last executing test programs:

2m25.562510936s ago: executing program 2 (id=434):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000001000010028bd07000000000000000000", @ANYRES32=0x0, @ANYBLOB="211000000226000008001b00000000000500100005"], 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)

2m25.46189456s ago: executing program 2 (id=436):
r0 = syz_mount_image$xfs(&(0x7f0000000500), &(0x7f0000000000)='./file0\x00', 0x2218a5d, &(0x7f0000000140), 0x0, 0x965a, &(0x7f0000012c40)="$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")
fsync(r0)

2m25.224244097s ago: executing program 2 (id=437):
socket(0x840000000002, 0x3, 0xff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r0, 0x0, 0xe, 0x48000000, &(0x7f0000000300)="40f0538ef047b21fb60068305500", 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000140)=ANY=[@ANYBLOB="12011001020000402505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f01feffffff000000000006241a0000000905810300020000020904010000020d00000904010102020d00000905822f88d65d0000090503"], 0x0)
syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r1, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x10, 0x10, 0x14, 0x10, 0x10, 0x10, 0x10, 0x10, 0x13, 0xe, 0x10, 0x10}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r1, 0x0, 0x0)

2m22.306697806s ago: executing program 2 (id=445):
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, 0x0, 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x205)
move_mount(r1, 0x0, r0, 0x0, 0x46)

2m22.232618451s ago: executing program 2 (id=447):
migrate_pages(0x0, 0x4, &(0x7f00000002c0)=0x7f, &(0x7f0000000300)=0xa)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)

2m21.952619853s ago: executing program 2 (id=450):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f0000000400)=@newlink={0x44, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x11011}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x4}}}, @IFLA_ADDRESS={0xa}]}, 0x44}}, 0x0)

2m21.723404644s ago: executing program 32 (id=450):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f0000000400)=@newlink={0x44, 0x10, 0x421, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x11011}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x4}}}, @IFLA_ADDRESS={0xa}]}, 0x44}}, 0x0)

1.814203541s ago: executing program 3 (id=2321):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f00000015c0)}, 0x0)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)

1.737746771s ago: executing program 3 (id=2323):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x90)
lsetxattr(&(0x7f0000000140)='./file1\x00', &(0x7f0000000240)=@known='trusted.overlay.metacopy\x00', 0x0, 0x0, 0x1)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f00000001c0)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x2004c0, 0x20)

1.641634357s ago: executing program 3 (id=2326):
syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x1809049, 0x0, 0xff, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f0000000140)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x0, 0x40, 0x0, 0x0, 0x57, 0x0, 0x0, 0x2}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000008c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x7, {0xc, 0xcbff, 0x0, {0x5, 0x20251c65, 0x1, 0x8, 0xa, 0x8, 0x1000005, 0x6, 0x9, 0xa000, 0x4, 0xffffffffffffffff, 0x0, 0x3, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x10)

1.410332476s ago: executing program 3 (id=2329):
r0 = openat$vmci(0xffffff9c, &(0x7f0000001180), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000040)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000000c0)={@hyper})
ioctl$IOCTL_VMCI_CTX_ADD_NOTIFICATION(r0, 0x7af, &(0x7f0000001100)={@hyper, 0x10000})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r0, 0x7b2, &(0x7f00000010c0)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xde23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, 0xffffffff, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa], 0x1, 0x400})

863.285249ms ago: executing program 3 (id=2331):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@local, 0x1, 0x71c, 0x0, 0x0, 0xa, 0x0, 0xc2ca4bd923256b4d, 0x32}, {@in=@loopback, 0x0, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x3f}, {0x0, 0x192, 0x9ba3, 0xffff, 0x251c, 0x3, 0x6, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x21}, {0xffffffff}, 0x80, 0x34ff, 0x2, 0x1}, [@algo_comp={0x48, 0x3, {{'lzs\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x2000c002}, 0x0)

860.820305ms ago: executing program 1 (id=2332):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x0)
ioctl$EVIOCSREP(r0, 0x40084503, &(0x7f0000000000)=[0xd8, 0xffff87f7])

