last executing test programs:

2.776536356s ago: executing program 1 (id=1276):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_vs\x00')
pread64(r0, &(0x7f0000000280)=""/86, 0x56, 0x8f)

2.688036151s ago: executing program 2 (id=1277):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f0000002680)="1c", 0x1}], 0x1, &(0x7f0000002c00)=[@prinfo={0x18, 0x84, 0x5, {0x0, 0xfffffffc}}], 0x18, 0x2000000}, 0x801)

2.629093584s ago: executing program 1 (id=1279):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000440)={0x900, 0x0, &(0x7f0000000400)={&(0x7f0000000040)={0x2, 0xa, 0xfc, 0x0, 0x2, 0x0, 0x70bd28, 0x25dfdbfe}, 0x10}}, 0x40408c0)

2.547447424s ago: executing program 2 (id=1280):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ipv6_route\x00')
preadv(r0, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/4096, 0x1000}], 0x1, 0x96, 0x0)

2.547089319s ago: executing program 1 (id=1281):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@uuid_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000300), 0x40100001, 0x189002)
r2 = openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$UI_DEV_CREATE(r2, 0x5501)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000002940)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x82, &(0x7f0000000000)={0x0, 0x10001}, &(0x7f0000000040)=0x8)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x2, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x4, 0x93, &(0x7f0000000100)=""/147, 0x0, 0x10, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x94)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r5, 0x4601, &(0x7f0000000240)={0x400, 0x30, 0xf0, 0x0, 0x0, 0x1f, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x40, 0x0, 0x7, 0x0, 0x5, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0xb})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000000140)={0x0})
ioctl$VHOST_SET_VRING_CALL(r0, 0x4008af83, 0x0)

2.489442579s ago: executing program 2 (id=1282):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
sendto$inet6(r1, 0x0, 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

2.358821995s ago: executing program 2 (id=1284):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3400000082"], 0x34}}, 0x0)
r0 = syz_io_uring_setup(0x4a60, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0xfffffffe, 0x1b3}, &(0x7f00000004c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

2.094062632s ago: executing program 2 (id=1286):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000207d1e512d00000000000109022400010000000009040000010300020009210000000122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000c40)=ANY=[@ANYBLOB='\x00\x00W'], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000680)={0x84, &(0x7f0000000240)={0x40, 0x5, 0x1b, "c98c0c53c9d6aa9eb492d81508574deceb9528209e09265f9f504d"}, 0x0, &(0x7f0000000300)={0x0, 0x8, 0x1, 0x4}, 0x0, &(0x7f0000000380)={0x20, 0x0, 0x8, {0x1c00, 0x2, [0xf0f0]}}, &(0x7f00000003c0)={0x40, 0x7, 0x2, 0x81}, &(0x7f0000000400)={0x40, 0x9, 0x1, 0xb}, &(0x7f0000000440)={0x40, 0xb, 0x2, "44ab"}, &(0x7f0000000480)={0x40, 0xf, 0x2, 0x6}, &(0x7f00000004c0)={0x40, 0x13, 0x6, @remote}, 0x0, &(0x7f0000000540)={0x40, 0x19, 0x2, "9142"}, &(0x7f0000000580)={0x40, 0x1a, 0x2, 0x5}, &(0x7f00000005c0)={0x40, 0x1c, 0x1, 0x4}, &(0x7f0000000600)={0x40, 0x1e, 0x1, 0xe}, &(0x7f0000000640)={0x40, 0x21, 0x1, 0x1b}})
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@bloom_filter={0x1e, 0x2, 0x7f, 0x7, 0x8000, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x2, 0x8}, 0x50)

1.131453235s ago: executing program 1 (id=1288):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000000614010000000020000000000900020073797a3174"], 0x38}}, 0x0)

1.029334884s ago: executing program 0 (id=1289):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000026c0)=@flushpolicy={0x38, 0x12, 0x105, 0x0, 0x0, "", [@address_filter={0x28, 0x1a, {@in=@private=0xa010102, @in=@loopback, 0x2, 0x6, 0x9}}]}, 0x38}}, 0x4000800)

1.029023299s ago: executing program 1 (id=1290):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000005d40)='./file0\x00', 0x4000, &(0x7f0000001e40)=ANY=[@ANYBLOB="71756f74612c646973636172642c646973636172642c696f636861727365743d6b6f69382d72752c646973636172642c00f4193eb3ba2a0d5ff2cd7374288ff89ec513a53e007345decb720900f8312da2463eb0edf52fad1a00ebd41c14b3ce75d0cffefd379624b16f7260c835713b263352e03b5cb8fa0c042bd1225ed4ded2b62e12fea4d7e61b738e40781e58d5fff112364ac140f419e5dafecd283b3fab6b142ddbc893b35a81fe9265591ef35fa2928e095fee4c10b22e4212378de59bca0307cc644b9620b63f0000007bbbd422d87856b71348b8f45398b9660b6b3e8ee8a8c32f3234cb46e2cd827ec25c1ca4d046bc004f8df7b1ee690a5e50510700d80c7fa65fa724d0e1b4369f1b64fe249a0312010000004ac983de925f52d735b03fea941b1e948ad8d19cfda5b799325fd69d14fcf6cdde7700a63150eb3699e5314e0827750e244150ec19f3f3f1d8be542c084b5e40bfaa8ad206d2a33b0ddbd7f8e07dc7d17174a4549ffaf5976949cb69658c42ec7cd9fe8ad82852cefb04646edb3a41eb514eb6a772b3ee9f21e25822b54ec33e592d5c040946721101d53aff21f90351c95aa0f73f1853d6afcbf9448b220e988466066fa5c09e6198fc4520d199b93bdedee87c4043815aa05668a06f8da96680ccc1a139ade90f5c79af46208f9762f54e7c29088d9de69bd2d51c6b9c42209ddc3880051303b855853407d959a5777dce25201c5ea1faa084c36e3e349915ebec53435eb2910c59394ee84ba3baf9c440ae5833c23f46b0eaac543ce0c80ba0603213e53ea59755070b18bc10b9224aa082d96700e63d51c5bffa4f712c2d7fafb9cf506c06e1ddad4fc19038407786fedb9afdfb11a5f182676dd84c919f71d5eee2f3b740b68ee7f6518eb9d8baa26f1c3871f863b134ee942eb3af92d19e70d8268839cd7b4637f0627299f99b1873ca165e410f8bd421e1a4859fd9bd6bb34d25c07e1a52b9668a530b10b8585d797124a6975a71aedbe557a17b06bbfe547aa553c3d08b8921a4b0d938c03687bd48a9a387b4c066c056f457fba5738775b900a1e82a89aae1494b05c4bb0fc8ed1a93688bf850a4f7b0942eda1f16ecf043efa6b8c1f9e0fba31f4a58ed0031180fb1b8a00e4a86826b030000002dd1272a3d1609bed545b86ca7a6bf569ed35d0000ca23b0de742f6008fdf20928370d88f8c04bc3b97b9a9e0062e8fc5fd2337d85a66bd20730f3153db2459fb34c134c06c19364e9645e83040dd16ee08f18f0ba69ac9ca3e25e15442b07000000d30d38a64613b535fa808a9b3bae00bc371271d45db200a5cbf433e2f6dd03b7c7fcc040781e5151c9badb787e7e1e2f39d60998919aa8dbd156f31a5b7fa5f9e5ec01e8c799edc322703c7fc4a81ab9bc02dd96714ee9d7e75d28d040ff3566404fd6db547a4b553197c1f316d20ea54f9459cd81351a510d101e90eabe6dc6c6ac3ffa189c073a5fb3fc382df620bf5af9e638819c77a051e6875866a849f6f578c068c0e4c7cfbc15033997efa853c96297b3201dd30ea40dc94d010a0c33da9f63a10b8f813dc789b80be3bb3f00ee58b30d5c03a6ddbf418ac1b3d4a13839e4b273c4f914bed13f8806295495d41609478798396aeec06e8d342efd8ac6b422f6c23a011b1400000000000000bc2a02094e19a1ee8bb3c3c0c088ae8efaf68c85001faf7cf5426fb7c5c367ed93eb25c48a293549d15b91b59f1b574b3f6171f8e56a402ec56bdf51d90312b3ca5398f4050000007504be21456ec953bf06f12fff20c31e7c8b55fee5c49aa939830b09995ff149258118f9aae29206f9731288b56b10de51525665fdb4e289b1c177df97af3085f82045fbd012f1dde94ffecd90b7b63d8197d9c24a6fe5915ac7d7240847f6d0bf9099ee117c83e363f2ad36a4a9f4faa5734afe9770c38c565cae87a408d0acbb2db7db9174acab60a344814ee643fa82ba41706d2360269ed276e13dd83abbc258f07b0d58ab0b65290b18b7f9f871bcb43fec5a2e3789ecd0c1069d2da80b93c86dff8933e70c2108346003ddf6b60379eee63b66e7341cdd8f87ed9f11894c9ae040976321d87405b492f419ebfa77eb367ca6e360b808451102f54893d7d1695c24bcc184b1e7d19940a2b6931ade8638dd2b85a86dc511dbb97f5035d07ca024076e8581db332b1c5f135fe6b2e9d2c18c9d5d5a524d3d5b2657e4b28f1a09696bd5b076a1471c8b2ab2ca3ba57843af1d03590f4e8985e1c463c781bb03ad7ec816ea70bbe06411aae001e0ca72ee7e828ad14bb7a092d883ad000554bf7f00000000000075cc01f8a2e1802192f09e77bc488b3bd3f08a9ce88ba2e2bcc23cf5d7372b339ce1f5003db0ad70fa6e93aa908a2ced81f5514e23e2f94ff03c1c02f5a9195f4735563efd0a1fc7dafcfb3dae043fe0c172ec3a12747d7abf4382bf7453c13df994641017a0f461add956ef8f834b762af30408af6a61f317fd3c7b0816236a768601b7c6606ba52ff126eb13d33c915c5da99d118db488da3f3d7783a608282a93fcbe0910f0389c3ef91de7c84e23daa6554c42b2b3e9f70a9f790f29011a0b5101b23bfeba6e52877ed8a188958e39375dd203d434bef4dc82cc8a21fc40c6e6e6a2475f70bf1503beb9555036e606a9d3239d1df6f2e9ef16dee590b15ac028c6d873bb2965374b733d8e11ba763ab157ed91dd871b098c0543dcbba4cf67db8c83c84369dc67735fa4faa0fdcf34b1c6a862ccae9fe4fa28746504643b57f02623a2ef34ea90f2e7f7dd771f8f75217c799d978a3533fcfab6c6f5391b626d61b400f08172fc675e2a062d06c31b85452804f7b125c291f60a02a5d62271e96fe70d64bae36e28b42e197259169ebee8f64355544fbad8b83c1c8fad02cd1a2e56a6f6e82ec7719a48a1bea803546b8af7a89faf7cef94d8ada45fc0a98a79ba90c95262f0110725c6bf7c81237534dcd6a8a113bd8ac48b7db5526ab762cec103674742476cd6b92b8c7abcfb1f8e08f0a05c1b209187049f3206bd545e8c20f8db6d8a7cdd0c9ecbb9011b611a013cd581521dfcb028d59d5c69d286fb93e4c498b3aaff7e0cdcf1f41fec65ebdbe4c2bf453140251cdd94c32b87c4634d6500000000000000000000000000000000816e6c33f92dca3e03c400"/2294], 0xff, 0x5e54, &(0x7f0000005d80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0xb9cbbe05c791f09e)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
sendfile(r0, r1, 0x0, 0xff7e82)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)

938.538116ms ago: executing program 0 (id=1291):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x30, r2})

