last executing test programs:

2m17.90977924s ago: executing program 2 (id=402):
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x2000, 0x2})

2m17.859203341s ago: executing program 2 (id=404):
r0 = socket(0x2, 0x3, 0x6)
sendmmsg$unix(r0, &(0x7f0000000680)=[{{&(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e, 0x0, 0x0, &(0x7f0000000540)=[@rights={{0x10, 0x1, 0x41}}], 0x10, 0x8000}}], 0x1, 0x80)

2m17.858640455s ago: executing program 2 (id=406):
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
close(r2)
ioctl$TUNSETTXFILTER(r1, 0x400454d1, &(0x7f0000000340)=ANY=[@ANYRES16=r0, @ANYRES32=r0])
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r3)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r5)
socket(0x10, 0x803, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

2m17.650646622s ago: executing program 2 (id=410):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000980)='./file1\x00', 0xc8, &(0x7f0000000a00)=ANY=[], 0x1, 0x6ac, &(0x7f0000001380)="$eJzs3U9sHFcdB/DvbJx1Nkip26ZpQEi1GqmCRiR2ViVBQmpACOUQoQguvVqJ01hx0spxUVohsgEKEidOqAcORSgcekIIIZUTopyRkLhwyj0SNw45AEYzO7terzeON4m9Tvv5SOP3Zt+8937z8/zZHSfaAJ9Z597I/k6KnDt+/ma5fvdOe/nunfa1Xj3JdJJGMtUtUrSS4pPkbLpLPl++WA9XPGie1+59XEx98FG7uzZVL9X2jdweI+CRM3SSA/2VfUlmu9X/jDHw0HjVUo1zcX28R1T04y4TdqyXOJi0tU06642Nh3Z/4PkOPD1ude+bm8wkB9O9u5bvA1JfHR5+ZZi8La9Nnd2LAwAAAHbKyM/yg565n/u5mUO7Ew4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8OhTd7wws6qXRq8+m6H3/f3PgO/WbEw73Mb1/uSq++8ykAwEAAAAAAACAx/LS/dzPzRzqra8V1d/8X65WDlc/P5d3ciOLWcmJ3MxCVrOalcwnmRkYqHlzYXV1ZX5zz1+m7Lm2tnar7nlqZM9TG+PqDAc66l8abNoIAAAAAAAAAD6zfpRz63//BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAvaBI9nWLajncq8+kMZXkQJJmMdvfvDnRYJ+AP086AAAAANh5rbo8VPyvW1krqs/8R6rP/QfyTq5nNUtZzXIWc6l6FtD91N/4e6e9fPdO+1q5bB74G/8aK45qxHSfPYyeea7a4oV+j3P5dr6X45nNhaxkKd/PQlazmNl8q6otpMhM/fRi5u6dVnqxbo737Ia1C8OxvTRQL+M7WkXSyuUsVbGdyMVmL/RGvd3Rgdn+2EyGZrxdZqd4vbbNHF2qy3KPflGXO6IxboeZqtP+fkbm6tyXAz07mPfNuR/zOBmeaT6N/jOow+uzlKvDMz1Szg/WZZnrn+5kzsd+lLYxE52fl2u9X9yRrXOefPkff7lwpXH96pXLN47v4C7tjuFjoj2QiRe3lYnlMhOdx8jEgceJ/8lp1tnoXkXHu1q+XPU9lKV8J2/lUhZzOnOZz5nM5Ws5lXZODeT1ha3zWp1rjfHOtWNfqivlPelnA/emAfsfLS/bNP2ghjKvzw7kdfBKN1O1Db6ynqXntpGlopnRWfrnyFCmvlBXyjl+XJd74xQezsT8QCae3zoTv/7vWpIby9evrlxZeHub871Sl+Xev78xC795Ijs0vnp3y+PlufKXle5tY/DoKNue77UN5atZ/8Vlqh5sQ1sz1fncbXvYmVqOdOT2qJG6bS+OnKVdtR0daNvwLidvZbn/LgSAPezgqwebrXutv7U+bP2kdaV1/sA3p89Mf7GZ/X+d+tO+3zV+2/h68Wo+zA9zaNKRAgAAAAAAAAAAAAAAAAAAAAAAAAAAAADAp8GNd9+7urC8vLiyBytpPOEBb49s6qWi+0pzb+z701qZ3uqI+n2SLbo3JxFzK8meSF2mdmGu6YxoOt9/pZU0+vEkubpHvuAO2AknV6+9ffLGu+99ZenawpuLby5eP3Xm9Oun21+dv3Xy8tLy4lz356SjBHbC+tuASUcCAAAAAAAAAAAAbNdu/PeGEdMWnQnsKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPB0OvdG9ndSZH7uxFy5fvdOe7lcevX1LaeSNJIUP0iKT5Kz6S6ZGRiueNA8r937+FevfPBRe32sqd72jaF+f/j32tqYe9Gpl8wm2VeXDze9rfEuDozXGTOwrqK/h2XCjvUSB5P2/wAAAP//DZkIVg==")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x20)
add_key$user(&(0x7f00000003c0), 0x0, &(0x7f0000000940)="a6c13c6a7c8c0074e36a3b54e9ce669b3b032f120a3cf850c51871f3c5", 0x1d, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x3bdc51, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x206e)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r1, 0x117, 0x5, 0x0, 0x800000000000003)
syz_io_uring_setup(0x3, &(0x7f0000000580)={0x0, 0xc7c9, 0x1, 0x1, 0x57}, &(0x7f0000000240), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180900000020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xe, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
r2 = syz_open_dev$radio(0x0, 0x1, 0x2)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$VIDIOC_G_MODULATOR(r2, 0xc0445636, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000640), 0x0, 0x0)

2m17.597411199s ago: executing program 2 (id=412):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)=@bridge_newneigh={0x34, 0x1c, 0x401, 0x70bd28, 0x25dfdc00, {0x7, 0x0, 0x0, r1, 0x40, 0xe4, 0x9}, [@NDA_LLADDR={0xa, 0x2, @multicast}, @NDA_FDB_EXT_ATTRS={0xc, 0xe, 0x0, 0x1, [@NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0x3}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x24040040)

2m17.229880272s ago: executing program 2 (id=416):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x21c0, 0x103)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
lsetxattr(&(0x7f0000000140)='./file1\x00', &(0x7f00000001c0)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0, 0x1)
syz_mount_image$fuse(0x0, &(0x7f00000004c0)='./bus\x00', 0x3020049, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
lsetxattr$security_capability(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), &(0x7f00000000c0)=@v2={0x2000000, [{0x5, 0x7424}, {0x81, 0x2}]}, 0x14, 0x1)
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)

2m17.087286029s ago: executing program 32 (id=416):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x21c0, 0x103)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
lsetxattr(&(0x7f0000000140)='./file1\x00', &(0x7f00000001c0)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0, 0x1)
syz_mount_image$fuse(0x0, &(0x7f00000004c0)='./bus\x00', 0x3020049, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
lsetxattr$security_capability(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), &(0x7f00000000c0)=@v2={0x2000000, [{0x5, 0x7424}, {0x81, 0x2}]}, 0x14, 0x1)
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)

2m1.470277726s ago: executing program 3 (id=547):
r0 = socket$netlink(0x10, 0x3, 0x4)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000080)=0x10)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000000)="480000001400190d09004beafd0d36020a8429000b4e230f00000000a2bc5603ca00000f7f89004e002050da742dac0000000101ff05020003000200000000000100000000005839", 0x48}], 0x1)

2m0.540098746s ago: executing program 3 (id=551):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$SIOCPNDELRESOURCE(r0, 0x89ee, &(0x7f0000000300)=0xeaff)

2m0.539700082s ago: executing program 3 (id=552):
openat$uhid(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
socket$rxrpc(0x21, 0x2, 0xa)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b0000000"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_io_uring_setup(0x10a, &(0x7f0000000140)={0x0, 0x5883, 0x8, 0x0, 0xfffffdfc}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)

1m59.537747004s ago: executing program 3 (id=561):
syz_mount_image$iso9660(&(0x7f0000000d40), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000b80)=ANY=[], 0x1, 0x5ca, &(0x7f0000001480)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x48940, 0x10c)
io_setup(0x5, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x40000000000002cd, &(0x7f0000000240)=[&(0x7f0000000180)={0x20000, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x6, 0x0, 0x0, 0x0, r0}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x8, 0x7, 0xffffffffffffffff, &(0x7f00000000c0)="84cf6f50b46bc8578b0851b558b34298a1dd11ed59448a25a1654d4228aaa6e7d6cb56c1", 0x0, 0x7, 0x0, 0x2}])

1m59.293535677s ago: executing program 3 (id=567):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000000)={0xf0f000, 0xd38, @value})

1m59.017535121s ago: executing program 3 (id=573):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
setxattr$incfs_metadata(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000000)=@known='user.incfs.metadata\x00', 0x0, 0x0)

1m58.822894556s ago: executing program 33 (id=573):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
setxattr$incfs_metadata(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
getxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000000)=@known='user.incfs.metadata\x00', 0x0, 0x0)

1m45.818332188s ago: executing program 1 (id=671):
socket$kcm(0x10, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xf5, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0500000000000000000002000000300003802c00038014000100776732000000000000000000000000001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a300000000014000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000)

1m45.72761799s ago: executing program 1 (id=672):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000009f00)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$kcm(0x25, 0x1, 0x0)
recvmsg(r1, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x10160)

1m45.620538124s ago: executing program 1 (id=673):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f00000001c0)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x7fffffff, 0x3a, '/_', 0x3a, '\\x-^{', 0x3a, './file0'}, 0x2e)

1m45.620343412s ago: executing program 1 (id=674):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x800, &(0x7f0000000680)={[{@utf8}, {@rodir}, {@uni_xlateno}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '874'}}, {@fat=@codepage={'codepage', 0x3d, '865'}}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@rodir}, {@utf8no}, {@shortname_win95}, {@uni_xlate}]}, 0x1, 0x26c, &(0x7f0000000340)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
mknod$loop(0x0, 0x0, 0x1)
sendfile(r0, r0, 0x0, 0x8)
ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1m45.500528696s ago: executing program 1 (id=675):
r0 = socket$inet6(0xa, 0x2, 0x3a)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)

1m45.260114801s ago: executing program 1 (id=680):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x2}, [@NDA_LLADDR={0xa}]}, 0x28}}, 0x0)

1m45.045377743s ago: executing program 34 (id=680):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x2}, [@NDA_LLADDR={0xa}]}, 0x28}}, 0x0)

40.779336679s ago: executing program 5 (id=1343):
syz_emit_ethernet(0x7a, &(0x7f0000000140)={@local, @local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "92c01f", 0x44, 0x2f, 0x0, @remote, @loopback={0x57}, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x57}}}}}}}, 0x0)

40.709096701s ago: executing program 5 (id=1344):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001500)="$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")
symlinkat(&(0x7f0000000000)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)

40.580667705s ago: executing program 5 (id=1347):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000017000000540006803c00040067636d286165732900000000000000000000000000000000000000000000000014000000e3de3d7b4cd07ec3ee777de774fc7987cca41989140003"], 0x68}, 0x1, 0x0, 0x0, 0x4}, 0x4008014)

40.166723447s ago: executing program 5 (id=1348):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x845, &(0x7f00000004c0)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c756e695f786c6174653d302c73686f72746e616d653d6c6f7765722c73686f72746e616d653d77696e6e742c73686f72746e616d653d77696e6e742c646973636172642c636865636b3d7374726963742c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e6e742c726f6469722c73686f72746e616d653d77696e39352c757365667265652c757466383d312c00f919a0fcc7601e2839a4cdeb811f202b12b52250986b6c58733273d7bcd7421b35fcf85c4503caace91f7a52eacc7502"], 0x0, 0x274, &(0x7f0000000780)="$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")
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
umount2(&(0x7f0000000080)='./file0/file0\x00', 0x9)

40.005922162s ago: executing program 5 (id=1349):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000170900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}}, 0x2000c450)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x7c, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x50, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_NG_TYPE={0x8}]}}}, {0x20, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x16}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xe}}}, 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x0)

39.710572105s ago: executing program 5 (id=1350):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x21c0, 0x103)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000004c0)='./bus\x00', 0x3020049, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
lsetxattr$security_capability(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x0, 0x0, 0x1)
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)

39.6667059s ago: executing program 35 (id=1350):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x21c0, 0x103)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000004c0)='./bus\x00', 0x3020049, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
lsetxattr$security_capability(&(0x7f0000000040)='./file1\x00', &(0x7f0000000080), 0x0, 0x0, 0x1)
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)

2.768013327s ago: executing program 0 (id=1669):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x48, 0x10, 0x503, 0x70bd2a, 0x4, {0x0, 0x0, 0x0, 0x0, 0x0, 0x201a0}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_BROADCAST={0xa, 0x2, @remote}]}, 0x48}}, 0x800)

2.56849043s ago: executing program 0 (id=1675):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x8001, @any, 0x1}, 0xe)

2.519981152s ago: executing program 6 (id=1676):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040840}, 0x20000800)
syz_emit_ethernet(0x76, &(0x7f0000000080)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x7, 0x6, "efc3d3", 0x40, 0x3a, 0xff, @ipv4={'\x00', '\xff\xff', @local}, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0xffff, {0x5, 0x6, "5436ea", 0x400, 0x88, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00', [@dstopts={0x0, 0x0, '\x00', [@padn, @pad1]}]}}}}}}}, 0x0)

2.462825428s ago: executing program 0 (id=1678):
r0 = socket$packet(0x11, 0x2, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000027c0)=@base={0x4, 0x4, 0x4, 0x10005, 0x800}, 0x50)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={r4, 0x58, &(0x7f0000000340)={0x0, <r5=>0x0}}, 0x10)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r5}, 0xc)
close(r6)

2.408617927s ago: executing program 6 (id=1679):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0000000", @ANYRES16=r2, @ANYBLOB="050027bd700000000000210000000800", @ANYRES32=r3, @ANYBLOB], 0xc0}, 0x1, 0x0, 0x0, 0x4800}, 0x0)
syz_open_dev$swradio(&(0x7f00000004c0), 0x1, 0x2)
r4 = syz_io_uring_setup(0xc000335b, &(0x7f0000000300)={0x0, 0xf28c, 0x800, 0x4, 0x271}, &(0x7f0000000280)=<r5=>0x0, &(0x7f0000000540)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000380)=0x76a, 0x0, 0x4)
syz_io_uring_submit(r5, r6, 0x0)
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f00000003c0), &(0x7f0000000880)='./file0\x00', 0x8000c6, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0], 0x1, 0x17d, &(0x7f0000001ac0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7f, 0x8b}, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0203f30216000000000000000000000002001b0008000000e900000000000000030006000000000002000000000000000000000000000000020001000000000000000316ff000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180300000005000000000000000000001801000011af000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000838500000073000000180100002020752500000000806020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r8}, 0x10)
semget(0x0, 0xfffffd, 0x281)
r9 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r9, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r10 = accept4(r9, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r9, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
sendto$unix(r10, &(0x7f0000000440)="36d9a32e92c131d730b1abaedb51eb66fd2d5b1f7eda4f0e859fdaf294bad70673813533d8bf1c6a77b65a7afdc01b29e73571071a68d5def5d7df839810da130b9348f4d9d407eb478d5bfb298c552a498271af70914e14ba9476fd2a0e47984c25ea20afab3064a748add27a7149e9c4705475bda2ecec9ec30214f28c5e16fd3f50f604f20232c534409e52bff64fc6ca0f5e254083aec2794b7216e002e87caf3d0fa7d04ff9e3b03e81595a04979594ff6ea888bf13de8e8f74c6178e31e47593732ae1a501ad3641d423195a788efdb643f50a8c8b9794a62f7b8dfa0fa7da9d391b92ce2a7f9fe0f9d584a3775f", 0x703d59595f6742a8, 0x800, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x40, &(0x7f0000000400)=0x3, 0x0, 0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r11 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffd000/0x3000)=nil)
shmat(r11, &(0x7f0000ffc000/0x3000)=nil, 0x4000)
recvfrom(r10, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x1, 0x0, 0xffffffffffffffb5)

1.881092899s ago: executing program 4 (id=1683):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001700)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffff6, 0x0, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x53}, @printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x17}}]}, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

1.729792754s ago: executing program 4 (id=1684):
syz_mount_image$xfs(&(0x7f0000009740), &(0x7f0000009780)='./file1\x00', 0x0, &(0x7f00000002c0)={[{@logbufs={'logbufs', 0x3d, 0x4}}]}, 0x1, 0x9764, &(0x7f00000097c0)="$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")
r0 = open(&(0x7f0000000480)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000100)=ANY=[@ANYBLOB="000000004c900a00020000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

1.490144398s ago: executing program 0 (id=1685):
r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x0, 0xe, 0x3, &(0x7f0000000080)={0x10, "d006ef137a3a5ed350a82c1b11dfa8968498c4b1637b6008e5dd61d69e909484c3"}})

1.482165206s ago: executing program 6 (id=1686):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)={0x14, 0x21, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x14}]}, 0x14}], 0x1}, 0x0)

1.365932338s ago: executing program 0 (id=1687):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000300)=@abs={0x0, 0x0, 0xb}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r5 = getpgrp(0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20080522}, 0x0)
kcmp(r5, r6, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
timer_create(0x8, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = syz_open_dev$evdev(0x0, 0x0, 0x0)
readv(r7, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/28, 0x1c}], 0x1)

1.365444336s ago: executing program 6 (id=1688):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x8000000000000001}, 0x0)
getsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4e, 0x0, &(0x7f00000023c0))
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000001c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r2, 0x0, &(0x7f0000800000/0x800000)=nil, 0x800000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r2, 0x0, <r3=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r1, 0x3ba0, &(0x7f0000000100)={0x48, 0x7, r3, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x334e8b})
openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)

957.257715ms ago: executing program 4 (id=1689):
syz_mount_image$exfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000001c0)={[{@time_offset={'time_offset', 0x3d, 0x5}}, {@gid}, {@gid}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@fmask={'fmask', 0x3d, 0x4}}, {}, {@umask={'umask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x4}}, {@zero_size_dir}]}, 0x1, 0x1537, &(0x7f0000001940)="$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")
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000003c0)='./file0/file0\x00', 0x0, &(0x7f0000000000)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@resuid}, {@jqfmt_vfsv1}, {@errors_remount}, {@nobh}, {@usrjquota, 0x2e}], [], 0x2e}, 0x1, 0x476, &(0x7f0000006880)="$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")
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)