860.239376ms ago: executing program 1 (id=2333):
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r0=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x20)
socket$packet(0x11, 0x2, 0x300)
r4 = socket(0x11, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f0000000180)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r4, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580009f000114000000110600ac141430e0000003808a8972bd0b72e41082b1a3d2061fd7fdfe4b88942a31f48597e36e039b1c599db6e466749c2d4c8303a0f7fbda34fb8825f80200e3c0aba61f6304a80500ffffca88faca"], 0xdd12}], 0x1}, 0x10)

780.727165ms ago: executing program 1 (id=2334):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="60000000020605000000000000000000000000000e0003006269746d61703a697000000005000400000000000900020073797a31000000001800078005000300200000000c00018008000140ffffffff05000500020000000500010006"], 0x60}}, 0x0)

780.301351ms ago: executing program 3 (id=2335):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000080)={[{@errors_remount}, {@nocheckpoint_merge}, {@alloc_mode_def}, {@two_active_logs}, {@alloc_mode_def}, {@fault_injection={'fault_injection', 0x3d, 0x20}}, {@discard}, {@noacl}, {@noacl}, {@alloc_mode_def}, {@noinline_dentry}, {@two_active_logs}, {@fault_type={'fault_type', 0x3d, 0xffffff}}]}, 0x1, 0x5505, &(0x7f0000002480)="$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")

720.551347ms ago: executing program 1 (id=2336):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x4c, &(0x7f000002eff0)={0x1, &(0x7f0000000000)=[{0xffff}]}, 0x10)
connect$unix(r0, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e21}, 0x6e)

