last executing test programs:

2.381831109s ago: executing program 2 (id=425):
syz_io_uring_setup(0x111, &(0x7f0000000140)={0x0, 0x334e, 0x10, 0x4, 0x312}, &(0x7f00000029c0), 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)

2.38161434s ago: executing program 1 (id=426):
setreuid(0xee01, 0xee01)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x4e24, @empty}, {0x2, 0x0, @loopback}, {0x2, 0x4e23, @multicast2}, 0x20a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000002})

2.297966709s ago: executing program 2 (id=427):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000002c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@nojournal_checksum}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x6200, 0x0)
sendfile(r0, r1, 0x0, 0x20fffe82)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
lseek(r2, 0x0, 0x4)

2.297495126s ago: executing program 1 (id=429):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)={0x38, r3, 0x1, 0x0, 0x25dfdbff, {0x7}, [@L2TP_ATTR_SEND_SEQ={0x5, 0x13, 0x81}, @L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x5}]}, 0x38}}, 0x2)
syz_emit_ethernet(0x4c, &(0x7f0000000140)={@link_local, @random="ece65fbcee55", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x16, 0x11, 0x0, @remote, @local, {[], {0x3, 0xe22, 0x16, 0x0, @gue={{0x2, 0x0, 0x0, 0x3}, "ffb00afe4e70"}}}}}}}, 0x0)

2.168328297s ago: executing program 1 (id=430):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000001c0)="00940a37", 0x4)
sendto$unix(r1, &(0x7f0000000440)="36d9a32e92c131d730b1abaedb51eb66fd2d5b1f7eda4f0e859fdaf294bad70673813533d8bf1c6a77b65a7afdc01b29e73571071a68d5def5d7df839810da130b9348f4d9d407eb478d5bfb298c552a498271af70914e14ba9476fd2a0e47984c25ea20afab3064a748add27a7149e9c4705475bda2ecec9ec30214f28c5e16fd3f50f604f20232c534409e52bff64fc6ca0f5e254083aec2794b7216e002e87caf3d0fa7d04ff9e3b03e81595a04979594ff6ea888bf13de8e8f74c6178e31e47593732ae1a501ad3641d423195a788efdb643f50a8c8b9794a62f7b8dfa0fa7da9d391b92ce2a7f9fe0f9d584a3775f", 0x703d59595f6742a8, 0x800, 0x0, 0x0)
recvfrom(r1, &(0x7f00000030c0)=""/4117, 0xffffffffffffffbf, 0x1, 0x0, 0xffffffffffffffb5)
sendmsg$802154_raw(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)="eb", 0x1}, 0x1, 0x0, 0x0, 0x8008040}, 0x30008080)
sendmmsg$alg(r1, &(0x7f0000002a40)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40004}], 0x1, 0x2010)

1.922703605s ago: executing program 2 (id=432):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x90)

1.767343078s ago: executing program 2 (id=433):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000200)={[{@auto_da_alloc}, {@nodioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@bsdgroups}, {@bsdgroups}, {@resuid}]}, 0x1, 0x599, &(0x7f0000001280)="$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")
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
mmap(&(0x7f000036d000/0x2000)=nil, 0x2000, 0x100000a, 0x12, r1, 0xb3d2d000)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x80000000005, 0x100000001000087}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x400000000002)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x80000000000000a, 0x2, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20540, 0x188)
r4 = fanotify_init(0x6, 0x101801)
fanotify_mark(r4, 0x105, 0x40001032, r3, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
read$FUSE(r4, 0x0, 0x0)
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
fallocate(0xffffffffffffffff, 0x10, 0x800, 0x8000)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)

1.709465751s ago: executing program 1 (id=434):
r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r0, 0xffffffffffffffff, 0x2e}, 0x14)

1.635832876s ago: executing program 1 (id=435):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f0000000080), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
truncate(&(0x7f0000000000)='./file1\x00', 0x3)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

1.309806913s ago: executing program 1 (id=436):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x10c4, 0xea90, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000000c0)={0x2c, &(0x7f0000000100)={0x0, 0x0, 0x7, {0x7, 0x0, "392cdaab4a"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

833.116537ms ago: executing program 0 (id=437):
syz_emit_ethernet(0x66, &(0x7f0000000180)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "a24b9f", 0x30, 0x2b, 0x0, @remote, @local, {[@routing={0x3a, 0x2, 0x2, 0x1, 0x0, [@local]}], {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}}, 0x0)

518.55899ms ago: executing program 0 (id=438):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000280000002800000004000000020000000000001103000000ffffd87f000000000000000400000000020000000000000802000000000061"], 0x0, 0x44}, 0x28)

450.711837ms ago: executing program 0 (id=439):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x6c, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x40, 0x3, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_DATA={0x10, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}]}, @NFTA_SET_ELEM_EXPR={0x20, 0x7, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x81}]}}}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x100}}, 0x0)

381.092701ms ago: executing program 0 (id=440):
r0 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000940)=<r1=>0xffffffffffffffff)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0x7c81, 0x0)

268.864672ms ago: executing program 0 (id=441):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=@polexpire={0xc0, 0x1b, 0x57a500b9b82fd89, 0x0, 0x0, {{{@in6=@private0, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x60}, {0x0, 0x0, 0x0, 0x1}, {}, 0xfffffffc}}}, 0xc0}}, 0x0)

200.546072ms ago: executing program 0 (id=442):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000ac0)=ANY=[@ANYBLOB="12011001a0b4c41058044a70553a010203010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000500)={0x44, &(0x7f0000000480)=ANY=[@ANYBLOB="00151e000000c815936a829e335c8d11b1bd69c34cc5499fa03d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x20, 0x89, 0x2, 0x1}})
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r1, 0x0, 0x4048043)
socket(0x10, 0x3, 0x0)

61.134504ms ago: executing program 2 (id=443):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000040000000030a01030000000000000000050000030900010073797a31000000000900030073797a320004000008000a40000000030c000480080001"], 0x88}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb0014"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