432.833852ms ago: executing program 0 (id=1690):
syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000040)='./file3\x00', 0xcc0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c00535d4e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0"], 0x1, 0x442a, &(0x7f0000008940)="$eJzs3c9PHGUfAPBnBvoW+rZ9oW8PfZM3cRObaNQQ6EmliZTSUmixptrGeNkusG3RhW1gMR56wFsTTyYejIdGE2+cGg5e65/gxWM9N9GDFxOTRszuzgIz7IaVsGDr53NgmOc3+5159pnD8MSJyp25pdzcUq6wkCvP3Fo6k/u4XFqeL4Z4nzTt/9D+9U97OnGdHPS190929fzFd2+cCeH72R+frK+vr4eq7tDU0Jbff/v13szWY0OcqVNtt3lre+WDEMLJbeOq6gohvP9dCFEI4VySNpoce0MIx0I978a9z27m9mg0Dx8Xz+afTt1fGz49ufpgrfXfHoXwVel/r92e//nFruGfXtmj7gEAAAAAAAAAAAAAAAAAeMaNX7t6/Z3BofAoCt2r0fb3dceTY6v3Y9f3zAud/2MBAAAAAAAAAAAAAAAAAADgb2rz/f9cdKLJ+/9jyXGkRf31tzo/Rjpn4u2rYxcGh5L936Nt+a8nSb+c6wr9TfZ9z+7/fi5Tv/n+79v72a3G+Br99oUoHkidx/HAQAjfJBu/n4qOxKXyUuXVW+Xlhdk9G8YzKx3/+u79qegkG/q3G//RTPud3///v9uupur5zb27xJ5r6fh3tSz37adRW/E/n6m3H/Fn99Lx766l9W4tMFKfAKrx/7x75/iPZdrvVPyPhxByUXWsudQMUF3DVNNbrVdIS8f/UC0tNXUmH2Sr+//3TPwvZNo/qPl/JftFRFPp+P+rltaTKrF5//fHO9//FzPtH0T8q+Nf8f3flnT8D9cTu1NFap9ku/P/eKb9TsX/epyM83iUugJWo3p6q/9XR1o6/j3b8jef/+K21n+XMvX36/mv0W/j+a8x/b8c1Z//aC4d/96W5dq9/ycy9To9/4/U1n/sVjr+R2pp6bVzX+1nu/GfzLTfqfjXViU9jfhvzid/HK6nf23915Z0/P9dT4y3llip/ayt/6Kd1/+XM+0fxPqvOv6VuLO9Pi/S8T/aslw1/j+08f1/JVOv8/EPYdBaf9fS8T/Wslzt/u/ZOf5TmXqdjv9LnWwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Bkwmhz7QhQPpM7jeGAghPPJ+alwJJouzOanS+WZj5ZCGEvSc+FEdLtUni6U8nML5dlivlAqlWdCuJDknww90VKpXMnPF+5e3GirN7pTLCxWpouFSghhPEn/fzjWaGt6rjJfuBtCuLSR95+4vHj3TmEhPzu3+Obg4OBgmNgYQ39U/KRSXKjUe6/nhjC5Ubcv2jK4WvbljbEcjT4sLy8uFEq19Ctb6pTKM4XSljpTSd4XoT+qLC4vzBQqxXypfLvR30EaSY5jE9feu3ZlaFv+zah+HN3fYQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwFz0afuPLEEJ3/SwOIYw0fomalX/4uHg2/3Tq/trw6cnVB2tPWpUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+JMdOBAAAAAAAPJ/bYSqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoq7NIxSgNBFAbgN2Ohdh7DatntbFcU0cIVwRPoMTyMHsVLeIcUKdKmCIFkFsJmF7ZJqu9rHszPzHswDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHme3ruPt7qJSHG1uYz4+/pfHOYvpf7cj9+/OMOMnM7za/fwWDfl39NRfleOlm3epevV92eM1N7vYE+G+7TX97menGtq36bm6/veRMpVRLQlv005V9W8twAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgyw4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24FgAAAAAQJi/dRR9GwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPArAAD///4CHxA=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x8141, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x2, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xc}, {0xa, 0x4e21, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}, 0xffffffffffffffff, 0x8}}, 0x48)

408.085748ms ago: executing program 6 (id=1691):
r0 = syz_create_resource$binfmt(&(0x7f0000000500)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
pipe2$9p(&(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x7ffffffffffffffe}}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',cache=mmap'])
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r4 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
write$tun(r4, &(0x7f0000000340)=ANY=[], 0x30)
pwritev2(r4, &(0x7f0000000b00)=[{&(0x7f0000000b80)=' ', 0x1}], 0x1, 0x8, 0xfffff421, 0x0)

178.799733ms ago: executing program 4 (id=1692):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f0000000080)={0x4000002})

176.229736ms ago: executing program 6 (id=1693):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000580)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)=[0x0, 0x0], 0x4, 0x0, 0x0, 0x2})
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000001380)='./file1\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="636865636b706f696e743d64697361626c652c6261636b67726f756e645f67633d73796e632c61636c2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6e6f666c7573685f6d657267652c6d6f64653d6c66732c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6167655f657874656e745f63616368652c646973636172642c6e6f696e6c696e655f64656e7472792c008bfb3c1e4b1b12ae77c937da8858"], 0x1, 0x5505, &(0x7f0000002480)="$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")
r2 = open(&(0x7f0000000440)='./file1\x00', 0x84242, 0x1df2a23c5997fa7f)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x4, 0x2, 0x5, 0x2, 0x3, 0x1, {0x400000080001, 0xff, 0x20fb, 0x8, 0xe, 0xd615, 0x9, 0x1, 0xfffffffe, 0x8000, 0x0, 0x0, 0x0, 0x5, 0x2000001}}, {0x0, 0x13}}}, 0xa0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0xffff, 0x0, @mcast2, 0x9}, 0x1c)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
sendfile(r2, r2, &(0x7f0000000080), 0x7f03)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x0, 0x0, &(0x7f0000000140))
rmdir(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
ioctl$DRM_IOCTL_MODE_GET_LEASE(0xffffffffffffffff, 0xc01064c8, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x20, 0xe8}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000e40)=[{{0x0, 0x0, &(0x7f0000000440)}}, {{0x0, 0x0, &(0x7f0000000e00)=[{&(0x7f00000014c0)="44b896818dd13e040b09e9ff5327615afa549fe545b6e79585e067af4328bcc41f778fcecf104cf2318418907de2bda01878a558af061d15e45bfcba7610e1717120c4cd89550ca5069f6a023247437795a1028586291e3ff5ae2d9cd5d53032ac1d8e3f03fda211e4e8b45b57f046dcfde576d968f876c7f903e2fa43dca292ba5c8b339bb8d32875e723f56bf3f8c656c5c528a5b6976144b187c3d58e6bcb45d0236937b54f453e4f6db1a782473b11431baad933e77f6f394fcbec25197f80c65b92d44f127521fcbb98834bb63497275e62728c2cbdc74c00fe08a87b6b289b57110406423a213e83d1fc90e352b7ebdf6a7de4dfca1639d411be33644cafb5342e5653b5c01fce094b85f2af40d7feb1798e5cb1d29daa5def62e1aebf349a8801ab83566259fdb9b404f3d53ddb2ebdf1f25336da5560b6264253327846a1735ef6d24fcfc8dbe6ed7f05dee713c26b5912fbf3ef8fbdcea57709fd9840cd1e93c6397528fffeadc580a1758834f7266a7dd63f9b3f15185a9373beb9bef45bf0ce359f523be49540d1f6cc546e55d0997e7ac631a60bc084f1ab2d51d666a6ae1210ee05d21a2be362e2d4143f765317921bd355f58363b83a93adacd2a3a55da508c627adc43e2f812b1d639b5f210e9f57cf112cc502f9f8ee41569f3b485d95adfcd3dd078b7aababc5a604751bcebd2e703065485474410bf05de82509eea11a76173967b825ef781dc5fa072c10760136f921275805d2a7c4695fec50bee14af2a0c1768a36a44ceefcd6603d300b27b1a386483f7eddb2b9258aa7b5973101163ae29b5410f6902e46af5d4e023d1fc0f8bc25e2c28e2b5f23a0a944f92b5000fff978bc21cdd864f8eddfb3644aaecefb0966adf1ee3d669400c3c5f57bc9c9701f57a5953d5113d732634c0bf6ec4a84ae389f0c51b2683d7532235aee8a20ccd0100ef2cc3523c2f3d9eb2dd7314fe4b400b700b893148031ceb55715352db73da9debaa8806fab91497d0d561bd0bf2b8fbf810c23bed7bf2792bcc6738044f94fba6eedf0b5981b6564ed142c0e408564ca610917760a7728de52830d73af80d3f9fbf7894602a004cfe321889ae6518932a44a09f89d8c55990060897657f6ddbfdb5188dc5b91bd4ec24b0d08b9edc27593df1fb716982d7242364d61d3e10a193c0ec10571106a11327b11cb2c74b7ad13445bdcdefce38ca556f3dfe0c6c67168b43e6c36225123d255dd229da956681e037b98989376e15fe7a11128f9c31bb2e5c37a41c2bdb4b748b1a41ed1d57ee8e96fc95a78a5c243de45bb135f94251f11309a7b00e08c3556e27aaf899eb685fbc9ce6490116cb2664d5a4ee261c538a22d1c48775738322d54d06ccc5504722e673a2d9fed394b43f66e0ba4c1d09178d8782c2d90c011378ca42650b9d4ab191a428cfec21377fe0332e05bb0472d44dd2bb680ca3f716e56626833e48b338fa43519a5456174ece8b047ab8fb8b4cf686c93fdad643958309ba31df8d6b8ca92de7b96d91ae36f47e1e6c1793d203ea4c6bc8cb3fb3070a77ec71c357f5a48fe1eed971a58b34df22905942cdc9d8c6120d7e529f403a68ced01071fcb440f79a7cb23720f041d487de414348d0d6af1786ef8d1a6ec86994497703941f8659ee805e97854e6b85fec87ba26e6747818b679b7c7a800629e3e78394256b44b71533a2544dab78656e1732845c0835d5fc2bb444476b760344963b59053b37508c21c0c3c4db4fcf7c5f0c472eb41c3423e6c91ecf930388d7a1c4343ce2243e016ed5e51eaae9b575974375eaba0e13ddd3665eaefeba84de7e6e012b100c058", 0x51e}], 0x1}}], 0x2, 0x0)

292.398µs ago: executing program 4 (id=1694):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r1, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0x0, r0}, 0x68)

0s ago: executing program 4 (id=1695):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB='\b\x00\x00\r'], 0xfdef)

kernel console output (not intermixed with test programs):