839.918275ms ago: executing program 0 (id=1292):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000280)='./bus\x00', 0x2000898, &(0x7f0000000340)={[{@barrier}, {@nodatasum}, {@ref_verify}, {@enospc_debug}, {@noflushoncommit}, {@usebackuproot}, {@noautodefrag}, {@thread_pool={'thread_pool', 0x3d, 0x9e7e}}, {@usebackuproot}]}, 0x1, 0x55ca, &(0x7f000000abc0)="$eJzs3X9snHUdB/DnruvaFdeWMOuArGwDJFtEOjdNCCR2bNNpYTnphE3I+gNH0DmtY8NVCCtinIERijWMwQoLbn9MEYqucyiJBewqul8IJtNFBbPFNWOkOBExYTG9u+d299zaHhMpwuu1tM/zvc/z/d73njx/3PvW73MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABEHwx+N3TL/t3roJ26+ru++8a85e+2D3kuMX3rq1avND20v2dTz31aNVq1qPLF1w0/2JpkfW93d3BkEs2S+W7t9w2fwrr69vuKI0HLDxc6ltZeVQT5nq+mKqMTbnwcF+uT9NQRAURwYoSm/npXfiOQNkdlfkDzisayf1tE4dP69x28qujc8uu3xL/ktnUOloT2C0pK+rgyeupdrk73jkiEw769KL5Vyiqf7RC+4deREAwFtSk0huMm9H029xM+22aD3Sro202yPt8B1Ce3bjVKTGHTvUPCdH66M0z9pUVCgZcp6Revr8Z9qJaP9IOxI13sI8cw9NR5rSoebZEqmP1jwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3k0uuH5m/d49D7/8ldbf/u7h17/16sePrGq8ZaC7/qJ1ix/v2PG9vx2tWtV6ZOmCm+5PND2yvr+7Mwgqk/1iqe6xZ6ri8ZkDddseu6e3puFDC9cUpccNt2OyDg72hzsXVwRBc1blYDhsf3kQJHILyWawIb/wpeTOZ8ICAAAA7yVnJn/HM+1UHCzOaceSaTKW/BdKhcVrJ/W0Th0/r3Hbyq6Nzy67fMupj5cYYrzak46XaVee+IllBeMw/kbHO1EPD12RN87woiNG8/zpx/qnNdfdUHrl7gsWzphdv+XS4CfTD3csX3TfhBfHL9nXXpOX/yuHz//hmZP/AQAA+G/I/9FxhjdS/m+uqZh0cOp3ix67rur44fkP/Lyz7/kn4w8VD3Q//dLYcbf9cnVe/p+c85R5+T+ccZj/48Gp5X8AAAB4N/tf5//avHGGN1L+/8X+zZ//98pvTDk84187Xnj69xdvnVI+/7WyGTe8+cSCVxp2tf0pL//XFJb/x2RPO3xwVzjhZRVBUFP4SQUAAAByhP/vfuKjhTCvpz45iOb1y+4qe3LXG+tvjJ/V8o8zFvfPqv7i7tVf37ApNrChc92O5XNX5OX/2sLyf/E783IBAACAAvxm+y13V395ydYtew7N2XFnYvPYS+a+uuennVf1vXwsUfT8zX15+T9RWP4vGZ2XAwAAAJzEU+MmPnfo0UNfm7177YS9q9rmPD5t3+qFD/xz9t+veOnPxzddWJ6X/xsLy/9l6W165UOq087wrxA6KoKgdHCnJVXoC9o/mSkAAAAAb5Mwpzc1revduX7MrNfOPvzDNSuW/2rvpd++a2P1zQd+XXX7ucf2996Yl/9bhr//f3ing3D9f879//LW/2cVUnf9u8SNAQAAAHg/yl/PH94eP/XNBUN9/36h6/8/euaBko7m8ysnx7dVz3rig31Xra1+fVHHRZ/YfusbH46V//VTefm/rbD8X5S9fTu//w8AAABOwf/b9/8tzhtneCPd/79v3DPnrPnsPT+o/WbZU+e+eXfzd9oPTj9v87QzPlJ0fvecmX/4fl7+by8s/4fb07JfXk94fm6vCIKJgzvpuwluDae7LFLoKs4qpE58pEd92CNd6CrJKiS1RHp8rCIIpgzutEUKp4eF9khhoDxd2BQp7A0L6eshU3g0UugJr7R7y9PTjRZ+FhbSCyy6whUUp2WWRER6HBuqx2DhpD0OZJ4cAADgfSUMz+ksW5zbDKJRtis20gFlIx0QH+mAopEOGBM5IHrgUI8HjbmF8PEfz+1e+so1D9b1Xt1w9KzZe5bc0faBnkW9O7/wo55z/nL1Cws/nZf/NxWW/8NTMTa1GWr9fxCu/09/r2Fm/X9jWKiMFLrCQiJ6x4BE+BypsHtn+ByViXSPgYmZAgAAALynhZ8LFI3yPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/sHfvcVJVd4LATzf9oJum6YgBY0xAjYju0jRNSBBxJBJ3TeKSJiEbxwyhERrt0AYUcMWYFR+ZbCS6GDUmJuzgJ6N5DKuYSIwTI0RHTDIqic9Z8TnoRFZdgo4ax2TZT/etU111bxddyENwv98/uk7V7zxvPbrOvbfOBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/z9ctuK2pheH/q/P//LLm57/8vtm/mbmcdsP+MstDa+OOP+h7ccMb/jRS8OWLH2hY9o517bNXn3NlrUrQ2jrKVeRFK+4a1hl5fg/fOKWm664u2XW8BkX1OTqzcXDoO4/lbk7l8RWnx0cwq0VIVSlA2MakkB17n5DrO+QhhDeFXoD+RId9UmJdMPh7roQVoXeQL6q2+pCaCgIzHjgznWXdSeuqgvhiBBCbbqNJ2qTNurSgVE1SaA+HVhQlQRe357IB35WmQRgZ9T09WB8M+Rf9GvaijM09V1Z7+uvts/q9nPpt9eAmGgqne+lj+zhThXIPJdtO/u07bg69ojM22P9Lj1t3m17R2Y7r/C0FX6Ryn1D2d4bqg2VczvmzV7StTg+UhmamweUqinzPC/Lp3fled607fw5O5Peb16HsQNNu+V1eEf9tMbLXp567NrT/njWEYs3ztzVbj5WsEkL03tabci95vab5zGa8vZ9nmzflcK7177+tGW+JY30pSuE8Ok/vbvikQVPHbz1jWdPmXrzE1+9etbSa2ZMfXTYzyf+47UH3Drr8sz8v2nH8//4co63lUW5Y6tvNiZz8/hIQ0xsbUzm5gAAALDf2Lm9pr325l7TD49/9qkz7rp12ZOrP1n1pUm/OvWgxqrzvt716QPXTn7vpVd23n9AZv4/srzj//GQf0PhaNeHMKUncfGQEA7qeTwJ/DB257QhIRzak2orDnwkFVgfwnt6Ekflq0qVGBhLjEwFft+YC0xJBTbEQFsqcH0MrEgFLomBNanAnBhYnwqcEAOhs3gcRzfmxlF2oC4G2pONuCaehfBKY2wtta025asCAADYTXKzw+riuwXnOuxqhji9XFPXX4Z4BnbJDLWpGtIz2Py0qmQNVf3VUNlfDflxL9vx8DM1V/RXc+Y0jIriDG+O+GLlkKmHfeuW68fc0Prk1C+9OvHTH/zzi6+uP+qf/vvPzl/83aMz8/+WHc//a/voSEXm+H8I03v+xtyVuUhXPt7eVpQBAAAA2AVX3bfywe8dfdL/uf3p23/yvmu/V7n+6k/932e2XnzYuE+Orhj4d19Yk5n/Tynv/P+4T2RAQeZwb9wNMX9ICC3FgaTaY7OB5Kj3oFwAAAAA9gf54/H5Y+GdudvkFO30fDqbv20n88cD/1P6zH/5tr9+9APXPnjK0lGHb7niv53zRsW7J/7ugJM3jr3/pfeP+oemgdnz/9vKO/+/vvg26cSG2Isrh4QwsCBwT+xld6DHyBh4+vjiQG78G+IGWB6ryp2YkK9qeSzRHgMtqcCqUiV+my9xUHEg92TlG784P47OXImCAAAAAOx1cXdAPC4fz///2fSj33fUsKcmPPn+25Y+N2XlZ8+o/+bhPzrw+SFd0yZ8aMpxH30kM/9v37nz/3vmwZnT+7sGhTC2KoQB6R8G3FufLAwYAw0VucQv6pO6BqSrurA+hMndA0tX9Uxu/f+q9BqDD9QlVcXAQYf9YNuo7sT36kIYWxh45HPXTehOLE4F8o1/pi6EEd2jTTe+dmDSeHW68WsGhvD+gkC+qtMGhtDdWE26qjtrc9cxSFd1U20IQwsC+ao+VBvC0gDAfir+K51b+OCipefNn93V1XH2HkzEffh1YV5nV0fznAVdc2tL9Gluqs9FyxhdmB1TuVe+eTy3RNHMETePLied/51gS2Fbuf34mRMHc/fjd6HqnnG2VhfdHZ8e8ujDs02Egm9SpYZcuYeHXF9YSe+TmKk/5q8Jg8LAJYs6zm4+d/bixWePS/6Wm701+RsPMyXbalx6W9X31bcyXh4lV8tKeavb6sjCSsYuPnPh2EVLzxvTeebs0ztO7/hi68Rxra0TPjxxQuvY7lG1JH/7GeqRfVWdGur268oc124c6sFVBZXsjU8NCQmJ/S0xe0XFRVNm/foXnz9kw5nnnnrI3x8yd8ypf3X5bxae0nzc9F9d95cbM/P/hTue/8dPnfjJn1ufodTx/6Z4mD95vPcwf3sMrCr3+H9TqaP5+RMDRqYCy2JgmcP8AAAAvDPE3ZFxb2bcK/3dhn+69cS5c457/ZefnXH1306cdMa5m49o+urVJ6/4D5tfWbHuoy9n5v/Lyvv9/25a/z+/dP3HSy3zf1Qs0VJq/f/0Mv/59f+XlVr/P73Mf379/1Vvw/r/S/KB1CZ5xfr/AADAO8HeW/+/3+X90xcIyGTod3n/9AUCMhn6Xca/3AsE7PT6/wu6/qJ+2OULJh0/ZuG371l32IqhN73v8am/PnzlMWNuW/uj18bdmJn/ryhv/m/hfgAAANh33PXLgV/46qujfvHQPa+fWHHpb7fe8Om/6jj6uD8MbT19+sfqvn7Dv2Xm/6vKm//v/fX/Qqnz/0eWCrSVWhjQ+n8AAADsp0qt//f9oU+PXL94zPX3/fTFHz3V/vO5k5/7dyu+8cHZo1q+v2HTb5rmbM7M/9eUN/+Pp11UFuWOvXmzMVnTLqTXtNvamP/JAAAAAOwfKkNzc3WZeYtWRv3IW29zU24p0B2lCz18+7B1Syrvuqqidus3vjbruOYLTj5nwYlf2fz1+ge/Uz+zufbszPx/fXnz/6LfZdxRP63xspenHvvm2tP+eNYRizfO7D3+DwAAAOw55e6XAAAAAAAAAAAAAAAA3n4Pta885o1xH3th7qHj/vSZk5/4xvL3fu6ev7n2z+f89ITbD+3cPmpG5vf/YXpPuVK//4/X/Yu/LziwKHdstf/1/3L3Z3zixqU9Sxbe2xjC4YWB+RfNf1fIXZv/yMLAuplHDe9OXJQucfuTJzzXnZiVDpw05oDXuhOTU4H2uEjie9KBeFXF1wanAnF5xQfTgbg91qQDNbnA1wYn46hIb6stDcm2qkhvq8caQhhSEMhvq1sbkjYq0gO8KhXID/CsdCAOcFouUJnu1Y2Dkl7FQEMs+jeDkl4BALDPit8Cq8O8zq6OlvgVPt4eXFV8GxUtWXZhttqKMpt/PLc02cwRN48uJz0g/V2091rj1aG2ewjjMl9XC7NU9Ixy99TSz6Y7sMSQ+1vtrbJEubSd3XQ1pUdUl4yoec6CrrnV/Q58fP9ZWqv6zTIuM9kpzFLZs0nLqKWMvpQxojK3TRldjvcrQ3PzgFSuSTHYFIr094oo9/f6hev8lXoVFOb527prLx0wfMDr/zb5K3fdOaS664zpHV85+L5/Hjpu7re/eWf7Nb/PzP+bypv/1xaO67XcxQCWxSvrHTskhPYyRwQAAADvfP/zgtU/PmXBhi3z1lc9+rvfza/85CnV28+/5fzzvvLYL5af9LV///1dja+peGjbKS9sO/evX/jOB79797lPnTDn3FumbTpuc0ft9V/6i9VnjMjM/0eWN/+Pe7Byh4KTvR3r4/X/Lx4SQs+l9ZuSwA/jcE8bEsKhPam2WCK5oP7HY4mWJPDDuMPkqFiiva24qoExsCYV+H1jLrA+FdgQA7m9FD8IuV05VzSGMKEnNb24xMJYoikV+GQMjEwFmmOgJRUYHANTUoEXB+cCbanAP8ZA6CzeVj8ZnNtWAAAAOyM3z6ouvhvS87w1VTvMcEFYU9FfDfX9ZajsL0NtfxlKjSLe/3HMUF2R3Qrxoep0rXWpWjIZ4sXwd7pfmQzht8U50wUzTcfzD/LnG1QUZ5j0zR+3H/PxRd/e9tVv3X/ihy45ccWVL1/6sUHDr3z0f3deMGjwtvrM/L+lvPl/ffFt0vqGOP/vvf5fErgndu/KeOr4yBh4+vjiQG7HwIY42V2er6otVyI3aV8eS0yJgZGpwMIYmJIKtE/PBVYNLw7kZtr5xi/ON96ZK1EQAAAAgL0u7iCIu2ni/H/tpPDKISe+3nrwlUMXTrr/ngs/OrvuwNq6f568ceXkS2vvOnJgZv4/pbz5f2xvUGFjl8TePDs4hFsrenuTD4xpSAJxP0ZD/Hn8IQ0hvKtgB0e+REd9UqIm1XC4uy75hXpNuqrb6pI1BuL9GQ/cue6y7sRVdSEcUbD3Jd/GE7VJG3XpwKiaJFCfDiyoSgJxz08+8LPKJAC7LL9XML6gcqe65DX1Xa7E6++dck3Q9PAy+0D7yNfXb672lNr0A7l9qnk797RlqmOPyLw91nu37Y/vtibvtsIvUrlvKNt7Q7Whcm7HvNlLuhbHRwp/yZqxh57nwl+plpPeDa/DZW+9t/2rLehAz8ZuSX18tPRdru/XYUWs7o76aY2XvTz12LWn/fGsIxZvnFl2N0qIPxQ+9saFRz9WsHn3tNqQe83td58nbT5P9r1/A5lPq8x2HulpCyGsvnjegw/8y+uPV21u/S8fmrj6phfvW/2dY+6YN+Y9W772ga0vvXpSZv7fVt78vyp12+ONuDEXDQlhdMHGvTdu/qlDks/BgkDyKTk0G0gOuW9uLPnJCQAAALtbfn9Dfn9BZ+42OSE8PU/O5m/byfxxf8WUPvOX2++hE/7hy8df9fxnPrX54MvvXfnQpv/04jMfnXX8HdseXrP2+daT3/1wZv7fvuP5/8BUNx3/d/yfPcTx/z7tY7uiMwamH1i2S7uiM9WxRzj+36d9/d3m+H+fHP9/G4//93D8v5Dj//u3ff1py3xLWuhLVwihfcj3bv55/ezRg644//NzNv704VdaJj3RcMHHfvI/Tlgerrlw3Z8z8/+F5c3/rf/X96J9+fX/2kut/7ew1Pp/y6z/BwAA7FElFppLz/Myq/dlMqRX78tk6HeBwB0vMWj9v7ey/l/9qeed+kzjS4deM/Xm//yT2Zc8fuopjx4x4PHP3vzZG8ZePfqpD2zJzP+XlTf/jy+HQYWt7y/r/42cXqKqFTGw0MKAAAAA7ItK7SAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg7bXmzuXv3b788GNuePTdN5zwr6s2zDvsV0dvHz/htObRy4dWXPl3//LSsCVLX+iYds61bbNXX7Nl7coQOnvKVSTFK+4aVlk5/g+fuOWmK+5umTV8xgW1uXqrc7fvLcodW32zMYRVBY80xMTWxu47vYEZn7hxaVV34t7GEA4vDMy/aP67uhPXN4ZwZGFg3cyjhncnLkqXuP3JE57rTsxKB04ac8Br3YnJuUBFurvfHZx0tyLd3csGhzCkIJDv7hcGF1eVb+M/5gKV6Ta+35C0EQMNsei3GpI2YqArlugcGMLYqhAGpKv6dW1S1YB0VX9fm1Q1IF3Vf60NYXIIoSpd1ZM1SVVV6ZFvrEmqioGDDvvBtlHdiVU1IYwtDDzyuesmdCfOSgXyjX+qJoQR3S+ZdOM/rk4ar043flV1CO8PIdSkS/xrVVKiJl3imaoQhhYE8o2fURXC0sA7QvzwmVv44KKl582f3dXVcfYeTNTk2qoL8zq7OprnLOiaW5vqUykVBentF771sT++7fw53bczR9w8upx0Va5cdU+XW6uL7o7f13sf+1VfWEnv85GpP+avCYPCwCWLOs5uPnf24sVnj0v+lpu9Nfk7IBdNttW4/WVbHVlYydjFZy4cu2jpeWM6z5x9esfpHV9snTiutXXChydOaB3bPaqW5O/uGOp1e3+oB1cVVLI3PgAkJCT2t0Rl0adby77+QZ75ot/b0epQ2/MBnZlWFGap6Bnl7hj0R97iiN/K95R+RzQuM3HIZGntP8v4zGSiN0tdkqXne11mclhYU2XPJo33K0Nz84BS26Gp+G7h5n1pFzbvptymKzcNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/jx04EAAAAAAA8n9thKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqirswIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQeOBQAAAACE+VuH0bMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwKUAAAD//82C0Ww=")
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000800)={0x2, 0x0, {0x1, @usage=0x5, 0x0, 0x0, 0x2, 0x10000000007, 0x2, 0x2, 0x402, @struct={0x8, 0x3}, 0x2, 0x9, [0x1, 0x362, 0x7, 0x9, 0xfffffffffffffffa, 0x2]}, {0xcf2, @struct={0x401, 0x3}, 0x0, 0x1, 0x2, 0x10000000000a2c1, 0x8a, 0x6, 0x51, @struct={0x7, 0x50}, 0x7, 0x7, [0x1ff, 0xad8, 0x0, 0x10000, 0x9, 0x2]}, {0x1, @usage=0x1, 0x0, 0xdac, 0xff, 0x8, 0xfff, 0x0, 0x6a, @struct={0x1, 0x5}, 0x6b9, 0x334a, [0x7fffffff, 0x100000000, 0x7, 0x3, 0x5, 0xfffffffffffffffd]}, {0x1, 0x2, 0x4}})

314.834504ms ago: executing program 0 (id=1293):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, 0x0, &(0x7f0000000140))

228.231534ms ago: executing program 0 (id=1294):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000280)={r0, 0x0, 0x0}, 0x20)

96.866478ms ago: executing program 0 (id=1295):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100000b529708410e42416ed401020301090224000100000000090400020221f768000905013d000401ff070905021008"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

53.913727ms ago: executing program 2 (id=1296):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xfffff000)

0s ago: executing program 1 (id=1297):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={<r3=>r2, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f00000002c0)={r3, 0x7, 0x6, 0x8, 0x79d, 0x6}, 0x14)

kernel console output (not intermixed with test programs):