0s ago: executing program 2 (id=444):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f00000000c0)=ANY=[@ANYBLOB='intr,heartbeat=none,errors=remount-ro,coherency=full,localflocks,intr,noacl,\x00'], 0x1, 0x4436, &(0x7f0000004480)="$eJzs3b9PHFceAPA3Az6Dz/aBz4VPOulWOkt3ujshcHUJloIxNgabOHJiK0qzXmBtkyysBUuUwpFIZylVpBRRCiuR0lFZFGmdPyFNSqe2lBRpIkWyQrS7s8AMu2KNWPCPz6dgdt5v+M68fVMML05U7swt5eaWcoWFXHnm1tKZ3Ifl0vJ8McT7pGn/h/avf9rTievkoK+9V9nV8xffvnEmhO9mf3iyvr6+Hqq6Q1NDWz7/+su9ma3HhjhTp9pu89b2ynshhJPbxlXVFUJ499sQohDCuSRtNDn2hhCOhXrejXuf3szt0WgePi6ezT+dur82fHpy9cFa6989CuHL0t/+d3v+p392Df/4n2fo4uM9GSgAAAAAAAAAAAAAAAAAAM+l8WtXr781OBQeRaF7Ndr+vu54cmz1fuz6nvlH539ZAAAAAAAAAAAAAAAAAAAAeE5tvv+fi040ef9/LDmOtKi//kbnx0jnTLx5dezC4FCy/3u0Lf//SdLP57pCf5N937P7v5/b/Hg4tNz/fXs/u9UYX6PfvhDFA6nzOB4YCOHrZOP3U9GRuFReqvz3Vnl5YXbPhvHCSse/vnt/KjrJhv7txn80037n9///67arqXp+c+8usZdaOv5dLct980nUVvzPZ+rtR/zZvXT8u2tpvVsLjNQngGr8P+veOf5jmfY7Ff/jIYRcVB1rLjUDVNcw1fRW65UmzbzS0vE/VEtLTZ3JH7LV/f9bJv4XMu0f1Py/kv0ioql0/P9US+tJldi8//vjne//i5n2DyL+1fGv+P5vSzr+h+uJ3akitb9ku/P/eKb9TsX/epyM83iUugJWo3p6q/9XR1o6/j3b8jef/+K21n+XMvX36/mv0W/j+a8x/f87qj//0Vw6/r0ty7V7/09k6nV6/h+prf/YrXT8j9TS0mvnvtrPduM/mWm/U/GvrUp6GvHfnE9+P1xP/8r6ry3p+P+5nhhvLbFS+1lb/0U7r/8vZ9o/iPVfdfwrcWd7fVmk43+0Zblq/L9v4/v/SqZe5+MfwqC1/q6l43+sZbna/d+zc/ynMvU6Hf9/dbJxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgBfAaHLsC1E8kDqP44GBEM4n56fCkWi6MJufLpVnPlgKYSxJz4UT0e1SebpQys8tlGeL+UKpVJ4J4UKSfzL0REulciU/X7h7caOt3uhOsbBYmS4WKiGE8ST97+FYo63pucp84W4I4dJG3l/i8uLdO4WF/Ozc4uuDg4ODYWJjDP1R8aNKcaFS772eG8LkRt2+aMvgatmXN8ZyNHq/vLy4UCjV0q9sqVMqzxRKW+pMJXmfh/6osri8MFOoFPOl8u1GfwdpJDmOTVx759qVoW35N6P6cXR/hwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAM3o0/NoXIYTu+lkcQhhpfIialX/4uHg2/3Tq/trw6cnVB2tPWpUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4gx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirs0jFKA0EUBuA3Y6F2HsNq2e1sVxTRwhXBE+gxPIwexUt4hxQp0qYIgWQWwmYXtkmq72sezM/MezAPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHme3ruPt7qJSHG1uYz4+/pfHOYvpf7cj9+/OMOMnM7za/fwWDfl39NRfleOlm3epevV92eM1N7vYE+G+7TX97menGtq36bm6/veRMpVRLQlv005V9W8twAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDLDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFXbgWAAAAABAmL91FH0bAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPArAAD//7ThH6I=")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x0)
setxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240), &(0x7f0000001400)=ANY=[], 0x841, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:4677' (ED25519) to the list of known hosts.
syzkaller login: [   49.923509][ T5776] cgroup: Unknown subsys name 'net'
[   50.001472][ T5776] cgroup: Unknown subsys name 'cpuset'
[   50.005466][ T5776] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   51.575826][ T5776] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.904299][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   55.908518][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   55.912306][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   55.916139][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   55.920416][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   55.933851][ T5852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   55.943856][ T5846] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   55.945231][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   55.946950][ T5846] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   55.952330][ T5851] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   55.952957][ T5846] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   55.959215][ T5846] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   55.959263][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   55.961824][ T5846] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   55.968828][ T5239] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   56.212310][ T5853] chnl_net:caif_netlink_parms(): no params data found
[   56.220720][ T5844] chnl_net:caif_netlink_parms(): no params data found
[   56.313140][ T5848] chnl_net:caif_netlink_parms(): no params data found
[   56.380375][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.383368][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.386448][ T5844] bridge_slave_0: entered allmulticast mode
[   56.391855][ T5844] bridge_slave_0: entered promiscuous mode
[   56.419758][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.422304][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.424824][ T5844] bridge_slave_1: entered allmulticast mode
[   56.427765][ T5844] bridge_slave_1: entered promiscuous mode
[   56.439950][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.442561][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.445086][ T5853] bridge_slave_0: entered allmulticast mode
[   56.449097][ T5853] bridge_slave_0: entered promiscuous mode
[   56.473535][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.476675][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.479708][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.482519][ T5853] bridge_slave_1: entered allmulticast mode
[   56.485283][ T5853] bridge_slave_1: entered promiscuous mode
[   56.509883][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.540003][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.543169][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   56.546599][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   56.549983][ T5848] bridge_slave_0: entered allmulticast mode
[   56.553839][ T5848] bridge_slave_0: entered promiscuous mode
[   56.565627][ T5844] team0: Port device team_slave_0 added
[   56.569769][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.579482][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   56.582597][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   56.585661][ T5848] bridge_slave_1: entered allmulticast mode
[   56.591509][ T5848] bridge_slave_1: entered promiscuous mode
[   56.595646][ T5844] team0: Port device team_slave_1 added
[   56.630540][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.633465][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.644119][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.649704][ T5853] team0: Port device team_slave_0 added
[   56.664033][ T5853] team0: Port device team_slave_1 added
[   56.668327][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   56.671907][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.674659][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.684394][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.708843][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   56.740532][ T5844] hsr_slave_0: entered promiscuous mode
[   56.743248][ T5844] hsr_slave_1: entered promiscuous mode
[   56.745997][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.749234][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.759500][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.776636][ T5848] team0: Port device team_slave_0 added
[   56.779403][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.782120][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.792305][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.797663][ T5848] team0: Port device team_slave_1 added
[   56.862167][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.864957][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.875314][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.880723][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.883205][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.892334][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.906288][ T5853] hsr_slave_0: entered promiscuous mode
[   56.909083][ T5853] hsr_slave_1: entered promiscuous mode
[   56.911291][ T5853] debugfs: 'hsr0' already exists in 'hsr'
[   56.913268][ T5853] Cannot create hsr debugfs directory
[   56.971055][ T5848] hsr_slave_0: entered promiscuous mode
[   56.973347][ T5848] hsr_slave_1: entered promiscuous mode
[   56.975491][ T5848] debugfs: 'hsr0' already exists in 'hsr'
[   56.977434][ T5848] Cannot create hsr debugfs directory
[   57.114470][ T5844] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.144722][ T5844] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.150805][ T5844] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.171408][ T5844] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.240069][ T5853] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   57.249911][ T5853] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   57.260484][ T5853] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   57.267076][ T5853] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   57.329618][ T5848] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   57.338414][ T5848] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   57.349402][ T5848] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   57.357028][ T5848] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   57.422954][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.439724][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.454583][ T5844] 8021q: adding VLAN 0 to HW filter on device team0
[   57.467700][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   57.479539][  T735] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.482547][  T735] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.502322][  T735] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.505473][  T735] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.511305][  T735] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.514427][  T735] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.522973][  T735] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.526135][  T735] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.580993][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.624964][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[   57.655956][  T189] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.659244][  T189] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.667777][  T189] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.670942][  T189] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.731141][ T5848] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   57.801546][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.810164][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.862232][ T5853] veth0_vlan: entered promiscuous mode
[   57.871505][ T5853] veth1_vlan: entered promiscuous mode
[   57.881225][ T5844] veth0_vlan: entered promiscuous mode
[   57.896359][ T5844] veth1_vlan: entered promiscuous mode
[   57.933966][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.940263][ T5853] veth0_macvtap: entered promiscuous mode
[   57.943829][ T5844] veth0_macvtap: entered promiscuous mode
[   57.948540][ T5239] Bluetooth: hci0: command tx timeout
[   57.951599][ T5844] veth1_macvtap: entered promiscuous mode
[   57.958897][ T5853] veth1_macvtap: entered promiscuous mode
[   57.973366][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0
[   57.988814][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1
[   57.994947][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.010694][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.019687][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.022708][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.028352][ T5239] Bluetooth: hci1: command tx timeout
[   58.030475][ T5239] Bluetooth: hci2: command tx timeout
[   58.035729][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.039413][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.046343][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.049749][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.052795][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.056107][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.080048][ T5848] veth0_vlan: entered promiscuous mode
[   58.109240][ T5848] veth1_vlan: entered promiscuous mode
[   58.140602][ T5848] veth0_macvtap: entered promiscuous mode
[   58.159290][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.162617][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.169470][ T5848] veth1_macvtap: entered promiscuous mode