[  145.173521][ T7593]  f2fs_write_end_io+0x886/0xb60
[  145.173547][ T7593]  __submit_merged_bio+0x27a/0x6a0
[  145.173569][ T7593]  __submit_merged_write_cond+0x255/0x530
[  145.173590][ T7593]  f2fs_write_data_pages+0x261d/0x3000
[  145.173629][ T7593]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  145.173674][ T7593]  ? __mod_zone_page_state+0xd7/0x140
[  145.173698][ T7593]  ? folios_put_refs+0x560/0x640
[  145.173718][ T7593]  ? __pfx_folios_put_refs+0x10/0x10
[  145.173728][ T7593]  ? rcu_is_watching+0x15/0xb0
[  145.173746][ T7593]  ? __lock_acquire+0xab9/0xd20
[  145.173784][ T7593]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  145.173797][ T7593]  do_writepages+0x32e/0x550
[  145.173822][ T7593]  ? do_raw_spin_unlock+0x4d/0x240
[  145.173841][ T7593]  filemap_fdatawrite+0x199/0x240
[  145.173858][ T7593]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  145.173912][ T7593]  ? do_raw_spin_unlock+0x4d/0x240
[  145.173930][ T7593]  f2fs_sync_dirty_inodes+0x31f/0x830
[  145.173957][ T7593]  f2fs_write_checkpoint+0x95a/0x1df0
[  145.173990][ T7593]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  145.174038][ T7593]  ? kill_f2fs_super+0x298/0x6c0
[  145.174057][ T7593]  kill_f2fs_super+0x2c3/0x6c0
[  145.174074][ T7593]  ? __pfx_kill_f2fs_super+0x10/0x10
[  145.174085][ T7593]  ? radix_tree_delete_item+0x2b6/0x400
[  145.174109][ T7593]  ? shrinker_free+0x2ce/0x3e0
[  145.174125][ T7593]  deactivate_locked_super+0xbc/0x130
[  145.174142][ T7593]  cleanup_mnt+0x425/0x4c0
[  145.174184][ T7593]  ? lockdep_hardirqs_on+0x9c/0x150
[  145.174199][ T7593]  task_work_run+0x1d4/0x260
[  145.174218][ T7593]  ? __pfx_task_work_run+0x10/0x10
[  145.174230][ T7593]  ? __x64_sys_umount+0x122/0x160
[  145.174250][ T7593]  ? exit_to_user_mode_loop+0x40/0x110
[  145.174271][ T7593]  exit_to_user_mode_loop+0xec/0x110
[  145.174287][ T7593]  do_syscall_64+0x2bd/0x3b0
[  145.174299][ T7593]  ? lockdep_hardirqs_on+0x9c/0x150
[  145.174310][ T7593]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.174321][ T7593]  ? exc_page_fault+0x9f/0xf0
[  145.174334][ T7593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.174345][ T7593] RIP: 0033:0x7fa1d178fed7
[  145.174359][ T7593] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  145.174368][ T7593] RSP: 002b:00007ffee1e71b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  145.174382][ T7593] RAX: 0000000000000000 RBX: 00007fa1d1811c05 RCX: 00007fa1d178fed7
[  145.174391][ T7593] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee1e71c40
[  145.174398][ T7593] RBP: 00007ffee1e71c40 R08: 0000000000000000 R09: 0000000000000000
[  145.174405][ T7593] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee1e72cd0
[  145.174413][ T7593] R13: 00007fa1d1811c05 R14: 000000000002366f R15: 00007ffee1e72d10
[  145.174437][ T7593]  </TASK>
[  145.174442][ T7593] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  145.316947][ T5918] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  145.505437][ T5918] usb 1-1: Using ep0 maxpacket: 32
[  145.511638][ T5918] usb 1-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  145.535687][ T5918] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.546321][ T5918] usb 1-1: config 0 descriptor??
[  145.567097][ T5918] gspca_main: sunplus-2.14.0 probing 041e:400b
[  145.628585][ T7918] loop1: detected capacity change from 0 to 256
[  145.642419][   T33] kauditd_printk_skb: 9313 callbacks suppressed
[  145.642429][   T33] audit: type=1800 audit(1757560467.227:9341): pid=7918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.674" name="file1" dev="loop1" ino=1048605 res=0 errno=0
[  145.772826][ T7923] netlink: 'syz.4.676': attribute type 3 has an invalid length.
[  145.778273][ T7923] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.676'.
[  146.026618][   T13] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.080074][ T7930] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  146.148787][   T13] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.272966][   T13] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.302632][ T7935] netlink: 'syz.4.683': attribute type 10 has an invalid length.
[  146.322821][ T7935] team0: Port device netdevsim0 added
[  146.354028][   T13] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.395439][ T5918] gspca_sunplus: reg_r err -71
[  146.397629][ T5918] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  146.410120][ T5918] usb 1-1: USB disconnect, device number 8
[  146.461082][ T7937] netlink: 44 bytes leftover after parsing attributes in process `syz.4.684'.
[  146.591130][ T5238] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  146.605310][ T5238] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  146.610196][ T5238] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  146.620694][ T5238] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  146.624484][ T5238] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  146.631315][   T13] bridge_slave_1: left allmulticast mode
[  146.633733][   T13] bridge_slave_1: left promiscuous mode
[  146.641805][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.664882][   T13] bridge_slave_0: left allmulticast mode
[  146.667912][   T13] bridge_slave_0: left promiscuous mode
[  146.680507][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.976891][ T2208] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  147.120651][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  147.125553][ T2208] usb 5-1: Using ep0 maxpacket: 32
[  147.131733][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  147.136764][ T2208] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[  147.140042][ T2208] usb 5-1: config 0 has no interface number 0
[  147.144980][   T13] bond0 (unregistering): Released all slaves
[  147.149589][ T2208] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  147.153409][ T2208] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.163745][ T2208] usb 5-1: Product: syz
[  147.165681][ T2208] usb 5-1: Manufacturer: syz
[  147.167719][ T2208] usb 5-1: SerialNumber: syz
[  147.176647][ T2208] usb 5-1: config 0 descriptor??
[  147.189801][ T2208] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  147.416916][ T2208] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  147.456196][ T2208] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  147.800196][    C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[  147.806900][ T5316] usb 5-1: USB disconnect, device number 2
[  147.817980][ T5316] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  147.843191][ T5316] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  147.859208][ T5316] quatech2 5-1:0.51: device disconnected
[  147.928520][   T13] hsr_slave_0: left promiscuous mode
[  147.939430][   T13] hsr_slave_1: left promiscuous mode
[  147.942320][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.949874][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.954767][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.973201][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  148.002244][   T13] veth0_macvtap: left promiscuous mode
[  148.004721][   T13] veth1_vlan: left promiscuous mode
[  148.011016][   T13] veth0_vlan: left promiscuous mode
[  148.079747][ T7974] netlink: 40 bytes leftover after parsing attributes in process `syz.0.694'.
[  148.578561][   T13] team0 (unregistering): Port device team_slave_1 removed
[  148.620401][   T13] team0 (unregistering): Port device team_slave_0 removed
[  148.633962][ T7982] Bluetooth: MGMT ver 1.23
[  148.678503][   T54] Bluetooth: hci0: command tx timeout
[  148.856177][ T7988] ieee802154 phy0 wpan0: encryption failed: -90
[  149.089724][ T7996] openvswitch: netlink: Message has 8 unknown bytes.
[  149.092584][ T7996] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  149.169658][ T7998] loop4: detected capacity change from 0 to 1024
[  149.180679][ T7998] EXT4-fs: Ignoring removed oldalloc option
[  149.183388][ T7998] EXT4-fs: Ignoring removed orlov option
[  149.204586][ T7998] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  149.245101][ T7998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.287314][ T7998] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 433:freeing already freed block (bit 27); block bitmap corrupt.
[  149.395889][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.435686][ T7938] chnl_net:caif_netlink_parms(): no params data found
[  149.707487][ T7938] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.710925][ T7938] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.713767][ T7938] bridge_slave_0: entered allmulticast mode
[  149.730066][ T7938] bridge_slave_0: entered promiscuous mode
[  149.736629][ T7938] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.740193][ T7938] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.743321][ T7938] bridge_slave_1: entered allmulticast mode
[  149.754180][ T7938] bridge_slave_1: entered promiscuous mode
[  149.821458][ T7938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.836209][ T7938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.918828][ T7938] team0: Port device team_slave_0 added
[  149.925782][ T7938] team0: Port device team_slave_1 added
[  149.981566][ T7938] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.984698][ T7938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.996269][ T7938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.002721][ T7938] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.005698][ T7938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.015003][ T7938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  150.082470][ T7938] hsr_slave_0: entered promiscuous mode
[  150.086847][ T7938] hsr_slave_1: entered promiscuous mode
[  150.506345][ T8040] loop0: detected capacity change from 0 to 256
[  150.512985][ T8040] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  150.526114][ T8040] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  150.534232][ T8040] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  150.692046][ T7938] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  150.734136][ T7938] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  150.750992][ T7938] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  150.755507][ T5238] Bluetooth: hci0: command tx timeout
[  151.220948][ T7938] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  151.369223][ T7938] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.404864][ T7938] 8021q: adding VLAN 0 to HW filter on device team0
[  151.439445][ T6799] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.442531][ T6799] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.480514][ T6799] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.483564][ T6799] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.508088][ T8070] loop4: detected capacity change from 0 to 764
[  151.528226][ T8070] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  151.922584][ T8088] loop4: detected capacity change from 0 to 1764
[  151.955774][ T5238] Bluetooth: hci1: command 0x0406 tx timeout
[  151.962825][ T8088] iso9660: Corrupted directory entry in block 2 of inode 1920
[  151.993853][ T7938] 8021q: adding VLAN 0 to HW filter on device batadv0
[  152.399619][ T7938] veth0_vlan: entered promiscuous mode
[  152.414773][ T7938] veth1_vlan: entered promiscuous mode
[  152.475088][ T7938] veth0_macvtap: entered promiscuous mode
[  152.487972][ T7938] veth1_macvtap: entered promiscuous mode
[  152.509060][ T7938] batman_adv: batadv0: Interface activated: batadv_slave_0
[  152.528736][ T7938] batman_adv: batadv0: Interface activated: batadv_slave_1
[  152.542549][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.552172][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.565750][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.594049][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  152.703304][  T717] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.721355][  T717] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.789810][ T6819] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  152.793108][ T6819] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  152.915495][   T54] Bluetooth: hci0: command tx timeout
[  152.924524][ T8140] netlink: 'syz.5.681': attribute type 9 has an invalid length.
[  152.931899][ T8140] netlink: 8 bytes leftover after parsing attributes in process `syz.5.681'.
[  153.124662][ T8145] loop5: detected capacity change from 0 to 4096
[  153.135943][ T5316] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  153.143880][ T8145] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  153.189491][ T8145] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  153.204974][ T8145] ntfs3(loop5): ino=1a, mi_enum_attr
[  153.207475][ T8145] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  153.307511][ T5316] usb 1-1: Using ep0 maxpacket: 16
[  153.321308][ T5316] usb 1-1: unable to get BOS descriptor or descriptor too short
[  153.337772][ T5316] usb 1-1: config 3 has an invalid interface number: 1 but max is 0
[  153.341763][ T5316] usb 1-1: config 3 has no interface number 0
[  153.344442][ T5316] usb 1-1: config 3 interface 1 has no altsetting 0
[  153.351074][ T5316] usb 1-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=bc.24
[  153.357779][ T5316] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.360690][ T5316] usb 1-1: Product: syz
[  153.362311][ T5316] usb 1-1: Manufacturer: syz
[  153.364064][ T5316] usb 1-1: SerialNumber: syz
[  153.463526][ T8164] loop5: detected capacity change from 0 to 4096
[  153.492063][ T8166] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  153.536713][ T5888] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  153.592947][ T5316] adutux 1-1:3.1: interrupt endpoints not found
[  153.613524][ T5316] usb 1-1: USB disconnect, device number 9
[  153.685424][ T5888] usb 5-1: Using ep0 maxpacket: 16
[  153.694688][ T5888] usb 5-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  153.702729][ T5888] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.709471][ T5888] usb 5-1: Product: syz
[  153.711329][ T5888] usb 5-1: Manufacturer: syz
[  153.713242][ T5888] usb 5-1: SerialNumber: syz
[  153.720234][ T5888] usb 5-1: config 0 descriptor??
[  153.940102][ T5888] dvb_usb_dtv5100 5-1:0.0: probe with driver dvb_usb_dtv5100 failed with error -71
[  153.950360][ T5888] usb 5-1: USB disconnect, device number 3
[  154.997003][   T54] Bluetooth: hci0: command tx timeout
[  155.091919][ T8198] loop5: detected capacity change from 0 to 4096
[  155.291487][ T8197] loop5: detected capacity change from 0 to 2048
[  155.359234][ T8202] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  155.791456][ T8212] loop5: detected capacity change from 0 to 256
[  155.849312][ T8212] syz.5.759: attempt to access beyond end of device
[  155.849312][ T8212] loop5: rw=2049, sector=256, nr_sectors = 100 limit=256
[  155.909054][ T8213] loop4: detected capacity change from 0 to 40427
[  155.914253][ T8213] F2FS-fs (loop4): build fault injection rate: 14
[  155.916544][ T8213] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[  155.926996][ T8213] F2FS-fs (loop4): invalid crc value
[  155.936215][    C1] F2FS-fs (loop4): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  155.948382][    C1] F2FS-fs (loop4): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  156.000078][ T8213] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  156.003564][ T8213] F2FS-fs (loop4): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  156.009785][ T8213] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  156.027820][ T8213] F2FS-fs (loop4): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  156.036126][ T8213] F2FS-fs (loop4): inject dquot initialize in f2fs_dquot_initialize of f2fs_create+0x14c/0x5c0
[  156.042571][ T8213] F2FS-fs (loop4): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0x249/0x1cf0
[  156.046556][ T8213] F2FS-fs (loop4): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[  156.086448][ T7593] syz-executor: attempt to access beyond end of device
[  156.086448][ T7593] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  156.103540][ T7593] CPU: 0 UID: 0 PID: 7593 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  156.103559][ T7593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  156.103565][ T7593] Call Trace:
[  156.103569][ T7593]  <TASK>
[  156.103576][ T7593]  dump_stack_lvl+0x189/0x250
[  156.103597][ T7593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  156.103610][ T7593]  ? __pfx_queue_work_on+0x10/0x10
[  156.103621][ T7593]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  156.103639][ T7593]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  156.103661][ T7593]  f2fs_handle_critical_error+0x37c/0x540
[  156.103681][ T7593]  f2fs_write_end_io+0x886/0xb60
[  156.103706][ T7593]  __submit_merged_bio+0x27a/0x6a0
[  156.103726][ T7593]  __submit_merged_write_cond+0x255/0x530
[  156.103745][ T7593]  f2fs_write_data_pages+0x261d/0x3000
[  156.103778][ T7593]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  156.103826][ T7593]  ? folios_put_refs+0x559/0x640
[  156.103846][ T7593]  ? __pfx_folios_put_refs+0x10/0x10
[  156.103864][ T7593]  ? rcu_is_watching+0x15/0xb0
[  156.103882][ T7593]  ? __lock_acquire+0xab9/0xd20
[  156.103909][ T7593]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  156.103920][ T7593]  do_writepages+0x32e/0x550
[  156.103943][ T7593]  ? do_raw_spin_unlock+0x4d/0x240
[  156.103960][ T7593]  filemap_fdatawrite+0x199/0x240
[  156.103977][ T7593]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  156.104022][ T7593]  ? do_raw_spin_unlock+0x4d/0x240
[  156.104038][ T7593]  f2fs_sync_dirty_inodes+0x31f/0x830
[  156.104060][ T7593]  f2fs_write_checkpoint+0x95a/0x1df0
[  156.104088][ T7593]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  156.104132][ T7593]  ? kill_f2fs_super+0x298/0x6c0
[  156.104147][ T7593]  kill_f2fs_super+0x2c3/0x6c0
[  156.104194][ T7593]  ? __pfx_kill_f2fs_super+0x10/0x10
[  156.104204][ T7593]  ? radix_tree_delete_item+0x2b6/0x400
[  156.104225][ T7593]  ? shrinker_free+0x2ce/0x3e0
[  156.104239][ T7593]  deactivate_locked_super+0xbc/0x130
[  156.104253][ T7593]  cleanup_mnt+0x425/0x4c0
[  156.104267][ T7593]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.104279][ T7593]  task_work_run+0x1d4/0x260
[  156.104295][ T7593]  ? __pfx_task_work_run+0x10/0x10
[  156.104306][ T7593]  ? __x64_sys_umount+0x122/0x160
[  156.104324][ T7593]  ? exit_to_user_mode_loop+0x40/0x110
[  156.104342][ T7593]  exit_to_user_mode_loop+0xec/0x110
[  156.104358][ T7593]  do_syscall_64+0x2bd/0x3b0
[  156.104368][ T7593]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.104378][ T7593]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.104389][ T7593]  ? exc_page_fault+0x9f/0xf0
[  156.104400][ T7593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.104411][ T7593] RIP: 0033:0x7fa1d178fed7
[  156.104422][ T7593] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  156.104431][ T7593] RSP: 002b:00007ffee1e71b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  156.104444][ T7593] RAX: 0000000000000000 RBX: 00007fa1d1811c05 RCX: 00007fa1d178fed7
[  156.104450][ T7593] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee1e71c40
[  156.104455][ T7593] RBP: 00007ffee1e71c40 R08: 0000000000000000 R09: 0000000000000000
[  156.104460][ T7593] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee1e72cd0
[  156.104466][ T7593] R13: 00007fa1d1811c05 R14: 000000000002610c R15: 00007ffee1e72d10
[  156.104485][ T7593]  </TASK>
[  156.113562][ T7593] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  157.202726][ T8240] loop5: detected capacity change from 0 to 32768
[  157.271012][ T8236] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  157.424423][ T8240] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=compression=zstd,erasure_code,wide_macs,nojournal_transaction_names
[  157.424440][ T8240]   allowing incompatible features above 0.0: (unknown version)
[  157.424448][ T8240]   features: new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  157.440271][ T8240] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0
[  157.443816][ T8240] bcachefs (loop5): recovering from clean shutdown, journal seq 14
[  157.447442][ T8240] bcachefs (loop5): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive
[  157.447442][ T8240]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  157.487942][ T8240] bcachefs (loop5): accounting_read... done
[  157.502528][ T8240] bcachefs (loop5): alloc_read... done
[  157.506066][ T8240] bcachefs (loop5): snapshots_read... done
[  157.510951][ T8240] bcachefs (loop5): check_allocations...
[  157.512327][ T8240] bcachefs (loop5): btree ptr not marked in member info btree allocated bitmap
[  157.512359][ T8240]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 18efb381d2ec84b2 written 48 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[  157.528852][ T8240] bcachefs (loop5): btree ptr not marked in member info btree allocated bitmap
[  157.528866][ T8240]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq eb946090a3e301b5 written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[  157.542369][ T8240] bcachefs (loop5): btree ptr not marked in member info btree allocated bitmap
[  157.542385][ T8240]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 1b163e2cac54a139 written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[  157.554181][ T8240] bcachefs (loop5): btree ptr not marked in member info btree allocated bitmap
[  157.554196][ T8240]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c59150a5cc8748d6 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[  157.567689][ T8240] bcachefs (loop5): btree ptr not marked in member info btree allocated bitmap
[  157.567704][ T8240]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2e86b5535b69cce2 written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0, fixing
[  157.583265][ T8240] bcachefs (loop5): btree ptr not marked in member info btree allocated bitmap
[  157.583279][ T8240]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq af1b2a109e85bae1 written 48 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[  157.598518][ T8240]  done
[  157.603061][ T8240] bcachefs (loop5): going read-write
[  157.627467][ T8240] bcachefs (loop5): journal_replay... done
[  157.706076][ T8240] bcachefs (loop5): check_extents_to_backpointers...
[  157.707017][ T8240] bcachefs (loop5): scanning for missing backpointers in 6/128 buckets
[  157.714827][ T8240]  done
[  157.720708][ T8240] bcachefs (loop5): check_inodes... done
[  157.724381][ T8240] bcachefs (loop5): resume_logged_ops... done
[  157.727997][ T8240] bcachefs (loop5): delete_dead_inodes... done
[  157.740933][ T8240] bcachefs (loop5): Fixed errors, running fsck a second time to verify fs is clean
[  157.745103][ T8240] bcachefs (loop5): check_extents_to_backpointers... done
[  157.750749][ T8240] bcachefs (loop5): check_inodes... done
[  157.754408][ T8240] bcachefs (loop5): resume_logged_ops... done
[  157.758122][ T8240] bcachefs (loop5): delete_dead_inodes... done
[  157.766602][ T8240] bcachefs (loop5): done starting filesystem
[  158.207966][ T8240] syz.5.768 (8240) used greatest stack depth: 15112 bytes left
[  158.243859][ T7938] bcachefs (loop5): shutting down
[  158.257747][ T7938] bcachefs (loop5): going read-only
[  158.260203][ T7938] bcachefs (loop5): finished waiting for writes to stop
[  158.269732][ T7938] bcachefs (loop5): flushing journal and stopping allocators, journal seq 23
[  158.288464][ T7938] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 24
[  158.293733][ T7938] bcachefs (loop5): clean shutdown complete, journal seq 25
[  158.298526][ T7938] bcachefs (loop5): marking filesystem clean
[  158.343025][ T7938] bcachefs (loop5): shutdown complete
[  160.620242][ T8290] loop0: detected capacity change from 0 to 32768
[  160.646526][ T8298] loop5: detected capacity change from 0 to 512
[  160.655598][ T8290] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  160.732083][ T8290] XFS (loop0): Ending clean mount
[  160.753815][ T8290] XFS (loop0): Quotacheck needed: Please wait.
[  160.778966][ T8298] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.784: bad orphan inode 15
[  160.791883][ T8298] ext4_test_bit(bit=14, block=18) = 1
[  160.794364][ T8298] is_bad_inode(inode)=0
[  160.797370][ T8298] NEXT_ORPHAN(inode)=1023
[  160.799358][ T8298] max_ino=32
[  160.800893][ T8298] i_nlink=0
[  160.814789][ T8298] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #15: comm syz.5.784: corrupted xattr block 19: invalid header
[  160.824255][ T8298] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[  160.836507][ T8298] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  160.843024][ T8298] ext4 filesystem being mounted at /17/qY3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  160.990323][ T8290] XFS (loop0): Quotacheck: Done.
[  161.165560][   T33] audit: type=1800 audit(1757560482.747:9342): pid=8290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.783" name="file1" dev="loop0" ino=6150 res=0 errno=0
[  161.342039][ T5862] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  161.809893][ T8308] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 449: padding at end of block bitmap is not set
[  162.082669][ T8312] loop0: detected capacity change from 0 to 1024
[  162.244666][ T6819] hfsplus: b-tree write err: -5, ino 4
[  162.288100][ T7938] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  162.362336][ T8317] netlink: 'syz.4.788': attribute type 12 has an invalid length.
[  162.703907][ T8324] loop0: detected capacity change from 0 to 32768
[  162.739000][ T8324] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  162.803796][ T8324] XFS (loop0): Ending clean mount
[  162.858439][ T5862] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  163.069485][ T8359] loop4: detected capacity change from 0 to 512
[  163.239288][ T8355] loop5: detected capacity change from 0 to 40427
[  163.254505][ T8355] F2FS-fs (loop5): invalid crc value
[  163.372953][ T8355] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  163.378228][ T8355] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  163.444670][ T8355] syz.5.803: attempt to access beyond end of device
[  163.444670][ T8355] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  163.512627][ T7938] syz-executor: attempt to access beyond end of device