ing filesystem read-only
[  102.281106][ T6806] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -117
[  102.290927][ T6806] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  102.313291][ T6806] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.373700][ T5901] apple 0003:05AC:024B.0003: unknown main item tag 0x6
[  102.376623][ T5901] apple 0003:05AC:024B.0003: unknown main item tag 0x6
[  102.389488][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.392848][ T5901] apple 0003:05AC:024B.0003: unknown main item tag 0x7
[  102.406908][ T5901] apple 0003:05AC:024B.0003: item fetching failed at offset 67/69
[  102.412604][ T5901] apple 0003:05AC:024B.0003: parse failed
[  102.414521][ T5901] apple 0003:05AC:024B.0003: probe with driver apple failed with error -22
[  102.489076][ T6842] loop0: detected capacity change from 0 to 512
[  102.520667][ T6842] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  102.525188][ T6842] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.567237][ T5901] usb 3-1: USB disconnect, device number 9
[  102.707418][ T6846] mmap: syz.1.382 (6846) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  102.748730][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.151802][ T6866] dummy0: entered promiscuous mode
[  103.153876][ T6866] macsec1: entered promiscuous mode
[  103.157975][ T6866] dummy0: left promiscuous mode
[  103.646082][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.756592][ T6871] vivid-007: =================  START STATUS  =================
[  103.761253][ T6871] vivid-007: Enable Output Cropping: true grabbed
[  103.765227][ T6871] vivid-007: Enable Output Composing: true grabbed
[  103.768105][ T6871] vivid-007: Enable Output Scaler: true grabbed
[  103.770633][ T6871] vivid-007: Tx RGB Quantization Range: Automatic grabbed
[  103.773588][ T6871] vivid-007: Transmit Mode: HDMI grabbed
[  103.775875][ T6871] vivid-007: Hotplug Present: 0x00000000
[  103.780055][ T6871] vivid-007: RxSense Present: 0x00000000
[  103.782300][ T6871] vivid-007: EDID Present: 0x00000000
[  103.784595][ T6871] vivid-007: ==================  END STATUS  ==================
[  103.927266][   T10] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  104.090724][   T10] usb 3-1: Using ep0 maxpacket: 32
[  104.099687][   T10] usb 3-1: config 0 has an invalid interface number: 2 but max is 0
[  104.108346][   T10] usb 3-1: config 0 has no interface number 0
[  104.111064][   T10] usb 3-1: config 0 interface 2 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  104.126941][   T10] usb 3-1: config 0 interface 2 has no altsetting 0
[  104.135897][   T10] usb 3-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[  104.146135][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.162657][   T10] usb 3-1: Product: syz
[  104.164380][   T10] usb 3-1: Manufacturer: syz
[  104.166194][   T10] usb 3-1: SerialNumber: syz
[  104.176657][   T10] usb 3-1: config 0 descriptor??
[  104.264177][ T6882] loop1: detected capacity change from 0 to 32768
[  104.307462][ T6893] process 'syz.0.401' launched './file0' with NULL argv: empty string added
[  104.312975][ T6882] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  104.395014][ T6882] XFS (loop1): Ending clean mount
[  104.408024][   T10] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  104.414270][ T6882] XFS (loop1): Quotacheck needed: Please wait.
[  104.457302][ T6882] XFS (loop1): Quotacheck: Done.
[  104.492324][   T10] usb 3-1: USB disconnect, device number 10
[  104.500078][   T33] audit: type=1800 audit(1757520303.000:12): pid=6882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.397" name="bus" dev="loop1" ino=9291 res=0 errno=0
[  104.567672][ T5849] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  104.719021][ T5913] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  104.735249][ T5913] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  104.795281][ T6910] tmpfs: Bad value for 'nr_inodes'
[  104.952299][ T6916] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  105.712519][ T6929] loop1: detected capacity change from 0 to 32768
[  106.352921][ T6945] could not allocate digest TFM handle cryptd(blake2b-160)
[  106.594310][ T6929] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  106.594333][ T6929]   allowing incompatible features above 0.0: (unknown version)
[  106.594406][ T6929]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  106.626247][ T6929] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  106.634950][ T6929] bcachefs (loop1): initializing new filesystem
[  106.659346][ T6929] bcachefs (loop1): going read-write
[  106.687738][ T6929] bcachefs (loop1): marking superblocks
[  106.765518][ T6929] bcachefs (loop1): initializing freespace
[  106.781683][ T6929] bcachefs (loop1): done initializing freespace
[  106.806050][ T6929] bcachefs (loop1): reading snapshots table
[  106.809119][ T6929] bcachefs (loop1): reading snapshots done
[  106.882507][ T6929] bcachefs (loop1): done starting filesystem
[  106.977128][ T6929] syz.1.414 (6929) used greatest stack depth: 15184 bytes left
[  106.989322][ T5849] bcachefs (loop1): shutting down
[  106.991524][ T5849] bcachefs (loop1): going read-only
[  106.995031][ T5849] bcachefs (loop1): finished waiting for writes to stop
[  107.000818][ T5849] bcachefs (loop1): flushing journal and stopping allocators, journal seq 2
[  107.050100][ T5849] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 3
[  107.056159][ T5849] bcachefs (loop1): clean shutdown complete, journal seq 4
[  107.060725][ T5849] bcachefs (loop1): marking filesystem clean
[  107.084106][ T5849] bcachefs (loop1): shutdown complete
[  108.127591][   T10] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  108.303216][   T10] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC6, changing to 0x86
[  108.309435][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  108.313183][   T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  108.321619][   T10] usb 3-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87
[  108.325218][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.330814][   T10] usb 3-1: Product: syz
[  108.332520][   T10] usb 3-1: Manufacturer: syz
[  108.334361][   T10] usb 3-1: SerialNumber: syz
[  108.341156][   T10] usb 3-1: config 0 descriptor??
[  108.362814][   T10] port100 3-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  108.365113][ T6980] loop0: detected capacity change from 0 to 32768
[  108.399618][ T6980] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.420486][ T6980] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  108.433378][ T6980] XFS (loop0): Starting recovery (logdev: internal)
[  108.446213][ T6980] XFS (loop0): Ending recovery (logdev: internal)
[  108.479075][ T5855] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.521876][ T5901] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  108.579796][   T10] usb 3-1: USB disconnect, device number 11
[  108.688817][ T5901] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.697394][ T5901] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.700539][ T5901] usb 2-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.00
[  108.703734][ T5901] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.714419][ T5901] usb 2-1: config 0 descriptor??
[  108.722681][ T6996] loop0: detected capacity change from 0 to 256
[  108.745746][ T6996] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  108.753775][ T6996] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  108.765005][ T6996] exFAT-fs (loop0): valid_size(150994954) is greater than size(10)
[  108.776831][   T33] audit: type=1800 audit(1757520307.270:13): pid=6996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.434" name="file1" dev="loop0" ino=1048607 res=0 errno=0
[  109.131823][ T5901] hid (null): nested delimiters
[  109.155381][ T5901] wacom 0003:056A:030C.0005: nested delimiters
[  109.161375][ T5901] wacom 0003:056A:030C.0005: item 0 1 2 10 parsing failed
[  109.164463][ T5901] wacom 0003:056A:030C.0005: parse failed
[  109.166727][ T5901] wacom 0003:056A:030C.0005: probe with driver wacom failed with error -22
[  109.338362][   T10] usb 2-1: USB disconnect, device number 6
[  109.400854][ T7022] netlink: 'syz.0.446': attribute type 3 has an invalid length.
[  109.428952][ T7024] netlink: 7 bytes leftover after parsing attributes in process `syz.0.447'.
[  109.434757][ T7024] netlink: 7 bytes leftover after parsing attributes in process `syz.0.447'.
[  109.607267][ T5913] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  109.758970][ T5913] usb 3-1: config 1 has an invalid descriptor of length 145, skipping remainder of the config
[  109.763095][ T5913] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  109.766566][ T5913] usb 3-1: config 1 has no interface number 1
[  109.769220][ T5913] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  109.774469][ T5913] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x6 has an invalid bInterval 96, changing to 7
[  109.779052][ T5913] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x6 has invalid maxpacket 32768, setting to 1024
[  109.785691][ T5913] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  109.789516][ T5913] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.792599][ T5913] usb 3-1: Product: syz
[  109.794227][ T5913] usb 3-1: Manufacturer: syz
[  109.795979][ T5913] usb 3-1: SerialNumber: syz
[  109.805269][ T7020] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  110.031334][ T5913] usb 3-1: 2:1 : no or invalid class specific endpoint descriptor
[  110.039683][ T5913] usb 3-1: 2:1 : no or invalid class specific endpoint descriptor
[  110.083995][ T7042] loop1: detected capacity change from 0 to 512
[  110.105168][ T5913] usb 3-1: USB disconnect, device number 12
[  110.112551][ T7042] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.456: bad orphan inode 11
[  110.120138][ T7042] ext4_test_bit(bit=10, block=4) = 1
[  110.122416][ T7042] is_bad_inode(inode)=0
[  110.124102][ T7042] NEXT_ORPHAN(inode)=2080374784
[  110.125991][ T7042] max_ino=32
[  110.128455][ T7042] i_nlink=0
[  110.130447][ T7042] EXT4-fs (loop1): 1 truncate cleaned up
[  110.134172][ T7042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.147007][ T7042] EXT4-fs (loop1): shut down requested (2)
[  110.151253][ T7042] EXT4-fs warning (device loop1): empty_inline_dir:1767: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[  110.180794][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.216179][ T5854] udevd[5854]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  110.266551][ T7046] loop1: detected capacity change from 0 to 512
[  110.285308][ T7046] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.457: casefold flag without casefold feature
[  110.292719][ T7046] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.457: couldn't read orphan inode 15 (err -117)
[  110.300235][ T7046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.340673][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.507144][ T7055] netlink: 260 bytes leftover after parsing attributes in process `syz.1.461'.
[  110.877181][ T5913] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  111.040366][ T5913] usb 2-1: Using ep0 maxpacket: 16
[  111.049537][ T5913] usb 2-1: config index 0 descriptor too short (expected 16456, got 72)
[  111.052370][ T5913] usb 2-1: config 0 has an invalid interface number: 125 but max is 1
[  111.055143][ T5913] usb 2-1: config 0 has an invalid interface number: 125 but max is 1
[  111.067792][ T5913] usb 2-1: config 0 has an invalid interface number: 125 but max is 1
[  111.070804][ T5913] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[  111.074078][ T5913] usb 2-1: config 0 has no interface number 0
[  111.076303][ T5913] usb 2-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[  111.083437][ T5913] usb 2-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[  111.091017][ T5913] usb 2-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[  111.100862][ T5913] usb 2-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  111.105178][ T5913] usb 2-1: config 0 interface 125 has no altsetting 0
[  111.107469][ T5913] usb 2-1: config 0 interface 125 has no altsetting 2
[  111.112816][ T5913] usb 2-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[  111.123842][ T5913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.129800][ T5913] usb 2-1: Product: syz
[  111.131494][ T5913] usb 2-1: Manufacturer: syz
[  111.133318][ T5913] usb 2-1: SerialNumber: syz
[  111.138282][ T5913] usb 2-1: config 0 descriptor??
[  111.143800][ T5913] usb 2-1: selecting invalid altsetting 2
[  111.257661][   T10] usb 3-1: new full-speed USB device number 13 using dummy_hcd
[  111.354046][    C0] usb 2-1: async_complete: urb error -71
[  111.356092][    C0] usb 2-1: async_complete: urb error -71
[  111.357921][    C0] usb 2-1: async_complete: urb error -71
[  111.359773][    C0] usb 2-1: async_complete: urb error -71
[  111.363918][ T5913] get_1284_register: usb error -71
[  111.365754][ T5913] uss720 2-1:0.125: probe with driver uss720 failed with error -71
[  111.371092][ T5913] usb 2-1: USB disconnect, device number 7
[  111.460447][   T10] usb 3-1: config 2 has an invalid interface number: 183 but max is 0
[  111.463216][   T10] usb 3-1: config 2 has no interface number 0
[  111.465350][   T10] usb 3-1: config 2 interface 183 has no altsetting 0
[  111.470919][   T10] usb 3-1: New USB device found, idVendor=0d49, idProduct=7310, bcdDevice=58.ae
[  111.473691][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.476553][   T10] usb 3-1: Product: syz
[  111.479588][   T10] usb 3-1: Manufacturer: syz
[  111.481266][   T10] usb 3-1: SerialNumber: syz
[  111.696794][   T10] usb-storage 3-1:2.183: USB Mass Storage device detected
[  111.706884][   T10] usb-storage 3-1:2.183: Quirks match for vid 0d49 pid 7310: 8000
[  111.767416][   T10] usb 3-1: USB disconnect, device number 13
[  113.280655][ T7111] tipc: Started in network mode
[  113.282335][ T7111] tipc: Node identity , cluster identity 4711
[  113.284166][ T7111] tipc: Failed to set node id, please configure manually
[  113.295667][ T7111] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  114.681149][    C0] vcan0: j1939_tp_rxtimer: 0xffff888038b29800: rx timeout, send abort
[  114.684012][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888038b29800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  115.006685][ T7157] loop0: detected capacity change from 0 to 512
[  115.013869][ T7157] EXT4-fs: Ignoring removed nobh option
[  115.024461][ T7157] EXT4-fs (loop0): Test dummy encryption mode enabled
[  115.129051][  T792] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  115.201067][ T7157] EXT4-fs error (device loop0): __ext4_iget:5464: inode #11: block 1: comm syz.0.501: invalid block
[  115.205497][ T7157] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.501: couldn't read orphan inode 11 (err -117)
[  115.212152][ T7157] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.324961][ T7163] warning: `syz.2.503' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  115.478926][ T7159] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters
[  115.524952][  T792] usb 2-1: Using ep0 maxpacket: 32
[  115.530076][  T792] usb 2-1: unable to get BOS descriptor or descriptor too short
[  115.537142][  T792] usb 2-1: New USB device found, idVendor=0471, idProduct=0302, bcdDevice=bc.45
[  115.540805][  T792] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.544147][  T792] usb 2-1: Product: syz
[  115.545960][  T792] usb 2-1: Manufacturer: syz
[  115.547996][  T792] usb 2-1: SerialNumber: syz
[  115.660081][ T7167] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  115.814318][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.054012][  T792] pwc: Philips PCA645VC USB webcam detected.
[  116.059662][  T792] pwc: send_video_command error -71
[  116.065147][  T792] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  116.071715][  T792] Philips webcam 2-1:7.0: probe with driver Philips webcam failed with error -71
[  116.082017][  T792] usb 2-1: USB disconnect, device number 8
[  116.333798][ T7179] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.510'.
[  116.338074][ T7179] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  116.341234][ T7179] openvswitch: netlink: Duplicate key (type 0).
[  116.728513][ T7198] loop2: detected capacity change from 0 to 2048
[  116.735748][ T7198] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  116.771878][ T7198] syz.2.518: attempt to access beyond end of device
[  116.771878][ T7198] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  116.778803][ T7201] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  116.846736][ T7198] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 16777227
[  116.851202][ T7198] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=16)
[  116.863261][ T7198] Remounting filesystem read-only
[  116.865681][ T7198] NILFS (loop2): error -5 truncating bmap (ino=16)
[  116.932400][ T5847] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  117.427811][  T792] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  117.607137][  T792] usb 3-1: Using ep0 maxpacket: 32
[  117.611376][  T792] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  117.614519][  T792] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.621447][  T792] usb 3-1: config 0 descriptor??
[  117.847092][  T792] dvb-usb: found a 'Elgato EyeTV DTT' in warm state.
[  117.856248][  T792] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  117.860941][  T792] dvbdev: DVB: registering new adapter (Elgato EyeTV DTT)
[  117.863353][  T792] usb 3-1: media controller created
[  117.891968][  T792] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  118.006242][  T792] DVB: Unable to find symbol dib7000p_attach()
[  118.017446][  T792] dvb-usb: no frontend was attached by 'Elgato EyeTV DTT'
[  118.117232][  T792] rc_core: IR keymap rc-dib0700-rc5 not found
[  118.119756][  T792] Registered IR keymap rc-empty
[  118.122147][  T792] dvb-usb: could not initialize remote control.
[  118.124606][  T792] dvb-usb: Elgato EyeTV DTT successfully initialized and connected.
[  118.161007][  T792] usb 3-1: USB disconnect, device number 14
[  118.191219][  T792] dvb-usb: Elgato EyeTV DTT successfully deinitialized and disconnected.
[  119.541480][ T7242] loop1: detected capacity change from 0 to 512
[  119.548194][ T7242] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  119.556394][ T7242] EXT4-fs (loop1): blocks per group (42) and clusters per group (32768) inconsistent
[  119.659941][ T7246] loop1: detected capacity change from 0 to 2048
[  120.709847][ T7260] loop2: detected capacity change from 0 to 32768
[  120.737540][ T7260] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  120.907591][ T5847] ocfs2: Unmounting device (7,2) on (node local)
[  121.902034][ T7296] loop1: detected capacity change from 0 to 1024
[  121.905344][ T7296] EXT4-fs: Ignoring removed nobh option
[  121.948401][ T7296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.999528][ T7296] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt.
[  122.123146][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.238876][ T7309] netlink: 12 bytes leftover after parsing attributes in process `syz.1.561'.
[  122.331083][ T7309] 8021q: adding VLAN 0 to HW filter on device bond1
[  122.353734][ T7313] macvlan2: entered promiscuous mode
[  122.355771][ T7313] macvlan2: entered allmulticast mode
[  122.358550][ T7313] bond1: entered promiscuous mode
[  122.360747][ T7313] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  122.378546][ T7313] bond1: left promiscuous mode
[  122.703563][   T33] audit: type=1326 audit(1757520321.200:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.2.565" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8a2f38eba9 code=0x0
[  123.099199][ T7334] loop2: detected capacity change from 0 to 1024
[  123.104267][ T7334] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  123.126553][ T7334] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  123.186946][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.451760][ T7358] 9pnet_fd: p9_fd_create_tcp (7358): problem connecting socket to 127.0.0.1
[  124.525262][ T7358] evm: overlay not supported
[  124.597271][ T7372] netlink: 28 bytes leftover after parsing attributes in process `syz.2.589'.
[  124.717370][ T7380] loop0: detected capacity change from 0 to 1024
[  124.721989][ T7380] EXT4-fs: Ignoring removed i_version option
[  124.734497][ T7380] EXT4-fs: Ignoring removed nobh option
[  124.766782][ T7380] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.806507][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.123281][ T7401] loop9: detected capacity change from 0 to 3
[  125.137236][ T5886] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  125.289068][ T5886] usb 1-1: Using ep0 maxpacket: 16
[  125.295221][ T5886] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  125.301360][ T5886] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.304693][ T5886] usb 1-1: Product: syz
[  125.306393][ T5886] usb 1-1: Manufacturer: syz
[  125.310675][ T5886] usb 1-1: SerialNumber: syz
[  125.321990][ T5886] r8152-cfgselector 1-1: Unknown version 0x0000
[  125.324475][ T5886] r8152-cfgselector 1-1: config 0 descriptor??
[  125.814768][  T792] r8152-cfgselector 1-1: USB disconnect, device number 9
[  125.829667][ T7423] overlayfs: conflicting options: userxattr,metacopy=on
[  125.934327][ T7426] netlink: 'syz.1.610': attribute type 1 has an invalid length.
[  126.721671][ T7433] netlink: 'syz.1.614': attribute type 13 has an invalid length.
[  126.724697][ T7433] netlink: 'syz.1.614': attribute type 17 has an invalid length.
[  126.820855][ T7433] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  126.967498][ T5886] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  127.207246][ T5886] usb 1-1: Using ep0 maxpacket: 16
[  127.217200][ T5886] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.221237][ T5886] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.225239][ T5886] usb 1-1: config 0 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  127.229946][ T5886] usb 1-1: config 0 interface 0 has no altsetting 0
[  127.232861][ T5886] usb 1-1: New USB device found, idVendor=05ac, idProduct=025a, bcdDevice= 0.00
[  127.236904][ T5886] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.429129][ T5886] usb 1-1: config 0 descriptor??
[  127.433951][ T5886] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input8
[  127.531524][ T7469] loop1: detected capacity change from 0 to 1024
[  127.535916][ T7469] EXT4-fs: Ignoring removed nobh option
[  127.545736][ T7469] EXT4-fs: Ignoring removed bh option
[  127.563346][ T7469] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.576151][ T7469] syz_tun: entered allmulticast mode
[  127.596145][ T7469] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  127.609125][ T7468] syz_tun: left allmulticast mode
[  127.646575][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.654790][ T5281] bcm5974 1-1:0.0: could not read from device
[  127.672103][ T5281] bcm5974 1-1:0.0: could not read from device
[  127.686342][ T5281] bcm5974 1-1:0.0: could not read from device
[  127.694865][ T5281] bcm5974 1-1:0.0: could not read from device
[  127.699081][ T5886] usb 1-1: USB disconnect, device number 10
[  127.707971][ T5848] bcm5974 1-1:0.0: could not read from device
[  127.726221][ T5848] udevd[5848]: Error opening device "/dev/input/event3": No such device
[  127.731360][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  127.736648][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  127.743722][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  127.751712][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  128.025498][ T7476] loop1: detected capacity change from 0 to 32768