[   58.190469][  T189] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.193811][  T189] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.202339][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.204962][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.217724][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[   58.245124][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[   58.256874][ T5853] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.257194][  T189] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.291322][  T189] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.302067][ T5718] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.314405][ T5718] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.317819][ T5718] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.325056][ T5914] loop1: detected capacity change from 0 to 128
[   58.330460][ T5914] =======================================================
[   58.330460][ T5914] WARNING: The mand mount option has been deprecated and
[   58.330460][ T5914]          and is ignored by this kernel. Remove the mand
[   58.330460][ T5914]          option from the mount to silence this warning.
[   58.330460][ T5914] =======================================================
[   58.347807][ T5718] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.375656][ T5914] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   58.383259][ T5914] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   58.399820][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.403179][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.447192][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.452396][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.463502][ T5853] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   58.656211][ T5934] loop0: detected capacity change from 0 to 256
[   58.660244][ T5932] loop2: detected capacity change from 0 to 512
[   58.673501][ T5932] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   58.715048][ T5932] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   58.741253][ T5932] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   58.761802][ T5932] EXT4-fs (loop2): 1 truncate cleaned up
[   58.834506][ T5932] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   58.993761][ T5941] loop0: detected capacity change from 0 to 2048
[   58.999772][ T5941] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   59.004377][ T5941] UDF-fs: Scanning with blocksize 512 failed
[   59.011386][ T5941] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   59.166441][ T5946] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.13'.
[   59.173092][ T5946] netlink: zone id is out of range
[   59.175474][ T5946] netlink: get zone limit has 8 unknown bytes
[   59.250090][ T5948] loop0: detected capacity change from 0 to 1024
[   59.257485][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.281944][ T5948] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   59.287125][ T5948] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.335566][ T5844] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   59.532037][ T5961] evm: overlay not supported
[   59.536422][ T5961] loop1: detected capacity change from 0 to 16
[   59.631653][ T5965] netlink: 12 bytes leftover after parsing attributes in process `syz.2.21'.
[   59.636880][ T5957] loop0: detected capacity change from 0 to 32768
[   59.644859][ T5957] XFS (loop0): Invalid device [./file0], error=-15
[   59.646542][ T5967] mmap: syz.1.22 (5967): VmData 37482496 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[   59.984914][ T5978] loop1: detected capacity change from 0 to 40427
[   60.003749][ T5978] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   60.006497][ T5978] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   60.028321][ T5846] Bluetooth: hci0: command tx timeout
[   60.046673][ T5978] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   60.052333][ T5978] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   60.054900][ T5978] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   60.098300][  T794] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   60.108671][ T5239] Bluetooth: hci1: command tx timeout
[   60.110970][ T5846] Bluetooth: hci2: command tx timeout
[   60.189711][ T5898] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   60.248353][  T794] usb 1-1: Using ep0 maxpacket: 16
[   60.253332][  T794] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   60.257133][  T794] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   60.261467][  T794] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[   60.265157][  T794] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.275367][  T794] usb 1-1: config 0 descriptor??
[   60.348058][ T5898] usb 3-1: Using ep0 maxpacket: 8
[   60.356268][ T5898] usb 3-1: config 0 has an invalid interface number: 148 but max is 0
[   60.367985][ T5898] usb 3-1: config 0 has no interface number 0
[   60.412903][ T5898] usb 3-1: New USB device found, idVendor=0d46, idProduct=2012, bcdDevice=4d.36
[   60.416402][ T5898] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   60.419991][ T5898] usb 3-1: Product: syz
[   60.421569][ T5898] usb 3-1: Manufacturer: syz
[   60.423365][ T5898] usb 3-1: SerialNumber: syz
[   60.428437][ T5898] usb 3-1: config 0 descriptor??
[   60.446375][ T5898] kobil_sct 3-1:0.148: KOBIL USB smart card terminal converter detected
[   60.460149][ T5898] usb 3-1: KOBIL USB smart card terminal converter now attached to ttyUSB0
[   60.692172][  T794] konepure 0003:1E7D:2DB4.0001: unknown main item tag 0x0
[   60.694476][  T794] konepure 0003:1E7D:2DB4.0001: unknown main item tag 0x0
[   60.696741][  T794] konepure 0003:1E7D:2DB4.0001: item fetching failed at offset 2/4
[   60.704311][  T794] konepure 0003:1E7D:2DB4.0001: parse failed
[   60.707185][  T794] konepure 0003:1E7D:2DB4.0001: probe with driver konepure failed with error -22
[   60.902575][  T794] usb 1-1: USB disconnect, device number 2
[   61.129778][ T6016] loop1: detected capacity change from 0 to 40427
[   61.132839][ T6016] F2FS-fs: heap/no_heap options were deprecated
[   61.137143][ T6016] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[   61.139951][ T6016] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   61.143163][ T6016] F2FS-fs (loop1): build fault injection type: 0x0
[   61.147240][ T6016] F2FS-fs (loop1): invalid crc value
[   61.189481][ T6016] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   61.193795][ T6016] F2FS-fs (loop1): Try to recover 1th superblock, ret: -30
[   61.196665][ T6016] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   61.668351][  T794] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   61.820120][  T794] usb 2-1: config 0 has an invalid interface number: 220 but max is 0
[   61.823826][  T794] usb 2-1: config 0 has an invalid interface descriptor of length 2, skipping
[   61.827572][  T794] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   61.832637][  T794] usb 2-1: config 0 has no interface number 0
[   61.835436][  T794] usb 2-1: config 0 interface 220 altsetting 0 endpoint 0xB has an invalid bInterval 218, changing to 11
[   61.840361][  T794] usb 2-1: config 0 interface 220 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   61.846082][  T794] usb 2-1: New USB device found, idVendor=08ca, idProduct=0010, bcdDevice=48.e3
[   61.849941][  T794] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.855772][  T794] usb 2-1: config 0 descriptor??
[   61.862481][  T794] aiptek 2-1:0.220: interface has no int in endpoints, but must have minimum 1
[   61.898746][   T10] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   62.063271][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.067609][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   62.071101][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   62.073664][ T2319] usb 2-1: USB disconnect, device number 2
[   62.076773][   T10] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   62.082754][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.092490][   T10] usb 1-1: config 0 descriptor??
[   62.108272][ T5846] Bluetooth: hci0: command tx timeout
[   62.188302][ T5846] Bluetooth: hci1: command tx timeout
[   62.514416][   T10] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   62.626413][ T6032] loop1: detected capacity change from 0 to 1024
[   62.654883][ T6032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   62.660121][ T6032] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.686516][   T53] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u9:2: bg 0: block 393: padding at end of block bitmap is not set
[   62.696556][   T53] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 28
[   62.702709][   T53] EXT4-fs (loop1): This should not happen!! Data will be lost
[   62.702709][   T53] 
[   62.706779][   T53] EXT4-fs (loop1): Total free blocks count 0
[   62.709598][   T53] EXT4-fs (loop1): Free/Dirty block details
[   62.712366][   T53] EXT4-fs (loop1): free_blocks=0
[   62.714509][   T53] EXT4-fs (loop1): dirty_blocks=0
[   62.716597][   T53] EXT4-fs (loop1): Block reservation details
[   62.719254][   T53] EXT4-fs (loop1): i_reserved_data_blocks=0
[   62.724515][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   62.773180][ T6030] loop0: detected capacity change from 0 to 512
[   62.797260][ T6030] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.49: corrupted in-inode xattr: e_value size too large
[   62.805869][ T6030] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.49: couldn't read orphan inode 15 (err -117)
[   62.815311][ T6030] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   62.854981][ T2319] usb 1-1: USB disconnect, device number 3
[   62.872772][   T10] usb 3-1: USB disconnect, device number 2
[   62.914392][   T10] kobil ttyUSB0: KOBIL USB smart card terminal converter now disconnected from ttyUSB0
[   62.928839][   T10] kobil_sct 3-1:0.148: device disconnected
[   62.973669][ T6044] loop2: detected capacity change from 0 to 4096
[   63.101077][ T6046] loop2: detected capacity change from 0 to 256
[   63.117762][ T6042] loop1: detected capacity change from 0 to 32768
[   63.159976][ T6042] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   63.186866][ T6042] XFS (loop1): Ending clean mount
[   63.192662][ T6042] XFS (loop1): Quotacheck needed: Please wait.
[   63.215130][ T6042] XFS (loop1): Quotacheck: Done.
[   63.239278][   T33] audit: type=1800 audit(1757545075.136:2): pid=6042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.53" name="file1" dev="loop1" ino=6150 res=0 errno=0
[   63.287293][ T5853] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   63.377404][ T6060] loop2: detected capacity change from 0 to 4096
[   63.408315][ T6061] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   63.434936][ T5844] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   63.448835][ T6060] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[   63.456691][ T6060] Remounting filesystem read-only
[   63.522018][ T6067] overlayfs: upper fs does not support tmpfile.
[   63.528153][ T6069] loop1: detected capacity change from 0 to 128
[   63.548440][ T6069] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   63.554348][ T6069] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   63.563202][   T33] audit: type=1800 audit(1757545075.456:3): pid=6069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.63" name="bus" dev="loop1" ino=12 res=0 errno=0
[   63.582818][ T6072] netlink: 16 bytes leftover after parsing attributes in process `syz.2.62'.
[   63.608177][ T5853] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   63.786498][ T6085] netlink: 64 bytes leftover after parsing attributes in process `syz.1.69'.
[   63.878827][ T6079] loop2: detected capacity change from 0 to 32768
[   63.899240][ T6079] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   63.942504][ T6079] XFS (loop2): Ending clean mount
[   63.945674][ T6079] XFS (loop2): Quotacheck needed: Please wait.
[   63.948019][ T6099] capability: warning: `syz.1.71' uses deprecated v2 capabilities in a way that may be insecure