[  163.512627][ T7938] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  163.532857][ T7938] CPU: 0 UID: 0 PID: 7938 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  163.532871][ T7938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  163.532876][ T7938] Call Trace:
[  163.532879][ T7938]  <TASK>
[  163.532883][ T7938]  dump_stack_lvl+0x189/0x250
[  163.532897][ T7938]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.532906][ T7938]  ? __pfx_queue_work_on+0x10/0x10
[  163.532913][ T7938]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  163.532926][ T7938]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  163.532941][ T7938]  f2fs_handle_critical_error+0x37c/0x540
[  163.532954][ T7938]  f2fs_write_end_io+0x886/0xb60
[  163.532970][ T7938]  __submit_merged_bio+0x27a/0x6a0
[  163.532983][ T7938]  __submit_merged_write_cond+0x255/0x530
[  163.532996][ T7938]  f2fs_write_data_pages+0x261d/0x3000
[  163.533018][ T7938]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  163.533050][ T7938]  ? folios_put_refs+0x559/0x640
[  163.533064][ T7938]  ? __pfx_folios_put_refs+0x10/0x10
[  163.533070][ T7938]  ? rcu_is_watching+0x15/0xb0
[  163.533081][ T7938]  ? __lock_acquire+0xab9/0xd20
[  163.533099][ T7938]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  163.533106][ T7938]  do_writepages+0x32e/0x550
[  163.533120][ T7938]  ? do_raw_spin_unlock+0x4d/0x240
[  163.533131][ T7938]  filemap_fdatawrite+0x199/0x240
[  163.533273][ T7938]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  163.533379][ T7938]  ? do_raw_spin_unlock+0x4d/0x240
[  163.533397][ T7938]  f2fs_sync_dirty_inodes+0x31f/0x830
[  163.533421][ T7938]  f2fs_write_checkpoint+0x95a/0x1df0
[  163.533451][ T7938]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  163.533502][ T7938]  ? kill_f2fs_super+0x298/0x6c0
[  163.533519][ T7938]  kill_f2fs_super+0x2c3/0x6c0
[  163.533537][ T7938]  ? __pfx_kill_f2fs_super+0x10/0x10
[  163.533547][ T7938]  ? radix_tree_delete_item+0x2b6/0x400
[  163.533570][ T7938]  ? shrinker_free+0x2ce/0x3e0
[  163.533585][ T7938]  deactivate_locked_super+0xbc/0x130
[  163.533610][ T7938]  cleanup_mnt+0x425/0x4c0
[  163.533623][ T7938]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.533637][ T7938]  task_work_run+0x1d4/0x260
[  163.533655][ T7938]  ? __pfx_task_work_run+0x10/0x10
[  163.533667][ T7938]  ? __x64_sys_umount+0x122/0x160
[  163.533687][ T7938]  ? exit_to_user_mode_loop+0x40/0x110
[  163.533704][ T7938]  exit_to_user_mode_loop+0xec/0x110
[  163.533718][ T7938]  do_syscall_64+0x2bd/0x3b0
[  163.533726][ T7938]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.533732][ T7938]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.533739][ T7938]  ? exc_page_fault+0x9f/0xf0
[  163.533747][ T7938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.533753][ T7938] RIP: 0033:0x7fb018f8fed7
[  163.533762][ T7938] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  163.533768][ T7938] RSP: 002b:00007ffecaa8cbc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  163.533778][ T7938] RAX: 0000000000000000 RBX: 00007fb019011c05 RCX: 00007fb018f8fed7
[  163.533782][ T7938] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffecaa8cc80
[  163.533786][ T7938] RBP: 00007ffecaa8cc80 R08: 0000000000000000 R09: 0000000000000000
[  163.533791][ T7938] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffecaa8dd10
[  163.533795][ T7938] R13: 00007fb019011c05 R14: 0000000000027dfe R15: 00007ffecaa8dd50
[  163.533808][ T7938]  </TASK>
[  163.533811][ T7938] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  164.038856][ T8393] random: crng reseeded on system resumption
[  164.216547][ T8395] netlink: 8 bytes leftover after parsing attributes in process `syz.5.818'.
[  164.489958][ T8401] vlan2: entered allmulticast mode
[  164.500948][ T8401] hsr0: entered allmulticast mode
[  164.516786][ T8401] hsr_slave_0: entered allmulticast mode
[  164.532194][ T8401] hsr_slave_1: entered allmulticast mode
[  165.642877][ T8419] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  165.699767][ T8419] batman_adv: batadv0: Removing interface: batadv_slave_0
[  165.747755][ T8423] netlink: 20 bytes leftover after parsing attributes in process `syz.4.828'.
[  165.785566][ T2208] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  165.952545][ T2208] usb 1-1: New USB device found, idVendor=046d, idProduct=c513, bcdDevice= 0.00
[  165.962277][ T2208] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.981218][ T2208] usb 1-1: config 0 descriptor??
[  166.514235][ T8453] loop4: detected capacity change from 0 to 40427
[  166.540008][ T8453] F2FS-fs (loop4): invalid crc value
[  166.567670][ T8463] loop5: detected capacity change from 0 to 1024
[  166.615243][ T8463] hfsplus: xattr search failed
[  166.653337][ T7938] hfsplus: node 4:3 still has 1 user(s)!
[  166.668038][ T5893] usb 1-1: USB disconnect, device number 10
[  166.713937][ T8453] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  166.719564][ T8453] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  166.794126][   T33] audit: type=1800 audit(1757560488.377:9343): pid=8453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.837" name="file1" dev="loop4" ino=10 res=0 errno=0
[  166.816578][   T33] audit: type=1800 audit(1757560488.407:9344): pid=8453 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.837" name="file1" dev="loop4" ino=10 res=0 errno=0
[  166.893469][ T8453] syz.4.837: attempt to access beyond end of device
[  166.893469][ T8453] loop4: rw=2049, sector=77824, nr_sectors = 2088 limit=40427
[  166.914385][ T8453] syz.4.837: attempt to access beyond end of device
[  166.914385][ T8453] loop4: rw=2049, sector=79912, nr_sectors = 480 limit=40427
[  166.922180][ T8472] syz.4.837: attempt to access beyond end of device
[  166.922180][ T8472] loop4: rw=34817, sector=80392, nr_sectors = 8 limit=40427
[  166.995878][ T7593] syz-executor: attempt to access beyond end of device
[  166.995878][ T7593] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  167.004329][ T7593] CPU: 0 UID: 0 PID: 7593 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  167.004344][ T7593] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  167.004349][ T7593] Call Trace:
[  167.004354][ T7593]  <TASK>
[  167.004357][ T7593]  dump_stack_lvl+0x189/0x250
[  167.004374][ T7593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.004383][ T7593]  ? __pfx_queue_work_on+0x10/0x10
[  167.004392][ T7593]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  167.004404][ T7593]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  167.004419][ T7593]  f2fs_handle_critical_error+0x37c/0x540
[  167.004434][ T7593]  f2fs_write_end_io+0x886/0xb60
[  167.004450][ T7593]  __submit_merged_bio+0x27a/0x6a0
[  167.004464][ T7593]  __submit_merged_write_cond+0x255/0x530
[  167.004477][ T7593]  f2fs_write_data_pages+0x261d/0x3000
[  167.004499][ T7593]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  167.004526][ T7593]  ? ktime_get+0x3e/0x1f0
[  167.004535][ T7593]  ? ktime_get+0x3e/0x1f0
[  167.004543][ T7593]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  167.004551][ T7593]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  167.004569][ T7593]  ? __lock_acquire+0xab9/0xd20
[  167.004587][ T7593]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  167.004594][ T7593]  do_writepages+0x32e/0x550
[  167.004611][ T7593]  ? do_raw_spin_unlock+0x4d/0x240
[  167.004621][ T7593]  filemap_fdatawrite+0x199/0x240
[  167.004632][ T7593]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  167.004663][ T7593]  ? do_raw_spin_unlock+0x4d/0x240
[  167.004673][ T7593]  f2fs_sync_dirty_inodes+0x31f/0x830
[  167.004689][ T7593]  f2fs_write_checkpoint+0x95a/0x1df0
[  167.004707][ T7593]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  167.004735][ T7593]  ? kill_f2fs_super+0x298/0x6c0
[  167.004746][ T7593]  kill_f2fs_super+0x2c3/0x6c0
[  167.004756][ T7593]  ? __pfx_kill_f2fs_super+0x10/0x10
[  167.004762][ T7593]  ? radix_tree_delete_item+0x2b6/0x400
[  167.004775][ T7593]  ? shrinker_free+0x2ce/0x3e0
[  167.004785][ T7593]  deactivate_locked_super+0xbc/0x130
[  167.004795][ T7593]  cleanup_mnt+0x425/0x4c0
[  167.004803][ T7593]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.004812][ T7593]  task_work_run+0x1d4/0x260
[  167.004823][ T7593]  ? __pfx_task_work_run+0x10/0x10
[  167.004831][ T7593]  ? __x64_sys_umount+0x122/0x160
[  167.004842][ T7593]  ? exit_to_user_mode_loop+0x40/0x110
[  167.004854][ T7593]  exit_to_user_mode_loop+0xec/0x110
[  167.004863][ T7593]  do_syscall_64+0x2bd/0x3b0
[  167.004871][ T7593]  ? lockdep_hardirqs_on+0x9c/0x150
[  167.004877][ T7593]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.004884][ T7593]  ? exc_page_fault+0x9f/0xf0
[  167.004891][ T7593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.004898][ T7593] RIP: 0033:0x7fa1d178fed7
[  167.004907][ T7593] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  167.004913][ T7593] RSP: 002b:00007ffee1e71b88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  167.004922][ T7593] RAX: 0000000000000000 RBX: 00007fa1d1811c05 RCX: 00007fa1d178fed7
[  167.004927][ T7593] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffee1e71c40
[  167.004931][ T7593] RBP: 00007ffee1e71c40 R08: 0000000000000000 R09: 0000000000000000
[  167.004935][ T7593] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffee1e72cd0
[  167.004940][ T7593] R13: 00007fa1d1811c05 R14: 0000000000028ba9 R15: 00007ffee1e72d10
[  167.004952][ T7593]  </TASK>
[  167.004955][ T7593] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  167.303203][ T8478] overlayfs: missing 'lowerdir'
[  167.879088][ T8486] loop4: detected capacity change from 0 to 16
[  167.904212][ T8486] erofs (device loop4): mounted with root inode @ nid 36.
[  168.577397][ T8494] netlink: 'syz.0.851': attribute type 2 has an invalid length.
[  168.580503][ T8494] netlink: 'syz.0.851': attribute type 8 has an invalid length.
[  168.585603][ T8494] netlink: 1148 bytes leftover after parsing attributes in process `syz.0.851'.
[  168.875580][ T2208] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  168.916814][ T5893] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  169.051952][ T2208] usb 5-1: config 0 has too many interfaces: 33, using maximum allowed: 32
[  169.065446][ T2208] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  169.069746][ T2208] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 33
[  169.069835][ T5893] usb 1-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  169.075093][ T2208] usb 5-1: New USB device found, idVendor=1039, idProduct=12b6, bcdDevice=af.00
[  169.079490][ T5893] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.082117][ T2208] usb 5-1: New USB device strings: Mfr=99, Product=0, SerialNumber=0
[  169.090609][ T5893] usb 1-1: config 0 descriptor??
[  169.091786][ T2208] usb 5-1: Manufacturer: syz
[  169.103077][ T2208] usb 5-1: config 0 descriptor??
[  169.109795][ T5893] gspca_main: sunplus-2.14.0 probing 055f:c420
[  169.302524][ T5893] gspca_sunplus: reg_w_riv err -71
[  169.304747][ T5893] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[  169.319138][ T5893] usb 1-1: USB disconnect, device number 11
[  169.332574][ T8515] sp0: Synchronizing with TNC
[  169.345721][ T5316] usb 5-1: USB disconnect, device number 4
[  169.439282][ T8515] Falling back ldisc for ttyS3.
[  169.710383][ T8530] netlink: 28 bytes leftover after parsing attributes in process `syz.5.868'.
[  169.717517][ T8530] netlink: 28 bytes leftover after parsing attributes in process `syz.5.868'.
[  169.729228][ T8530] erspan0: entered promiscuous mode
[  169.732895][ T8530] gretap0: entered promiscuous mode
[  169.827613][ T8533] loop5: detected capacity change from 0 to 8192
[  170.103224][ T8541] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.873'.
[  170.178012][ T8547] netlink: 12 bytes leftover after parsing attributes in process `syz.5.876'.
[  170.193626][ T8537] loop4: detected capacity change from 0 to 32768
[  170.217934][ T8537] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.871 (8537)
[  170.238451][ T8537] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  170.242713][ T8537] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  170.359213][ T8537] BTRFS info (device loop4): enabling ssd optimizations
[  170.361744][ T8537] BTRFS info (device loop4): enabling free space tree
[  170.410499][ T7593] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  170.467288][ T8575] vlan2: entered allmulticast mode
[  170.469858][ T8575] bond0: entered allmulticast mode
[  170.472407][ T8575] bond_slave_0: entered allmulticast mode
[  170.475180][ T8575] bond_slave_1: entered allmulticast mode
[  170.535471][ T5316] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  170.716879][ T5316] usb 1-1: Using ep0 maxpacket: 32
[  170.723274][ T5316] usb 1-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[  170.739816][ T5316] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.749326][ T5316] usb 1-1: config 0 descriptor??
[  170.770467][ T5316] gspca_main: sq930x-2.14.0 probing 041e:403c
[  170.794286][ T8584] gfs2: not a GFS2 filesystem
[  170.935491][ T5893] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  171.019476][ T8591] No buffer was provided with the request
[  171.096301][ T5893] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  171.100678][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.103584][ T5893] usb 5-1: Product: syz
[  171.105537][ T5893] usb 5-1: Manufacturer: syz
[  171.107779][ T5893] usb 5-1: SerialNumber: syz
[  171.138188][ T5893] usb 5-1: config 0 descriptor??
[  171.383721][ T5893] hso 5-1:0.0: Failed to find BULK IN ep
[  171.400069][ T5893] usb-storage 5-1:0.0: USB Mass Storage device detected
[  171.480700][ T5316] gspca_sq930x: reg_w 0305 fd00 failed -71
[  171.483411][ T5316] sq930x 1-1:0.0: probe with driver sq930x failed with error -71
[  171.503551][ T5316] usb 1-1: USB disconnect, device number 12
[  171.588737][ T5893] usb 5-1: USB disconnect, device number 5
[  172.065477][ T5893] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  172.163897][ T8603] loop0: detected capacity change from 0 to 32768
[  172.245958][ T5893] usb 6-1: Using ep0 maxpacket: 16
[  172.254967][ T8601] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  172.276222][ T8601] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  172.288121][ T5893] usb 6-1: unable to get BOS descriptor or descriptor too short
[  172.291830][ T5893] usb 6-1: unable to read config index 0 descriptor/start: -71
[  172.294529][ T5893] usb 6-1: can't read configurations, error -71
[  173.203034][ T8623] mmap: syz.5.902 (8623) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  173.783689][ T8636] loop4: detected capacity change from 0 to 32768
[  173.795670][ T8636] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.908 (8636)
[  173.830837][ T8636] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  173.839132][ T8636] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  173.921752][ T8636] BTRFS info (device loop4): enabling ssd optimizations
[  173.924503][ T8636] BTRFS info (device loop4): enabling free space tree
[  173.928966][ T8638] loop5: detected capacity change from 0 to 32768
[  173.934122][ T8638] XFS: ikeep mount option is deprecated.
[  173.954004][ T8638] XFS (loop5): invalid logbufs value: 1 [not 2-8]
[  174.061221][ T7593] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  174.454066][ T8659] loop4: detected capacity change from 0 to 32768
[  174.474641][ T8659] bcachefs (/dev/loop4): error validating superblock: Invalid superblock section clean: entry type (unknown jset_entry_type 255) overruns end of section
[  174.474641][ T8659] clean (size 2912):
[  174.474641][ T8659] flags:          0
[  174.474641][ T8659] journal_seq:    10
[  174.474641][ T8659] write_buffer_keys: btree=inodes level=0 u64s 8 type deleted 0:21474836481:0 len 0 ver 562954248388608: 
[  174.474641][ T8659] usage: type=key_version v=0
[  174.474641][ T8659] usage: type=reserved v=0
[  174.474641][ T8659] usage: type=reserved v=0
[  174.474641][ T8659] usage: type=reserved v=0
[  174.474641][ T8659] usage: type=reserved v=0
[  174.474641][ T8659] data_usage: btree: 1/1 [0]=2816
[  174.474641][ T8659] data_usage: journal: 1/1 [0]=0
[  174.474641][ T8659] data_usage: user: 1/1 [0]=16
[  174.474641][ T8659] dev_usage: dev=0  
[  174.474641][ T8659]   free: buckets=83 sectors=0 fragmented=0
[  174.474641][ T8659]   sb: buckets=25 sectors=6152 fragmented=248
[  174.474641][ T8659]   journal: buckets=8 sectors=2048 fragmented=0
[  174.474641][ T8659]   btree: buckets=11 sectors=2816 fragmented=0
[  174.474641][ T8659]   user: buckets=1 sectors=16 fragmented=240
[  174.474641][ T8659]   cached: buckets=0 sectors=0 fragmented=0
[  174.474641][ T8659]   parity: buckets=0 sectors=0 fragmented=0
[  174.474641][ T8659]   stripe: buckets=0 sectors=0 fragmented=0
[  174.474641][ T8659]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[  174.474641][ T8659]   need_discard: buckets=0 sectors=0 fragmented=0
[  174.474641][ T8659] clock: read=0
[  174.474641][ T8659] clock:
[  174.474782][ T8659] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  174.536407][ T8663] netlink: 76 bytes leftover after parsing attributes in process `syz.5.913'.
[  174.704784][ T8668] loop4: detected capacity change from 0 to 764
[  175.672544][   T33] audit: type=1326 audit(1757560753.260:9345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8675 comm="syz.0.919" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f785b78eba9 code=0x7fc00000
[  177.307856][ T8727] netlink: 16 bytes leftover after parsing attributes in process `syz.0.942'.
[  177.829823][ T8742] sp0: Synchronizing with TNC
[  177.837457][ T8741] [U] 
[  178.080924][ T5922] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  178.345572][ T5922] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.383716][ T5922] usb 6-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  178.400493][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.404762][ T5922] usb 6-1: Product: syz
[  178.404776][ T5922] usb 6-1: Manufacturer: syz
[  178.409504][ T5922] usb 6-1: SerialNumber: syz
[  178.413938][ T5922] usb 6-1: config 0 descriptor??
[  178.420273][ T5922] usb 6-1: ucan: probing device on interface #0
[  178.420650][ T5922] usb 6-1: ucan: invalid EP count (0)
[  178.420666][ T5922] usb 6-1: ucan: probe failed; try to update the device firmware
[  178.631781][ T5316] usb 6-1: USB disconnect, device number 4
[  179.357328][ T8770] nbd: socks must be embedded in a SOCK_ITEM attr
[  179.376826][ T8770] block nbd0: shutting down sockets
[  179.630833][ T8774] loop5: detected capacity change from 0 to 512
[  179.634593][ T8774] EXT4-fs: Ignoring removed nobh option
[  179.650506][ T8777] netlink: 16 bytes leftover after parsing attributes in process `syz.4.965'.
[  179.667741][ T8777] netlink: 16 bytes leftover after parsing attributes in process `syz.4.965'.
[  179.681432][ T8774] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.693768][ T8774] ext4 filesystem being mounted at /88/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  179.714902][ T8774] EXT4-fs error (device loop5): ext4_xattr_block_get:593: inode #15: comm syz.5.963: corrupted xattr block 33: bad e_name length
[  179.839094][ T8774] EXT4-fs error (device loop5): ext4_get_inode_usage:884: inode #15: comm syz.5.963: corrupted xattr block 33: bad e_name length
[  179.882374][ T7938] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.318532][ T8787] loop0: detected capacity change from 0 to 1024
[  180.322136][ T8787] hfsplus: Unknown parameter '000000000000000000000000xffffffffffffffff'
[  180.411623][ T8798] vlan3: entered promiscuous mode
[  180.421574][ T8800] loop4: detected capacity change from 0 to 256
[  180.443869][ T8800] FAT-fs (loop4): Directory bread(block 64) failed
[  180.448479][ T8800] FAT-fs (loop4): Directory bread(block 65) failed
[  180.464732][ T8800] FAT-fs (loop4): Directory bread(block 66) failed
[  180.470802][ T8800] FAT-fs (loop4): Directory bread(block 67) failed
[  180.473846][ T8800] FAT-fs (loop4): Directory bread(block 68) failed
[  180.480956][ T8800] FAT-fs (loop4): Directory bread(block 69) failed
[  180.484314][ T8800] FAT-fs (loop4): Directory bread(block 70) failed
[  180.490096][ T8800] FAT-fs (loop4): Directory bread(block 71) failed
[  180.494737][ T8800] FAT-fs (loop4): Directory bread(block 72) failed
[  180.498149][ T8800] FAT-fs (loop4): Directory bread(block 73) failed
[  181.065438][ T8838] macvlan2: entered promiscuous mode
[  181.068290][ T8838] macvlan2: entered allmulticast mode
[  181.170886][ T8842] netlink: 8 bytes leftover after parsing attributes in process `syz.0.993'.
[  181.427743][ T8854] netlink: 68 bytes leftover after parsing attributes in process `syz.0.998'.
[  181.890934][ T8864] 8021q: adding VLAN 0 to HW filter on device bond0
[  181.906749][ T8864] bond0: (slave rose0): Enslaving as an active interface with an up link
[  181.989114][ T8870] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5)
[  181.992038][ T8870] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  182.001744][ T8870] vhci_hcd vhci_hcd.0: Device attached
[  182.236853][ T5893] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  182.266405][ T5316] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  182.446700][ T5316] usb 6-1: Using ep0 maxpacket: 16
[  182.450268][ T5316] usb 6-1: config 0 has no interfaces?
[  182.452113][ T5316] usb 6-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[  182.461331][ T5316] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.470847][ T5316] usb 6-1: config 0 descriptor??
[  182.484443][ T8902] loop0: detected capacity change from 0 to 256
[  182.680133][ T5316] usb 6-1: USB disconnect, device number 5
[  182.684373][ T8908] loop0: detected capacity change from 0 to 512
[  182.689452][ T8872] vhci_hcd: connection closed
[  182.693735][ T5885] vhci_hcd: stop threads
[  182.710300][ T5885] vhci_hcd: release socket
[  182.714677][ T5885] vhci_hcd: disconnect device
[  182.740537][ T8908] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1015: bg 0: block 248: padding at end of block bitmap is not set
[  182.750155][ T8908] Quota error (device loop0): write_blk: dquota write failed
[  182.754571][ T8908] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  182.760862][ T8908] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.1015: Failed to acquire dquot type 1
[  182.765679][ T5893] vhci_hcd: vhci_device speed not set
[  182.773916][ T8908] EXT4-fs (loop0): 1 truncate cleaned up
[  182.777815][ T8908] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.783130][ T8908] ext4 filesystem being mounted at /328/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.833570][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.839774][ T6817] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-5
[  182.846334][ T6817] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u9:6: Failed to release dquot type 1
[  183.381588][ T8926] loop5: detected capacity change from 0 to 4096
[  183.399030][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  183.403592][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  183.407876][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  183.411482][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc0c00
[  183.422223][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc1c00
[  183.431014][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc2c00
[  183.441283][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc4c00
[  183.444075][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffc8c00
[  183.454857][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffd0c00
[  183.459074][ T8926] ntfs3(loop5): try to read out of volume at offset 0x3fffffe0c00
[  183.639742][ T8944] loop5: detected capacity change from 0 to 128
[  184.064350][ T8960] loop5: detected capacity change from 0 to 256
[  184.083303][ T8960] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  184.092659][ T8960] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  184.100235][ T8960] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x2d0d25cc, utbl_chksum : 0xe619d30d)
[  184.861407][ T8976] netlink: 'syz.4.1045': attribute type 21 has an invalid length.
[  184.864281][ T8976] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1045'.
[  184.920261][ T8978] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1046'.
[  185.273278][ T8986] loop4: detected capacity change from 0 to 256
[  185.287336][ T8986] FAT-fs (loop4): Directory bread(block 64) failed
[  185.291406][ T8986] FAT-fs (loop4): Directory bread(block 65) failed
[  185.293650][ T8986] FAT-fs (loop4): Directory bread(block 66) failed
[  185.297001][ T8986] FAT-fs (loop4): Directory bread(block 67) failed
[  185.299184][ T8986] FAT-fs (loop4): Directory bread(block 68) failed
[  185.301517][ T8986] FAT-fs (loop4): Directory bread(block 69) failed
[  185.304875][ T8986] FAT-fs (loop4): Directory bread(block 70) failed
[  185.307253][ T8986] FAT-fs (loop4): Directory bread(block 71) failed
[  185.309474][ T8986] FAT-fs (loop4): Directory bread(block 72) failed
[  185.311866][ T8986] FAT-fs (loop4): Directory bread(block 73) failed
[  185.901924][ T8999] loop4: detected capacity change from 0 to 256
[  185.911848][ T8999] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  186.157036][ T5922] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  186.264519][ T9013] loop0: detected capacity change from 0 to 2048
[  186.282921][ T9013] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  186.311588][ T5922] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  186.317557][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.320895][ T5922] usb 6-1: Product: syz
[  186.322664][ T5922] usb 6-1: Manufacturer: syz
[  186.324687][ T5922] usb 6-1: SerialNumber: syz
[  186.337595][ T5922] usb 6-1: config 0 descriptor??
[  186.538892][ T9021] input: syz1 as /devices/virtual/input/input6
[  186.559550][ T5922] hso 6-1:0.0: Failed to find BULK IN ep
[  186.568043][ T5922] usb-storage 6-1:0.0: USB Mass Storage device detected
[  186.763384][ T5919] usb 6-1: USB disconnect, device number 6
[  186.849427][ T9035] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1072'.
[  186.857850][ T9035] loop4: detected capacity change from 0 to 512
[  186.875215][ T9035] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #17: comm syz.4.1072: invalid fast symlink length 37