[  128.170140][ T7489] tmpfs: Cannot enable quota on remount
[  128.199531][ T7476] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,gc_reserve_percent=15,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,no_data_io
[  128.199556][ T7476]   allowing incompatible features above 0.0: (unknown version)
[  128.199564][ T7476]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  128.217249][ T7476] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  128.223934][ T7476] bcachefs (loop1): invalid journal entry, version=1.7: mi_btree_bitmap type=blacklist in superblock: invalid journal seq blacklist entry: bad size, shutting down
[  128.223981][ T7476]   error not marked as autofix and not in fsck
[  128.223990][ T7476]   run fsck, and forward to devs so error can be marked for self-healing
[  128.223997][ T7476]   emergency read only at seq 0
[  128.238813][ T7476] bcachefs (loop1): error in recovery: fsck_errors_not_fixed
[  128.241720][ T7476] bcachefs (loop1): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed
[  128.245382][ T7476] bcachefs (loop1): shutting down
[  128.266337][ T7476] bcachefs (loop1): shutdown complete
[  128.707692][  T570] Bluetooth: hci3: received HCILL_GO_TO_SLEEP_ACK in state 0
[  128.711059][ T7520] Bluetooth: ERR: HCILL_GO_TO_SLEEP_IND in state 0
[  129.132283][ T7476] bcachefs: bch2_fs_get_tree() error: fsck_errors_not_fixed
[  129.281128][ T7524] netlink: 'syz.0.649': attribute type 1 has an invalid length.
[  130.040777][ T7540] netlink: 8 bytes leftover after parsing attributes in process `syz.0.656'.
[  130.044503][ T7540] netlink: 336 bytes leftover after parsing attributes in process `syz.0.656'.
[  130.487377][ T5913] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  130.637285][ T5913] usb 1-1: Using ep0 maxpacket: 32
[  130.642518][ T5913] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  130.645896][ T5913] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  130.649639][ T5913] usb 1-1: config 1 has no interface number 1
[  130.651827][ T5913] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  130.655892][ T5913] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  130.663968][ T5913] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  130.667387][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.670524][ T5913] usb 1-1: Product: syz
[  130.672213][ T5913] usb 1-1: Manufacturer: syz
[  130.674137][ T5913] usb 1-1: SerialNumber: syz
[  130.699890][ T5858] Bluetooth: hci3: command 0x1003 tx timeout
[  130.702869][ T5856] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  131.178039][ T5913] usb 1-1: USB disconnect, device number 11
[  131.507428][ T7552] loop1: detected capacity change from 0 to 262144
[  131.513881][ T7552] F2FS-fs (loop1): invalid crc value
[  131.613065][ T7552] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  131.619884][ T7552] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  131.748295][ T7567] loop2: detected capacity change from 0 to 40427
[  131.777908][ T7567] F2FS-fs (loop2): invalid crc value
[  131.829768][ T7567] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  131.834088][ T7567] F2FS-fs (loop2): Start checkpoint disabled!
[  131.839761][ T7567] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  131.887632][   T33] audit: type=1800 audit(1757520330.380:15): pid=7567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.669" name="file1" dev="loop2" ino=10 res=0 errno=0
[  132.239204][ T7583] syz.2.669: attempt to access beyond end of device
[  132.239204][ T7583] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  132.248641][ T7583] syz.2.669: attempt to access beyond end of device
[  132.248641][ T7583] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  132.258412][ T7583] syz.2.669: attempt to access beyond end of device
[  132.258412][ T7583] loop2: rw=2049, sector=45112, nr_sectors = 8 limit=40427
[  132.268227][ T7583] syz.2.669: attempt to access beyond end of device
[  132.268227][ T7583] loop2: rw=2049, sector=45120, nr_sectors = 8 limit=40427
[  132.276632][ T7583] syz.2.669: attempt to access beyond end of device
[  132.276632][ T7583] loop2: rw=2049, sector=45128, nr_sectors = 8 limit=40427
[  132.287402][ T7583] syz.2.669: attempt to access beyond end of device
[  132.287402][ T7583] loop2: rw=2049, sector=45136, nr_sectors = 16 limit=40427
[  132.296506][ T7583] syz.2.669: attempt to access beyond end of device
[  132.296506][ T7583] loop2: rw=2049, sector=45152, nr_sectors = 8 limit=40427
[  132.305397][ T7583] syz.2.669: attempt to access beyond end of device
[  132.305397][ T7583] loop2: rw=2049, sector=45160, nr_sectors = 8 limit=40427
[  132.313843][ T7583] syz.2.669: attempt to access beyond end of device
[  132.313843][ T7583] loop2: rw=2049, sector=45168, nr_sectors = 8 limit=40427
[  132.322503][ T7583] syz.2.669: attempt to access beyond end of device
[  132.322503][ T7583] loop2: rw=2049, sector=45176, nr_sectors = 8 limit=40427
[  132.668107][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[  132.679370][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[  132.686652][  T188] CPU: 0 UID: 0 PID: 188 Comm: kworker/u9:3 Not tainted syzkaller #0 PREEMPT(full) 
[  132.686675][  T188] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  132.686686][  T188] Workqueue: writeback wb_workfn (flush-7:2)
[  132.686710][  T188] Call Trace:
[  132.686717][  T188]  <TASK>
[  132.686724][  T188]  dump_stack_lvl+0x189/0x250
[  132.686747][  T188]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.686763][  T188]  ? __pfx_queue_work_on+0x10/0x10
[  132.686777][  T188]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  132.686798][  T188]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  132.686829][  T188]  f2fs_handle_critical_error+0x37c/0x540
[  132.686857][  T188]  f2fs_write_end_io+0x886/0xb60
[  132.686888][  T188]  __submit_merged_bio+0x27a/0x6a0
[  132.686914][  T188]  __submit_merged_write_cond+0x255/0x530
[  132.686940][  T188]  f2fs_write_data_pages+0x261d/0x3000
[  132.687007][  T188]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  132.687054][  T188]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  132.687118][  T188]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  132.687151][  T188]  ? trace_f2fs_writepages+0x7f/0x200
[  132.687171][  T188]  ? f2fs_write_node_pages+0x478/0x6e0
[  132.687194][  T188]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  132.687227][  T188]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  132.687241][  T188]  do_writepages+0x32e/0x550
[  132.687275][  T188]  ? reacquire_held_locks+0x127/0x1d0
[  132.687289][  T188]  ? writeback_sb_inodes+0x384/0x1010
[  132.687314][  T188]  __writeback_single_inode+0x145/0xff0
[  132.687331][  T188]  ? do_raw_spin_unlock+0x4d/0x240
[  132.687352][  T188]  writeback_sb_inodes+0x6c7/0x1010
[  132.687393][  T188]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  132.687449][  T188]  ? rcu_is_watching+0x15/0xb0
[  132.687473][  T188]  wb_writeback+0x43b/0xaf0
[  132.687497][  T188]  ? queue_io+0x371/0x590
[  132.687517][  T188]  ? __pfx_wb_writeback+0x10/0x10
[  132.687542][  T188]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.687567][  T188]  wb_workfn+0x409/0xef0
[  132.687597][  T188]  ? __pfx_wb_workfn+0x10/0x10
[  132.687617][  T188]  ? __lock_acquire+0xab9/0xd20
[  132.687647][  T188]  ? process_scheduled_works+0x9ef/0x17b0
[  132.687667][  T188]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.687684][  T188]  ? process_scheduled_works+0x9ef/0x17b0
[  132.687697][  T188]  ? process_scheduled_works+0x9ef/0x17b0
[  132.687711][  T188]  process_scheduled_works+0xae1/0x17b0
[  132.687753][  T188]  ? __pfx_process_scheduled_works+0x10/0x10
[  132.687783][  T188]  worker_thread+0x8a0/0xda0
[  132.687800][  T188]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  132.687826][  T188]  ? __kthread_parkme+0x7b/0x200
[  132.687851][  T188]  kthread+0x711/0x8a0
[  132.687871][  T188]  ? __pfx_worker_thread+0x10/0x10
[  132.687885][  T188]  ? __pfx_kthread+0x10/0x10
[  132.687903][  T188]  ? _raw_spin_unlock_irq+0x23/0x50
[  132.687922][  T188]  ? lockdep_hardirqs_on+0x9c/0x150
[  132.687934][  T188]  ? __pfx_kthread+0x10/0x10
[  132.687952][  T188]  ret_from_fork+0x3fc/0x770
[  132.687970][  T188]  ? __pfx_ret_from_fork+0x10/0x10
[  132.688014][  T188]  ? __switch_to_asm+0x39/0x70
[  132.688030][  T188]  ? __switch_to_asm+0x33/0x70
[  132.688046][  T188]  ? __pfx_kthread+0x10/0x10
[  132.688063][  T188]  ret_from_fork_asm+0x1a/0x30
[  132.688096][  T188]  </TASK>
[  132.813261][ T5886] usb 1-1: new full-speed USB device number 12 using dummy_hcd
[  132.821144][  T188] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  132.970349][ T5886] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  132.974823][ T5886] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  132.981089][ T5886] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  132.985974][ T5886] usb 1-1: New USB device found, idVendor=056a, idProduct=005d, bcdDevice= 0.00
[  133.001629][ T5886] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.012666][ T5886] usb 1-1: config 0 descriptor??
[  133.590001][ T7595] netlink: 'syz.1.678': attribute type 39 has an invalid length.
[  133.652599][   T24] usb 1-1: USB disconnect, device number 12
[  134.345154][ T7599] loop1: detected capacity change from 0 to 40427
[  134.349618][ T7599] F2FS-fs: heap/no_heap options were deprecated
[  134.356584][ T7599] F2FS-fs (loop1): build fault injection rate: 19
[  134.359293][ T7599] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[  134.405479][ T7599] F2FS-fs (loop1): invalid crc value
[  134.443486][ T7599] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  134.586916][ T7599] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x20a/0x3f0
[  134.601720][ T7599] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  134.608622][ T7599] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  134.661766][ T7599] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  134.694860][ T7599] F2FS-fs (loop1): inject slab alloc in f2fs_alloc_inode of alloc_inode+0x6a/0x1b0
[  134.754453][ T5849] CPU: 1 UID: 0 PID: 5849 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  134.754468][ T5849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  134.754474][ T5849] Call Trace:
[  134.754479][ T5849]  <TASK>
[  134.754483][ T5849]  dump_stack_lvl+0x189/0x250
[  134.754499][ T5849]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.754509][ T5849]  ? __pfx_queue_work_on+0x10/0x10
[  134.754517][ T5849]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  134.754530][ T5849]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  134.754548][ T5849]  f2fs_handle_critical_error+0x37c/0x540
[  134.754564][ T5849]  f2fs_write_end_io+0x886/0xb60
[  134.754582][ T5849]  __submit_merged_bio+0x27a/0x6a0
[  134.754597][ T5849]  __submit_merged_write_cond+0x255/0x530
[  134.754612][ T5849]  f2fs_write_data_pages+0x261d/0x3000
[  134.754619][ T5849]  ? __pfx_usage_match+0x10/0x10
[  134.754626][ T5849]  ? __bfs+0x154/0x2a0
[  134.754649][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.754655][ T5849]  ? __switch_to+0xdae/0x1670
[  134.754689][ T5849]  ? rcu_is_watching+0x15/0xb0
[  134.754698][ T5849]  ? trace_sched_exit_tp+0x36/0x110
[  134.754708][ T5849]  ? __schedule+0x17ae/0x4cc0
[  134.754721][ T5849]  ? folios_put_refs+0x559/0x640
[  134.754737][ T5849]  ? __lock_acquire+0xab9/0xd20
[  134.754753][ T5849]  ? do_raw_spin_lock+0x121/0x290
[  134.754768][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[  134.754778][ T5849]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  134.754786][ T5849]  do_writepages+0x32e/0x550
[  134.754802][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[  134.754842][ T5849]  filemap_fdatawrite+0x199/0x240
[  134.754853][ T5849]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  134.754887][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[  134.754899][ T5849]  f2fs_sync_dirty_inodes+0x31f/0x830
[  134.754915][ T5849]  f2fs_write_checkpoint+0x95a/0x1df0
[  134.754935][ T5849]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  134.754968][ T5849]  ? kill_f2fs_super+0x298/0x6c0
[  134.754979][ T5849]  kill_f2fs_super+0x2c3/0x6c0
[  134.754991][ T5849]  ? __pfx_kill_f2fs_super+0x10/0x10
[  134.754997][ T5849]  ? radix_tree_delete_item+0x2b6/0x400
[  134.755013][ T5849]  ? shrinker_free+0x2ce/0x3e0
[  134.755023][ T5849]  deactivate_locked_super+0xbc/0x130
[  134.755034][ T5849]  cleanup_mnt+0x425/0x4c0
[  134.755044][ T5849]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.755053][ T5849]  task_work_run+0x1d4/0x260
[  134.755065][ T5849]  ? __pfx_task_work_run+0x10/0x10
[  134.755079][ T5849]  ? __x64_sys_umount+0x122/0x160
[  134.755093][ T5849]  ? exit_to_user_mode_loop+0x40/0x110
[  134.755106][ T5849]  exit_to_user_mode_loop+0xec/0x110
[  134.755117][ T5849]  do_syscall_64+0x2bd/0x3b0
[  134.755125][ T5849]  ? lockdep_hardirqs_on+0x9c/0x150
[  134.755132][ T5849]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.755140][ T5849]  ? exc_page_fault+0x9f/0xf0
[  134.755148][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.755156][ T5849] RIP: 0033:0x7f0e13b8fed7
[  134.755165][ T5849] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  134.755171][ T5849] RSP: 002b:00007ffefaed5b98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  134.755180][ T5849] RAX: 0000000000000000 RBX: 00007f0e13c11c05 RCX: 00007f0e13b8fed7
[  134.755185][ T5849] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffefaed5c50
[  134.755190][ T5849] RBP: 00007ffefaed5c50 R08: 0000000000000000 R09: 0000000000000000
[  134.755195][ T5849] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffefaed6ce0
[  134.755199][ T5849] R13: 00007f0e13c11c05 R14: 0000000000020dcb R15: 00007ffefaed6d20
[  134.755213][ T5849]  </TASK>
[  134.755217][ T5849] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  134.831164][ T7607] loop0: detected capacity change from 0 to 32768
[  134.964903][   T33] audit: type=1800 audit(1757520333.460:16): pid=7607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.683" name="file1" dev="loop0" ino=4 res=0 errno=0
[  134.990258][ T7607] ERROR: (device loop0): dbAllocBits: leaf page corrupt
[  134.990258][ T7607] 
[  134.996170][ T7607] ERROR: (device loop0): remounting filesystem as read-only
[  135.008536][ T7607] blkno = 8ed80, nblocks = 63
[  135.010382][ T7607] ERROR: (device loop0): dbFree: block to be freed is outside the map
[  135.010382][ T7607] 
[  135.206379][ T7611] loop1: detected capacity change from 0 to 1024
[  135.212624][ T7611] EXT4-fs: Ignoring removed bh option
[  135.215568][ T7611] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  135.248840][ T7611] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.261816][ T7611] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.686: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  135.276882][ T7611] EXT4-fs (loop1): Remounting filesystem read-only
[  135.290482][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.322548][ T7616] netlink: 12 bytes leftover after parsing attributes in process `syz.1.687'.
[  135.326588][ T7616] netlink: 12 bytes leftover after parsing attributes in process `syz.1.687'.
[  135.333564][ T7616] netlink: 332 bytes leftover after parsing attributes in process `syz.1.687'.
[  135.623423][ T7628] loop1: detected capacity change from 0 to 2048
[  135.671264][ T5848]  loop1: p4 < >
[  135.735231][ T7628]  loop1: p4 < >
[  136.091147][    T9] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  136.250696][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  136.255350][    T9] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00
[  136.268484][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  136.278182][    T9] usb 1-1: config 0 descriptor??
[  136.716150][    T9] lua 0003:1E7D:2C2E.0007: hidraw0: USB HID v0.00 Device [HID 1e7d:2c2e] on usb-dummy_hcd.0-1/input0
[  136.773740][ T7678] netlink: 4 bytes leftover after parsing attributes in process `syz.2.706'.
[  136.906967][    T9] usb 1-1: USB disconnect, device number 13
[  136.963308][ T7689] loop1: detected capacity change from 0 to 64
[  136.968862][ T7686] netlink: 8 bytes leftover after parsing attributes in process `syz.2.708'.
[  136.973732][ T7689] BFS-fs: bfs_fill_super(): loop1 is unclean, continuing
[  138.408852][ T7708] macsec1: entered promiscuous mode
[  138.581932][ T7710] loop0: detected capacity change from 0 to 4096
[  138.638421][ T7711] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  138.711540][   T33] audit: type=1800 audit(1757520337.210:17): pid=7710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.718" name="file1" dev="loop0" ino=15 res=0 errno=0
[  138.945493][ T7718] loop2: detected capacity change from 0 to 1024
[  138.997990][ T7718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  139.001859][ T7718] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.054938][   T33] audit: type=1800 audit(1757520337.560:18): pid=7718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.721" name="file1" dev="loop2" ino=15 res=0 errno=0
[  139.067649][ T7725] netlink: 4 bytes leftover after parsing attributes in process `syz.0.723'.
[  139.071147][ T7725] bridge_slave_1: left allmulticast mode
[  139.083787][ T7718] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: block 1: comm syz.2.721: lblock 1 mapped to illegal pblock 1 (length 15)
[  139.097568][ T7725] bridge_slave_1: left promiscuous mode
[  139.101992][ T7725] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.140363][ T7718] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117
[  139.163248][ T7725] bridge_slave_0: left allmulticast mode
[  139.165568][ T7725] bridge_slave_0: left promiscuous mode
[  139.170612][ T7718] EXT4-fs (loop2): This should not happen!! Data will be lost
[  139.170612][ T7718] 
[  139.174811][ T7725] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.226078][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.399177][ T7734] loop2: detected capacity change from 0 to 256
[  139.401585][ T7732] netlink: 4 bytes leftover after parsing attributes in process `syz.1.726'.
[  139.411697][ T7736] loop0: detected capacity change from 0 to 1764
[  139.453363][ T7736] iso9660: Corrupted directory entry in block 2 of inode 1920
[  139.456638][ T7734] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  139.761211][ T7748] loop0: detected capacity change from 0 to 8
[  141.149692][ T7765] netlink: 8 bytes leftover after parsing attributes in process `syz.2.740'.
[  141.811181][ T7779] netlink: 32 bytes leftover after parsing attributes in process `syz.0.748'.
[  141.815482][ T7779] netlink: 32 bytes leftover after parsing attributes in process `syz.0.748'.
[  141.834617][ T7783] Bluetooth: MGMT ver 1.23
[  141.962383][ T7789] comedi comedi0: pcl816: I/O port conflict (0x2,16)
[  141.980077][ T7793] loop1: detected capacity change from 0 to 1024
[  141.990048][ T7793] EXT4-fs: Ignoring removed nobh option
[  141.992276][ T7793] EXT4-fs: Ignoring removed bh option
[  142.053448][ T7793] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.093038][ T7799] loop0: detected capacity change from 0 to 1024
[  142.098615][ T7793] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.753: Allocating blocks 385-513 which overlap fs metadata
[  142.133526][ T7799] hfsplus: bad catalog entry type
[  142.136093][ T7795] batman_adv: batadv0: Adding interface: vxlan0
[  142.151645][ T7795] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.152197][ T7793] EXT4-fs (loop1): pa ffff88802a5c1ae0: logic 16, phys. 129, len 24
[  142.165053][ T7793] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  142.183067][ T1091] hfsplus: b-tree write err: -5, ino 4
[  142.187472][ T7795] batman_adv: batadv0: Not using interface vxlan0 (retrying later): interface not active
[  142.268049][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.425072][ T7815] loop1: detected capacity change from 0 to 512
[  142.428760][ T7815] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  142.463811][ T7815] EXT4-fs (loop1): 1 truncate cleaned up
[  142.466716][ T7815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.480795][ T7820] IPVS: Unknown mcast interface: pimreg
[  142.522709][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.566359][ T7827] loop1: detected capacity change from 0 to 256
[  143.480268][ T7847] loop1: detected capacity change from 0 to 32768
[  143.548350][ T7847] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names,read_only
[  143.548363][ T7847]   allowing incompatible features above 0.0: (unknown version)
[  143.548418][ T7847]   features: lz4
[  143.557518][ T7847] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  143.562031][ T7847] bcachefs (loop1): invalid journal entry, version=1.7: mi_btree_bitmap type=btree_root in superblock: invalid btree root journal entry: wrong number of keys, shutting down
[  143.562043][ T7847]   error not marked as autofix and not in fsck
[  143.562048][ T7847]   run fsck, and forward to devs so error can be marked for self-healing
[  143.562053][ T7847]   emergency read only at seq 0
[  143.573537][ T7847] bcachefs (loop1): error in recovery: fsck_errors_not_fixed
[  143.576192][ T7847] bcachefs (loop1): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed
[  143.579183][ T7847] bcachefs (loop1): shutting down
[  143.623258][ T7847] bcachefs (loop1): shutdown complete
[  143.798194][ T7851] bridge0: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  143.804582][ T7851] bridge0: entered promiscuous mode
[  144.124392][ T7855] loop2: detected capacity change from 0 to 40427
[  144.130586][ T7855] F2FS-fs (loop2): Image doesn't support compression
[  144.132755][ T7855] F2FS-fs (loop2): build fault injection rate: 690
[  144.136067][ T7855] F2FS-fs (loop2): invalid crc value
[  144.170069][ T7855] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  144.173144][ T7855] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  144.186847][   T33] audit: type=1800 audit(1757520342.680:19): pid=7855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.781" name="file1" dev="loop2" ino=10 res=0 errno=0
[  144.198018][    T9] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  144.214588][ T7855] bio_check_eod: 178 callbacks suppressed
[  144.214600][ T7855] syz.2.781: attempt to access beyond end of device
[  144.214600][ T7855] loop2: rw=34817, sector=45104, nr_sectors = 2048 limit=40427
[  144.259429][ T5847] syz-executor: attempt to access beyond end of device
[  144.259429][ T5847] loop2: rw=2049, sector=57352, nr_sectors = 8 limit=40427
[  144.265815][ T5847] CPU: 0 UID: 0 PID: 5847 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  144.265834][ T5847] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  144.265844][ T5847] Call Trace:
[  144.265850][ T5847]  <TASK>
[  144.265856][ T5847]  dump_stack_lvl+0x189/0x250
[  144.265881][ T5847]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.265898][ T5847]  ? __pfx_queue_work_on+0x10/0x10
[  144.265912][ T5847]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  144.265933][ T5847]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  144.265990][ T5847]  f2fs_handle_critical_error+0x37c/0x540
[  144.266019][ T5847]  f2fs_write_end_io+0x886/0xb60
[  144.266049][ T5847]  __submit_merged_bio+0x27a/0x6a0
[  144.266074][ T5847]  __submit_merged_write_cond+0x255/0x530
[  144.266101][ T5847]  f2fs_write_data_pages+0x261d/0x3000
[  144.266144][ T5847]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  144.266200][ T5847]  ? __lock_acquire+0xab9/0xd20
[  144.266219][ T5847]  ? rcu_is_watching+0x15/0xb0
[  144.266241][ T5847]  ? __lock_acquire+0xab9/0xd20