[   63.963894][ T6079] XFS (loop2): Quotacheck: Done.
[   64.018854][ T5848] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   64.025920][ T6101] netlink: 'syz.1.72': attribute type 10 has an invalid length.
[   64.054688][ T6101] team0: Port device dummy0 added
[   64.096874][ T6101] netlink: 'syz.1.72': attribute type 10 has an invalid length.
[   64.138727][ T6101] team0: Port device dummy0 removed
[   64.145117][ T6101] bond0: (slave dummy0): Enslaving as an active interface with an up link
[   64.188738][ T5846] Bluetooth: hci0: command tx timeout
[   64.268540][ T5846] Bluetooth: hci1: command tx timeout
[   64.307743][ T6112] netlink: 'syz.2.77': attribute type 13 has an invalid length.
[   64.326540][ T6112] netlink: 'syz.2.77': attribute type 17 has an invalid length.
[   64.444487][ T6112] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   64.510723][ T5846] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   64.514529][ T5846] Bluetooth: hci2: Injecting HCI hardware error event
[   64.520827][ T5239] Bluetooth: hci2: hardware error 0x00
[   64.531647][ T6128] loop2: detected capacity change from 0 to 256
[   64.543692][ T6128] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   64.559007][ T6128] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[   64.576316][ T6128] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   64.763321][ T6126] loop1: detected capacity change from 0 to 32768
[   64.776333][ T6126] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section members_v2: section too small (63114 > 64)
[   64.776333][ T6126] members_v2 (size 64):
[   64.776333][ T6126] nr_devices mismatch: have 0 entries, should be 1
[   64.787240][ T6126] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[   66.289318][ T6152] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[   66.377979][ T2319] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   66.530051][ T2319] usb 1-1: config 0 interface 0 has no altsetting 0
[   66.533402][ T2319] usb 1-1: New USB device found, idVendor=056e, idProduct=010c, bcdDevice= 0.00
[   66.538483][ T2319] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.546719][ T2319] usb 1-1: config 0 descriptor??
[   66.572150][ T6154] loop1: detected capacity change from 0 to 32768
[   66.577173][ T6154] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.96 (6154)
[   66.588903][ T5239] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[   66.594564][ T6154] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   66.618565][ T6154] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   66.666481][ T6154] BTRFS info (device loop1): enabling ssd optimizations
[   66.676132][ T6154] BTRFS info (device loop1): enabling free space tree
[   66.697312][   T33] audit: type=1800 audit(1757545078.586:4): pid=6154 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.96" name="file1" dev="loop1" ino=260 res=0 errno=0
[   66.971684][ T2319] elecom 0003:056E:010C.0003: unknown main item tag 0x0
[   66.990928][ T2319] elecom 0003:056E:010C.0003: hidraw0: USB HID v1.01 Device [HID 056e:010c] on usb-dummy_hcd.0-1/input0
[   67.175990][ T5911] usb 1-1: USB disconnect, device number 4
[   67.204805][ T5853] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   67.821151][ T6191] loop0: detected capacity change from 0 to 256
[   67.828692][ T6191] process 'syz.0.104' launched '/dev/fd/3' with NULL argv: empty string added
[   67.965702][ T6197] loop0: detected capacity change from 0 to 2048
[   68.729974][ T6214] netlink: 172 bytes leftover after parsing attributes in process `syz.1.114'.
[   68.773120][ T6216] netlink: 24 bytes leftover after parsing attributes in process `syz.1.115'.
[   68.776316][ T6216] netlink: 24 bytes leftover after parsing attributes in process `syz.1.115'.
[   69.442661][ T6225] warning: `syz.0.119' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   69.713107][ T6231] JFS: discard option not supported on device
[   69.716591][ T6231] Mount JFS Failure: -22
[   69.724504][ T6231] jfs_mount failed w/return code = -22
[   70.008902][  T794] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   70.163482][  T794] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[   70.168427][  T794] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   70.178224][  T794] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   70.183445][  T794] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[   70.189232][  T794] usb 1-1: New USB device found, idVendor=0d8c, idProduct=0014, bcdDevice= 0.00
[   70.195373][  T794] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.205856][  T794] usb 1-1: config 0 descriptor??
[   70.412648][ T6254] loop1: detected capacity change from 0 to 512
[   70.436228][ T6254] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -13
[   70.442029][ T6254] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #13: comm syz.1.133: iget: bad i_size value: 12154757448730
[   70.450484][ T6254] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.133: couldn't read orphan inode 13 (err -117)
[   70.457423][ T6254] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   70.490755][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   70.640607][  T794] cmedia_hs100b 0003:0D8C:0014.0004: item fetching failed at offset 5/7
[   70.644759][  T794] cmedia_hs100b 0003:0D8C:0014.0004: probe with driver cmedia_hs100b failed with error -22
[   70.700497][ T6264] netlink: 8 bytes leftover after parsing attributes in process `syz.1.137'.
[   70.744381][ T6266] loop1: detected capacity change from 0 to 128
[   70.752260][ T6266] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   70.758331][ T6266] hpfs: filesystem error: improperly stopped
[   70.760955][ T6266] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   70.764965][ T6266] hpfs: You really don't want any checks? You are crazy...
[   70.772096][ T6266] hpfs: hpfs_map_sector(): read error
[   70.774420][ T6266] hpfs: code page support is disabled
[   70.786338][ T6266] hpfs: hpfs_map_4sectors(): unaligned read
[   70.791431][ T6266] hpfs: hpfs_map_4sectors(): unaligned read
[   70.793946][ T6266] hpfs: filesystem error: unable to find root dir
[   70.856974][  T794] usb 1-1: USB disconnect, device number 5
[   71.010978][ T6275] loop2: detected capacity change from 0 to 256
[   71.016289][ T6275] exfat: Deprecated parameter 'namecase'
[   71.029483][ T6275] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2b52634e, utbl_chksum : 0xe619d30d)
[   71.069821][ T6272] loop1: detected capacity change from 0 to 32768
[   71.080851][ T1365] ieee802154 phy0 wpan0: encryption failed: -22
[   71.083254][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[   71.103217][ T6272] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.134323][ T6272] XFS (loop1): Ending clean mount
[   71.164633][ T6289] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[   71.176686][ T5853] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[   71.724119][ T6310] loop0: detected capacity change from 0 to 256
[   71.737063][ T6310] FAT-fs (loop0): Directory bread(block 64) failed
[   71.739938][ T6310] FAT-fs (loop0): Directory bread(block 65) failed
[   71.742660][ T6310] FAT-fs (loop0): Directory bread(block 66) failed
[   71.745283][ T6310] FAT-fs (loop0): Directory bread(block 67) failed
[   71.747815][ T6310] FAT-fs (loop0): Directory bread(block 68) failed
[   71.751153][ T6310] FAT-fs (loop0): Directory bread(block 69) failed
[   71.753899][ T6310] FAT-fs (loop0): Directory bread(block 70) failed
[   71.756343][ T6310] FAT-fs (loop0): Directory bread(block 71) failed
[   71.759096][ T6310] FAT-fs (loop0): Directory bread(block 72) failed
[   71.761687][ T6310] FAT-fs (loop0): Directory bread(block 73) failed
[   72.002984][ T6314] loop0: detected capacity change from 0 to 8192
[   72.009718][ T6314] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   72.180918][ T6314] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[   72.184768][ T6314] FAT-fs (loop0): Filesystem has been set read-only
[   72.188994][ T6314] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[   72.192833][ T6314] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[   72.265525][ T6308] loop1: detected capacity change from 0 to 32768
[   72.298041][ T6308] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.153 (6308)
[   72.328385][ T6308] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   72.339224][ T6308] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   72.418837][ T6308] BTRFS info (device loop1): enabling ssd optimizations
[   72.421621][ T6308] BTRFS info (device loop1): enabling free space tree
[   72.473516][ T5844] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 1052)
[   72.481131][ T5853] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   72.827668][ T6346] loop2: detected capacity change from 0 to 1024
[   72.883803][   T26] hfsplus: b-tree write err: -5, ino 4
[   72.984046][ T6357] /dev/nullb0: Can't open blockdev
[   73.193058][ T6369] netlink: 'syz.0.172': attribute type 1 has an invalid length.
[   73.389490][ T6377] Bluetooth: MGMT ver 1.23
[   73.399416][ T6379] capability: warning: `syz.0.178' uses 32-bit capabilities (legacy support in use)
[   73.464076][ T6381] loop2: detected capacity change from 0 to 256
[   73.481035][ T6381] vfat: Bad value for 'shortname'
[   73.622166][ T6387] loop1: detected capacity change from 0 to 128
[   73.897201][ T6406] loop0: detected capacity change from 0 to 16
[   73.916212][ T6406] erofs (device loop0): mounted with root inode @ nid 36.
[   73.932272][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   73.936086][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   73.951696][ T6406] erofs (device loop0): readahead error at folio 7 @ nid 36
[   73.954792][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   73.971480][ T6406] erofs (device loop0): readahead error at folio 6 @ nid 36
[   73.974568][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   73.979262][ T6406] erofs (device loop0): readahead error at folio 5 @ nid 36
[   73.982517][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   73.987957][ T6406] erofs (device loop0): readahead error at folio 4 @ nid 36
[   73.998190][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.001731][ T6406] erofs (device loop0): readahead error at folio 3 @ nid 36
[   74.004910][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.019402][ T6406] erofs (device loop0): readahead error at folio 2 @ nid 36
[   74.020313][ T6411] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.027543][ T6411] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.033120][ T6411] erofs (device loop0): read error -117 @ 123 of nid 36
[   74.034529][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.048061][  T794] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   74.053844][ T6406] erofs (device loop0): readahead error at folio 1 @ nid 36
[   74.063172][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.066981][ T6406] erofs (device loop0): readahead error at folio 0 @ nid 36
[   74.071723][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.076031][ T6406] erofs (device loop0): per-inode big pcluster without sb feature for nid 36
[   74.088609][ T6406] erofs (device loop0): read error -117 @ 0 of nid 36
[   74.091474][ T6406] erofs (device loop0): failed to readdir of logical block 0 of nid 36
[   74.118879][ T6415] loop1: detected capacity change from 0 to 512
[   74.123944][ T6415] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   74.140499][ T6415] EXT4-fs (loop1): 1 truncate cleaned up
[   74.145548][ T6415] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   74.203715][  T794] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[   74.206119][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.207309][  T794] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[   74.223294][  T794] usb 3-1: config 220 has no interface number 2
[   74.226272][  T794] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[   74.233084][  T794] usb 3-1: config 220 interface 0 has no altsetting 0