[  186.885644][ T9035] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1072: couldn't read orphan inode 17 (err -117)
[  186.891730][ T9035] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.912843][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.980908][ T9041] loop4: detected capacity change from 0 to 512
[  187.018792][ T9041] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.025508][ T9041] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.054388][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.199973][ T9053] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1078'.
[  187.254457][ T9057] loop4: detected capacity change from 0 to 512
[  187.264527][ T9057] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  187.281184][ T9057] EXT4-fs (loop4): 1 truncate cleaned up
[  187.289819][ T9057] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.353559][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.423536][ T9067] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1082'.
[  187.816894][ T9084] loop4: detected capacity change from 0 to 2048
[  187.823762][ T9084] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  187.845740][ T9085] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  187.847274][ T9084] syz.4.1092: attempt to access beyond end of device
[  187.847274][ T9084] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  187.886411][ T9084] NILFS (loop4): DAT doesn't have a block to manage vblocknr = 16777227
[  187.890260][ T9084] NILFS error (device loop4): nilfs_bmap_truncate: broken bmap (inode number=16)
[  187.900804][ T9084] Remounting filesystem read-only
[  187.903066][ T9084] NILFS (loop4): error -5 truncating bmap (ino=16)
[  187.931725][ T7593] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  188.202029][ T9089] loop5: detected capacity change from 0 to 2048
[  188.208812][ T5922] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  188.250667][ T9090] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  188.322313][ T9090] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  188.330972][ T9090] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4)
[  188.343892][ T9090] Remounting filesystem read-only
[  188.347652][ T7938] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer
[  188.365434][ T5922] usb 5-1: Using ep0 maxpacket: 32
[  188.392897][ T5922] usb 5-1: config 0 has an invalid interface number: 89 but max is 0
[  188.405446][ T5922] usb 5-1: config 0 has no interface number 0
[  188.408216][ T5922] usb 5-1: config 0 interface 89 has no altsetting 0
[  188.428549][ T5922] usb 5-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  188.432558][ T5922] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.439250][ T5922] usb 5-1: Product: syz
[  188.440886][ T5922] usb 5-1: Manufacturer: syz
[  188.442833][ T5922] usb 5-1: SerialNumber: syz
[  188.446802][ T5922] usb 5-1: config 0 descriptor??
[  188.459248][ T5922] em28xx 5-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  188.465589][ T5922] em28xx 5-1:0.89: Video interface 89 found: bulk
[  188.959652][ T9122] netlink: 'syz.5.1109': attribute type 63 has an invalid length.
[  189.067945][ T9126] netlink: 'syz.5.1111': attribute type 9 has an invalid length.
[  189.071389][ T5922] em28xx 5-1:0.89: unknown em28xx chip ID (0)
[  189.072611][ T9126] netlink: 147436 bytes leftover after parsing attributes in process `syz.5.1111'.
[  189.197137][ T9132] loop5: detected capacity change from 0 to 512
[  189.199941][ T9132] EXT4-fs: Ignoring removed oldalloc option
[  189.222889][ T9132] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.1114: Parent and EA inode have the same ino 15
[  189.232830][ T9132] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.1114: Parent and EA inode have the same ino 15
[  189.239536][ T9132] EXT4-fs (loop5): 1 orphan inode deleted
[  189.243441][ T9132] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.258913][ T9132] EXT4-fs error (device loop5): ext4_rename:3812: inode #15: comm syz.5.1114: target of rename is already freed
[  189.299944][ T7938] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.598744][ T9139] loop5: detected capacity change from 0 to 40427
[  189.602570][ T9139] F2FS-fs: heap/no_heap options were deprecated
[  189.605830][ T9139] F2FS-fs (loop5): Invalid segment/section count (24 != 24 * 3)
[  189.608550][ T9139] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  189.623098][ T9139] F2FS-fs (loop5): invalid crc value
[  189.680813][ T9139] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  189.685536][ T9139] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  189.688678][ T9139] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  189.721525][ T7938] syz-executor: attempt to access beyond end of device
[  189.721525][ T7938] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  189.727767][ T7938] CPU: 1 UID: 0 PID: 7938 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  189.727783][ T7938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  189.727788][ T7938] Call Trace:
[  189.727792][ T7938]  <TASK>
[  189.727795][ T7938]  dump_stack_lvl+0x189/0x250
[  189.727813][ T7938]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.727822][ T7938]  ? __pfx_queue_work_on+0x10/0x10
[  189.727830][ T7938]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  189.727844][ T7938]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  189.727859][ T7938]  f2fs_handle_critical_error+0x37c/0x540
[  189.727874][ T7938]  f2fs_write_end_io+0x886/0xb60
[  189.727891][ T7938]  __submit_merged_bio+0x27a/0x6a0
[  189.727904][ T7938]  __submit_merged_write_cond+0x255/0x530
[  189.727917][ T7938]  f2fs_write_data_pages+0x261d/0x3000
[  189.727939][ T7938]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  189.727972][ T7938]  ? folios_put_refs+0x559/0x640
[  189.727986][ T7938]  ? __pfx_folios_put_refs+0x10/0x10
[  189.727992][ T7938]  ? rcu_is_watching+0x15/0xb0
[  189.728005][ T7938]  ? __lock_acquire+0xab9/0xd20
[  189.728023][ T7938]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  189.728030][ T7938]  do_writepages+0x32e/0x550
[  189.728045][ T7938]  ? do_raw_spin_unlock+0x4d/0x240
[  189.728056][ T7938]  filemap_fdatawrite+0x199/0x240
[  189.728067][ T7938]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  189.728103][ T7938]  ? do_raw_spin_unlock+0x4d/0x240
[  189.728113][ T7938]  f2fs_sync_dirty_inodes+0x31f/0x830
[  189.728128][ T7938]  f2fs_write_checkpoint+0x95a/0x1df0
[  189.728146][ T7938]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  189.728202][ T7938]  ? kill_f2fs_super+0x298/0x6c0
[  189.728215][ T7938]  kill_f2fs_super+0x2c3/0x6c0
[  189.728225][ T7938]  ? __pfx_kill_f2fs_super+0x10/0x10
[  189.728231][ T7938]  ? radix_tree_delete_item+0x2b6/0x400
[  189.728247][ T7938]  ? shrinker_free+0x2ce/0x3e0
[  189.728256][ T7938]  deactivate_locked_super+0xbc/0x130
[  189.728266][ T7938]  cleanup_mnt+0x425/0x4c0
[  189.728275][ T7938]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.728283][ T7938]  task_work_run+0x1d4/0x260
[  189.728295][ T7938]  ? __pfx_task_work_run+0x10/0x10
[  189.728303][ T7938]  ? __x64_sys_umount+0x122/0x160
[  189.728314][ T7938]  ? exit_to_user_mode_loop+0x40/0x110
[  189.728326][ T7938]  exit_to_user_mode_loop+0xec/0x110
[  189.728335][ T7938]  do_syscall_64+0x2bd/0x3b0
[  189.728343][ T7938]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.728349][ T7938]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.728356][ T7938]  ? exc_page_fault+0x9f/0xf0
[  189.728364][ T7938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.728370][ T7938] RIP: 0033:0x7fb018f8fed7
[  189.728379][ T7938] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  189.728386][ T7938] RSP: 002b:00007ffecaa8cbc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  189.728395][ T7938] RAX: 0000000000000000 RBX: 00007fb019011c05 RCX: 00007fb018f8fed7
[  189.728400][ T7938] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffecaa8cc80
[  189.728404][ T7938] RBP: 00007ffecaa8cc80 R08: 0000000000000000 R09: 0000000000000000
[  189.728408][ T7938] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffecaa8dd10
[  189.728413][ T7938] R13: 00007fb019011c05 R14: 000000000002e47c R15: 00007ffecaa8dd50
[  189.728425][ T7938]  </TASK>
[  189.728429][ T7938] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  190.020826][ T9144] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  190.100249][ T5922] em28xx 5-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[  190.103675][ T9148] loop5: detected capacity change from 0 to 256
[  190.105648][ T5922] em28xx 5-1:0.89: board has no eeprom
[  190.112687][ T9148] exfat: Deprecated parameter 'namecase'
[  190.124778][ T9148] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  190.175489][ T5922] em28xx 5-1:0.89: Identified as Terratec Grabby (card=67)
[  190.178536][ T5922] em28xx 5-1:0.89: analog set to bulk mode.
[  190.188852][   T10] em28xx 5-1:0.89: Registering V4L2 extension
[  190.201344][ T5922] usb 5-1: USB disconnect, device number 6
[  190.204377][ T5922] em28xx 5-1:0.89: Disconnecting em28xx
[  190.215554][   T10] em28xx 5-1:0.89: Config register raw data: 0xffffffed
[  190.218345][   T10] em28xx 5-1:0.89: AC97 chip type couldn't be determined
[  190.221081][   T10] em28xx 5-1:0.89: No AC97 audio processor
[  190.232433][   T10] usb 5-1: Decoder not found
[  190.234269][   T10] em28xx 5-1:0.89: failed to create media graph
[  190.237958][   T10] em28xx 5-1:0.89: V4L2 device video103 deregistered
[  190.246508][   T10] em28xx 5-1:0.89: Registering snapshot button...
[  190.253567][   T10] input: em28xx snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.89/input/input7
[  190.263656][   T10] em28xx 5-1:0.89: Remote control support is not available for this card.
[  190.270947][ T5922] em28xx 5-1:0.89: Closing input extension
[  190.275055][ T5922] em28xx 5-1:0.89: Deregistering snapshot button
[  190.309135][ T9150] loop5: detected capacity change from 0 to 32768
[  190.312864][ T5922] em28xx 5-1:0.89: Freeing device
[  190.418282][ T9150] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  190.418302][ T9150]   allowing incompatible features above 0.0: (unknown version)
[  190.418309][ T9150]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  190.438846][ T9150] bcachefs (loop5): Using encoding defined by superblock: utf8-12.1.0
[  190.442021][ T9150] bcachefs (loop5): initializing new filesystem
[  190.453036][ T9150] bcachefs (loop5): going read-write
[  190.460725][ T9150] bcachefs (loop5): marking superblocks
[  190.488701][ T9150] bcachefs (loop5): initializing freespace
[  190.499223][ T9150] bcachefs (loop5): done initializing freespace
[  190.510262][ T9150] bcachefs (loop5): reading snapshots table
[  190.512507][ T9150] bcachefs (loop5): reading snapshots done
[  190.535124][ T9150] bcachefs (loop5): done starting filesystem
[  190.576793][ T7938] bcachefs (loop5): shutting down
[  190.578741][ T7938] bcachefs (loop5): going read-only
[  190.580550][ T7938] bcachefs (loop5): finished waiting for writes to stop
[  190.585200][ T7938] bcachefs (loop5): flushing journal and stopping allocators, journal seq 2
[  190.615113][ T7938] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 3
[  190.641459][ T7938] bcachefs (loop5): clean shutdown complete, journal seq 4
[  190.642743][ T9164] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1123'.
[  190.644211][ T7938] bcachefs (loop5): marking filesystem clean
[  190.654625][ T9164] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1123'.
[  190.658820][ T7150] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  190.662769][ T5885] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  190.668357][ T5885] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  190.674459][ T7938] bcachefs (loop5): shutdown complete
[  190.689536][ T5885] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  190.946950][ T9172] loop4: detected capacity change from 0 to 2048
[  190.970993][ T9172] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  191.055024][ T9174] netem: incorrect ge model size
[  191.059944][ T9174] netem: change failed
[  191.355644][   T10] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  191.535649][   T10] usb 5-1: Using ep0 maxpacket: 8
[  191.543111][   T10] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  191.548230][   T10] usb 5-1: config 179 has no interface number 0
[  191.550915][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  191.560388][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  191.572409][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  191.581083][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  191.595432][   T10] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  191.601608][   T10] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  191.609639][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.616582][ T9176] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  191.860042][   T33] audit: type=1326 audit(1757560769.450:9346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9181 comm="syz.5.1122" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb018f8eba9 code=0x0
[  192.051007][ T5919] usb 5-1: USB disconnect, device number 7
[  192.051086][    C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  192.056609][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  192.799643][ T9188] loop0: detected capacity change from 0 to 32768
[  192.851970][ T9188] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  192.879613][ T9188] (syz.0.1133,9188,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[  192.888257][ T9195] binder: 9194:9195 unknown command 0
[  192.890615][ T9195] binder: 9194:9195 ioctl c0306201 200000000080 returned -22
[  192.890774][ T9189] loop4: detected capacity change from 0 to 32768
[  192.932763][ T5862] (syz-executor,5862,1):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76
[  192.945191][ T9189] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  192.959134][ T5862] ocfs2: Unmounting device (7,0) on (node local)
[  193.027555][ T9189] XFS (loop4): Ending clean mount
[  193.071692][ T9189] XFS (loop4): Quotacheck needed: Please wait.
[  193.156586][ T9189] XFS (loop4): Quotacheck: Done.
[  193.289094][ T9218] loop0: detected capacity change from 0 to 4096
[  193.345665][ T7593] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  193.350468][ T9218] ntfs3(loop0): ino=1a, mi_enum_attr
[  193.353403][ T9218] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  193.400122][ T9213] loop5: detected capacity change from 0 to 32768
[  193.403794][ T9213] bcachefs (/dev/loop5): error validating superblock: Invalid superblock layout: no superblocks
[  193.407790][ T9213] bcachefs: bch2_fs_get_tree() error: invalid_sb_layout_nr_superblocks
[  193.953530][ T9228] loop4: detected capacity change from 0 to 32768
[  194.003349][ T9228] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  194.018249][ T9228] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  194.065914][ T9228] (syz.4.1145,9228,1):ocfs2_read_blocks:239 ERROR: status = -12
[  194.069885][ T9228] (syz.4.1145,9228,1):ocfs2_xattr_block_find:2831 ERROR: status = -12
[  194.106690][ T7593] ocfs2: Unmounting device (7,4) on (node local)
[  194.134575][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  194.137247][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  194.277568][ T9241] loop5: detected capacity change from 0 to 2048
[  194.302302][ T9241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.322640][ T9247] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1152'.
[  194.326729][ T9241] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  194.368781][ T7938] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.868704][ T9273] loop5: detected capacity change from 0 to 8192
[  194.874275][ T9273] FAT-fs (loop5): bogus logical sector size 0
[  194.894840][ T9273] FAT-fs (loop5): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  194.901950][ T9273] FAT-fs (loop5): Can't find a valid FAT filesystem
[  195.550015][ T9299] netlink: 'syz.4.1176': attribute type 30 has an invalid length.
[  196.657312][ T9332] loop0: detected capacity change from 0 to 64
[  196.912805][ T9350] loop5: detected capacity change from 0 to 16
[  196.943930][ T9350] erofs (device loop5): mounted with root inode @ nid 36.
[  196.952584][ T9350] erofs (device loop5): inconsistent algorithmtype 0 for nid 36
[  196.959205][ T9350] erofs (device loop5): inconsistent algorithmtype 0 for nid 36
[  196.969297][ T9350] erofs (device loop5): read error -117 @ 72 of nid 36
[  196.996215][ T2208] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  197.211850][ T2208] usb 5-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  197.225527][ T2208] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.234553][ T2208] usb 5-1: config 0 descriptor??
[  197.670741][ T2208] hackrf 5-1:0.0: Board ID: 00
[  197.676420][ T2208] hackrf 5-1:0.0: Firmware version: 
[  197.691003][ T2208] hackrf 5-1:0.0: Registered as swradio24
[  197.693435][ T2208] videodev: could not get a free minor
[  197.697591][ T2208] hackrf 5-1:0.0: Failed to register as video device (-23)
[  197.710353][ T2208] hackrf 5-1:0.0: probe with driver hackrf failed with error -23
[  197.896783][ T5919] usb 5-1: USB disconnect, device number 8
[  198.729277][ T9387] loop4: detected capacity change from 0 to 32768
[  198.733126][ T9387] bcachefs: bch2_fs_parse_param() Error parsing option background_compression: option_value
[  198.932571][   T33] audit: type=1326 audit(1757560776.520:9347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.4.1221" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa1d178eba9 code=0x0
[  199.147272][ T9406] loop5: detected capacity change from 0 to 128
[  199.172369][ T9406] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  199.336696][ T9418] loop4: detected capacity change from 0 to 8
[  199.340307][ T9417] loop0: detected capacity change from 0 to 128
[  199.462995][ T9421] program syz.0.1233 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  199.504911][ T9424] vti0: entered promiscuous mode
[  199.865421][ T5922] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  199.971814][ T9432] loop4: detected capacity change from 0 to 512
[  199.980618][ T9432] EXT4-fs: Ignoring removed bh option
[  200.002245][ T9432] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  200.017562][ T5922] usb 6-1: config 0 has an invalid interface number: 29 but max is 0
[  200.021236][ T5922] usb 6-1: config 0 has no interface number 0
[  200.023992][ T5922] usb 6-1: config 0 interface 29 has no altsetting 0
[  200.038679][ T5922] usb 6-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  200.045505][ T5922] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.052023][ T9432] EXT4-fs (loop4): 1 truncate cleaned up
[  200.055474][ T5922] usb 6-1: Product: syz
[  200.057287][ T5922] usb 6-1: Manufacturer: syz
[  200.059198][ T5922] usb 6-1: SerialNumber: syz
[  200.063316][ T5922] usb 6-1: config 0 descriptor??
[  200.068646][ T9432] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.081778][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.369572][ T9454] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1246'.
[  202.482786][ T9465] vcan0: tx drop: invalid da for name 0x0000000000000003
[  202.853595][ T5922] peak_usb 6-1:0.29 can0: unable to request usb[type=0 value=1] err=-71
[  202.881452][ T5922] peak_usb 6-1:0.29: unable to read PCAN-USB X6 firmware info (err -71)
[  202.940600][ T5922] peak_usb 6-1:0.29: probe with driver peak_usb failed with error -71
[  202.958077][ T5922] usb 6-1: USB disconnect, device number 7
[  202.992157][ T9471] netlink: 'syz.5.1252': attribute type 11 has an invalid length.
[  203.043403][ T9473] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1253'.
[  203.047573][ T9473] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1253'.
[  203.280476][ T9479] loop5: detected capacity change from 0 to 4096
[  203.330027][ T9479] ntfs3(loop5): ino=b, mi_enum_attr
[  203.332628][ T9479] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  203.342876][ T9479] ntfs3(loop5): Failed to load $Extend (-22).
[  203.345910][ T9479] ntfs3(loop5): Failed to initialize $Extend.
[  203.377368][ T9479] ntfs3(loop5): failed to convert "0000" to iso8859-7
[  203.391467][ T9479] ntfs3(loop5): failed to convert name for inode 1e.
[  203.395032][ T9479] ntfs3(loop5): ino=1f, mi_enum_attr
[  203.627257][ T9498] netlink: 300 bytes leftover after parsing attributes in process `syz.5.1265'.
[  203.731869][    C1] vcan0: j1939_tp_rxtimer: 0xffff88810adf3400: rx timeout, send abort
[  204.238388][    C1] vcan0: j1939_tp_rxtimer: 0xffff88810adf3400: abort rx timeout. Force session deactivation
[  204.538554][ T9504] loop4: detected capacity change from 0 to 32768
[  204.543894][ T9504] XFS: attr2 mount option is deprecated.
[  204.624935][ T9504] XFS (loop4): DAX unsupported by block device. Turning off DAX.
[  204.629510][ T9504] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  204.669235][ T9504] XFS (loop4): Ending clean mount
[  204.691640][ T9504] XFS (loop4): Quotacheck needed: Please wait.
[  204.692849][ T9524] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1273'.
[  204.800701][ T9504] XFS (loop4): Quotacheck: Done.
[  204.849770][ T7593] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  205.375455][   T10] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  205.525439][   T10] usb 5-1: Using ep0 maxpacket: 32
[  205.529114][   T10] usb 5-1: config 5 has an invalid interface number: 190 but max is 2
[  205.532584][   T10] usb 5-1: config 5 has an invalid interface number: 49 but max is 2
[  205.535883][   T10] usb 5-1: config 5 has no interface number 0
[  205.538223][   T10] usb 5-1: config 5 has no interface number 2
[  205.540768][   T10] usb 5-1: config 5 interface 190 has no altsetting 0
[  205.543663][   T10] usb 5-1: config 5 interface 1 has no altsetting 0
[  205.546401][   T10] usb 5-1: config 5 interface 49 has no altsetting 0
[  205.551239][   T10] usb 5-1: New USB device found, idVendor=1410, idProduct=a001, bcdDevice=f2.82
[  205.557444][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.562023][   T10] usb 5-1: Product: syz
[  205.563651][   T10] usb 5-1: Manufacturer: syz
[  205.565555][   T10] usb 5-1: SerialNumber: syz
[  205.808941][   T10] usb 5-1: USB disconnect, device number 9
[  205.923590][ T9556] loop0: detected capacity change from 0 to 512
[  206.139910][ T9566] loop5: detected capacity change from 0 to 4096
[  206.178927][ T9569] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  206.198327][   T33] audit: type=1800 audit(1757560783.790:9348): pid=9566 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1292" name="file1" dev="loop5" ino=15 res=0 errno=0
[  206.306316][ T9576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1296'.
[  206.310075][ T9576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1296'.
[  206.463777][ T9580] loop0: detected capacity change from 0 to 2048
[  206.516467][ T9583] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  206.587156][ T9585] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.1300'.
[  206.602732][   T33] audit: type=1800 audit(1757560784.190:9349): pid=9586 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1298" name="file1" dev="loop0" ino=18 res=0 errno=0
[  206.673416][ T9583] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  206.684390][ T9583] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4)
[  206.693397][ T9583] Remounting filesystem read-only
[  206.697872][ T5862] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer
[  207.377327][ T9603] loop0: detected capacity change from 0 to 1024
[  207.392211][ T9603] hfsplus: failed to load root directory
[  207.568316][ T9609] loop0: detected capacity change from 0 to 256
[  207.621782][ T9611] netlink: 'syz.0.1311': attribute type 1 has an invalid length.
[  207.807057][ T9621] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  208.265155][ T9624] loop4: detected capacity change from 0 to 32768
[  208.340808][ T9630] loop0: detected capacity change from 0 to 32768
[  208.348249][ T9630] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1320 (9630)
[  208.356647][   T52] page_pool_release_retry() stalled pool shutdown: id 34, 1 inflight 60 sec
[  208.428609][ T9624] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  208.428624][ T9624]   allowing incompatible features above 0.0: (unknown version)
[  208.428630][ T9624]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  208.451124][ T9630] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  208.451247][ T9630] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[  208.474144][ T9624] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  208.590334][ T9624] bcachefs (loop4): initializing new filesystem
[  208.788369][ T9624] bcachefs (loop4): going read-write
[  208.808474][ T9624] bcachefs (loop4): marking superblocks
[  208.811710][ T9630] BTRFS info (device loop0): rebuilding free space tree
[  208.841095][ T9630] BTRFS info (device loop0): checking UUID tree
[  208.849861][ T9630] BTRFS info (device loop0): enabling ssd optimizations
[  208.852673][ T9630] BTRFS info (device loop0): turning on async discard
[  208.857428][ T9630] BTRFS info (device loop0): enabling free space tree
[  208.860204][ T9630] BTRFS info (device loop0): force clearing of disk cache
[  208.864441][ T9624] bcachefs (loop4): initializing freespace
[  208.874080][ T9630] BTRFS info (device loop0): force zstd compression, level 3
[  208.879213][ T9624] bcachefs (loop4): done initializing freespace
[  208.899998][ T9624] bcachefs (loop4): reading snapshots table
[  208.902531][ T9624] bcachefs (loop4): reading snapshots done
[  208.938525][ T9624] bcachefs (loop4): done starting filesystem
[  209.033347][ T5862] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  209.050969][ T7593] bcachefs (loop4): shutting down
[  209.053630][ T7593] bcachefs (loop4): going read-only
[  209.057071][ T7593] bcachefs (loop4): finished waiting for writes to stop
[  209.074270][ T7593] bcachefs (loop4): flushing journal and stopping allocators, journal seq 2
[  209.380815][ T7593] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3
[  209.386421][ T7593] bcachefs (loop4): clean shutdown complete, journal seq 4
[  209.389104][ T7593] bcachefs (loop4): marking filesystem clean
[  209.653922][ T7593] bcachefs (loop4): shutdown complete
[  210.510204][ T9711] loop5: detected capacity change from 0 to 512