[  144.266264][ T5847]  ? do_raw_spin_lock+0x121/0x290
[  144.266291][ T5847]  ? do_raw_spin_unlock+0x4d/0x240
[  144.266308][ T5847]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  144.266322][ T5847]  do_writepages+0x32e/0x550
[  144.266353][ T5847]  ? do_raw_spin_unlock+0x4d/0x240
[  144.266373][ T5847]  filemap_fdatawrite+0x199/0x240
[  144.266392][ T5847]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  144.266451][ T5847]  ? do_raw_spin_unlock+0x4d/0x240
[  144.266471][ T5847]  f2fs_sync_dirty_inodes+0x31f/0x830
[  144.266507][ T5847]  f2fs_write_checkpoint+0x95a/0x1df0
[  144.266543][ T5847]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  144.266600][ T5847]  ? kill_f2fs_super+0x298/0x6c0
[  144.266618][ T5847]  kill_f2fs_super+0x2c3/0x6c0
[  144.266637][ T5847]  ? __pfx_kill_f2fs_super+0x10/0x10
[  144.266650][ T5847]  ? radix_tree_delete_item+0x2b6/0x400
[  144.266677][ T5847]  ? shrinker_free+0x2ce/0x3e0
[  144.266695][ T5847]  deactivate_locked_super+0xbc/0x130
[  144.266715][ T5847]  cleanup_mnt+0x425/0x4c0
[  144.266730][ T5847]  ? lockdep_hardirqs_on+0x9c/0x150
[  144.266747][ T5847]  task_work_run+0x1d4/0x260
[  144.266768][ T5847]  ? __pfx_task_work_run+0x10/0x10
[  144.266783][ T5847]  ? __x64_sys_umount+0x122/0x160
[  144.266806][ T5847]  ? exit_to_user_mode_loop+0x40/0x110
[  144.266830][ T5847]  exit_to_user_mode_loop+0xec/0x110
[  144.266849][ T5847]  do_syscall_64+0x2bd/0x3b0
[  144.266862][ T5847]  ? lockdep_hardirqs_on+0x9c/0x150
[  144.266876][ T5847]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.266889][ T5847]  ? exc_page_fault+0x9f/0xf0
[  144.266904][ T5847]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.266916][ T5847] RIP: 0033:0x7f8a2f38fed7
[  144.266931][ T5847] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  144.266940][ T5847] RSP: 002b:00007ffd65402ed8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  144.266979][ T5847] RAX: 0000000000000000 RBX: 00007f8a2f411c05 RCX: 00007f8a2f38fed7
[  144.266987][ T5847] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd65402f90
[  144.266995][ T5847] RBP: 00007ffd65402f90 R08: 0000000000000000 R09: 0000000000000000
[  144.267003][ T5847] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd65404020
[  144.267029][ T5847] R13: 00007f8a2f411c05 R14: 0000000000023309 R15: 00007ffd65404060
[  144.267071][ T5847]  </TASK>
[  144.397779][ T5847] F2FS-fs (loop2): Remounting filesystem read-only
[  144.468370][ T7847] bcachefs: bch2_fs_get_tree() error: fsck_errors_not_fixed
[  144.546540][    T9] usb 1-1: Using ep0 maxpacket: 32
[  144.549907][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.553475][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  144.556529][    T9] usb 1-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  144.559625][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.564093][    T9] usb 1-1: config 0 descriptor??
[  144.794330][ T7865] loop1: detected capacity change from 0 to 512
[  144.813743][ T7865] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  144.825949][ T7867] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  144.834436][ T7865] EXT4-fs (loop1): 1 truncate cleaned up
[  144.858228][ T7865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.972205][ T7865] EXT4-fs (loop1): shut down requested (0)
[  144.994123][    T9] ft260 0003:0403:6030.0008: unknown main item tag 0x7
[  145.055265][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.183525][    T9] ft260 0003:0403:6030.0008: chip code: 6424 8183
[  145.215097][ T7887] netlink: 'syz.1.794': attribute type 21 has an invalid length.
[  145.229988][ T7887] netlink: 128 bytes leftover after parsing attributes in process `syz.1.794'.
[  145.233407][ T7887] netlink: 'syz.1.794': attribute type 5 has an invalid length.
[  145.236516][ T7887] netlink: 3 bytes leftover after parsing attributes in process `syz.1.794'.
[  145.384303][    T9] ft260 0003:0403:6030.0008: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.0-1/input0
[  145.509788][ T7902] veth0: entered promiscuous mode
[  145.513025][ T7902] netlink: 32 bytes leftover after parsing attributes in process `syz.1.802'.
[  145.552161][ T7901] veth0: left promiscuous mode
[  145.585175][    T9] ft260 0003:0403:6030.0008: failed to retrieve status: -32, no wakeup
[  145.655345][ T7910] loop2: detected capacity change from 0 to 2048
[  145.666646][ T7910] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  145.802675][   T24] usb 1-1: USB disconnect, device number 14
[  146.106344][ T7927] loop2: detected capacity change from 0 to 256
[  146.270732][ T7927] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  146.646737][ T7939] loop0: detected capacity change from 0 to 8
[  146.662160][ T7939] SQUASHFS error: xz decompression failed, data probably corrupt
[  146.664895][ T7939] SQUASHFS error: Failed to read block 0x108: -5
[  146.666922][ T7939] SQUASHFS error: Unable to read metadata cache entry [106]
[  146.689810][ T7939] SQUASHFS error: Unable to read inode 0x11f
[  146.871430][ T7950] loop1: detected capacity change from 0 to 256
[  146.921381][ T7950] FAT-fs (loop1): Directory bread(block 64) failed
[  146.923486][ T7950] FAT-fs (loop1): Directory bread(block 65) failed
[  146.926494][ T7950] FAT-fs (loop1): Directory bread(block 66) failed
[  146.930099][ T7950] FAT-fs (loop1): Directory bread(block 67) failed
[  146.932741][ T7950] FAT-fs (loop1): Directory bread(block 68) failed
[  146.934814][ T7950] FAT-fs (loop1): Directory bread(block 69) failed
[  146.936844][ T7950] FAT-fs (loop1): Directory bread(block 70) failed
[  146.947798][ T7950] FAT-fs (loop1): Directory bread(block 71) failed
[  146.975395][ T7950] FAT-fs (loop1): Directory bread(block 72) failed
[  146.981232][ T7950] FAT-fs (loop1): Directory bread(block 73) failed
[  147.019530][ T7955] loop2: detected capacity change from 0 to 4096
[  147.039655][ T7957] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  147.075469][   T33] audit: type=1800 audit(1757520345.550:20): pid=7955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.822" name="file1" dev="loop2" ino=15 res=0 errno=0
[  147.088626][ T7955] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  147.113416][ T7955] Remounting filesystem read-only
[  147.136592][ T5847] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  147.496001][ T7967] loop2: detected capacity change from 0 to 512
[  147.502756][ T7967] EXT4-fs: Ignoring removed nomblk_io_submit option
[  147.519696][ T7967] EXT4-fs: Mount option(s) incompatible with ext3
[  147.817335][ T5901] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  148.127333][ T5901] usb 1-1: Using ep0 maxpacket: 16
[  148.146889][ T5901] usb 1-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  148.155634][ T5901] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.158672][ T5901] usb 1-1: Product: syz
[  148.159962][ T5901] usb 1-1: Manufacturer: syz
[  148.161460][ T5901] usb 1-1: SerialNumber: syz
[  148.174518][ T5901] usb 1-1: config 0 descriptor??
[  148.187676][ T5901] ums-onetouch 1-1:0.0: USB Mass Storage device detected
[  148.375189][ T8001] loop1: detected capacity change from 0 to 128
[  148.381039][ T5901] usb 1-1: USB disconnect, device number 15
[  148.394412][ T8001] EXT4-fs (loop1): VFS: Found ext4 filesystem with invalid superblock checksum.  Run e2fsck?
[  148.685239][ T8009] sctp: [Deprecated]: syz.2.841 (pid 8009) Use of int in max_burst socket option deprecated.
[  148.685239][ T8009] Use struct sctp_assoc_value instead
[  149.007815][ T5913] IPVS: starting estimator thread 0...
[  149.049990][ T8020] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  149.107304][ T8018] IPVS: using max 63 ests per chain, 151200 per kthread
[  149.229112][ T8017] loop0: detected capacity change from 0 to 32768
[  149.320865][ T8017] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  149.620584][ T8017] XFS (loop0): Ending clean mount
[  149.657359][ T8017] XFS (loop0): Quotacheck needed: Please wait.
[  149.686692][ T8017] XFS (loop0): Quotacheck: Done.
[  149.754437][ T5855] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  150.095776][ T8038] 9pnet_fd: Insufficient options for proto=fd
[  150.113213][ T8038] loop1: detected capacity change from 0 to 16
[  150.119843][ T8038] erofs: Unknown parameter 'K،jxIE'
[  150.290191][ T8040] loop2: detected capacity change from 0 to 512
[  150.323857][ T8040] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.343296][ T8040] ext4 filesystem being mounted at /316/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  150.671035][ T8049] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #2: comm syz.2.851: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  150.687238][ T8049] EXT4-fs (loop2): Remounting filesystem read-only
[  150.867347][ T8052] sctp: [Deprecated]: syz.1.853 (pid 8052) Use of struct sctp_assoc_value in delayed_ack socket option.
[  150.867347][ T8052] Use struct sctp_sack_info instead
[  151.011729][ T8061] netlink: 32 bytes leftover after parsing attributes in process `syz.0.857'.
[  151.089100][ T8067] loop0: detected capacity change from 0 to 512
[  151.093934][ T8067] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  151.101514][ T8067] EXT4-fs (loop0): 1 truncate cleaned up
[  151.106023][ T8067] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.171460][   T33] audit: type=1800 audit(1757520349.670:21): pid=8067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.860" name="file1" dev="loop0" ino=15 res=0 errno=0
[  151.202874][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.245480][ T8069] EXT4-fs error (device loop0): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.0.860: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  151.278210][ T8069] EXT4-fs (loop0): Remounting filesystem read-only
[  151.313905][    T9] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  151.315890][ T8073] netlink: 'syz.2.862': attribute type 1 has an invalid length.
[  151.343936][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.487174][    T9] usb 2-1: Using ep0 maxpacket: 32
[  151.497844][    T9] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[  151.502681][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  151.506958][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  151.517250][    T9] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  151.520799][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  151.528677][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  151.534928][    T9] usb 2-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  151.538652][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.541175][    T9] usb 2-1: Product: syz
[  151.542620][    T9] usb 2-1: Manufacturer: syz
[  151.547148][    T9] usb 2-1: SerialNumber: syz
[  151.550274][    T9] usb 2-1: config 0 descriptor??
[  151.637473][ T5913] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  151.757789][ T5886] usb 2-1: USB disconnect, device number 9
[  151.787188][ T5913] usb 1-1: Using ep0 maxpacket: 32
[  151.790576][ T5913] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[  151.793619][ T5913] usb 1-1: config 0 has no interface number 0
[  151.798543][ T5913] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  151.802542][ T5913] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.805648][ T5913] usb 1-1: Product: syz
[  151.809791][ T5913] usb 1-1: Manufacturer: syz
[  151.811693][ T5913] usb 1-1: SerialNumber: syz
[  151.816060][ T5913] usb 1-1: config 0 descriptor??
[  151.824595][ T5913] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  151.828273][    T9] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[  151.999411][    T9] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0xC has invalid wMaxPacketSize 0
[  152.002708][    T9] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x84 has invalid wMaxPacketSize 0
[  152.006428][    T9] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x5 has invalid wMaxPacketSize 0
[  152.011535][    T9] usb 3-1: config 0 interface 0 has no altsetting 0
[  152.016513][    T9] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  152.019738][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.024631][    T9] usb 3-1: Product: syz
[  152.027326][    T9] usb 3-1: Manufacturer: syz
[  152.029082][    T9] usb 3-1: SerialNumber: syz
[  152.035126][ T5913] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  152.038870][    T9] usb 3-1: config 0 descriptor??
[  152.044881][    T9] em28xx 3-1:0.0: New device syz syz @ 12 Mbps (2040:0264, interface 0, class 0)
[  152.048013][    T9] em28xx 3-1:0.0: Device initialization failed.
[  152.051296][    T9] em28xx 3-1:0.0: Device must be connected to a high-speed USB 2.0 port.
[  152.054356][ T5913] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  152.252421][ T5901] usb 3-1: USB disconnect, device number 15
[  152.431536][    C0] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71
[  152.434991][ T5913] usb 1-1: USB disconnect, device number 16
[  152.445941][ T5913] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  152.456951][ T5913] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  152.463554][ T5913] quatech2 1-1:0.51: device disconnected
[  152.962352][ T8110] loop2: detected capacity change from 0 to 512
[  153.000931][ T8110] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.005817][ T8110] ext4 filesystem being mounted at /327/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.082893][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.103028][ T5913] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  153.240638][ T8123] loop0: detected capacity change from 0 to 4096
[  153.267204][ T5913] usb 2-1: Using ep0 maxpacket: 32
[  153.271505][ T5913] usb 2-1: New USB device found, idVendor=04b4, idProduct=861f, bcdDevice=f9.d6
[  153.275199][ T5913] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.292052][ T5913] usb 2-1: config 0 descriptor??
[  153.306332][ T5913] usb 2-1: dvb_usb_v2: found a 'Anysee' in warm state
[  153.311497][ T5913] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  153.315785][ T5913] dvb_usb_anysee 2-1:0.0: probe with driver dvb_usb_anysee failed with error -22
[  153.525163][ T5957] usb 2-1: USB disconnect, device number 10
[  153.691779][ T8121] loop2: detected capacity change from 0 to 32768
[  154.400269][ T8128] loop1: detected capacity change from 0 to 4096
[  154.415276][ T8128] ntfs3(loop1): ino=3, Correct links count -> 2.
[  154.469739][ T8128] ntfs3(loop1): ino=1a, mi_enum_attr
[  154.471974][ T8128] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  154.491156][ T8128] ntfs3(loop1): Failed to load root (-22).
[  154.682235][ T8132] netlink: 'syz.2.888': attribute type 1 has an invalid length.
[  154.695542][ T8132] netlink: 'syz.2.888': attribute type 2 has an invalid length.
[  154.712444][ T8132] netlink: 'syz.2.888': attribute type 1 has an invalid length.
[  154.714796][ T8132] netlink: 'syz.2.888': attribute type 2 has an invalid length.
[  155.128217][ T8162] IPv4: Oversized IP packet from 172.20.20.24
[  155.133251][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  155.136288][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  155.413666][ T8180] loop0: detected capacity change from 0 to 2048
[  155.438904][ T5848] udevd[5848]: incorrect nilfs2 checksum on /dev/loop0
[  155.454721][ T8180] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  155.463397][ T8180] NILFS (loop0): mounting unchecked fs
[  155.472591][ T5848] udevd[5848]: incorrect nilfs2 checksum on /dev/loop0
[  155.478781][ T8180] NILFS (loop0): recovery complete
[  155.482270][ T8185] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  155.652430][ T8193] netlink: 104 bytes leftover after parsing attributes in process `syz.1.918'.
[  156.988382][ T8205] loop1: detected capacity change from 0 to 32768
[  157.020296][ T8205] ERROR: (device loop1): diAllocBit: iag inconsistent
[  157.020296][ T8205] 
[  157.037297][ T8205] ERROR: (device loop1): remounting filesystem as read-only
[  157.047175][ T8205] ialloc: diAlloc returned -5!
[  157.441198][ T8233] loop0: detected capacity change from 0 to 256
[  157.493972][ T8237] netlink: 4 bytes leftover after parsing attributes in process `syz.1.935'.
[  157.496354][ T8233] FAT-fs (loop0): Directory bread(block 64) failed
[  157.501308][ T8233] FAT-fs (loop0): Directory bread(block 65) failed
[  157.504350][ T8233] FAT-fs (loop0): Directory bread(block 66) failed
[  157.508025][ T8233] FAT-fs (loop0): Directory bread(block 67) failed
[  157.510977][ T8233] FAT-fs (loop0): Directory bread(block 68) failed
[  157.514547][ T8233] FAT-fs (loop0): Directory bread(block 69) failed
[  157.519822][ T8233] FAT-fs (loop0): Directory bread(block 70) failed
[  157.522719][ T8233] FAT-fs (loop0): Directory bread(block 71) failed
[  157.526441][ T8233] FAT-fs (loop0): Directory bread(block 72) failed
[  157.537215][ T8233] FAT-fs (loop0): Directory bread(block 73) failed
[  157.912111][ T8242] loop1: detected capacity change from 0 to 32768
[  157.941285][ T8242] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  157.953022][ T8242] XFS (loop1): Ending clean mount
[  157.994399][ T5849] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  159.007986][ T8278] loop2: detected capacity change from 0 to 256
[  159.172418][ T8284] loop0: detected capacity change from 0 to 4096
[  159.185727][ T8284] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  159.265432][ T8284] ntfs3(loop0): ino=1a, mi_enum_attr
[  159.271482][ T8284] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  159.275101][ T8284] ntfs3(loop0): ino=1a, mi_enum_attr
[  159.276886][ T8284] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  159.362940][ T8292] loop1: detected capacity change from 0 to 128
[  159.369172][ T8292] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  159.387265][ T8292] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  159.689719][ T8297] netlink: 16 bytes leftover after parsing attributes in process `syz.1.959'.
[  160.213725][ T8290] loop2: detected capacity change from 0 to 40427
[  160.231358][ T8290] F2FS-fs (loop2): Invalid log sectors per block(0) log sectorsize(9)
[  160.248298][ T8290] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  160.280911][ T8290] F2FS-fs (loop2): invalid crc value
[  160.454201][ T8290] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  160.468290][ T8290] F2FS-fs (loop2): Start checkpoint disabled!
[  160.480464][ T8290] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  160.483597][ T8290] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  160.515342][ T8308] netlink: 8 bytes leftover after parsing attributes in process `syz.1.963'.
[  160.718346][ T8314] netlink: 4 bytes leftover after parsing attributes in process `syz.0.967'.
[  160.813537][ T8318] loop1: detected capacity change from 0 to 2048
[  160.828789][ T8318] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  161.216193][ T8341] loop0: detected capacity change from 0 to 256
[  161.248924][ T8341] FAT-fs (loop0): Directory bread(block 64) failed
[  161.251643][ T8341] FAT-fs (loop0): Directory bread(block 65) failed
[  161.254322][ T8341] FAT-fs (loop0): Directory bread(block 66) failed
[  161.255420][ T8343] loop2: detected capacity change from 0 to 1024
[  161.256938][ T8341] FAT-fs (loop0): Directory bread(block 67) failed
[  161.262680][ T8341] FAT-fs (loop0): Directory bread(block 68) failed
[  161.264999][ T8341] FAT-fs (loop0): Directory bread(block 69) failed
[  161.269679][ T8341] FAT-fs (loop0): Directory bread(block 70) failed
[  161.271861][ T8341] FAT-fs (loop0): Directory bread(block 71) failed
[  161.274104][ T8341] FAT-fs (loop0): Directory bread(block 72) failed
[  161.276342][ T8341] FAT-fs (loop0): Directory bread(block 73) failed
[  161.298589][ T8343] hfsplus: found bad thread record in catalog
[  162.017193][ T5913] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  162.071358][ T8353] bridge1: entered promiscuous mode
[  162.200986][ T8358] netlink: 'syz.0.986': attribute type 1 has an invalid length.
[  162.204039][ T8358] netlink: 'syz.0.986': attribute type 4 has an invalid length.
[  162.207420][ T8358] netlink: 9462 bytes leftover after parsing attributes in process `syz.0.986'.
[  162.229153][ T5913] usb 3-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  162.236256][ T5913] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.259909][ T5913] usb 3-1: config 0 descriptor??
[  162.478785][ T5913] udl 3-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  162.682999][ T5913] [drm:udl_init] *ERROR* Selecting channel failed
[  162.704308][ T5913] [drm] Initialized udl 0.0.1 for 3-1:0.0 on minor 3
[  162.706579][ T5913] [drm] Initialized udl on minor 3
[  162.730222][ T5913] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  162.744450][ T5913] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[  162.752513][    T9] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  162.771477][    T9] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  162.776565][    T9] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[  162.789178][ T5913] usb 3-1: USB disconnect, device number 16
[  162.890984][ T8380] loop1: detected capacity change from 0 to 4096
[  162.898453][ T8380] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  162.917521][ T8380] ntfs3(loop1): ino=3, mi_enum_attr
[  162.922061][ T8380] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  162.924593][ T8380] ntfs3(loop1): Failed to load $LogFile (-22).
[  163.197553][    T9] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  163.371209][    T9] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  163.374298][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  163.376384][    T9] usb 2-1: New USB device found, idVendor=056a, idProduct=0333, bcdDevice= 0.00
[  163.382776][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.398672][    T9] usb 2-1: config 0 descriptor??
[  163.467208][ T5957] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  163.621131][ T5957] usb 3-1: config 127 has an invalid interface number: 124 but max is 0
[  163.624383][ T5957] usb 3-1: config 127 has no interface number 0
[  163.626730][ T5957] usb 3-1: config 127 interface 124 altsetting 0 endpoint 0x2 has invalid maxpacket 1024, setting to 64
[  163.631517][ T5957] usb 3-1: New USB device found, idVendor=0c72, idProduct=0013, bcdDevice=1d.4f
[  163.635073][ T5957] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.747203][ T5913] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  163.818317][    T9] wacom 0003:056A:0333.0009: hidraw0: USB HID v0.00 Device [HID 056a:0333] on usb-dummy_hcd.1-1/input0
[  163.849444][    T9] usb 3-1: USB disconnect, device number 17
[  163.907322][ T5913] usb 1-1: Using ep0 maxpacket: 8
[  163.912348][ T5913] usb 1-1: config 0 has an invalid interface number: 55 but max is 0
[  163.915860][ T5913] usb 1-1: config 0 has no interface number 0
[  163.919055][ T5913] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  163.923292][ T5913] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  163.927831][ T5913] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  163.931832][ T5913] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  163.935047][ T5913] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  163.940779][ T5913] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  163.944270][ T5913] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.950105][ T5913] usb 1-1: config 0 descriptor??
[  163.960844][ T5913] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  164.017770][ T5913] usb 2-1: USB disconnect, device number 11
[  164.157995][ T8403] ldusb 1-1:0.55: Couldn't submit interrupt_in_urb -90
[  164.164721][    T9] usb 1-1: USB disconnect, device number 17
[  164.175325][    T9] ldusb 1-1:0.55: LD USB Device #0 now disconnected