[   74.236012][  T794] usb 3-1: config 220 interface 76 has no altsetting 0
[   74.255524][  T794] usb 3-1: config 220 interface 1 has no altsetting 0
[   74.270963][  T794] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[   74.278128][  T794] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.285262][  T794] usb 3-1: Product: syz
[   74.287086][  T794] usb 3-1: Manufacturer: syz
[   74.289750][  T794] usb 3-1: SerialNumber: syz
[   74.484904][ T6425] loop1: detected capacity change from 0 to 1024
[   74.543405][  T794] usb 3-1: selecting invalid altsetting 0
[   74.557619][  T794] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[   74.568381][  T794] usb 3-1: No valid video chain found.
[   74.594165][  T794] usb 3-1: selecting invalid altsetting 0
[   74.596700][  T794] usbtest 3-1:220.1: probe with driver usbtest failed with error -22
[   74.612081][  T794] usb 3-1: USB disconnect, device number 3
[   75.638327][ T6437] loop2: detected capacity change from 0 to 32768
[   75.648333][ T6437] bcachefs: bch2_fs_parse_param() Error parsing option gc_reserve_bytes: option_value
[   75.793319][ T6453] IPVS: length: 4096 != 8
[   75.811983][ T6455] openvswitch: netlink: Missing key (keys=40, expected=80)
[   76.009476][ T6473] loop2: detected capacity change from 0 to 128
[   76.026851][ T6473] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[   76.046688][ T6473] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   76.184686][ T6469] loop0: detected capacity change from 0 to 32768
[   76.190971][ T6469] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.219 (6469)
[   76.203064][ T6469] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   76.210397][ T6469] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[   76.244044][ T6469] BTRFS info (device loop0): enabling ssd optimizations
[   76.247031][ T6469] BTRFS info (device loop0): enabling free space tree
[   76.250030][ T6469] BTRFS info (device loop0): use lzo compression, level 0
[   76.253293][ T6469] BTRFS info (device loop0): max_inline set to 0
[   76.280948][ T5844] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   76.339280][  T794] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   76.384523][ T6499] netlink: 4 bytes leftover after parsing attributes in process `syz.0.226'.
[   76.397019][ T6499] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[   76.402950][ T6499] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (7)
[   76.407756][ T6499] Zero length message leads to an empty skb
[   76.508797][  T794] usb 2-1: Using ep0 maxpacket: 16
[   76.513886][  T794] usb 2-1: config 0 has an invalid interface number: 74 but max is 0
[   76.517283][  T794] usb 2-1: config 0 has no interface number 0
[   76.520223][  T794] usb 2-1: config 0 interface 74 has no altsetting 0
[   76.532828][  T794] usb 2-1: New USB device found, idVendor=0565, idProduct=0001, bcdDevice=66.36
[   76.539399][  T794] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   76.542737][  T794] usb 2-1: Product: syz
[   76.544456][  T794] usb 2-1: Manufacturer: syz
[   76.564161][  T794] usb 2-1: SerialNumber: syz
[   76.576988][  T794] usb 2-1: config 0 descriptor??
[   76.717571][ T6513] loop2: detected capacity change from 0 to 4096
[   76.775081][ T6516] loop2: detected capacity change from 0 to 256
[   76.785586][ T6516] exfat: Deprecated parameter 'namecase'
[   76.793094][  T794] belkin_sa 2-1:0.74: Belkin / Peracom / GoHubs USB Serial Adapter converter detected
[   76.797324][ T6516] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[   76.799674][  T794] usb 2-1: bcdDevice: 6636, bfc: 0
[   76.809258][  T794] usb 2-1: Belkin / Peracom / GoHubs USB Serial Adapter converter now attached to ttyUSB0
[   76.816439][  T794] usb 2-1: USB disconnect, device number 3
[   76.824525][  T794] belkin ttyUSB0: Belkin / Peracom / GoHubs USB Serial Adapter converter now disconnected from ttyUSB0
[   76.831030][  T794] belkin_sa 2-1:0.74: device disconnected
[   76.860118][ T5911] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   76.984221][   T33] audit: type=1800 audit(1757545088.876:5): pid=6526 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.239" name="/" dev="9p" ino=2 res=0 errno=0
[   77.010019][ T5911] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[   77.013443][ T5911] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[   77.017342][ T5911] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[   77.022048][ T5911] usb 1-1: config 220 has no interface number 2
[   77.025314][ T5911] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[   77.031286][ T5911] usb 1-1: config 220 interface 0 has no altsetting 0
[   77.033584][ T5911] usb 1-1: config 220 interface 76 has no altsetting 0
[   77.035989][ T5911] usb 1-1: config 220 interface 1 has no altsetting 0
[   77.041448][ T5911] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[   77.045260][ T5911] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.048694][ T5911] usb 1-1: Product: syz
[   77.050584][ T5911] usb 1-1: Manufacturer: syz
[   77.052563][ T5911] usb 1-1: SerialNumber: syz
[   77.267458][ T5911] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[   77.270320][ T5911] usb 1-1: No valid video chain found.
[   77.272766][ T5911] usb 1-1: selecting invalid altsetting 0
[   77.282063][ T5911] usb 1-1: selecting invalid altsetting 0
[   77.284324][ T5911] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[   77.289394][ T5911] usb 1-1: USB disconnect, device number 6
[   77.698044][ T5997] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   77.848420][ T5997] usb 2-1: Using ep0 maxpacket: 16
[   77.852836][ T5997] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   77.856606][ T5997] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   77.861820][ T5997] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   77.867768][ T5997] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   77.872218][ T5997] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   77.875748][ T5997] usb 2-1: Product: syz
[   77.877618][ T5997] usb 2-1: Manufacturer: syz
[   77.879728][ T5997] usb 2-1: SerialNumber: syz
[   78.295151][ T5997] usb 2-1: 0:2 : does not exist
[   78.709250][ T5997] usb 2-1: 1:0: cannot get min/max values for control 4 (id 1)
[   78.729654][ T5997] usb 2-1: USB disconnect, device number 4
[   79.009510][ T6552] delete_channel: no stack
[   79.063214][ T6567] loop0: detected capacity change from 0 to 32768
[   79.120544][ T6576] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   79.207230][ T6578] loop2: detected capacity change from 0 to 4096
[   79.218220][ T6578] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   79.245725][ T6578] ntfs3(loop2): ino=19, mi_enum_attr
[   79.250008][ T6578] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   79.255957][ T6578] ntfs3(loop2): ino=1a, mi_enum_attr
[   79.307401][ T6581] loop1: detected capacity change from 0 to 512
[   79.343644][ T6581] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[   79.347175][ T6581] EXT4-fs (loop1): orphan cleanup on readonly fs
[   79.380391][ T6581] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[   79.394020][ T6581] EXT4-fs (loop1): Cannot turn on quotas: error -22
[   79.398554][ T6581] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #13: comm syz.1.265: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[   79.429934][ T6581] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.265: couldn't read orphan inode 13 (err -117)
[   79.435851][ T6581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   79.448246][ T6581] tmpfs: Bad value for 'size'
[   79.484932][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.657838][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.2.278'.
[   79.783807][ T6618] loop2: detected capacity change from 0 to 2048
[   79.795736][ T6618] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   80.209263][ T6622] netlink: 8 bytes leftover after parsing attributes in process `syz.1.283'.
[   80.321387][ T6629] loop1: detected capacity change from 0 to 512
[   80.329421][ T6629] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   80.344030][ T6629] EXT4-fs (loop1): 1 truncate cleaned up
[   80.346984][ T6629] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   80.395210][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   80.440291][ T5911] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   80.520554][ T6638] netlink: 'syz.1.289': attribute type 6 has an invalid length.
[   80.629957][ T5911] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.639081][ T5911] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.648905][ T5911] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   80.662668][ T5911] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   80.666347][ T5911] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.691788][ T5911] usb 3-1: config 0 descriptor??
[   80.826405][ T6656] MTD: Couldn't look up './cgroup': -15
[   81.053236][ T6670] input: syz1 as /devices/virtual/input/input7
[   81.131964][ T5911] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   81.315793][  T793] cfg80211: failed to load regulatory.db
[   81.556128][ T6685] netlink: 224 bytes leftover after parsing attributes in process `syz.0.310'.
[   81.602195][ T6688] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bridge, syncid = 0, id = 0
[   81.745257][ T5911] usb 3-1: USB disconnect, device number 4
[   82.068919][ T6709] loop0: detected capacity change from 0 to 4096
[   82.075637][ T6709] ntfs3(loop0): ino=3, Correct links count -> 2.
[   82.100066][ T6709] ntfs3(loop0): ino=1a, mi_enum_attr
[   82.102287][ T6709] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   82.212694][   T33] audit: type=1326 audit(1757545094.106:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.325" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99db58eba9 code=0x7ffc0000
[   82.235013][   T33] audit: type=1326 audit(1757545094.106:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.325" exe="/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f99db58eba9 code=0x7ffc0000
[   82.248336][   T33] audit: type=1326 audit(1757545094.106:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.325" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99db58eba9 code=0x7ffc0000
[   82.280387][   T33] audit: type=1326 audit(1757545094.116:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.325" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99db58eba9 code=0x7ffc0000
[   82.412674][ T6730] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[   82.824025][ T6751] loop1: detected capacity change from 0 to 64
[   82.844278][ T6751] Bad inode number on dev loop1: 6 is out of range
[   82.935722][ T6754] loop1: detected capacity change from 0 to 1024
[   82.973032][ T6754] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.021385][ T6760] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   83.035377][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.378062][  T793] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[   83.531408][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   83.535240][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.540540][  T793] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[   83.546086][  T793] usb 2-1: New USB device found, idVendor=056a, idProduct=005d, bcdDevice= 0.00
[   83.550143][  T793] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.556515][  T793] usb 2-1: config 0 descriptor??
[   84.179427][  T793] usb 2-1: USB disconnect, device number 5
[   85.428079][  T793] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   85.484181][ T6839] use of bytesused == 0 is deprecated and will be removed in the future,
[   85.489687][ T6839] use the actual size instead.
[   85.589759][  T793] usb 2-1: New USB device found, idVendor=0545, idProduct=808b, bcdDevice=31.ad
[   85.593469][  T793] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.600182][  T793] usb 2-1: config 0 descriptor??
[   85.605303][  T793] gspca_main: tv8532-2.14.0 probing 0545:808b
[   85.813132][ T6843] loop0: detected capacity change from 0 to 32768