[  210.554777][ T9711] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.1344: casefold flag without casefold feature
[  210.571048][ T9711] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1344: couldn't read orphan inode 15 (err -117)
[  210.578401][ T9711] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  210.620802][ T7938] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.161496][ T9721] loop5: detected capacity change from 0 to 128
[  211.575527][ T2208] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  211.725455][ T2208] usb 5-1: Using ep0 maxpacket: 32
[  211.729985][ T2208] usb 5-1: config 4 has an invalid interface number: 10 but max is 0
[  211.733636][ T2208] usb 5-1: config 4 has no interface number 0
[  211.737828][ T2208] usb 5-1: config 4 interface 10 has no altsetting 0
[  211.743565][ T2208] usb 5-1: New USB device found, idVendor=0979, idProduct=0280, bcdDevice=98.4c
[  211.747926][ T2208] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.751427][ T2208] usb 5-1: Product: syz
[  211.753241][ T2208] usb 5-1: Manufacturer: syz
[  211.755155][ T2208] usb 5-1: SerialNumber: syz
[  211.778584][ T5238] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  211.782673][ T5238] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  211.791030][ T5238] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  211.797812][ T5238] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  211.801589][ T5238] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  211.971523][ T2208] gspca_main: jeilinj-2.14.0 probing 0979:0280
[  211.981990][ T2208] usb 5-1: USB disconnect, device number 10
[  212.021038][ T9729] chnl_net:caif_netlink_parms(): no params data found
[  212.118786][ T9729] bridge0: port 1(bridge_slave_0) entered blocking state
[  212.121915][ T9729] bridge0: port 1(bridge_slave_0) entered disabled state
[  212.125402][ T9729] bridge_slave_0: entered allmulticast mode
[  212.129294][ T9729] bridge_slave_0: entered promiscuous mode
[  212.134030][ T9729] bridge0: port 2(bridge_slave_1) entered blocking state
[  212.138642][ T9729] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.141971][ T9729] bridge_slave_1: entered allmulticast mode
[  212.146547][ T9729] bridge_slave_1: entered promiscuous mode
[  212.175131][ T9729] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  212.182386][ T9729] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  212.218095][ T9729] team0: Port device team_slave_0 added
[  212.223134][ T9729] team0: Port device team_slave_1 added
[  212.253036][ T9729] batman_adv: batadv0: Adding interface: batadv_slave_0
[  212.256537][ T9729] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.267448][ T9729] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  212.274084][ T9729] batman_adv: batadv0: Adding interface: batadv_slave_1
[  212.277349][ T9729] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.289111][ T9729] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  212.335035][ T9729] hsr_slave_0: entered promiscuous mode
[  212.339160][ T9729] hsr_slave_1: entered promiscuous mode
[  212.342293][ T9729] debugfs: 'hsr0' already exists in 'hsr'
[  212.344760][ T9729] Cannot create hsr debugfs directory
[  212.565424][ T9729] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  212.572629][ T9729] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  212.584747][ T9729] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  212.599917][ T9729] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  212.653963][ T9748] loop4: detected capacity change from 0 to 1024
[  212.668286][ T9748] EXT4-fs: Ignoring removed bh option
[  212.673860][ T9748] EXT4-fs: inline encryption not supported
[  212.687422][ T9748] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  212.697104][ T9748] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e018, mo2=0001]
[  212.707891][ T9748] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #11: comm syz.4.1354: pblk 0 bad header/extent: invalid magic - magic 0, entries 0, max 0(0), depth 0(0)
[  212.735799][ T9748] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1354: couldn't read orphan inode 11 (err -117)
[  212.742919][ T9729] 8021q: adding VLAN 0 to HW filter on device bond0
[  212.748064][ T9748] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  212.772310][ T9729] 8021q: adding VLAN 0 to HW filter on device team0
[  212.784046][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[  212.787299][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[  212.788455][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  212.800240][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[  212.803311][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[  213.053458][ T9729] 8021q: adding VLAN 0 to HW filter on device batadv0
[  213.463500][ T9729] veth0_vlan: entered promiscuous mode
[  213.474290][ T9729] veth1_vlan: entered promiscuous mode
[  213.506870][ T9729] veth0_macvtap: entered promiscuous mode
[  213.513811][ T9729] veth1_macvtap: entered promiscuous mode
[  213.530728][ T9729] batman_adv: batadv0: Interface activated: batadv_slave_0
[  213.541654][ T9729] batman_adv: batadv0: Interface activated: batadv_slave_1
[  213.609161][ T5885] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.614905][ T5885] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.623845][ T5885] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.631792][ T5885] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.734093][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.743841][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.780044][ T4027] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.783502][ T4027] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.882752][   T54] Bluetooth: hci0: command tx timeout
[  213.948155][ T9773] loop4: detected capacity change from 0 to 128
[  214.739196][ T9780] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1361'.
[  214.751102][ T9780] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1361'.
[  214.959286][ T9786] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  215.691387][ T9794] loop4: detected capacity change from 0 to 1024
[  215.720748][ T9794] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.754054][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.965027][   T54] Bluetooth: hci0: command tx timeout
[  216.691039][ T9831] loop6: detected capacity change from 0 to 512
[  216.697666][ T9831] msdos: Unknown parameter ''
[  217.332097][ T9853] program syz.4.1391 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  217.653347][ T9867] loop4: detected capacity change from 0 to 512
[  217.682124][ T9867] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.690370][ T9867] ext4 filesystem being mounted at /278/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.720572][ T9867] EXT4-fs error (device loop4): ext4_empty_dir:3080: inode #12: comm syz.4.1398: Directory hole found for htree leaf block 0
[  217.734577][ T9867] EXT4-fs (loop4): Remounting filesystem read-only
[  217.758269][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.766773][ T2177] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  217.770155][ T2177] Quota error (device loop4): write_blk: dquota write failed
[  217.772975][ T2177] Quota error (device loop4): free_dqentry: Can't write quota data block 5
[  217.777219][ T2177] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  217.780788][ T2177] Quota error (device loop4): write_blk: dquota write failed
[  217.783256][ T2177] Quota error (device loop4): free_dqentry: Can't write quota data block 5
[  217.895455][   T10] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  217.922573][ T9877] loop4: detected capacity change from 0 to 2048
[  217.959224][ T9877] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  217.971428][ T9878] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  217.971662][ T9877] syz.4.1402: attempt to access beyond end of device
[  217.971662][ T9877] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  218.041152][   T54] Bluetooth: hci0: command tx timeout
[  218.047341][   T10] usb 7-1: Using ep0 maxpacket: 32
[  218.053525][   T10] usb 7-1: unable to get BOS descriptor or descriptor too short
[  218.068703][   T10] usb 7-1: config 117 has an invalid interface number: 249 but max is 0
[  218.071529][   T10] usb 7-1: config 117 has no interface number 0
[  218.073730][   T10] usb 7-1: config 117 interface 249 altsetting 99 endpoint 0xF has an invalid bInterval 0, changing to 7
[  218.080283][   T10] usb 7-1: config 117 interface 249 altsetting 99 endpoint 0xF has invalid maxpacket 42073, setting to 1024
[  218.087503][   T10] usb 7-1: config 117 interface 249 has no altsetting 0
[  218.093965][   T10] usb 7-1: New USB device found, idVendor=0bc7, idProduct=0008, bcdDevice=d5.d1
[  218.102686][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  218.109328][   T10] usb 7-1: Product: syz
[  218.111205][   T10] usb 7-1: Manufacturer: syz
[  218.113152][   T10] usb 7-1: SerialNumber: syz
[  218.119154][ T9869] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  218.120756][ T9884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1405'.
[  218.132078][ T9884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1405'.
[  218.157835][ T9884] dummy0: entered promiscuous mode
[  218.174820][ T9884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1405'.
[  218.185643][ T9884] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1405'.
[  218.331314][   T10] ati_remote 7-1:117.249: ati_remote_probe: Unexpected endpoint_in
[  218.338387][   T10] usb 7-1: USB disconnect, device number 2
[  218.435979][ T5893] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  218.585462][ T5893] usb 5-1: Using ep0 maxpacket: 16
[  218.589845][ T5893] usb 5-1: config 0 has an invalid interface number: 105 but max is 0
[  218.592856][ T5893] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  218.598429][ T5893] usb 5-1: config 0 has no interface number 0
[  218.604379][ T5893] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  218.608725][ T5893] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  218.612124][ T5893] usb 5-1: Product: syz
[  218.613764][ T5893] usb 5-1: Manufacturer: syz
[  218.615881][ T5893] usb 5-1: SerialNumber: syz
[  218.620745][ T5893] usb 5-1: config 0 descriptor??
[  218.628869][ T5893] usb 5-1: Found UVC 0.00 device syz (046d:08f3)
[  218.631692][ T5893] usb 5-1: No valid video chain found.
[  218.838677][ T5893] usb 5-1: USB disconnect, device number 11
[  219.547831][ T9909] loop4: detected capacity change from 0 to 2048
[  219.552441][ T9909] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  219.562314][ T9909] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  220.125861][   T54] Bluetooth: hci0: command tx timeout
[  220.318580][ T9915] loop6: detected capacity change from 0 to 32768
[  220.342988][ T9915] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  220.468646][ T9729] ocfs2: Unmounting device (7,6) on (node local)
[  220.606601][ T9921] syz.4.1422 uses obsolete (PF_INET,SOCK_PACKET)
[  220.837712][ T9923] loop6: detected capacity change from 0 to 32768
[  221.708421][ T9941] loop6: detected capacity change from 0 to 32768
[  221.737255][ T9945] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  221.834922][ T9941] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  222.058913][ T9941] XFS (loop6): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  222.121024][ T9941] XFS (loop6): Starting recovery (logdev: internal)
[  222.132293][ T9941] XFS (loop6): Ending recovery (logdev: internal)
[  222.136257][ T9941] XFS (loop6): Metadata corruption detected at xfs_inobt_verify+0x9e/0x1f0, xfs_finobt block 0x8 
[  222.140555][ T9941] XFS (loop6): Unmount and run xfs_repair
[  222.142745][ T9941] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[  222.146559][ T9941] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  222.150784][ T9941] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  222.156010][ T9941] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  222.159450][ T9941] 00000030: 00 00 00 00 c8 fc 31 e4 00 00 04 4e 00 00 00 02  ......1....N....
[  222.163100][ T9941] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00  ...`............
[  222.167068][ T9941] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  222.170779][ T9941] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  222.174420][ T9941] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  222.178804][ T9941] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x8 len 8 error 117
[  222.185787][ T9941] XFS (loop6): Failed to initialize disk quotas, err -117.
[  222.207053][ T9729] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  222.211318][ T9729] XFS (loop6): Uncorrected metadata errors detected; please run xfs_repair.
[  222.523051][ T9973] loop6: detected capacity change from 0 to 512
[  222.555636][ T9973] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.569952][ T9973] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.661903][ T9729] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.780345][   T33] audit: type=1326 audit(1757560800.370:9350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9986 comm="syz.6.1444" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f480478eba9 code=0x0
[  222.831403][ T9992] could not open pipe file descriptor
[  223.058710][ T9999] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  223.448457][T10003] fuse: Unknown parameter 'mGN8oad'
[  223.881078][T10005] loop6: detected capacity change from 0 to 128
[  224.472037][T10012] loop0: detected capacity change from 0 to 4096
[  224.494118][T10012] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  224.570301][T10016] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1457'.
[  224.577781][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.667632][T10018] openvswitch: netlink: Flow key attribute not present in set flow.
[  225.247438][T10034] loop4: detected capacity change from 0 to 32768
[  225.278558][T10034] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[  225.370346][T10034] (syz.4.1466,10034,1):ocfs2_dio_end_io:2401 ERROR: Direct IO failed, bytes = -28
[  225.424578][ T7593] ocfs2: Unmounting device (7,4) on (node local)
[  225.447290][T10036] loop0: detected capacity change from 0 to 32768
[  225.522468][T10042] loop4: detected capacity change from 0 to 2048
[  225.531586][T10042] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  225.534690][T10042] UDF-fs: Scanning with blocksize 512 failed
[  225.547063][T10042] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  225.634603][T10044] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1470'.
[  225.786447][T10054] loop0: detected capacity change from 0 to 512
[  225.816628][T10054] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.822046][T10054] ext4 filesystem being mounted at /466/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  225.824935][T10052] sctp: [Deprecated]: syz.4.1473 (pid 10052) Use of struct sctp_assoc_value in delayed_ack socket option.
[  225.824935][T10052] Use struct sctp_sack_info instead
[  226.054519][T10069] loop4: detected capacity change from 0 to 1024
[  226.094779][T10069] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  226.111505][T10069] ext4 filesystem being mounted at /323/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.127721][T10069] netlink: 'syz.4.1480': attribute type 4 has an invalid length.
[  226.139639][T10069] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 3: comm syz.4.1480: lblock 3 mapped to illegal pblock 3 (length 3)
[  226.152316][T10069] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  226.156855][T10069] EXT4-fs (loop4): This should not happen!! Data will be lost
[  226.156855][T10069] 
[  226.169878][T10069] EXT4-fs error (device loop4): ext4_ext_remove_space:2955: inode #15: comm syz.4.1480: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  226.179652][T10069] EXT4-fs error (device loop4) in ext4_setattr:6071: Corrupt filesystem
[  226.195108][ T7593] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  226.296295][T10077] loop4: detected capacity change from 0 to 64
[  226.595847][ T5893] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  226.625126][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.731106][   T33] audit: type=1326 audit(1757560804.320:9351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10082 comm="syz.0.1486" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f785b78eba9 code=0x0
[  226.769062][ T5893] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.773429][ T5893] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  226.777572][ T5893] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  226.780627][ T5893] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.790995][ T5893] usb 5-1: config 0 descriptor??
[  227.002850][ T5893] usbhid 5-1:0.0: can't add hid device: -71
[  227.005424][ T5893] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  227.009577][ T5893] usb 5-1: USB disconnect, device number 12
[  227.261070][T10091] netlink: 5852 bytes leftover after parsing attributes in process `syz.6.1489'.
[  227.265198][T10091] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  227.320720][T10093] loop6: detected capacity change from 0 to 2048
[  227.333770][T10093] UDF-fs: warning (device loop6): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount
[  227.540841][T10101] loop4: detected capacity change from 0 to 128
[  227.846705][T10101] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  227.853126][T10101] ext4 filesystem being mounted at /328/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  227.863320][T10101] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 7 (only 1 groups)
[  227.898985][ T7593] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  228.011156][T10113] netlink: 'syz.0.1498': attribute type 6 has an invalid length.
[  228.138709][T10121] Invalid ELF header magic: != ELF
[  228.435226][T10131] loop4: detected capacity change from 0 to 1024
[  228.486618][   T64] hfsplus: b-tree write err: -5, ino 4
[  228.748840][T10132] loop6: detected capacity change from 0 to 32768
[  228.766206][T10132] *** Log Format Error ! ***
[  228.771136][T10132] lmLogInit: exit(-22)
[  228.772662][T10132] lmLogOpen: exit(-22)
[  228.774551][T10132] jfs_mount_rw failed, return code = -22
[  229.571610][T10146] loop4: detected capacity change from 0 to 1024
[  230.026078][T10160] loop4: detected capacity change from 0 to 40427
[  230.246656][T10172] tipc: Started in network mode
[  230.248480][T10172] tipc: Node identity 92e7368f3531, cluster identity 4711
[  230.251424][T10172] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  230.260617][T10172] syzkaller0: entered promiscuous mode
[  230.262717][T10172] syzkaller0: entered allmulticast mode
[  230.304312][T10172] tipc: Resetting bearer <eth:syzkaller0>
[  230.311901][T10171] tipc: Resetting bearer <eth:syzkaller0>
[  230.345191][T10171] tipc: Disabling bearer <eth:syzkaller0>
[  230.569787][   T33] audit: type=1326 audit(1757560808.160:9352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10173 comm="syz.4.1525" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa1d178eba9 code=0x0
[  231.401900][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  232.718604][T10201] loop0: detected capacity change from 0 to 2048
[  232.728383][T10201] NILFS: invalid option "cp=1": read-only option is not specified
[  232.953253][T10221] loop0: detected capacity change from 0 to 512
[  232.961541][T10221] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  232.996379][T10221] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=800ec018, mo2=0082]
[  233.006264][T10221] EXT4-fs (loop0): 1 truncate cleaned up
[  233.009951][T10221] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.090330][T10219] loop4: detected capacity change from 0 to 32768
[  233.173721][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.236576][T10229] loop0: detected capacity change from 0 to 128
[  233.243534][T10229] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  233.250007][T10229] hpfs: filesystem error: improperly stopped
[  233.252744][T10229] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  233.325767][T10229] hpfs: You really don't want any checks? You are crazy...
[  233.331076][T10229] hpfs: hpfs_map_sector(): read error
[  233.341419][T10229] hpfs: code page support is disabled
[  233.344021][T10229] hpfs: hpfs_map_4sectors(): unaligned read
[  233.346752][T10229] hpfs: hpfs_map_4sectors(): unaligned read
[  233.349423][T10229] hpfs: filesystem error: unable to find root dir
[  233.456536][   T33] audit: type=1326 audit(1757560811.030:9353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1d178eba9 code=0x7ffc0000
[  233.512366][   T33] audit: type=1326 audit(1757560811.030:9354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fa1d178eba9 code=0x7ffc0000
[  233.561584][   T33] audit: type=1326 audit(1757560811.030:9355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1d178eba9 code=0x7ffc0000
[  233.617263][   T33] audit: type=1326 audit(1757560811.030:9356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fa1d178eba9 code=0x7ffc0000
[  233.654986][   T33] audit: type=1326 audit(1757560811.030:9357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1d178eba9 code=0x7ffc0000
[  233.699571][   T33] audit: type=1326 audit(1757560811.030:9358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa1d178d510 code=0x7ffc0000
[  233.734391][   T33] audit: type=1326 audit(1757560811.040:9359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fa1d17903d7 code=0x7ffc0000
[  233.743796][   T33] audit: type=1326 audit(1757560811.040:9360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa1d178eba9 code=0x7ffc0000
[  233.753486][   T33] audit: type=1326 audit(1757560811.040:9361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1546" exe="/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fa1d17903d7 code=0x7ffc0000
[  233.777461][T10237] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[  236.345587][T10270] bridge: RTM_NEWNEIGH with invalid ether address
[  236.390345][T10272] IPv6: sit1: Disabled Multicast RS
[  236.392902][T10272] sit1: entered allmulticast mode
[  236.848634][T10276] vimc link validate: Scaler:src:16x16 (0x33424752, 7, 0, 7, 3) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  237.631199][T10294] loop6: detected capacity change from 0 to 8
[  237.802072][T10305] loop4: detected capacity change from 0 to 512
[  237.810118][T10305] EXT4-fs: Ignoring removed mblk_io_submit option
[  237.812958][T10305] EXT4-fs: Ignoring removed nomblk_io_submit option
[  237.823530][T10305] EXT4-fs: Invalid journal IO priority (must be 0-7)
[  238.494365][T10324] loop4: detected capacity change from 0 to 4096
[  238.506957][T10324] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  238.561782][T10324] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  238.586486][ T2177] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  238.589777][ T7593] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  238.593024][ T7593] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  238.598919][ T7593] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  238.603563][ T6819] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  238.649550][   T33] kauditd_printk_skb: 15 callbacks suppressed
[  238.649565][   T33] audit: type=1326 audit(1757560816.240:9377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10325 comm="syz.4.1588" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa1d178eba9 code=0x0
[  238.864303][T10329] sp0: Synchronizing with TNC
[  238.880344][T10328] [U] 
[  239.953212][T10342] loop4: detected capacity change from 0 to 40427
[  239.961988][T10342] F2FS-fs (loop4): invalid crc value
[  240.086252][T10342] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  240.090666][T10342] F2FS-fs (loop4): Start checkpoint disabled!
[  240.101464][T10342] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  240.192488][ T6817] kworker/u9:6: attempt to access beyond end of device
[  240.192488][ T6817] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  240.204716][ T6817] CPU: 0 UID: 0 PID: 6817 Comm: kworker/u9:6 Not tainted syzkaller #0 PREEMPT(full) 
[  240.204742][ T6817] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  240.204761][ T6817] Workqueue: writeback wb_workfn (flush-7:4)
[  240.204785][ T6817] Call Trace:
[  240.204792][ T6817]  <TASK>
[  240.204800][ T6817]  dump_stack_lvl+0x189/0x250
[  240.204820][ T6817]  ? __pfx_dump_stack_lvl+0x10/0x10
[  240.204834][ T6817]  ? __pfx_queue_work_on+0x10/0x10
[  240.204846][ T6817]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  240.204865][ T6817]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  240.204891][ T6817]  f2fs_handle_critical_error+0x37c/0x540
[  240.204916][ T6817]  f2fs_write_end_io+0x886/0xb60
[  240.204943][ T6817]  __submit_merged_bio+0x27a/0x6a0
[  240.204966][ T6817]  __submit_merged_write_cond+0x255/0x530
[  240.204989][ T6817]  f2fs_write_data_pages+0x261d/0x3000
[  240.205028][ T6817]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  240.205051][ T6817]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  240.205092][ T6817]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  240.205109][ T6817]  ? look_up_lock_class+0x74/0x170
[  240.205130][ T6817]  ? trace_f2fs_writepages+0x7f/0x200
[  240.205147][ T6817]  ? f2fs_write_node_pages+0x478/0x6e0
[  240.205167][ T6817]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  240.205225][ T6817]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  240.205237][ T6817]  do_writepages+0x32e/0x550
[  240.205279][ T6817]  ? reacquire_held_locks+0x127/0x1d0
[  240.205291][ T6817]  ? writeback_sb_inodes+0x384/0x1010
[  240.205313][ T6817]  __writeback_single_inode+0x145/0xff0
[  240.205328][ T6817]  ? do_raw_spin_unlock+0x4d/0x240
[  240.205346][ T6817]  writeback_sb_inodes+0x6c7/0x1010
[  240.205383][ T6817]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  240.205433][ T6817]  ? rcu_is_watching+0x15/0xb0
[  240.205454][ T6817]  wb_writeback+0x43b/0xaf0
[  240.205475][ T6817]  ? queue_io+0x3d1/0x590
[  240.205493][ T6817]  ? __pfx_wb_writeback+0x10/0x10
[  240.205514][ T6817]  ? _raw_spin_unlock_irq+0x23/0x50
[  240.205535][ T6817]  wb_workfn+0x409/0xef0
[  240.205561][ T6817]  ? __pfx_wb_workfn+0x10/0x10
[  240.205577][ T6817]  ? __lock_acquire+0xab9/0xd20