[  164.758351][ T8425] loop0: detected capacity change from 0 to 4096
[  164.764713][ T8425] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  164.786504][ T8425] ntfs3(loop0): ino=19, mi_enum_attr
[  164.793938][ T8425] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  165.107244][    T9] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  165.181243][ T8433] loop0: detected capacity change from 0 to 32768
[  165.186402][ T8433] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1021 (8433)
[  165.198742][ T8433] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  165.202672][ T8433] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  165.270243][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.275599][    T9] usb 2-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  165.287251][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.292701][    T9] usb 2-1: config 0 descriptor??
[  165.370692][ T8433] BTRFS info (device loop0): enabling ssd optimizations
[  165.373612][ T8433] BTRFS info (device loop0): enabling free space tree
[  165.797667][   T33] audit: type=1800 audit(1757520364.250:22): pid=8454 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1021" name="file1" dev="loop0" ino=260 res=0 errno=0
[  165.914198][    T9] itetech 0003:258A:6A88.000A: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.1-1/input0
[  166.038295][ T5957] usb 2-1: USB disconnect, device number 12
[  166.067491][ T5855] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  166.106650][ T8461] loop2: detected capacity change from 0 to 256
[  166.110679][ T8461] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  166.122353][ T8461] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  166.359716][ T8465] loop2: detected capacity change from 0 to 2048
[  166.383068][ T8465] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=66359, location=66359
[  166.391932][ T8465] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  166.801814][ T8471] loop0: detected capacity change from 0 to 32768
[  166.825467][ T8471] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  166.875930][ T8471] XFS (loop0): Ending clean mount
[  166.883879][ T8471] XFS (loop0): Quotacheck needed: Please wait.
[  166.916659][ T8471] XFS (loop0): Quotacheck: Done.
[  166.957613][ T5855] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  167.147262][    T9] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  167.297297][    T9] usb 2-1: Using ep0 maxpacket: 8
[  167.302344][    T9] usb 2-1: too many endpoints for config 0 interface 0 altsetting 2: 129, using maximum allowed: 30
[  167.306720][    T9] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 136, changing to 11
[  167.312910][    T9] usb 2-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 129
[  167.318367][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  167.321283][    T9] usb 2-1: New USB device found, idVendor=0c70, idProduct=f003, bcdDevice= 0.00
[  167.324866][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.332058][    T9] usb 2-1: config 0 descriptor??
[  167.547942][    T9] usbhid 2-1:0.0: can't add hid device: -71
[  167.551744][    T9] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  167.556870][    T9] usb 2-1: USB disconnect, device number 13
[  168.045590][ T8515] loop0: detected capacity change from 0 to 1024
[  168.096919][ T8513] loop2: detected capacity change from 0 to 32768
[  168.148935][ T8513] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  168.181976][ T8513] XFS (loop2): Ending clean mount
[  168.200332][ T8513] XFS (loop2): Quotacheck needed: Please wait.
[  168.230892][ T8524] loop0: detected capacity change from 0 to 8192
[  168.238362][ T8513] XFS (loop2): Quotacheck: Done.
[  168.260449][ T8513] XFS (loop2): Metadata CRC error detected at xfs_refcountbt_read_verify+0x42/0xe0, xfs_refcountbt block 0x28 
[  168.265300][ T8513] XFS (loop2): Unmount and run xfs_repair
[  168.269779][ T8513] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  168.272686][ T8513] 00000000: 52 ff ff ff 7f 00 00 00 ff ff ff ff ff ff ff ff  R...............
[  168.276190][ T8513] 00000010: 00 00 00 00 00 00 00 28 00 00 00 00 00 00 00 00  .......(........
[  168.281555][ T8513] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb  ...^T.Lr......N.
[  168.285105][ T8513] 00000030: 00 00 00 00 bd e7 de 5d 00 00 00 00 00 00 00 00  .......]........
[  168.292992][ T5848]  loop0: p1 p2 p3 p4
[  168.294660][ T5848] loop0: partition table partially beyond EOD, truncated
[  168.302655][ T8513] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  168.306625][ T8513] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  168.311688][ T8513] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  168.316553][ T8513] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  168.320674][ T5848] loop0: p3 start 331777 is beyond EOD, truncated
[  168.323045][ T5848] loop0: p4 size 262144 extends beyond EOD, truncated
[  168.330187][ T8513] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x28 len 8 error 74
[  168.344094][ T8513] XFS (loop2): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x517/0x8e0 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[  168.346883][ T8524]  loop0: p1 p2 p3 p4
[  168.349472][ T8513] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  168.353848][ T8524] loop0: partition table partially beyond EOD, truncated
[  168.363043][ T8524] loop0: p3 start 331777 is beyond EOD, truncated
[  168.366535][ T8524] loop0: p4 size 262144 extends beyond EOD, truncated
[  168.386415][ T5296]  loop0: p1 p2 p3 p4
[  168.389585][ T5296] loop0: partition table partially beyond EOD, truncated
[  168.396709][ T5296] loop0: p3 start 331777 is beyond EOD, truncated
[  168.399441][ T5296] loop0: p4 size 262144 extends beyond EOD, truncated
[  168.454079][ T6851] udevd[6851]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  168.460315][ T5848] udevd[5848]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  168.469057][ T5860] udevd[5860]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  168.489533][ T6851] udevd[6851]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  168.493864][ T5848] udevd[5848]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  168.494129][ T5860] udevd[5860]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  168.529674][ T6851] udevd[6851]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  168.530295][ T5848] udevd[5848]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  168.533858][ T5860] udevd[5860]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  168.721164][ T8537] loop0: detected capacity change from 0 to 32768
[  168.733583][ T8537] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1052 (8537)
[  168.755497][ T8537] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  168.773161][ T8537] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  168.855917][ T8537] BTRFS info (device loop0): enabling ssd optimizations
[  168.860151][ T8537] BTRFS info (device loop0): enabling free space tree
[  168.889156][ T5847] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  168.929075][ T5855] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  169.129346][ T8569] tmpfs: Unknown parameter 'm'
[  169.514594][ T8584] cgroup: none used incorrectly
[  169.603973][ T8588] bridge1: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms)
[  169.843064][   T33] audit: type=1326 audit(1757520368.340:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.855083][   T33] audit: type=1326 audit(1757520368.340:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.865872][   T33] audit: type=1326 audit(1757520368.340:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.874057][   T24] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  169.880581][   T33] audit: type=1326 audit(1757520368.340:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.886903][   T33] audit: type=1326 audit(1757520368.340:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.903533][   T33] audit: type=1326 audit(1757520368.340:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.917501][   T33] audit: type=1326 audit(1757520368.340:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.925448][   T33] audit: type=1326 audit(1757520368.340:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  169.934034][   T33] audit: type=1326 audit(1757520368.340:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.0.1072" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc4e678eba9 code=0x7fc00000
[  170.027272][   T24] usb 3-1: Using ep0 maxpacket: 32
[  170.031198][   T24] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  170.034288][   T24] usb 3-1: config 0 has no interface number 0
[  170.040761][   T24] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  170.044215][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.048244][   T24] usb 3-1: Product: syz
[  170.049874][   T24] usb 3-1: Manufacturer: syz
[  170.051705][   T24] usb 3-1: SerialNumber: syz
[  170.059239][   T24] usb 3-1: config 0 descriptor??
[  170.063811][   T24] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  170.137237][    T9] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  170.287178][    T9] usb 2-1: Using ep0 maxpacket: 32
[  170.291223][    T9] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  170.294485][    T9] usb 2-1: config 0 has no interface number 0
[  170.300084][    T9] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  170.303679][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.306795][    T9] usb 2-1: Product: syz
[  170.308526][    T9] usb 2-1: Manufacturer: syz
[  170.310386][    T9] usb 2-1: SerialNumber: syz
[  170.314488][    T9] usb 2-1: config 0 descriptor??
[  170.319676][    T9] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  170.526436][    T9] usb 2-1: qt2_setup_urbs - submit read urb failed -8
[  170.531117][    T9] quatech2 2-1:0.51: probe with driver quatech2 failed with error -8
[  170.624311][   T24] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  170.629941][   T24] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  170.734343][   T24] usb 2-1: USB disconnect, device number 14
[  170.827698][    C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  170.828759][    T9] usb 3-1: USB disconnect, device number 18
[  170.840243][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  170.856219][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  170.862518][    T9] quatech2 3-1:0.51: device disconnected
[  171.291363][ T8609] rdma_op ffff88811cfe49f0 conn xmit_rdma 0000000000000000
[  171.730149][ T5957] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  171.867242][    T9] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  171.886560][ T5957] usb 3-1: Using ep0 maxpacket: 8
[  171.890860][ T5957] usb 3-1: config 0 has an invalid interface number: 150 but max is 0
[  171.894047][ T5957] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  171.902057][ T5957] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  171.905938][ T5957] usb 3-1: config 0 has 2 interfaces, different from the descriptor's value: 1
[  171.911458][ T5957] usb 3-1: config 0 has no interface number 0
[  171.914043][ T5957] usb 3-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  171.919877][ T5957] usb 3-1: config 0 interface 150 has no altsetting 0
[  171.922582][ T5957] usb 3-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[  171.926108][ T5957] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.932751][ T5957] usb 3-1: config 0 descriptor??
[  172.027158][    T9] usb 2-1: Using ep0 maxpacket: 8
[  172.032500][    T9] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  172.035533][    T9] usb 2-1: config 0 has no interface number 0
[  172.037992][    T9] usb 2-1: config 0 interface 1 has no altsetting 0
[  172.043051][    T9] usb 2-1: New USB device found, idVendor=041e, idProduct=0005, bcdDevice=da.9a
[  172.046321][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.049664][    T9] usb 2-1: Product: syz
[  172.051463][    T9] usb 2-1: Manufacturer: syz
[  172.053409][    T9] usb 2-1: SerialNumber: syz
[  172.061494][    T9] usb 2-1: config 0 descriptor??
[  172.285338][    T9] snd-usb-audio 2-1:0.1: probe with driver snd-usb-audio failed with error -22
[  172.290121][    T9] usb 2-1: USB disconnect, device number 15
[  172.301910][ T5848] udevd[5848]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.1/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  172.350930][ T5913] usb 3-1: USB disconnect, device number 19
[  172.906770][ T8647] netlink: 'syz.2.1094': attribute type 10 has an invalid length.
[  172.920488][ T8647] macvlan0: entered promiscuous mode
[  172.922597][ T8647] macvlan0: entered allmulticast mode
[  172.938015][ T8647] veth1_vlan: entered allmulticast mode
[  172.951475][ T8647] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  173.019398][ T8653] netlink: 5636 bytes leftover after parsing attributes in process `syz.2.1097'.
[  173.063045][ T8655] loop1: detected capacity change from 0 to 256
[  173.085682][ T8655] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  173.092286][ T8655] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  173.154167][ T8659] loop1: detected capacity change from 0 to 8
[  173.193687][ T8659] SQUASHFS error: Unable to read directory block [2c0:35]
[  173.252933][ T8661] loop1: detected capacity change from 0 to 128
[  173.327265][   T24] usb 3-1: new full-speed USB device number 20 using dummy_hcd
[  173.333892][ T8663] loop1: detected capacity change from 0 to 2048
[  173.336627][ T8663] EXT4-fs: Ignoring removed nobh option
[  173.373670][ T8663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.413958][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.491981][   T24] usb 3-1: config 0 has an invalid interface number: 128 but max is 0
[  173.501783][ T8670] loop1: detected capacity change from 0 to 1024
[  173.502638][   T24] usb 3-1: config 0 has no interface number 0
[  173.513130][   T24] usb 3-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  173.520276][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.523261][   T24] usb 3-1: Product: syz
[  173.524863][   T24] usb 3-1: Manufacturer: syz
[  173.526579][   T24] usb 3-1: SerialNumber: syz
[  173.533001][   T24] usb 3-1: config 0 descriptor??
[  173.646945][ T8674] loop1: detected capacity change from 0 to 2048
[  173.651809][ T8674] EXT4-fs (loop1): bad geometry: first data block 0 is beyond end of filesystem (0)
[  174.222630][   T24] usb 3-1: Firmware version (0.0) predates our first public release.
[  174.247427][   T24] usb 3-1: Please update to version 0.2 or newer
[  174.439511][   T24] usb 3-1: USB disconnect, device number 20
[  174.955830][ T8699] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1116'.
[  174.966165][ T8697] loop1: detected capacity change from 0 to 4096
[  174.979511][ T8697] ntfs3(loop1): ino=0, mi_enum_attr
[  174.981732][ T8697] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  174.985468][ T8697] ntfs3(loop1): mft corrupted
[  174.988628][ T8697] ntfs3(loop1): Failed to load $MFT.
[  175.373012][ T8716] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  175.384858][ T8709] loop2: detected capacity change from 0 to 32768
[  175.457729][ T8709] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  175.469752][ T8709] XFS (loop2): Ending clean mount
[  175.493103][ T8709] XFS (loop2): syz.2.1121 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[  175.532445][ T5847] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  175.791716][ T8717] loop0: detected capacity change from 0 to 40427
[  175.795088][ T8717] F2FS-fs: heap/no_heap options were deprecated
[  175.801803][ T8717] F2FS-fs (loop0): invalid crc value
[  175.812758][ T8735] loop2: detected capacity change from 0 to 16
[  175.833057][ T8735] erofs (device loop2): EXPERIMENTAL EROFS subpage compressed block support in use. Use at your own risk!
[  175.846424][ T8735] erofs (device loop2): mounted with root inode @ nid 36.
[  175.885499][ T8717] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  175.892137][ T8717] F2FS-fs (loop0): Start checkpoint disabled!
[  175.896786][ T8717] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  175.932947][ T8731] loop1: detected capacity change from 0 to 32768
[  175.952712][ T8739] loop2: detected capacity change from 0 to 512
[  175.960751][ T8717] F2FS-fs (loop0): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  175.968408][ T8739] EXT4-fs: Ignoring removed bh option
[  175.972281][ T8739] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  176.017840][ T8739] EXT4-fs (loop2): 1 truncate cleaned up
[  176.020528][ T8739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.038627][ T8731] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  176.040635][ T1091] kworker/u10:6: attempt to access beyond end of device
[  176.040635][ T1091] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  176.061394][ T1091] CPU: 1 UID: 0 PID: 1091 Comm: kworker/u10:6 Not tainted syzkaller #0 PREEMPT(full) 
[  176.061408][ T1091] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  176.061414][ T1091] Workqueue: writeback wb_workfn (flush-7:0)
[  176.061430][ T1091] Call Trace:
[  176.061434][ T1091]  <TASK>
[  176.061439][ T1091]  dump_stack_lvl+0x189/0x250
[  176.061452][ T1091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.061461][ T1091]  ? __pfx_queue_work_on+0x10/0x10
[  176.061470][ T1091]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  176.061483][ T1091]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  176.061501][ T1091]  f2fs_handle_critical_error+0x37c/0x540
[  176.061517][ T1091]  f2fs_write_end_io+0x886/0xb60
[  176.061535][ T1091]  __submit_merged_bio+0x27a/0x6a0
[  176.061549][ T1091]  __submit_merged_write_cond+0x255/0x530
[  176.061564][ T1091]  f2fs_write_data_pages+0x261d/0x3000
[  176.061589][ T1091]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  176.061638][ T1091]  ? f2fs_write_meta_pages+0x357/0x450
[  176.061658][ T1091]  ? __lock_acquire+0xab9/0xd20
[  176.061672][ T1091]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  176.061681][ T1091]  do_writepages+0x32e/0x550
[  176.061695][ T1091]  ? reacquire_held_locks+0x127/0x1d0
[  176.061702][ T1091]  ? writeback_sb_inodes+0x384/0x1010
[  176.061717][ T1091]  __writeback_single_inode+0x145/0xff0
[  176.061727][ T1091]  ? do_raw_spin_unlock+0x4d/0x240
[  176.061739][ T1091]  writeback_sb_inodes+0x6c7/0x1010
[  176.061763][ T1091]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  176.061796][ T1091]  ? rcu_is_watching+0x15/0xb0
[  176.061810][ T1091]  wb_writeback+0x43b/0xaf0
[  176.061824][ T1091]  ? queue_io+0x371/0x590
[  176.061836][ T1091]  ? __pfx_wb_writeback+0x10/0x10
[  176.061854][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  176.061873][ T1091]  wb_workfn+0x409/0xef0
[  176.061896][ T1091]  ? __pfx_wb_workfn+0x10/0x10
[  176.061911][ T1091]  ? __lock_acquire+0xab9/0xd20
[  176.061928][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  176.061939][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  176.061950][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  176.061957][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  176.061968][ T1091]  process_scheduled_works+0xae1/0x17b0
[  176.062006][ T1091]  ? __pfx_process_scheduled_works+0x10/0x10
[  176.062024][ T1091]  worker_thread+0x8a0/0xda0
[  176.062047][ T1091]  kthread+0x711/0x8a0
[  176.062063][ T1091]  ? __pfx_worker_thread+0x10/0x10
[  176.062077][ T1091]  ? __pfx_kthread+0x10/0x10
[  176.062095][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  176.062109][ T1091]  ? lockdep_hardirqs_on+0x9c/0x150
[  176.062116][ T1091]  ? __pfx_kthread+0x10/0x10
[  176.062126][ T1091]  ret_from_fork+0x3fc/0x770
[  176.062137][ T1091]  ? __pfx_ret_from_fork+0x10/0x10
[  176.062180][ T1091]  ? __switch_to_asm+0x39/0x70
[  176.062195][ T1091]  ? __switch_to_asm+0x33/0x70
[  176.062208][ T1091]  ? __pfx_kthread+0x10/0x10
[  176.062227][ T1091]  ret_from_fork_asm+0x1a/0x30
[  176.062259][ T1091]  </TASK>
[  176.062265][ T1091] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  176.174401][ T1091] CPU: 1 UID: 0 PID: 1091 Comm: kworker/u10:6 Not tainted syzkaller #0 PREEMPT(full) 
[  176.174414][ T1091] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  176.174420][ T1091] Workqueue: writeback wb_workfn (flush-7:0)
[  176.174435][ T1091] Call Trace:
[  176.174439][ T1091]  <TASK>
[  176.174443][ T1091]  dump_stack_lvl+0x189/0x250
[  176.174456][ T1091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.174466][ T1091]  ? __pfx_queue_work_on+0x10/0x10
[  176.174474][ T1091]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  176.174487][ T1091]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  176.174504][ T1091]  f2fs_handle_critical_error+0x37c/0x540
[  176.174520][ T1091]  f2fs_write_end_io+0x886/0xb60
[  176.174538][ T1091]  __submit_merged_bio+0x27a/0x6a0
[  176.174552][ T1091]  __submit_merged_write_cond+0x255/0x530
[  176.174567][ T1091]  f2fs_write_data_pages+0x261d/0x3000
[  176.174592][ T1091]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  176.174647][ T1091]  ? f2fs_write_meta_pages+0x357/0x450
[  176.174660][ T1091]  ? __lock_acquire+0xab9/0xd20
[  176.174674][ T1091]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  176.174683][ T1091]  do_writepages+0x32e/0x550
[  176.174697][ T1091]  ? reacquire_held_locks+0x127/0x1d0
[  176.174705][ T1091]  ? writeback_sb_inodes+0x384/0x1010
[  176.174720][ T1091]  __writeback_single_inode+0x145/0xff0
[  176.174730][ T1091]  ? do_raw_spin_unlock+0x4d/0x240
[  176.174742][ T1091]  writeback_sb_inodes+0x6c7/0x1010
[  176.174765][ T1091]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  176.174797][ T1091]  ? rcu_is_watching+0x15/0xb0
[  176.174810][ T1091]  wb_writeback+0x43b/0xaf0
[  176.174824][ T1091]  ? queue_io+0x371/0x590
[  176.174836][ T1091]  ? __pfx_wb_writeback+0x10/0x10
[  176.174850][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  176.174864][ T1091]  wb_workfn+0x409/0xef0
[  176.174880][ T1091]  ? __pfx_wb_workfn+0x10/0x10
[  176.174891][ T1091]  ? __lock_acquire+0xab9/0xd20
[  176.174908][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  176.174919][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  176.174929][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  176.174936][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  176.174944][ T1091]  process_scheduled_works+0xae1/0x17b0
[  176.174967][ T1091]  ? __pfx_process_scheduled_works+0x10/0x10
[  176.174984][ T1091]  worker_thread+0x8a0/0xda0
[  176.175006][ T1091]  kthread+0x711/0x8a0
[  176.175018][ T1091]  ? __pfx_worker_thread+0x10/0x10
[  176.175025][ T1091]  ? __pfx_kthread+0x10/0x10
[  176.175036][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  176.175046][ T1091]  ? lockdep_hardirqs_on+0x9c/0x150
[  176.175053][ T1091]  ? __pfx_kthread+0x10/0x10
[  176.175063][ T1091]  ret_from_fork+0x3fc/0x770
[  176.175074][ T1091]  ? __pfx_ret_from_fork+0x10/0x10
[  176.175085][ T1091]  ? __switch_to_asm+0x39/0x70
[  176.175094][ T1091]  ? __switch_to_asm+0x33/0x70
[  176.175102][ T1091]  ? __pfx_kthread+0x10/0x10
[  176.175112][ T1091]  ret_from_fork_asm+0x1a/0x30
[  176.175130][ T1091]  </TASK>
[  176.175134][ T1091] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  176.191109][ T5849] (syz-executor,5849,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72
[  176.243938][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.262533][ T5849] ocfs2: Unmounting device (7,1) on (node local)
[  176.892940][   T24] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  177.037280][   T24] usb 2-1: Using ep0 maxpacket: 16