[   85.839765][ T6843] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   85.854363][  T793] usb 2-1: USB disconnect, device number 6
[   85.895790][ T6843] XFS (loop0): Ending clean mount
[   85.950640][ T5844] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   86.543668][ T5883] IPVS: starting estimator thread 0...
[   86.626751][ T6869] loop2: detected capacity change from 0 to 1024
[   86.679434][ T6867] IPVS: using max 79 ests per chain, 189600 per kthread
[   86.709835][   T69] hfsplus: b-tree write err: -5, ino 3
[   87.798134][ T5883] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   87.897099][ T6906] loop0: detected capacity change from 0 to 4096
[   87.913660][ T6906] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[   87.972454][ T6906] ntfs3(loop0): ino=1d, mi_enum_attr
[   87.974823][ T6906] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   87.978020][ T5883] usb 3-1: Using ep0 maxpacket: 32
[   87.981510][ T6906] ntfs3(loop0): ino=1d, mi_enum_attr
[   87.985072][ T6906] ntfs3(loop0): ino=1d, "file1" mi_enum_attr
[   87.989726][ T5883] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[   87.994066][ T5883] usb 3-1: config 0 has no interface number 0
[   87.996624][ T5883] usb 3-1: config 0 interface 12 has no altsetting 0
[   87.998956][ T6906] ntfs3(loop0): ino=1b, "file0" indx_read
[   88.002335][ T5883] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[   88.007171][ T5883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.010890][ T5883] usb 3-1: Product: syz
[   88.012665][ T5883] usb 3-1: Manufacturer: syz
[   88.014583][ T5883] usb 3-1: SerialNumber: syz
[   88.019714][ T5883] usb 3-1: config 0 descriptor??
[   88.114289][ T6902] loop1: detected capacity change from 0 to 32768
[   88.170345][ T6902] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   88.224016][ T6902] XFS (loop1): Ending clean mount
[   88.249181][ T5853] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   88.270569][ T6920] 9pnet_fd: Insufficient options for proto=fd
[   88.433294][   T33] audit: type=1326 audit(1757545100.326:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6927 comm="syz.0.401" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f99db58eba9 code=0x0
[   89.129787][ T6934] loop1: detected capacity change from 0 to 40427
[   89.134070][ T6934] F2FS-fs (loop1): Image doesn't support compression
[   89.136882][ T6934] F2FS-fs (loop1): build fault injection rate: 690
[   89.161546][ T6934] F2FS-fs (loop1): invalid crc value
[   89.224532][ T6934] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   89.229456][ T6934] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   89.275565][ T5853] syz-executor: attempt to access beyond end of device
[   89.275565][ T5853] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   89.282758][ T5853] CPU: 0 UID: 0 PID: 5853 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   89.282770][ T5853] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   89.282775][ T5853] Call Trace:
[   89.282778][ T5853]  <TASK>
[   89.282782][ T5853]  dump_stack_lvl+0x189/0x250
[   89.282795][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[   89.282804][ T5853]  ? __pfx_queue_work_on+0x10/0x10
[   89.282811][ T5853]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   89.282821][ T5853]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   89.282836][ T5853]  f2fs_handle_critical_error+0x37c/0x540
[   89.282849][ T5853]  f2fs_write_end_io+0x886/0xb60
[   89.282864][ T5853]  __submit_merged_bio+0x27a/0x6a0
[   89.282877][ T5853]  __submit_merged_write_cond+0x255/0x530
[   89.282889][ T5853]  f2fs_write_data_pages+0x261d/0x3000
[   89.282910][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   89.282947][ T5853]  ? __lock_acquire+0xab9/0xd20
[   89.282961][ T5853]  ? do_raw_spin_lock+0x121/0x290
[   89.282974][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[   89.282982][ T5853]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   89.282989][ T5853]  do_writepages+0x32e/0x550
[   89.283003][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[   89.283013][ T5853]  filemap_fdatawrite+0x199/0x240
[   89.283022][ T5853]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   89.283051][ T5853]  ? do_raw_spin_unlock+0x4d/0x240
[   89.283061][ T5853]  f2fs_sync_dirty_inodes+0x31f/0x830
[   89.283075][ T5853]  f2fs_write_checkpoint+0x95a/0x1df0
[   89.283093][ T5853]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   89.283120][ T5853]  ? kill_f2fs_super+0x298/0x6c0
[   89.283130][ T5853]  kill_f2fs_super+0x2c3/0x6c0
[   89.283140][ T5853]  ? __pfx_kill_f2fs_super+0x10/0x10
[   89.283145][ T5853]  ? radix_tree_delete_item+0x2b6/0x400
[   89.283159][ T5853]  ? shrinker_free+0x2ce/0x3e0
[   89.283167][ T5853]  deactivate_locked_super+0xbc/0x130
[   89.283177][ T5853]  cleanup_mnt+0x425/0x4c0
[   89.283184][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[   89.283192][ T5853]  task_work_run+0x1d4/0x260
[   89.283202][ T5853]  ? __pfx_task_work_run+0x10/0x10
[   89.283209][ T5853]  ? __x64_sys_umount+0x122/0x160
[   89.283220][ T5853]  ? exit_to_user_mode_loop+0x40/0x110
[   89.283232][ T5853]  exit_to_user_mode_loop+0xec/0x110
[   89.283241][ T5853]  do_syscall_64+0x2bd/0x3b0
[   89.283248][ T5853]  ? lockdep_hardirqs_on+0x9c/0x150
[   89.283254][ T5853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.283261][ T5853]  ? exc_page_fault+0x9f/0xf0
[   89.283268][ T5853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.283274][ T5853] RIP: 0033:0x7f91b198fed7
[   89.283281][ T5853] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   89.283287][ T5853] RSP: 002b:00007ffe433babe8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   89.283295][ T5853] RAX: 0000000000000000 RBX: 00007f91b1a11c05 RCX: 00007f91b198fed7
[   89.283300][ T5853] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe433baca0
[   89.283303][ T5853] RBP: 00007ffe433baca0 R08: 0000000000000000 R09: 0000000000000000
[   89.283307][ T5853] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe433bbd30
[   89.283311][ T5853] R13: 00007f91b1a11c05 R14: 0000000000015c22 R15: 00007ffe433bbd70
[   89.283323][ T5853]  </TASK>
[   89.283326][ T5853] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   89.333028][ T6939] loop0: detected capacity change from 0 to 512
[   89.429528][ T6939] EXT4-fs: Ignoring removed nobh option
[   89.445056][ T6939] fscrypt (loop0, inode 2): Error -61 getting encryption context
[   89.471084][ T6939] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[   89.473981][ T6939] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.405: casefold flag without casefold feature
[   89.479095][ T6939] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.405: couldn't read orphan inode 13 (err -117)
[   89.485451][ T6939] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.511151][ T5844] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.600875][ T6945] loop0: detected capacity change from 0 to 764
[   89.664916][ T6949] loop0: detected capacity change from 0 to 2048
[   89.677569][ T6949] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[   89.702362][ T6950] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   89.889039][ T5883] f81534 3-1:0.12: f81534_get_register: reg: 1003 failed: -71
[   89.893771][ T5883] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71
[   89.896431][ T5883] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71
[   89.901664][ T5883] f81534 3-1:0.12: probe with driver f81534 failed with error -71
[   89.910733][ T5883] usb 3-1: USB disconnect, device number 5
[   90.291206][ T6966] loop1: detected capacity change from 0 to 4096
[   90.295707][ T6966] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[   90.319853][ T6966] ntfs3(loop1): ino=19, mi_enum_attr
[   90.739282][ T6990] loop2: detected capacity change from 0 to 1024
[   90.748718][ T6990] EXT4-fs: Ignoring removed nobh option
[   90.751079][ T6990] EXT4-fs: Ignoring removed bh option
[   90.776631][ T6990] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.820032][   T33] audit: type=1800 audit(1757545102.706:11): pid=6990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.427" name="file1" dev="loop2" ino=15 res=0 errno=0
[   90.890324][   T33] audit: type=1800 audit(1757545102.786:12): pid=7002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.427" name="file1" dev="loop2" ino=15 res=0 errno=0
[   90.930226][ T6992] loop0: detected capacity change from 0 to 32768
[   90.953312][ T6990] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.427: Allocating blocks 497-513 which overlap fs metadata
[   90.965779][ T6992] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   90.984570][ T6990] EXT4-fs (loop2): pa ffff8881085df1d0: logic 256, phys. 385, len 8
[   90.988640][ T6990] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[   91.060078][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.083062][ T5844] ocfs2: Unmounting device (7,0) on (node local)
[   91.281907][ T7018] loop2: detected capacity change from 0 to 1024
[   91.338458][ T7018] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   91.343532][ T7018] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.432231][   T33] audit: type=1804 audit(1757545103.326:13): pid=7026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.433" name="/newroot/116/file1/file1" dev="loop2" ino=15 res=1 errno=0
[   91.459860][ T7025] loop1: detected capacity change from 0 to 1024
[   91.476141][ T7025] EXT4-fs: Ignoring removed orlov option
[   91.491054][ T7025] EXT4-fs: Ignoring removed nomblk_io_submit option
[   91.534444][ T7025] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.695797][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.885373][ T7019] loop0: detected capacity change from 0 to 32768
[   91.904240][ T7019] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[   91.909941][ T7019] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   92.034761][ T7019] XFS (loop0): Ending clean mount
[   92.078780][  T793] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   92.196798][ T5844] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   92.240799][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   92.245926][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   92.250789][  T793] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[   92.254827][  T793] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.270636][  T793] usb 2-1: config 0 descriptor??
[   92.804103][  T793] cp2112 0003:10C4:EA90.0007: item fetching failed at offset 5/7
[   92.810791][  T793] cp2112 0003:10C4:EA90.0007: parse failed
[   92.814352][  T793] cp2112 0003:10C4:EA90.0007: probe with driver cp2112 failed with error -22
[   92.917446][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   92.953305][ T7052] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   92.991834][  T793] usb 2-1: USB disconnect, device number 7
[   93.068159][  T794] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   93.115244][ T7054] loop2: detected capacity change from 0 to 32768
[   93.125860][ T7054] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   93.143234][ T7054] 
[   93.144378][ T7054] ======================================================
[   93.147343][ T7054] WARNING: possible circular locking dependency detected
[   93.150371][ T7054] syzkaller #0 Not tainted
[   93.153878][ T7054] ------------------------------------------------------
[   93.156859][ T7054] syz.2.444/7054 is trying to acquire lock:
[   93.159446][ T7054] ffff888115e86f40 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[   93.165244][ T7054] 
[   93.165244][ T7054] but task is already holding lock:
[   93.168359][ T7054] ffff88803b1acf78 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[   93.172486][ T7054] 
[   93.172486][ T7054] which lock already depends on the new lock.
[   93.172486][ T7054] 
[   93.177073][ T7054] 
[   93.177073][ T7054] the existing dependency chain (in reverse order) is:
[   93.181016][ T7054] 
[   93.181016][ T7054] -> #5 (&oi->ip_xattr_sem){++++}-{4:4}:
[   93.184225][ T7054]        lock_acquire+0x120/0x360
[   93.186263][ T7054]        down_read+0x46/0x2e0
[   93.188269][ T7054]        ocfs2_init_acl+0x2f9/0x720