[  240.205603][ T6817]  ? process_scheduled_works+0x9ef/0x17b0
[  240.205620][ T6817]  ? _raw_spin_unlock_irq+0x23/0x50
[  240.205635][ T6817]  ? process_scheduled_works+0x9ef/0x17b0
[  240.205645][ T6817]  ? process_scheduled_works+0x9ef/0x17b0
[  240.205658][ T6817]  process_scheduled_works+0xae1/0x17b0
[  240.205695][ T6817]  ? __pfx_process_scheduled_works+0x10/0x10
[  240.205721][ T6817]  worker_thread+0x8a0/0xda0
[  240.205762][ T6817]  kthread+0x711/0x8a0
[  240.205780][ T6817]  ? __pfx_worker_thread+0x10/0x10
[  240.205791][ T6817]  ? __pfx_kthread+0x10/0x10
[  240.205807][ T6817]  ? _raw_spin_unlock_irq+0x23/0x50
[  240.205823][ T6817]  ? lockdep_hardirqs_on+0x9c/0x150
[  240.205832][ T6817]  ? __pfx_kthread+0x10/0x10
[  240.205847][ T6817]  ret_from_fork+0x3fc/0x770
[  240.205863][ T6817]  ? __pfx_ret_from_fork+0x10/0x10
[  240.205880][ T6817]  ? __switch_to_asm+0x39/0x70
[  240.205892][ T6817]  ? __switch_to_asm+0x33/0x70
[  240.205905][ T6817]  ? __pfx_kthread+0x10/0x10
[  240.205919][ T6817]  ret_from_fork_asm+0x1a/0x30
[  240.205948][ T6817]  </TASK>
[  240.337652][ T6817] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  240.395723][ T5893] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  240.581651][ T5893] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  240.586347][ T5893] usb 7-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  240.605620][ T5893] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.616592][ T5893] usb 7-1: config 0 descriptor??
[  240.664167][T10363] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1599'.
[  240.748964][T10369] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1606'.
[  240.753831][T10369] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1606'.
[  240.953473][T10373] loop0: detected capacity change from 0 to 32768
[  240.977786][   T33] audit: type=1800 audit(1757560818.560:9378): pid=10373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1607" name="file1" dev="loop0" ino=4 res=0 errno=0
[  240.988383][T10373] ERROR: (device loop0): xtSearch: xt_getpage: xtree page corrupt
[  240.988383][T10373] 
[  241.001795][T10373] ERROR: (device loop0): remounting filesystem as read-only
[  241.004645][T10373] xtLookup: xtSearch returned -5
[  241.010918][   T33] audit: type=1804 audit(1757560818.600:9379): pid=10373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1607" name="/newroot/495/file1/file1" dev="loop0" ino=4 res=1 errno=0
[  241.035097][ T5893] itetech 0003:258A:6A88.0005: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.6-1/input0
[  241.155866][   T52] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  241.241552][ T2208] usb 7-1: USB disconnect, device number 3
[  241.325896][   T52] usb 5-1: Using ep0 maxpacket: 16
[  241.329624][   T52] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  241.333827][   T52] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  241.337656][   T52] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.345618][   T52] usb 5-1: config 0 descriptor??
[  241.767483][   T52] mcp2221 0003:04D8:00DD.0006: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0
[  241.993631][T10387] loop6: detected capacity change from 0 to 1024
[  242.041774][T10387] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.063730][ T9729] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.162455][T10394] loop6: detected capacity change from 0 to 1024
[  242.168404][T10394] EXT4-fs: inline encryption not supported
[  242.172520][T10394] EXT4-fs: Ignoring removed i_version option
[  242.176049][   T52] usb 5-1: USB disconnect, device number 13
[  242.187420][T10394] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  242.214254][T10394] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 2: comm syz.6.1617: lblock 2 mapped to illegal pblock 2 (length 1)
[  242.223983][T10394] Quota error (device loop6): qtree_write_dquot: dquota write failed
[  242.229052][T10394] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 48: comm syz.6.1617: lblock 0 mapped to illegal pblock 48 (length 1)
[  242.234741][T10394] Quota error (device loop6): v2_write_file_info: Can't write info structure
[  242.241622][T10394] EXT4-fs error (device loop6): ext4_acquire_dquot:6937: comm syz.6.1617: Failed to acquire dquot type 0
[  242.246905][T10394] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  242.251096][T10394] EXT4-fs error (device loop6): ext4_evict_inode:254: inode #11: comm syz.6.1617: mark_inode_dirty error
[  242.255990][T10394] EXT4-fs warning (device loop6): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  242.260218][T10394] EXT4-fs (loop6): 1 orphan inode deleted
[  242.263913][T10394] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.280447][   T64] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  242.293584][   T64] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  242.297393][   T64] EXT4-fs error (device loop6): ext4_release_dquot:6973: comm kworker/u9:2: Failed to release dquot type 0
[  242.330065][ T9729] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.335721][   T27] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 1: comm kworker/u10:0: lblock 1 mapped to illegal pblock 1 (length 1)
[  242.344598][   T27] Quota error (device loop6): remove_tree: Can't read quota data block 1
[  242.348201][   T27] EXT4-fs error (device loop6): ext4_release_dquot:6973: comm kworker/u10:0: Failed to release dquot type 0
[  242.356106][ T9729] EXT4-fs error (device loop6): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  242.366378][ T9729] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  242.372138][ T9729] EXT4-fs error (device loop6): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  242.466663][T10398] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1618'.
[  243.574317][T10412] loop4: detected capacity change from 0 to 4096
[  243.579280][T10412] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  243.687077][T10414] loop4: detected capacity change from 0 to 4096
[  243.724503][   T33] audit: type=1800 audit(1757560821.310:9380): pid=10414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1626" name="file1" dev="loop4" ino=33 res=0 errno=0
[  243.924849][T10418] loop4: detected capacity change from 0 to 32768
[  244.933458][T10447] loop6: detected capacity change from 0 to 512
[  244.962385][T10447] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  245.001494][T10447] EXT4-fs (loop6): 1 truncate cleaned up
[  245.006021][T10447] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.082850][T10453] loop4: detected capacity change from 0 to 136
[  245.217366][ T9729] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.521212][T10465] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1647'.
[  245.541481][T10465] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.546963][T10465] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.820524][T10473] netlink: 96 bytes leftover after parsing attributes in process `syz.6.1649'.
[  246.306234][T10477] loop0: detected capacity change from 0 to 32768
[  246.333438][T10477] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  246.354984][T10477] XFS (loop0): Ending clean mount
[  246.364418][T10477] XFS (loop0): Quotacheck needed: Please wait.
[  246.429118][T10477] XFS (loop0): Quotacheck: Done.
[  246.456368][T10489] loop4: detected capacity change from 0 to 2048
[  246.505686][T10490] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  246.545542][ T5862] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  246.730596][T10495] netlink: 51 bytes leftover after parsing attributes in process `syz.0.1656'.
[  246.731690][T10493] NILFS (loop4): DAT doesn't have a block to manage vblocknr = 256
[  246.757139][T10493] NILFS error (device loop4): nilfs_bmap_truncate: broken bmap (inode number=15)
[  246.798864][T10493] Remounting filesystem read-only
[  246.811521][T10493] NILFS (loop4): error -5 truncating bmap (ino=15)
[  248.154106][T10514] IPv6: Can't replace route, no match found
[  248.548991][ T7593] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  248.641701][T10534] ucma_write: process 266 (syz.6.1674) changed security contexts after opening file descriptor, this is not allowed.
[  248.963437][T10547] netlink: 'syz.6.1679': attribute type 72 has an invalid length.
[  248.968920][T10547] netlink: 164 bytes leftover after parsing attributes in process `syz.6.1679'.
[  248.974511][T10547] loop6: detected capacity change from 0 to 16
[  248.986512][T10547] erofs: Unknown parameter '0x0000000000000004'
[  249.014218][T10552] netlink: 260 bytes leftover after parsing attributes in process `syz.4.1682'.
[  249.804272][T10573] loop4: detected capacity change from 0 to 32768
[  249.838869][T10573] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  249.981536][T10573] XFS (loop4): Ending clean mount
[  250.011709][ T7593] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  250.640056][T10602] loop4: detected capacity change from 0 to 256
[  250.805966][T10602] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbbba8adb, utbl_chksum : 0xe619d30d)
[  251.208813][T10605] loop0: detected capacity change from 0 to 32768
[  251.252226][T10605] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  251.286629][T10605] 
[  251.287535][T10605] ======================================================
[  251.289983][T10605] WARNING: possible circular locking dependency detected
[  251.293049][T10605] syzkaller #0 Not tainted
[  251.295041][T10605] ------------------------------------------------------
[  251.298907][T10605] syz.0.1690/10605 is trying to acquire lock:
[  251.301510][T10605] ffff8880217640f8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_init_acl+0x2f9/0x720
[  251.305448][T10605] 
[  251.305448][T10605] but task is already holding lock:
[  251.308483][T10605] ffff888029f1a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  251.312401][T10605] 
[  251.312401][T10605] which lock already depends on the new lock.
[  251.312401][T10605] 
[  251.316763][T10605] 
[  251.316763][T10605] the existing dependency chain (in reverse order) is:
[  251.320558][T10605] 
[  251.320558][T10605] -> #4 (jbd2_handle){++++}-{0:0}:
[  251.323658][T10605]        lock_acquire+0x120/0x360
[  251.325682][T10605]        start_this_handle+0x1fa7/0x21c0
[  251.328028][T10605]        jbd2__journal_start+0x2c1/0x5b0
[  251.330503][T10605]        jbd2_journal_start+0x2a/0x40
[  251.332767][T10605]        ocfs2_start_trans+0x376/0x6d0
[  251.335036][T10605]        ocfs2_reserve_suballoc_bits+0x711/0x4640
[  251.337788][T10605]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  251.340754][T10605]        ocfs2_extend_dir+0xc76/0x4870
[  251.343071][T10605]        ocfs2_prepare_dir_for_insert+0x2fe8/0x5450
[  251.345782][T10605]        ocfs2_mknod+0x819/0x2050
[  251.347932][T10605]        ocfs2_mkdir+0x191/0x440
[  251.350110][T10605]        vfs_mkdir+0x306/0x510
[  251.352208][T10605]        do_mkdirat+0x247/0x590
[  251.354302][T10605]        __x64_sys_mkdirat+0x87/0xa0
[  251.356586][T10605]        do_syscall_64+0xfa/0x3b0
[  251.358736][T10605]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.361424][T10605] 
[  251.361424][T10605] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  251.365011][T10605]        lock_acquire+0x120/0x360
[  251.367144][T10605]        down_read+0x46/0x2e0
[  251.369170][T10605]        ocfs2_start_trans+0x36a/0x6d0
[  251.371525][T10605]        ocfs2_reserve_suballoc_bits+0x711/0x4640
[  251.374304][T10605]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  251.377172][T10605]        ocfs2_extend_dir+0xc76/0x4870
[  251.379480][T10605]        ocfs2_prepare_dir_for_insert+0x2fe8/0x5450
[  251.382138][T10605]        ocfs2_mknod+0x819/0x2050
[  251.384269][T10605]        ocfs2_mkdir+0x191/0x440
[  251.386390][T10605]        vfs_mkdir+0x306/0x510
[  251.388471][T10605]        do_mkdirat+0x247/0x590
[  251.390636][T10605]        __x64_sys_mkdirat+0x87/0xa0
[  251.392899][T10605]        do_syscall_64+0xfa/0x3b0
[  251.395033][T10605]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.397686][T10605] 
[  251.397686][T10605] -> #2 (sb_internal#4){.+.+}-{0:0}:
[  251.400941][T10605]        lock_acquire+0x120/0x360
[  251.403147][T10605]        ocfs2_start_trans+0x26b/0x6d0
[  251.405534][T10605]        ocfs2_write_begin_nolock+0x1ca6/0x4340
[  251.408265][T10605]        ocfs2_write_begin+0x1bb/0x310
[  251.410694][T10605]        generic_perform_write+0x2c5/0x900
[  251.413082][T10605]        ocfs2_file_write_iter+0x157a/0x1d10
[  251.415624][T10605]        vfs_write+0x5c9/0xb30
[  251.417696][T10605]        ksys_write+0x145/0x250
[  251.419656][T10605]        do_syscall_64+0xfa/0x3b0
[  251.421859][T10605]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.424642][T10605] 
[  251.424642][T10605] -> #1 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[  251.428366][T10605]        lock_acquire+0x120/0x360
[  251.430547][T10605]        down_write+0x96/0x1f0
[  251.432537][T10605]        ocfs2_try_remove_refcount_tree+0xb6/0x320
[  251.435290][T10605]        ocfs2_truncate_file+0xda0/0x1420
[  251.437685][T10605]        ocfs2_setattr+0x1520/0x1b40
[  251.439930][T10605]        notify_change+0xb36/0xe40
[  251.442090][T10605]        do_truncate+0x1a4/0x220
[  251.444212][T10605]        path_openat+0x306c/0x3830
[  251.446429][T10605]        do_filp_open+0x1fa/0x410
[  251.448505][T10605]        do_sys_openat2+0x121/0x1c0
[  251.450639][T10605]        __x64_sys_openat+0x138/0x170
[  251.452928][T10605]        do_syscall_64+0xfa/0x3b0
[  251.455119][T10605]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.457827][T10605] 
[  251.457827][T10605] -> #0 (&oi->ip_xattr_sem){++++}-{4:4}:
[  251.460968][T10605]        validate_chain+0xb9b/0x2140
[  251.463160][T10605]        __lock_acquire+0xab9/0xd20
[  251.465489][T10605]        lock_acquire+0x120/0x360
[  251.467562][T10605]        down_read+0x46/0x2e0
[  251.469498][T10605]        ocfs2_init_acl+0x2f9/0x720
[  251.471656][T10605]        ocfs2_mknod+0x1321/0x2050
[  251.473732][T10605]        ocfs2_create+0x1a5/0x440
[  251.475890][T10605]        path_openat+0x14f4/0x3830
[  251.478046][T10605]        do_filp_open+0x1fa/0x410
[  251.480152][T10605]        do_sys_openat2+0x121/0x1c0
[  251.482309][T10605]        __x64_sys_openat+0x138/0x170
[  251.484485][T10605]        do_syscall_64+0xfa/0x3b0
[  251.486587][T10605]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.489225][T10605] 
[  251.489225][T10605] other info that might help us debug this:
[  251.489225][T10605] 
[  251.493342][T10605] Chain exists of:
[  251.493342][T10605]   &oi->ip_xattr_sem --> &journal->j_trans_barrier --> jbd2_handle
[  251.493342][T10605] 
[  251.498831][T10605]  Possible unsafe locking scenario:
[  251.498831][T10605] 
[  251.501739][T10605]        CPU0                    CPU1
[  251.503891][T10605]        ----                    ----
[  251.506128][T10605]   rlock(jbd2_handle);
[  251.507836][T10605]                                lock(&journal->j_trans_barrier);
[  251.511017][T10605]                                lock(jbd2_handle);
[  251.513707][T10605]   rlock(&oi->ip_xattr_sem);
[  251.515730][T10605] 
[  251.515730][T10605]  *** DEADLOCK ***
[  251.515730][T10605] 
[  251.518899][T10605] 8 locks held by syz.0.1690/10605:
[  251.521009][T10605]  #0: ffff888126b76428 (sb_writers#25){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  251.524820][T10605]  #1: ffff8880217643c0 (&type->i_mutex_dir_key#21){++++}-{4:4}, at: path_openat+0x8da/0x3830
[  251.528968][T10605]  #2: ffff888122ce09c0 (&ocfs2_sysfile_lock_key[INODE_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  251.534583][T10605]  #3: ffff8880217609c0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  251.540313][T10605]  #4: ffff888122ce1840 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[  251.546071][T10605]  #5: ffff888126b76618 (sb_internal#4){.+.+}-{0:0}, at: ocfs2_mknod+0xe93/0x2050
[  251.549911][T10605]  #6: ffff88803649c8e8 (&journal->j_trans_barrier){.+.+}-{4:4}, at: ocfs2_start_trans+0x36a/0x6d0
[  251.554354][T10605]  #7: ffff888029f1a950 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x1f87/0x21c0
[  251.558354][T10605] 
[  251.558354][T10605] stack backtrace:
[  251.560808][T10605] CPU: 0 UID: 0 PID: 10605 Comm: syz.0.1690 Not tainted syzkaller #0 PREEMPT(full) 
[  251.560827][T10605] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  251.560836][T10605] Call Trace:
[  251.560845][T10605]  <TASK>
[  251.560853][T10605]  dump_stack_lvl+0x189/0x250
[  251.560876][T10605]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.560890][T10605]  ? __pfx__printk+0x10/0x10
[  251.560906][T10605]  ? stack_trace_save+0x9c/0xe0
[  251.560926][T10605]  print_circular_bug+0x2ee/0x310
[  251.560942][T10605]  check_noncircular+0x134/0x160
[  251.560957][T10605]  validate_chain+0xb9b/0x2140
[  251.560975][T10605]  __lock_acquire+0xab9/0xd20
[  251.560992][T10605]  ? ocfs2_init_acl+0x2f9/0x720
[  251.561011][T10605]  lock_acquire+0x120/0x360
[  251.561028][T10605]  ? ocfs2_init_acl+0x2f9/0x720
[  251.561043][T10605]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  251.561064][T10605]  down_read+0x46/0x2e0
[  251.561078][T10605]  ? ocfs2_init_acl+0x2f9/0x720
[  251.561097][T10605]  ocfs2_init_acl+0x2f9/0x720
[  251.561108][T10605]  ? ocfs2_mknod_locked+0x148/0x250
[  251.561124][T10605]  ? __pfx_ocfs2_init_acl+0x10/0x10
[  251.561137][T10605]  ? dquot_alloc_inode+0x216/0xa50
[  251.561149][T10605]  ? ocfs2_block_signals+0x94/0xe0
[  251.561159][T10605]  ? __pfx_ocfs2_block_signals+0x10/0x10
[  251.561170][T10605]  ? ocfs2_init_security_get+0x139/0x1a0
[  251.561217][T10605]  ocfs2_mknod+0x1321/0x2050
[  251.561236][T10605]  ? __pfx_ocfs2_mknod+0x10/0x10
[  251.561250][T10605]  ? __pfx_ocfs2_find_entry+0x10/0x10
[  251.561268][T10605]  ? __lock_acquire+0xab9/0xd20
[  251.561295][T10605]  ? look_up_lock_class+0x74/0x170
[  251.561310][T10605]  ? register_lock_class+0x51/0x320
[  251.561327][T10605]  ? __lock_acquire+0xab9/0xd20
[  251.561343][T10605]  ? __lock_acquire+0xab9/0xd20
[  251.561359][T10605]  ? do_raw_spin_lock+0x121/0x290
[  251.561372][T10605]  ? do_raw_spin_unlock+0x4d/0x240
[  251.561386][T10605]  ? rcu_is_watching+0x15/0xb0
[  251.561397][T10605]  ? ocfs2_lookup+0x5b9/0x9b0
[  251.561409][T10605]  ocfs2_create+0x1a5/0x440
[  251.561420][T10605]  ? __pfx_ocfs2_lookup+0x10/0x10
[  251.561429][T10605]  ? from_kgid+0x1b0/0x650
[  251.561445][T10605]  ? __pfx_ocfs2_create+0x10/0x10
[  251.561455][T10605]  ? HAS_UNMAPPED_ID+0x11a/0x180
[  251.561466][T10605]  ? inode_permission+0x149/0x470
[  251.561477][T10605]  ? __pfx_ocfs2_permission+0x10/0x10
[  251.561485][T10605]  ? bpf_lsm_inode_create+0x9/0x20
[  251.561498][T10605]  ? __pfx_ocfs2_create+0x10/0x10
[  251.561507][T10605]  path_openat+0x14f4/0x3830
[  251.561520][T10605]  ? arch_stack_walk+0xfc/0x150
[  251.561542][T10605]  ? __pfx_path_openat+0x10/0x10
[  251.561553][T10605]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.561569][T10605]  do_filp_open+0x1fa/0x410
[  251.561580][T10605]  ? __lock_acquire+0xab9/0xd20
[  251.561596][T10605]  ? __pfx_do_filp_open+0x10/0x10
[  251.561613][T10605]  ? _raw_spin_unlock+0x28/0x50
[  251.561629][T10605]  ? alloc_fd+0x64c/0x6c0
[  251.561647][T10605]  do_sys_openat2+0x121/0x1c0
[  251.561661][T10605]  ? __se_sys_futex+0x36f/0x400
[  251.561675][T10605]  ? __pfx_do_sys_openat2+0x10/0x10
[  251.561688][T10605]  ? rcu_is_watching+0x15/0xb0
[  251.561699][T10605]  __x64_sys_openat+0x138/0x170
[  251.561711][T10605]  do_syscall_64+0xfa/0x3b0
[  251.561724][T10605]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.561734][T10605]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.561743][T10605]  ? exc_page_fault+0x9f/0xf0
[  251.561752][T10605]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.561764][T10605] RIP: 0033:0x7f785b78eba9
[  251.561777][T10605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.561788][T10605] RSP: 002b:00007f785c592038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  251.561801][T10605] RAX: ffffffffffffffda RBX: 00007f785b9d5fa0 RCX: 00007f785b78eba9
[  251.561809][T10605] RDX: 0000000000008141 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  251.561817][T10605] RBP: 00007f785b811e19 R08: 0000000000000000 R09: 0000000000000000
[  251.561824][T10605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  251.561831][T10605] R13: 00007f785b9d6038 R14: 00007f785b9d5fa0 R15: 00007ffdf3154408
[  251.561843][T10605]  </TASK>
[  251.562596][T10611] loop6: detected capacity change from 0 to 40427
[  251.618058][T10617] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[  251.624412][T10611] F2FS-fs (loop6): invalid crc value
[  251.748454][ T5862] ocfs2: Unmounting device (7,0) on (node local)
[  251.755102][T10611] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  251.758800][T10611] F2FS-fs (loop6): Start checkpoint disabled!
[  251.776013][T10611] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  251.852463][   T33] audit: type=1800 audit(1757560829.380:9381): pid=10611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1693" name="file1" dev="loop6" ino=10 res=0 errno=0
[  252.013915][T10622] syz.6.1693: attempt to access beyond end of device
[  252.013915][T10622] loop6: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  252.020754][T10622] syz.6.1693: attempt to access beyond end of device
[  252.020754][T10622] loop6: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  252.027930][T10622] syz.6.1693: attempt to access beyond end of device
[  252.027930][T10622] loop6: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  252.035077][T10622] syz.6.1693: attempt to access beyond end of device
[  252.035077][T10622] loop6: rw=2049, sector=45120, nr_sectors = 8 limit=40427
[  252.042240][T10622] syz.6.1693: attempt to access beyond end of device
[  252.042240][T10622] loop6: rw=2049, sector=45128, nr_sectors = 8 limit=40427
[  252.049753][T10622] syz.6.1693: attempt to access beyond end of device
[  252.049753][T10622] loop6: rw=2049, sector=45136, nr_sectors = 16 limit=40427
[  252.056735][T10622] syz.6.1693: attempt to access beyond end of device
[  252.056735][T10622] loop6: rw=2049, sector=45152, nr_sectors = 8 limit=40427
[  252.063143][T10622] syz.6.1693: attempt to access beyond end of device
[  252.063143][T10622] loop6: rw=2049, sector=45160, nr_sectors = 8 limit=40427
[  252.070019][T10622] syz.6.1693: attempt to access beyond end of device
[  252.070019][T10622] loop6: rw=2049, sector=45168, nr_sectors = 8 limit=40427
[  252.077326][T10622] syz.6.1693: attempt to access beyond end of device
[  252.077326][T10622] loop6: rw=2049, sector=45176, nr_sectors = 8 limit=40427
[  252.362974][   T64] CPU: 0 UID: 0 PID: 64 Comm: kworker/u9:2 Not tainted syzkaller #0 PREEMPT(full) 
[  252.362998][   T64] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  252.363006][   T64] Workqueue: writeback wb_workfn (flush-7:6)
[  252.363028][   T64] Call Trace:
[  252.363033][   T64]  <TASK>
[  252.363038][   T64]  dump_stack_lvl+0x189/0x250
[  252.363056][   T64]  ? __pfx_dump_stack_lvl+0x10/0x10
[  252.363069][   T64]  ? __pfx_queue_work_on+0x10/0x10
[  252.363081][   T64]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  252.363108][   T64]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  252.363127][   T64]  f2fs_handle_critical_error+0x37c/0x540
[  252.363143][   T64]  f2fs_write_end_io+0x886/0xb60
[  252.363159][   T64]  __submit_merged_bio+0x27a/0x6a0
[  252.363206][   T64]  __submit_merged_write_cond+0x255/0x530
[  252.363224][   T64]  f2fs_write_data_pages+0x261d/0x3000
[  252.363242][   T64]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  252.363256][   T64]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  252.363297][   T64]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  252.363315][   T64]  ? trace_f2fs_writepages+0x7f/0x200
[  252.363329][   T64]  ? f2fs_write_node_pages+0x478/0x6e0
[  252.363344][   T64]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  252.363359][   T64]  ? f2fs_update_inode+0x13d9/0x2620
[  252.363372][   T64]  ? f2fs_write_inode+0x3fb/0x5f0
[  252.363386][   T64]  ? __pfx_f2fs_balance_fs+0x10/0x10
[  252.363399][   T64]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  252.363409][   T64]  do_writepages+0x32e/0x550
[  252.363424][   T64]  ? unwind_next_frame+0xa5/0x2390
[  252.363440][   T64]  __writeback_single_inode+0x145/0xff0
[  252.363453][   T64]  ? do_raw_spin_unlock+0x4d/0x240
[  252.363468][   T64]  writeback_sb_inodes+0x6c7/0x1010
[  252.363485][   T64]  ? fprop_reflect_period_percpu+0x6b/0x330
[  252.363504][   T64]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  252.363527][   T64]  ? rcu_is_watching+0x15/0xb0
[  252.363541][   T64]  wb_writeback+0x43b/0xaf0
[  252.363555][   T64]  ? queue_io+0x3d1/0x590
[  252.363567][   T64]  ? __pfx_wb_writeback+0x10/0x10
[  252.363582][   T64]  ? rcu_is_watching+0x15/0xb0
[  252.363594][   T64]  wb_workfn+0x409/0xef0
[  252.363607][   T64]  ? __pfx_wb_workfn+0x10/0x10
[  252.363618][   T64]  ? rcu_is_watching+0x15/0xb0
[  252.363627][   T64]  ? rcu_is_watching+0x15/0xb0
[  252.363639][   T64]  ? process_scheduled_works+0x9ef/0x17b0
[  252.363649][   T64]  ? rcu_is_watching+0x15/0xb0
[  252.363658][   T64]  ? lock_acquire+0x5f/0x360
[  252.363673][   T64]  ? rcu_is_watching+0x15/0xb0
[  252.363682][   T64]  ? process_scheduled_works+0x9ef/0x17b0
[  252.363691][   T64]  ? process_scheduled_works+0x9ef/0x17b0
[  252.363702][   T64]  process_scheduled_works+0xae1/0x17b0
[  252.363718][   T64]  ? __pfx_process_scheduled_works+0x10/0x10
[  252.363733][   T64]  worker_thread+0x8a0/0xda0
[  252.363751][   T64]  kthread+0x711/0x8a0
[  252.363765][   T64]  ? __pfx_worker_thread+0x10/0x10
[  252.363774][   T64]  ? __pfx_kthread+0x10/0x10
[  252.363801][   T64]  ? _raw_spin_unlock_irq+0x23/0x50
[  252.363818][   T64]  ? lockdep_hardirqs_on+0x9c/0x150
[  252.363829][   T64]  ? __pfx_kthread+0x10/0x10
[  252.363839][   T64]  ret_from_fork+0x3fc/0x770
[  252.363850][   T64]  ? __pfx_ret_from_fork+0x10/0x10
[  252.363862][   T64]  ? __switch_to_asm+0x39/0x70
[  252.363875][   T64]  ? __switch_to_asm+0x33/0x70
[  252.363886][   T64]  ? __pfx_kthread+0x10/0x10
[  252.363898][   T64]  ret_from_fork_asm+0x1a/0x30
[  252.363914][   T64]  </TASK>
[  252.364779][   T64] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  255.557241][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  255.559531][ T1363] ieee802154 phy1 wpan1: encryption failed: -22