[  177.041375][   T24] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  177.044882][   T24] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  177.049561][   T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  177.055938][   T24] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  177.063181][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.066519][   T24] usb 2-1: Product: syz
[  177.069330][   T24] usb 2-1: Manufacturer: syz
[  177.071240][   T24] usb 2-1: SerialNumber: syz
[  177.167275][    T9] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  177.317229][    T9] usb 1-1: Using ep0 maxpacket: 8
[  177.321508][    T9] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  177.326810][    T9] usb 1-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[  177.332253][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[  177.335759][    T9] usb 1-1: SerialNumber: syz
[  177.339983][    T9] usb 1-1: config 0 descriptor??
[  177.351135][    T9] usb 1-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[  177.354398][    T9] usb 1-1: Failed to create links for entity 255
[  177.356870][    T9] usb 1-1: Failed to register entities (-22).
[  177.479954][   T24] usb 2-1: 0:2 : does not exist
[  177.556253][    T9] usb 1-1: USB disconnect, device number 18
[  178.131312][ T8794] usb usb8: usbfs: process 8794 (syz.0.1154) did not claim interface 0 before use
[  178.298704][ T8803] loop2: detected capacity change from 0 to 8
[  178.311695][ T8803] SQUASHFS error: lzo decompression failed, data probably corrupt
[  178.315071][ T8803] SQUASHFS error: Failed to read block 0x28d: -5
[  178.317683][ T8803] SQUASHFS error: Unable to read metadata cache entry [28b]
[  178.320671][ T8803] SQUASHFS error: Unable to read inode 0x11f
[  178.708610][   T24] usb 2-1: 1:0: failed to get current value for ch 0 (-22)
[  178.729449][   T24] usb 2-1: USB disconnect, device number 16
[  179.011013][ T8815] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  179.011013][ T8815] The task syz.2.1162 (8815) triggered the difference, watch for misbehavior.
[  179.140554][ T5848] udevd[5848]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  179.466827][ T8815] loop2: detected capacity change from 0 to 65536
[  179.485062][ T8815] XFS (loop2): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  179.503830][ T8815] XFS (loop2): Ending clean mount
[  179.506740][ T8815] XFS (loop2): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  180.660300][ T8836] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1166'.
[  181.145067][ T8842] loop2: detected capacity change from 0 to 128
[  181.156505][ T8842] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  181.162931][ T8842] hpfs: filesystem error: improperly stopped
[  181.165389][ T8842] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  181.177184][ T8842] hpfs: You really don't want any checks? You are crazy...
[  181.182010][ T8842] hpfs: hpfs_map_sector(): read error
[  181.184129][ T8842] hpfs: code page support is disabled
[  181.193915][ T8842] hpfs: hpfs_map_4sectors(): unaligned read
[  181.196958][ T8842] hpfs: hpfs_map_4sectors(): unaligned read
[  181.199373][ T8842] hpfs: filesystem error: unable to find root dir
[  181.232602][ T8842] hpfs: hpfs_map_4sectors(): unaligned read
[  181.457233][ T5886] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  181.465470][ T8854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1174'.
[  181.531270][ T8860] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1177'.
[  181.533966][ T8860] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1177'.
[  181.610049][ T5886] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  181.619932][ T5886] usb 1-1: New USB device found, idVendor=05ac, idProduct=0237, bcdDevice= 0.00
[  181.623507][ T5886] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.638045][ T5886] usb 1-1: config 0 descriptor??
[  181.663697][ T5886] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input13
[  181.849810][ T5281] bcm5974 1-1:0.0: could not read from device
[  181.856199][ T5281] bcm5974 1-1:0.0: could not read from device
[  181.864519][ T5281] bcm5974 1-1:0.0: could not read from device
[  181.871565][ T5281] bcm5974 1-1:0.0: could not read from device
[  181.879483][ T5886] usb 1-1: USB disconnect, device number 19
[  181.879758][ T5281] bcm5974 1-1:0.0: could not read from device
[  181.891100][ T5848] bcm5974 1-1:0.0: could not read from device
[  181.911780][ T5848] udevd[5848]: Error opening device "/dev/input/event3": No such file or directory
[  181.916044][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  181.926719][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  181.930463][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  181.933591][ T5848] udevd[5848]: Unable to EVIOCGABS device "/dev/input/event3"
[  181.936664][ T5848] udevd[5848]: Assertion 'close_nointr(fd) != -EBADF' failed at util.c:228, function safe_close(). Aborting.
[  181.981345][ T5296] udevd[5296]: worker [5848] terminated by signal 6 (Aborted)
[  181.984384][ T5296] udevd[5296]: worker [5848] failed while handling '/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input13/event3'
[  182.525457][ T8892] loop0: detected capacity change from 0 to 1024
[  182.591882][ T8892] syz.0.1193: attempt to access beyond end of device
[  182.591882][ T8892] loop0: rw=2049, sector=5778, nr_sectors = 2 limit=1024
[  182.599685][ T8892] Buffer I/O error on dev loop0, logical block 2889, lost async page write
[  182.642628][ T8893] hfsplus: can't free extent
[  182.793344][   T33] kauditd_printk_skb: 51 callbacks suppressed
[  182.793357][   T33] audit: type=1326 audit(1757520381.280:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8884 comm="syz.2.1190" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a2f38eba9 code=0x7fc00000
[  183.150304][   T24] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  183.164956][   T24] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  183.301541][ T8905] loop1: detected capacity change from 0 to 32768
[  183.336323][ T8905] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  183.377376][ T8905] XFS (loop1): Ending clean mount
[  183.595835][ T8921] loop2: detected capacity change from 0 to 256
[  183.636703][ T8921] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  183.643067][ T5849] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  183.651337][ T8921] FAT-fs (loop2): Filesystem has been set read-only
[  183.654192][ T8921] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  183.673543][ T8921] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  183.681920][   T33] audit: type=1800 audit(1757520382.180:84): pid=8921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1201" name="file1" dev="loop2" ino=1048630 res=0 errno=0
[  183.782205][ T8927] loop2: detected capacity change from 0 to 8
[  184.629381][   T33] audit: type=1800 audit(1757520383.100:85): pid=8931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1205" name="file1" dev="loop2" ino=5 res=0 errno=0
[  185.025336][ T8939] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1208'.
[  185.034948][ T8939] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1208'.
[  185.547622][   T24] usb 1-1: new full-speed USB device number 20 using dummy_hcd
[  185.549479][ T8959] loop1: detected capacity change from 0 to 47
[  185.687450][ T8962] loop1: detected capacity change from 0 to 512
[  185.708439][   T24] usb 1-1: config 4 has an invalid interface number: 156 but max is 0
[  185.711704][   T24] usb 1-1: config 4 has no interface number 0
[  185.725477][   T24] usb 1-1: New USB device found, idVendor=0fe9, idProduct=db71, bcdDevice=53.3e
[  185.732599][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.736279][   T24] usb 1-1: Product: syz
[  185.737544][ T8962] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.741260][   T24] usb 1-1: Manufacturer: syz
[  185.743487][ T8962] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.744396][   T24] usb 1-1: SerialNumber: syz
[  185.762935][   T24] dvb-usb: found a 'DViCO FusionHDTV DVB-T NANO2 w/o firmware' in warm state.
[  185.766525][   T24] usb 1-1: setting power ON
[  185.769748][   T24] dvb-usb: bulk message failed: -22 (2/0)
[  185.776922][   T24] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  185.786199][   T24] dvb-usb: DViCO FusionHDTV DVB-T NANO2 w/o firmware error while loading driver (-19)
[  185.789710][   T24] dvb_usb_cxusb 1-1:4.156: probe with driver dvb_usb_cxusb failed with error -22
[  185.850329][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.947482][ T5913] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  185.983105][ T5886] usb 1-1: USB disconnect, device number 20
[  186.131243][ T5913] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  186.135452][ T5913] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  186.143960][ T5913] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  186.153964][ T5913] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  186.162033][ T5913] usb 3-1: config 0 descriptor??
[  186.213730][ T8983] overlay: filesystem on ./file0 is read-only
[  186.540064][ T8985] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1229'.
[  186.575456][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.582538][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.589292][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.591650][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.594553][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.600712][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.605197][ T5913] cp2112 0003:10C4:EA90.000C: unknown main item tag 0x0
[  186.617735][ T5913] cp2112 0003:10C4:EA90.000C: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.2-1/input0
[  186.631395][ T8989] autofs4:pid:8989:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.8192), cmd(0xc018937e)
[  186.636750][ T8989] autofs4:pid:8989:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e)
[  186.772690][ T5913] cp2112 0003:10C4:EA90.000C: Part Number: 0x00 Device Version: 0x00
[  186.874716][ T8991] loop0: detected capacity change from 0 to 32768
[  187.223761][ T5913] cp2112 0003:10C4:EA90.000C: error setting SMBus config
[  187.271043][ T5913] cp2112 0003:10C4:EA90.000C: probe with driver cp2112 failed with error -71
[  187.318816][ T5913] usb 3-1: USB disconnect, device number 21
[  187.565601][ T8996] loop1: detected capacity change from 0 to 512
[  187.586416][ T8996] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.597871][ T8996] ext4 filesystem being mounted at /408/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  187.677722][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.916776][ T9014] loop2: detected capacity change from 0 to 512
[  187.923223][ T9014] EXT4-fs (loop2): VFS: Can't find ext4 filesystem
[  188.047210][   T24] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  188.069625][ T9022] loop2: detected capacity change from 0 to 512
[  188.080187][ T9022] EXT4-fs: Ignoring removed bh option
[  188.082408][ T9022] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.095868][ T9022] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  188.110564][ T9022] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  188.114399][ T9022] EXT4-fs (loop2): orphan cleanup on readonly fs
[  188.117910][ T9022] Quota error (device loop2): v2_read_file_info: Block with free entry 252928 out of range (1, 6).
[  188.124325][ T9022] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  188.132162][ T9022] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  188.136912][ T9022] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1245: Invalid block bitmap block 0 in block_group 0
[  188.146341][ T9022] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  188.150340][ T9022] EXT4-fs (loop2): 1 orphan inode deleted
[  188.153304][ T9022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  188.172372][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.197224][   T24] usb 2-1: Using ep0 maxpacket: 8
[  188.200704][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.204526][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.210254][   T24] usb 2-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  188.213296][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.227407][   T24] usb 2-1: config 0 descriptor??
[  188.329432][ T9031] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1249'.
[  188.333258][ T9031] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1249'.
[  188.347765][ T5901] usb 1-1: new full-speed USB device number 21 using dummy_hcd
[  188.500600][ T5901] usb 1-1: config 0 interface 0 altsetting 13 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  188.512311][ T5901] usb 1-1: config 0 interface 0 has no altsetting 0
[  188.514816][ T5901] usb 1-1: New USB device found, idVendor=044f, idProduct=b323, bcdDevice= 0.00
[  188.518802][ T5901] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.525753][ T5901] usb 1-1: config 0 descriptor??
[  188.528737][ T9025] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  188.645110][   T24] logitech 0003:046D:C20E.000D: rdesc size test failed for formula gp
[  188.648589][   T24] logitech 0003:046D:C20E.000D: item fetching failed at offset 10/11
[  188.652032][   T24] logitech 0003:046D:C20E.000D: parse failed
[  188.654019][   T24] logitech 0003:046D:C20E.000D: probe with driver logitech failed with error -22
[  188.780159][ T9045] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  188.828117][ T9048] loop2: detected capacity change from 0 to 256
[  188.845373][ T5913] usb 2-1: USB disconnect, device number 17
[  188.949383][ T5901] thrustmaster 0003:044F:B323.000E: hidraw0: USB HID v0.00 Device [HID 044f:b323] on usb-dummy_hcd.0-1/input0
[  188.954459][ T5901] thrustmaster 0003:044F:B323.000E: no inputs found
[  189.142911][ T5901] usb 1-1: USB disconnect, device number 21
[  189.401117][ T9067] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1265'.
[  190.550725][ T9085] loop2: detected capacity change from 0 to 7
[  190.572791][ T5860] Dev loop2: unable to read RDB block 7
[  190.580440][ T5860]  loop2: unable to read partition table
[  190.585922][ T5860] loop2: partition table beyond EOD, truncated
[  190.702850][ T9085] Dev loop2: unable to read RDB block 7
[  190.711313][ T9085]  loop2: unable to read partition table
[  190.717842][ T9085] loop2: partition table beyond EOD, truncated
[  190.724772][ T9085] loop_reread_partitions: partition scan of loop2 (被x ) failed (rc=-5)
[  191.275038][ T9101] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[  192.007594][ T5913] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  192.167663][ T5913] usb 3-1: Using ep0 maxpacket: 32
[  192.195081][ T5913] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.203454][ T5913] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.208693][ T5913] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  192.212926][ T5913] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.236848][ T5913] usb 3-1: config 0 descriptor??
[  192.705122][ T5913] koneplus 0003:1E7D:2D51.000F: unknown main item tag 0x0
[  192.711777][ T5913] koneplus 0003:1E7D:2D51.000F: unknown main item tag 0x0
[  192.714513][ T5913] koneplus 0003:1E7D:2D51.000F: unknown main item tag 0x0
[  192.726434][ T5913] koneplus 0003:1E7D:2D51.000F: unknown main item tag 0x0
[  192.729846][ T5913] koneplus 0003:1E7D:2D51.000F: unknown main item tag 0x0
[  192.740771][ T5913] koneplus 0003:1E7D:2D51.000F: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.2-1/input0
[  193.050494][ T9121] loop1: detected capacity change from 0 to 32768
[  193.079426][   T33] audit: type=1800 audit(1757520391.570:86): pid=9121 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1290" name="file1" dev="loop1" ino=7 res=0 errno=0
[  193.091235][ T9125] loop0: detected capacity change from 0 to 32768
[  193.094636][ T9125] btrfs: Deprecated parameter 'usebackuproot'
[  193.097426][ T9125] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  193.101055][ T9125] btrfs: Deprecated parameter 'usebackuproot'
[  193.103362][ T9125] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  193.107631][ T9125] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1292 (9125)
[  193.110688][ T5957] usb 3-1: USB disconnect, device number 22
[  193.122235][ T9125] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  193.126323][ T9125] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  193.129818][ T9125] workqueue: max_active 40574 requested for btrfs-worker is out of range, clamping between 1 and 2048
[  193.138941][ T9125] workqueue: max_active 40574 requested for btrfs-delalloc is out of range, clamping between 1 and 2048
[  193.171454][ T9125] workqueue: max_active 40574 requested for btrfs-endio is out of range, clamping between 1 and 2048
[  193.176763][ T9125] workqueue: max_active 40574 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048
[  193.185068][ T9125] workqueue: max_active 40574 requested for btrfs-rmw is out of range, clamping between 1 and 2048
[  193.190460][ T9125] workqueue: max_active 40574 requested for btrfs-endio-write is out of range, clamping between 1 and 2048
[  193.195849][ T9125] workqueue: max_active 40574 requested for btrfs-compressed-write is out of range, clamping between 1 and 2048
[  193.237219][ T9125] BTRFS info (device loop0): rebuilding free space tree
[  193.259871][ T9125] BTRFS info (device loop0): setting nodatasum
[  193.261911][ T9125] BTRFS info (device loop0): enabling ssd optimizations
[  193.264229][ T9125] BTRFS info (device loop0): enabling free space tree
[  193.266433][ T9125] BTRFS info (device loop0): force clearing of disk cache
[  193.268940][ T9125] BTRFS info (device loop0): doing ref verification
[  193.271340][ T9125] BTRFS info (device loop0): trying to use backup root at mount time
[  193.316067][ T9125] BTRFS info (device loop0): balance: start -susage=1,drange=3500..255,limit=21474836481,limit=1..5
[  193.320539][ T9125] BTRFS info (device loop0): left=0, need=98304, flags=2
[  193.323715][ T9125] BTRFS info (device loop0): space_info SYSTEM (sub-group id 0) has 0 free, is not full
[  193.328749][ T9125] BTRFS info (device loop0): space_info total=4194304, used=4096, pinned=0, reserved=0, may_use=0, readonly=4190208 zone_unusable=0
[  193.333441][ T9125] BTRFS info (device loop0): global_block_rsv: size 1441792 reserved 1441792
[  193.337328][ T9125] BTRFS info (device loop0): trans_block_rsv: size 0 reserved 0
[  193.340266][ T9125] BTRFS info (device loop0): chunk_block_rsv: size 0 reserved 0
[  193.343361][ T9125] BTRFS info (device loop0): delayed_block_rsv: size 0 reserved 0
[  193.346021][ T9125] BTRFS info (device loop0): delayed_refs_rsv: size 0 reserved 0
[  193.355448][ T9125] BTRFS info (device loop0): relocating block group 1048576 flags system
[  193.394914][ T9125] BTRFS info (device loop0): balance: ended with status: 0
[  193.431933][ T5855] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  193.534865][ T9121] ERROR: (device loop1): dbAdjCtl: the maximum free buddy is not the old root
[  193.534865][ T9121] 
[  193.552838][ T9121] ERROR: (device loop1): remounting filesystem as read-only
[  193.794405][ T5849] ------------[ cut here ]------------
[  193.797216][ T5849] kernel BUG at fs/jfs/inode.c:169!
[  193.808977][ T5849] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[  193.811403][ T5849] CPU: 0 UID: 0 PID: 5849 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  193.815233][ T5849] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  193.819309][ T5849] RIP: 0010:jfs_evict_inode+0x438/0x440
[  193.821610][ T5849] Code: fe e9 e0 fd ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 23 fe ff ff 4c 89 f7 e8 23 49 e8 fe e9 16 fe ff ff e8 89 d7 84 fe 90 <0f> 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  193.829181][ T5849] RSP: 0018:ffffc90003b57ae0 EFLAGS: 00010293
[  193.831555][ T5849] RAX: ffffffff833adac7 RBX: ffff8881137a8430 RCX: ffff8881001f1cc0
[  193.834497][ T5849] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881137a8430
[  193.836922][ T5849] RBP: 0000000000000001 R08: ffffffff8fa3a037 R09: 1ffffffff1f47406
[  193.839725][ T5849] R10: dffffc0000000000 R11: ffffffff833ab7c0 R12: dffffc0000000000
[  193.842637][ T5849] R13: dffffc0000000000 R14: ffff8881137a80b8 R15: ffffffff833ad690
[  193.845614][ T5849] FS:  0000555561025500(0000) GS:ffff8880b8615000(0000) knlGS:0000000000000000
[  193.849243][ T5849] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.851738][ T5849] CR2: 00002000003ff000 CR3: 0000000026c9e000 CR4: 00000000000006f0
[  193.854531][ T5849] Call Trace:
[  193.855569][ T5849]  <TASK>
[  193.856412][ T5849]  ? evict+0x4f8/0x9c0
[  193.857734][ T5849]  ? __pfx_jfs_evict_inode+0x10/0x10
[  193.859333][ T5849]  evict+0x504/0x9c0
[  193.860550][ T5849]  ? __pfx_evict+0x10/0x10
[  193.862065][ T5849]  ? do_raw_spin_unlock+0x4d/0x240
[  193.863602][ T5849]  evict_inodes+0x64c/0x6d0
[  193.864895][ T5849]  ? __pfx_evict_inodes+0x10/0x10
[  193.866346][ T5849]  generic_shutdown_super+0x9a/0x2c0
[  193.867908][ T5849]  kill_block_super+0x44/0x90
[  193.869380][ T5849]  deactivate_locked_super+0xbc/0x130
[  193.871088][ T5849]  cleanup_mnt+0x425/0x4c0
[  193.872767][ T5849]  ? lockdep_hardirqs_on+0x9c/0x150
[  193.874767][ T5849]  task_work_run+0x1d4/0x260
[  193.876526][ T5849]  ? __pfx_task_work_run+0x10/0x10
[  193.878520][ T5849]  ? __x64_sys_umount+0x122/0x160
[  193.880488][ T5849]  ? exit_to_user_mode_loop+0x40/0x110
[  193.882611][ T5849]  exit_to_user_mode_loop+0xec/0x110
[  193.884558][ T5849]  do_syscall_64+0x2bd/0x3b0
[  193.886291][ T5849]  ? lockdep_hardirqs_on+0x9c/0x150
[  193.888171][ T5849]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.890436][ T5849]  ? exc_page_fault+0x9f/0xf0
[  193.892243][ T5849]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.894629][ T5849] RIP: 0033:0x7f0e13b8fed7
[  193.896330][ T5849] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  193.903284][ T5849] RSP: 002b:00007ffefaed5b98 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  193.906345][ T5849] RAX: 0000000000000000 RBX: 00007f0e13c11c05 RCX: 00007f0e13b8fed7
[  193.909259][ T5849] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffefaed5c50
[  193.912504][ T5849] RBP: 00007ffefaed5c50 R08: 0000000000000000 R09: 0000000000000000
[  193.915350][ T5849] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffefaed6ce0
[  193.918263][ T5849] R13: 00007f0e13c11c05 R14: 000000000002f434 R15: 00007ffefaed6d20
[  193.921183][ T5849]  </TASK>
[  193.922301][ T5849] Modules linked in:
[  193.923955][    C0] vkms_vblank_simulate: vblank timer overrun
[  193.926694][ T5849] ---[ end trace 0000000000000000 ]---
[  193.956376][ T5849] RIP: 0010:jfs_evict_inode+0x438/0x440
[  193.958845][ T5849] Code: fe e9 e0 fd ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 23 fe ff ff 4c 89 f7 e8 23 49 e8 fe e9 16 fe ff ff e8 89 d7 84 fe 90 <0f> 0b 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  193.965970][ T5849] RSP: 0018:ffffc90003b57ae0 EFLAGS: 00010293
[  193.971172][ T5849] RAX: ffffffff833adac7 RBX: ffff8881137a8430 RCX: ffff8881001f1cc0
[  193.974482][ T5849] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881137a8430
[  193.979408][ T5849] RBP: 0000000000000001 R08: ffffffff8fa3a037 R09: 1ffffffff1f47406
[  193.982008][ T5849] R10: dffffc0000000000 R11: ffffffff833ab7c0 R12: dffffc0000000000
[  193.984481][ T5849] R13: dffffc0000000000 R14: ffff8881137a80b8 R15: ffffffff833ad690
[  193.987329][ T5849] FS:  0000555561025500(0000) GS:ffff8880b8615000(0000) knlGS:0000000000000000
[  193.990219][ T5849] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.992371][ T5849] CR2: 000055555bf675c8 CR3: 0000000026c9e000 CR4: 00000000000006f0
[  193.995449][ T5849] Kernel panic - not syncing: Fatal exception
[  193.998462][ T5849] Kernel Offset: disabled
[  194.000250][ T5849] Rebooting in 86400 seconds..

