50
R8 =0000000000000000 R9 =0000000000000000 R10=ffffc9000338f118 R11=ffffffff81ac3aa0
R12=0000000000000002 R13=ffffffff8e139f20 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81a65fb0 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f61c5fb2c80 ffffffff 00c00000
GS =0000 ffff8880b8618000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000020000000cf40 CR3=0000000028280000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f XMM01=622f617461642f76 6564752f6e75722f
XMM02=0000000000000000 00ff00000000ff00 XMM03=ff00000000000000 0000000000000000
XMM04=0000000000000000 000000ff00000000 XMM05=622d383864342d63 6666352d63333536
XMM06=656431626632785c 646975752d796266 XMM07=32785c6b73696466 32785c2f736b6e69
XMM08=00000000ffffffff 0000000000000000 XMM09=6265396261613434 322d623333622d38
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000054 RBX=0000000000000054 RCX=0000000000000000 RDX=00000000000003f8
RSI=00000000000012c2 RDI=00000000000012c3 RBP=00000000000003f8 RSP=ffffc9000478e4b0
R8 =ffff888107438237 R9 =1ffff11020e87046 R10=dffffc0000000000 R11=ffffffff854f3b00
R12=dffffc0000000000 R13=ffffffff99afd8d1 R14=ffffffff99df2420 R15=0000000000000000
RIP=ffffffff854f3b7c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fb8aa0516c0 ffffffff 00c00000
GS =0000 ffff8881a3c18000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb8a91733e0 CR3=00000000339ec000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffff ffffff0000000000 XMM01=0101010101010101 0101010000000000
XMM02=695f746e756f6d5f 7a79730032736667 XMM03=75663d79636e6572 65686f632c6c6c75
XMM04=652c736b636f6c66 6c61636f6c2c6c6c XMM05=0000000000000000 00007fb8aa0506e0
XMM06=00007fb8aa0506e0 00007fb8aa050560 XMM07=00007fb8aa0505a0 00007fb8aa050580
XMM08=0000000000000000 0000000000000dbe XMM09=0000000000000000 00007fb8a9212fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