VM DIAGNOSIS:
03:16:13  Registers:
info registers vcpu 0

CPU#0
RAX=1ffffffff33bea60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=0000000000002561 RDI=0000000000002562 RBP=ffffffff99df56b0 RSP=ffffc90002c1e890
R8 =ffff8881075b0237 R9 =1ffff11020eb6046 R10=dffffc0000000000 R11=ffffffff854f6db0
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99df5420 R15=0000000000000000
RIP=ffffffff854f6e27 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f785c5926c0 ffffffff 00c00000
GS =0000 ffff8880b8615000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b32d1dff8 CR3=000000011a324000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=6161616161616161 6161616161616161
XMM06=6161616161616161 6161616161616161 XMM07=6161616161616161 6161616161616161
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f785b812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffff110047190ab RBX=ffff88812053dbb8 RCX=dffffc0000000000 RDX=0000000000000002
RSI=0000000000000001 RDI=ffff8880297260c0 RBP=0000000000000001 RSP=ffffc9000410f838
R8 =ffffffff8fa3a037 R9 =1ffffffff1f47406 R10=dffffc0000000000 R11=fffffbfff1f47407
R12=ffff888100013000 R13=ffff8880238c8558 R14=1ffff110240a7b77 R15=ffff88812053dcf0
RIP=ffffffff8478d504 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f48055a06c0 ffffffff 00c00000
GS =0000 ffff8881a3c15000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f47fb7bd000 CR3=000000012965e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=00007f480559f5a0 00007f480559f580
XMM02=00007f480559f6e0 00007f480559f560 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00007f480559f5a0 XMM05=0000000000000000 00007f480559f6e0
XMM06=00007f480559f6e0 00007f480559f560 XMM07=00007f480559f5a0 00007f480559f580
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f4804812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