[   93.190545][ T7054]        ocfs2_mknod+0x1321/0x2050
[   93.192822][ T7054]        ocfs2_create+0x1a5/0x440
[   93.195041][ T7054]        path_openat+0x14f4/0x3830
[   93.197292][ T7054]        do_filp_open+0x1fa/0x410
[   93.199521][ T7054]        do_sys_openat2+0x121/0x1c0
[   93.201799][ T7054]        __x64_sys_openat+0x138/0x170
[   93.204060][ T7054]        do_syscall_64+0xfa/0x3b0
[   93.206272][ T7054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.209047][ T7054] 
[   93.209047][ T7054] -> #4 (jbd2_handle){++++}-{0:0}:
[   93.212220][ T7054]        lock_acquire+0x120/0x360
[   93.214498][ T7054]        start_this_handle+0x1fa7/0x21c0
[   93.217016][ T7054]        jbd2__journal_start+0x2c1/0x5b0
[   93.219523][ T7054]        jbd2_journal_start+0x2a/0x40
[   93.221835][ T7054]        ocfs2_start_trans+0x376/0x6d0
[   93.224201][ T7054]        ocfs2_mknod+0xe93/0x2050
[   93.226575][ T7054]        ocfs2_create+0x1a5/0x440
[   93.228839][ T7054]        path_openat+0x14f4/0x3830
[   93.230936][ T7054]        do_filp_open+0x1fa/0x410
[   93.233005][ T7054]        do_sys_openat2+0x121/0x1c0
[   93.235324][ T7054]        __x64_sys_openat+0x138/0x170
[   93.237714][ T7054]        do_syscall_64+0xfa/0x3b0
[   93.239938][ T7054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.242672][ T7054] 
[   93.242672][ T7054] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[   93.246278][ T7054]        lock_acquire+0x120/0x360
[   93.248487][ T7054]        down_read+0x46/0x2e0
[   93.250547][ T7054]        ocfs2_start_trans+0x36a/0x6d0
[   93.252984][ T7054]        ocfs2_mknod+0xe93/0x2050
[   93.255084][ T7054]        ocfs2_create+0x1a5/0x440
[   93.257151][ T7054]        path_openat+0x14f4/0x3830
[   93.259418][ T7054]        do_filp_open+0x1fa/0x410
[   93.261653][ T7054]        do_sys_openat2+0x121/0x1c0
[   93.263862][ T7054]        __x64_sys_openat+0x138/0x170
[   93.266129][ T7054]        do_syscall_64+0xfa/0x3b0
[   93.268338][ T7054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.271151][ T7054] 
[   93.271151][ T7054] -> #2 (sb_internal#6){.+.+}-{0:0}:
[   93.274781][ T7054]        lock_acquire+0x120/0x360
[   93.276917][ T7054]        ocfs2_start_trans+0x26b/0x6d0
[   93.279277][ T7054]        ocfs2_mknod+0xe93/0x2050
[   93.281595][ T7054]        ocfs2_create+0x1a5/0x440
[   93.283736][ T7054]        path_openat+0x14f4/0x3830
[   93.285975][ T7054]        do_filp_open+0x1fa/0x410
[   93.288131][ T7054]        do_sys_openat2+0x121/0x1c0
[   93.290386][ T7054]        __x64_sys_openat+0x138/0x170
[   93.292765][ T7054]        do_syscall_64+0xfa/0x3b0
[   93.294957][ T7054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.297733][ T7054] 
[   93.297733][ T7054] -> #1 (&ocfs2_sysfile_lock_key[LOCAL_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[   93.302214][ T7054]        lock_acquire+0x120/0x360
[   93.304450][ T7054]        down_write+0x96/0x1f0
[   93.306491][ T7054]        ocfs2_reserve_local_alloc_bits+0x125/0x24e0
[   93.309239][ T7054]        ocfs2_reserve_clusters_with_limit+0x1be/0xba0
[   93.311990][ T7054]        ocfs2_mknod+0xe32/0x2050
[   93.314047][ T7054]        ocfs2_create+0x1a5/0x440
[   93.316173][ T7054]        path_openat+0x14f4/0x3830
[   93.318265][ T7054]        do_filp_open+0x1fa/0x410
[   93.320653][ T7054]        do_sys_openat2+0x121/0x1c0
[   93.322814][ T7054]        __x64_sys_openat+0x138/0x170
[   93.325169][ T7054]        do_syscall_64+0xfa/0x3b0
[   93.327364][ T7054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.330063][ T7054] 
[   93.330063][ T7054] -> #0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[   93.334404][ T7054]        validate_chain+0xb9b/0x2140
[   93.336688][ T7054]        __lock_acquire+0xab9/0xd20
[   93.338990][ T7054]        lock_acquire+0x120/0x360
[   93.341122][ T7054]        down_write+0x96/0x1f0
[   93.343181][ T7054]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[   93.345980][ T7054]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[   93.348908][ T7054]        ocfs2_init_xattr_set_ctxt+0x307/0x700
[   93.351671][ T7054]        ocfs2_xattr_set+0xb70/0x11f0
[   93.354058][ T7054]        __vfs_setxattr+0x43c/0x480
[   93.356368][ T7054]        __vfs_setxattr_noperm+0x12d/0x660
[   93.358796][ T7054]        vfs_setxattr+0x16b/0x2f0
[   93.361000][ T7054]        filename_setxattr+0x274/0x600
[   93.363392][ T7054]        path_setxattrat+0x364/0x3a0
[   93.365722][ T7054]        __x64_sys_setxattr+0xbc/0xe0
[   93.368056][ T7054]        do_syscall_64+0xfa/0x3b0
[   93.370295][ T7054]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.373085][ T7054] 
[   93.373085][ T7054] other info that might help us debug this:
[   93.373085][ T7054] 
[   93.377259][ T7054] Chain exists of:
[   93.377259][ T7054]   &ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem
[   93.377259][ T7054] 
[   93.384158][ T7054]  Possible unsafe locking scenario:
[   93.384158][ T7054] 
[   93.387145][ T7054]        CPU0                    CPU1
[   93.389333][ T7054]        ----                    ----
[   93.391592][ T7054]   lock(&oi->ip_xattr_sem);
[   93.393697][ T7054]                                lock(jbd2_handle);
[   93.396438][ T7054]                                lock(&oi->ip_xattr_sem);
[   93.399397][ T7054]   lock(&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]);
[   93.402647][ T7054] 
[   93.402647][ T7054]  *** DEADLOCK ***
[   93.402647][ T7054] 
[   93.405955][ T7054] 3 locks held by syz.2.444/7054:
[   93.408083][ T7054]  #0: ffff88802978a428 (sb_writers#33){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[   93.412092][ T7054]  #1: ffff88803b1ad240 (&sb->s_type->i_mutex_key#42){+.+.}-{4:4}, at: vfs_setxattr+0x144/0x2f0
[   93.416631][ T7054]  #2: ffff88803b1acf78 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[   93.420591][ T7054] 
[   93.420591][ T7054] stack backtrace:
[   93.423001][ T7054] CPU: 0 UID: 0 PID: 7054 Comm: syz.2.444 Not tainted syzkaller #0 PREEMPT(full) 
[   93.423017][ T7054] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   93.423024][ T7054] Call Trace:
[   93.423031][ T7054]  <TASK>
[   93.423037][ T7054]  dump_stack_lvl+0x189/0x250
[   93.423056][ T7054]  ? __pfx_dump_stack_lvl+0x10/0x10
[   93.423070][ T7054]  ? __pfx__printk+0x10/0x10
[   93.423086][ T7054]  ? print_lock_name+0xde/0x100
[   93.423102][ T7054]  print_circular_bug+0x2ee/0x310
[   93.423117][ T7054]  check_noncircular+0x134/0x160
[   93.423130][ T7054]  validate_chain+0xb9b/0x2140
[   93.423142][ T7054]  ? __mutex_unlock_slowpath+0x1a1/0x740
[   93.423155][ T7054]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   93.423169][ T7054]  __lock_acquire+0xab9/0xd20
[   93.423186][ T7054]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[   93.423200][ T7054]  lock_acquire+0x120/0x360
[   93.423215][ T7054]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[   93.423231][ T7054]  down_write+0x96/0x1f0
[   93.423243][ T7054]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[   93.423256][ T7054]  ? __pfx_down_write+0x10/0x10
[   93.423270][ T7054]  ocfs2_reserve_suballoc_bits+0x15e/0x4640
[   93.423289][ T7054]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[   93.423306][ T7054]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.423317][ T7054]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   93.423333][ T7054]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   93.423350][ T7054]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[   93.423363][ T7054]  ? stack_depot_save_flags+0x41b/0x860
[   93.423381][ T7054]  ? kasan_save_track+0x4f/0x80
[   93.423396][ T7054]  ? kasan_save_track+0x3e/0x80
[   93.423408][ T7054]  ? __kasan_kmalloc+0x93/0xb0
[   93.423422][ T7054]  ? __kmalloc_cache_noprof+0x230/0x3d0
[   93.423436][ T7054]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[   93.423448][ T7054]  ? ocfs2_init_xattr_set_ctxt+0x307/0x700
[   93.423487][ T7054]  ? ocfs2_xattr_set+0xb70/0x11f0
[   93.423501][ T7054]  ? __vfs_setxattr+0x43c/0x480
[   93.423518][ T7054]  ? __vfs_setxattr_noperm+0x12d/0x660
[   93.423533][ T7054]  ? vfs_setxattr+0x16b/0x2f0
[   93.423548][ T7054]  ? filename_setxattr+0x274/0x600
[   93.423563][ T7054]  ? path_setxattrat+0x364/0x3a0
[   93.423575][ T7054]  ? __x64_sys_setxattr+0xbc/0xe0
[   93.423584][ T7054]  ? do_syscall_64+0xfa/0x3b0
[   93.423594][ T7054]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.423616][ T7054]  ? __kasan_kmalloc+0x93/0xb0
[   93.423629][ T7054]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[   93.423642][ T7054]  ocfs2_reserve_new_metadata_blocks+0x403/0x940
[   93.423656][ T7054]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[   93.423668][ T7054]  ? __pfx_ocfs2_calc_xattr_set_need+0x10/0x10
[   93.423685][ T7054]  ? __lock_acquire+0xab9/0xd20
[   93.423703][ T7054]  ocfs2_init_xattr_set_ctxt+0x307/0x700
[   93.423718][ T7054]  ? __pfx_ocfs2_init_xattr_set_ctxt+0x10/0x10
[   93.423734][ T7054]  ? ocfs2_xattr_set+0xb36/0x11f0
[   93.423749][ T7054]  ? up_write+0x1c4/0x420
[   93.423759][ T7054]  ? ocfs2_xattr_set+0x334/0x11f0
[   93.423773][ T7054]  ocfs2_xattr_set+0xb70/0x11f0
[   93.423792][ T7054]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[   93.423805][ T7054]  ? dput+0x37/0x2b0
[   93.423816][ T7054]  ? dput+0x37/0x2b0
[   93.423824][ T7054]  ? step_into+0x435/0xf30
[   93.423835][ T7054]  ? step_into+0x435/0xf30
[   93.423848][ T7054]  ? posix_xattr_acl+0x93/0xc0
[   93.423863][ T7054]  ? evm_protect_xattr+0x4d4/0xa90
[   93.423883][ T7054]  ? __pfx_evm_protect_xattr+0x10/0x10
[   93.423897][ T7054]  ? __pfx_ocfs2_xattr_trusted_set+0x10/0x10
[   93.423911][ T7054]  __vfs_setxattr+0x43c/0x480
[   93.423930][ T7054]  __vfs_setxattr_noperm+0x12d/0x660
[   93.423949][ T7054]  vfs_setxattr+0x16b/0x2f0
[   93.423966][ T7054]  ? __pfx_vfs_setxattr+0x10/0x10
[   93.423982][ T7054]  ? mnt_get_write_access+0x223/0x2a0
[   93.423997][ T7054]  filename_setxattr+0x274/0x600
[   93.424016][ T7054]  ? __pfx_filename_setxattr+0x10/0x10
[   93.424033][ T7054]  ? getname_flags+0x1e5/0x540
[   93.424044][ T7054]  path_setxattrat+0x364/0x3a0
[   93.424058][ T7054]  ? __pfx_path_setxattrat+0x10/0x10
[   93.424069][ T7054]  ? do_futex+0x333/0x420
[   93.424089][ T7054]  ? rcu_is_watching+0x15/0xb0
[   93.424101][ T7054]  __x64_sys_setxattr+0xbc/0xe0
[   93.424112][ T7054]  do_syscall_64+0xfa/0x3b0
[   93.424122][ T7054]  ? lockdep_hardirqs_on+0x9c/0x150
[   93.424132][ T7054]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.424143][ T7054]  ? exc_page_fault+0x9f/0xf0
[   93.424153][ T7054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.424164][ T7054] RIP: 0033:0x7f19c978eba9
[   93.424175][ T7054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   93.424184][ T7054] RSP: 002b:00007f19ca562038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[   93.424195][ T7054] RAX: ffffffffffffffda RBX: 00007f19c99d5fa0 RCX: 00007f19c978eba9
[   93.424203][ T7054] RDX: 0000200000001400 RSI: 0000200000000240 RDI: 00002000000001c0
[   93.424210][ T7054] RBP: 00007f19c9811e19 R08: 0000000000000000 R09: 0000000000000000
[   93.424217][ T7054] R10: 0000000000000841 R11: 0000000000000246 R12: 0000000000000000
[   93.424223][ T7054] R13: 00007f19c99d6038 R14: 00007f19c99d5fa0 R15: 00007ffdb9e2d688
[   93.424235][ T7054]  </TASK>
[   93.648674][ T5848] ocfs2: Unmounting device (7,2) on (node local)
[   93.658105][  T794] usb 1-1: Using ep0 maxpacket: 16
[   93.676872][  T794] usb 1-1: New USB device found, idVendor=0458, idProduct=704a, bcdDevice=3a.55
[   93.679976][  T794] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.683521][  T794] usb 1-1: Product: syz
[   93.685260][  T794] usb 1-1: Manufacturer: syz
[   93.687323][  T794] usb 1-1: SerialNumber: syz
[   93.690337][  T794] usb 1-1: config 0 descriptor??
[   93.696196][  T794] gspca_main: gspca_sn9c20x-2.14.0 probing 0458:704a
[   94.106695][  T794] gspca_sn9c20x: Write register 1001 failed -71
[   94.109402][  T794] gspca_sn9c20x: Device initialization failed
[   94.111857][  T794] gspca_sn9c20x 1-1:0.0: probe with driver gspca_sn9c20x failed with error -71
[   94.116087][  T794] usb 1-1: USB disconnect, device number 7