VM DIAGNOSIS:
16:06:32  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000020007 RBX=0000000000000000 RCX=00000000000601b3 RDX=0000000000000003
RSI=0000000000000000 RDI=ffff8880208a1cc0 RBP=0000000000000000 RSP=ffffc90001ceec60
R8 =0000000000000000 R9 =ffffffff81cea8e6 R10=ffffc90001ceee78 R11=ffffffff81ac3e50
R12=ffffffffffffffff R13=0000000000000001 R14=ffff8880208a27d8 R15=0000000000000001
RIP=ffffffff819d6576 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8a302896c0 ffffffff 00c00000
GS =0000 ffff8880b8615000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00002000003ff000 CR3=000000002710e000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=6161616161616161 6161616161616161
XMM06=6161616161616161 6161616161616161 XMM07=6161616161616161 6161616161616161
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f8a2f412fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000010900 RBX=0000000000000f18 RCX=0000000000010900 RDX=ffffffff93647338
RSI=0000000000000005 RDI=00000000000509e2 RBP=ffffffff93a877b0 RSP=ffffc90000067bc0
R8 =0000000000000000 R9 =ffffffff81aa8528 R10=dffffc0000000000 R11=fffffbfff1f47407
R12=0000000000021337 R13=ffffffff93a882d0 R14=ffffffff92ab85d6 R15=000000000000cd08
RIP=ffffffff819dd702 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c15000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa88e7e9350 CR3=0000000109372000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=000000000000ff00 0000000000000000 XMM05=000055fb94cc88a0 000055fb94cc9940
XMM06=000055fb94cc8690 000055fb94cc9540 XMM07=000055fb94ccaa40 000055fb94cc86f0
XMM08=000055fb94cc8340 000055fb94ccadc0 XMM09=3a303a302f303a30 3a30746567726174
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