VM DIAGNOSIS:
22:58:25  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000eda RDI=0000000000000edb RBP=00000000000003f8 RSP=ffffc900069064b0
R8 =ffff88801f7e0237 R9 =1ffff11003efc046 R10=dffffc0000000000 R11=ffffffff854f6e40
R12=dffffc0000000000 R13=ffffffff99b008e1 R14=ffffffff99df5420 R15=0000000000000000
RIP=ffffffff854f6ebc RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f19ca5626c0 ffffffff 00c00000
GS =0000 ffff8880b8615000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000001400 CR3=00000001113ee000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffff ffffff0000000000 XMM01=0101010101010101 0101010000000000
XMM02=695f746e756f6d5f 7a79730032736667 XMM03=736b636f6c666c61 636f6c2c6c6c7566
XMM04=000000002c6c6361 6f6e2c72746e692c XMM05=0000000000000000 00007f19ca5616e0
XMM06=00007f19ca5616e0 00007f19ca561560 XMM07=00007f19ca5615a0 00007f19ca561580
XMM08=0000000000000000 0000001b7d1475bf XMM09=0000000000000000 00007f19c9812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=c722fac94b1e7900 RBX=ffffffff819683f8 RCX=c722fac94b1e7900 RDX=0000000000000001
RSI=ffffffff8be33960 RDI=ffffffff819683f8 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f9b R9 =1ffff11026cc65f3 R10=dffffc0000000000 R11=ffffed1026cc65f4
R12=ffffffff8fa3a030 R13=0000000000000001 R14=0000000000000001 R15=1ffff110200d0000
RIP=ffffffff8b7a23f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c15000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f19c97733a0 CR3=00000001113ee000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0072657070752e79 616c7265766f2e64
XMM02=00007f19c99a7498 00007f19c99a7470 XMM03=00007f19c99a74a8 00007f19c99a74a0
XMM04=00007f19ca50d100 00007f19c99a7460 XMM05=00007f19c99a7478 00007f19c99a74c0
XMM06=00007f19c99a74b8 00007f19c99a74b0 XMM07=00007f19c99a74a8 00007f19c99a74a0
XMM08=0000000000000000 0000001b7d1475bf XMM09=0000000000000000 00007f19c9812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