720.297086ms ago: executing program 1 (id=2337):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x3032}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000280)='./bus\x00', 0x2000898, &(0x7f0000000340)={[{@barrier}, {@autodefrag}, {@notreelog}, {@enospc_debug}, {@noflushoncommit}, {@usebackuproot}, {@max_inline={'max_inline', 0x3d, [0x37, 0x37, 0x6b, 0x37]}}, {@thread_pool={'thread_pool', 0x3d, 0x6}}, {@ssd_spread}]}, 0x1, 0x55ae, &(0x7f0000005600)="$eJzs3X9snHUdB/DnruvaFdeWMOuArGwDJFtEOjdNCCR2bNNpYTnphE3I+gNH0DmtY8NVCCtinIERijWMwQoLbn9MEYqucyiJBewqul8IJtNFBbPFNWOkOBExYTG9u+d299zaHhMpwuu1tM/zvc/z/d73njx/3PvW73MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABEHwx+N3TL/t3roJ26+ru++8a85e+2D3kuMX3rq1avND20v2dTz31aNVq1qPLF1w0/2JpkfW93d3BkEs2S+W7t9w2fwrr69vuKI0HLDxc6ltZeVQT5nq+mKqMTbnwcF+uT9NQRAURwYoSm/npXfiOQNkdlfkDzisayf1tE4dP69x28qujc8uu3xL/ktnUOloT2C0pK+rgyeupdrk73jkiEw769KL5Vyiqf7RC+4deREAwFtSk0huMm9H029xM+22aD3Sro202yPt8B1Ce3bjVKTGHTvUPCdH66M0z9pUVCgZcp6Revr8Z9qJaP9IOxI13sI8cw9NR5rSoebZEqmP1jwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3k0uuH5m/d49D7/8ldbf/u7h17/16sePrGq8ZaC7/qJ1ix/v2PG9vx2tWtV6ZOmCm+5PND2yvr+7Mwgqk/1iqe6xZ6ri8ZkDddseu6e3puFDC9cUpccNt2OyDg72hzsXVwRBc1blYDhsf3kQJHILyWawIb/wpeTOZ8ICAAAA7yVnJn/HM+1UHCzOaceSaTKW/BdKhcVrJ/W0Th0/r3Hbyq6Nzy67fMupj5cYYrzak46XaVee+IllBeMw/kbHO1EPD12RN87woiNG8/zpx/qnNdfdUHrl7gsWzphdv+XS4CfTD3csX3TfhBfHL9nXXpOX/yuHz//hmZP/AQAA+G/I/9FxhjdS/m+uqZh0cOp3ix67rur44fkP/Lyz7/kn4w8VD3Q//dLYcbf9cnVe/p+c85R5+T+ccZj/48Gp5X8AAAB4N/tf5//avHGGN1L+/8X+zZ//98pvTDk84187Xnj69xdvnVI+/7WyGTe8+cSCVxp2tf0pL//XFJb/x2RPO3xwVzjhZRVBUFP4SQUAAAByhP/vfuKjhTCvpz45iOb1y+4qe3LXG+tvjJ/V8o8zFvfPqv7i7tVf37ApNrChc92O5XNX5OX/2sLyf/E783IBAACAAvxm+y13V395ydYtew7N2XFnYvPYS+a+uuennVf1vXwsUfT8zX15+T9RWP4vGZ2XAwAAAJzEU+MmPnfo0UNfm7177YS9q9rmPD5t3+qFD/xz9t+veOnPxzddWJ6X/xsLy/9l6W165UOq087wrxA6KoKgdHCnJVXoC9o/mSkAAAAAb5Mwpzc1revduX7MrNfOPvzDNSuW/2rvpd++a2P1zQd+XXX7ucf2996Yl/9bhr//f3ing3D9f879//LW/2cVUnf9u8SNAQAAAHg/yl/PH94eP/XNBUN9/36h6/8/euaBko7m8ysnx7dVz3rig31Xra1+fVHHRZ/YfusbH46V//VTefm/rbD8X5S9fTu//w8AAABOwf/b9/8tzhtneCPd/79v3DPnrPnsPT+o/WbZU+e+eXfzd9oPTj9v87QzPlJ0fvecmX/4fl7+by8s/4fb07JfXk94fm6vCIKJgzvpuwluDae7LFLoKs4qpE58pEd92CNd6CrJKiS1RHp8rCIIpgzutEUKp4eF9khhoDxd2BQp7A0L6eshU3g0UugJr7R7y9PTjRZ+FhbSCyy6whUUp2WWRER6HBuqx2DhpD0OZJ4cAADgfSUMz+ksW5zbDKJRtis20gFlIx0QH+mAopEOGBM5IHrgUI8HjbmF8PEfz+1e+so1D9b1Xt1w9KzZe5bc0faBnkW9O7/wo55z/nL1Cws/nZf/NxWW/8NTMTa1GWr9fxCu/09/r2Fm/X9jWKiMFLrCQiJ6x4BE+BypsHtn+ByViXSPgYmZAgAAALynhZ8LFI3yPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID/sHfvcVJVd4LATzf9oJum6YgBY4ygRkR3aZomGEQcUXRXo4tNJKtjhtAIjXZoAwq4YsyKr3GV6GLUmBjZwY+jJg6r+CDqRIXoiElGJfE5Kz4HnciqS9BR45gs++m+dYqqW112IaC0+/3+0XWqfud569F17r11LgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/P/hsiX3Nrw58H9965ffW/f697409TdTD9m8y19uqHt3yDlPbT5ocN0tbw1asPCNtklnXtsyffk1G1YuDaGlq1xZUrzsoUHl5aP/cMxdt13xcNO0wVPOrcrUm4mHfp1/yjN3Loytvto/hLvLQqhIB0bUJYHKzP26WN8edSF8LmwJZEu01SYl0g2Hh2tCWBa2BLJV3VsTQl1OYMoTD666rDNxVU0I+4YQqtNtvFCdtFGTDgyrSgK16cCciiTw/uZENnBPeRKArVHV3YPxzZB90a9oyc/Q0H1lRV5/lR+3czuZ9PD6xERD8XxvHbaDO5Wj4Lls2aanrduXBttdwdtjtXdbL3i3FWznJZ623C9SmW8om7eEqkP5zLZZ0xd0zI+PlIfGxj7FatpBz/O6TefM2Jp0r3kdxg40bJfX4QO1k+ove3viwStP/uPp+85fO3Vbu/lczibNTe9o1SHzmus1z2M04dP7PNm8LYW3r539aSv4ljTUl64QwvF/+nzZM3Ne2n3jB6+eOPH2Fy6+etrCa6ZMfHbQL8b+47W73D3t8oL5f8NHz//jyznelufljq1+WJ/MzeMjdTGxsT6ZmwMAAECv0Rv2mn519KsvnfrQ3YteXH5cxXfH/eqk3eorzv5+x/G7rhz/xUuvbH98l4L5/9DSjv/HQ/51uaNdHcKErsQFA0LYrevxJPCz2J2TB4SwV1eqJT9wWCqwOoQvdCX2z1aVKtE3lhiaCvy+PhOYkAqsiYGWVODGGFiSClwYAytSgRkxsDoVODwGQnv+OA6oz4yj5EBNDLQmG3FFPAvhnfrYWmpbrctWBQAAsJ1kZoeV+XdzznXY1gxxermipqcM8QzsohmqUzWkZ7DZaVXRGip6qqG8pxqy41700cMvqLmsp5oLTsMoy8/w4ZDvlA+YuPeP7rpxxE3NL0787rtjj//Kn998d/X+//Tf7zln/nUHFMz/mz56/l/dTUfKCo7/hzC562/MXZ6JdGTjrS15GQAAAIBtcNVjS5+84YCj/s99L99355euvaF89dVf/7+vbLxg71HHDS/r+3ffXlEw/59Q2vn/cZ9In5zM4dG4G2L2gBCa8gNJtQcXBpKj3v0yAQAAAOgNssfjs8fC2zO3ySna6fl0Yf6WrcwfD/xP6Db/5Zv++tkvX/vkiQuH7bPhiv925gdlnx/7u12OXTvy8bf2HPYPDX0Lz/9vKe38/9r826QTa2IvrhwQQt+cwCOxl52BLkNj4OVD8wOZ8a+JG2BxrCpzYkK2qsWxRGsMNKUCy4qV+G22xG75gcyTlW38guw42jMlcgIAAADwiYu7A+Jx+Xj+/z2TD/jS/oNeGvPinvcufG3C0hNOrf3hPrfs+vqAjkljDpxwyBHPFMz/W7fu/P+ueXDB6f0d/UIYWRFCn/QPAx6tTRYGjIG6skzi/tqkrj7pqs6rDWF858DSVb2SWf+/Ir3G4BM1SVUxsNveP900rDNxQ00II3MDz3zz+jGdifmpQLbxb9SEMKRztOnGV/ZNGq9MN35N3xD2zAlkqzq5bwidjVWlq3qwOnMdg3RVt1WHMDAnkK3qwOoQFgYAeqn4r3Rm7oPzFp49e3pHR9sZOzAR9+HXhFntHW2NM+Z0zKwu0qeZqT7nLWN0XuGYSr3yzfOZJYqmDrl9eCnp7O8Em3LbyuzHLzhxMHM/fheq7Bpnc2Xe3dHpIQ/fp7CJkPNNqtiQy3fwkGtzK9nyJBbUH/NXhX6h74J5bWc0njV9/vwzRiV/S83enPyNh5mSbTUqva1qu+tbCS+PoqtlpXzcbbVfbiUj5582d+S8hWePaD9t+iltp7R9p3nsqObmMV8dO6Z5ZOeompK/PQx1v+6qTg118/Uljms7DnX3ipxKPolPDQkJid6WmL6k7PwJ0359/7f2WHPaWSft8fd7zBxx0l9d/pu5JzYeMvlX1//l2oL5/9yPnv/HT534yZ9Zn6HY8f+GeJg/eXzLYf7WGFhW6vH/hmJH87MnBgxNBRbFwCKH+QEAAPhsiLsj497MuFf6urp/uvvImTMOef+XJ0y5+m/Hjjv1rPX7Nlx89bFL/sP6d5asOuLtgvn/otJ+/7+d1v/PLl3/tWLL/O8fSzQVW/8/vcx/dv3/RcXW/08v859d/3/Zp7D+/4JsILVJ3rH+PwAA8Fnwya3/3+Py/ukLBBRk6HF5//QFAgoy9LiMf6kXCNjq9f/ndPxF7aDL54w7dMTcHz+yau8lA2/70vMTf73P0oNG3LvylvdG3Vow/19S2vzfwv0AAACw83jol32/ffG7w+5/6pH3jyy79Lcbbzr+r9oOOOQPA5tPmXx0zfdv+reC+f+y0ub/n/z6f6HY+f9DiwVaii0MaP0/AAAAeqli6//dPPDloavnj7jxsZ+/ectLrb+YOf61f7fkB1+ZPqzp5jXrftMwY33B/H9FafP/eNpFeV7u2JsP65M17UJ6TbuN9dmfDAAAAEDvUB4aGytLzJu3MuphH7/NdZmlQD8qnevp+watWlD+0FVl1Rt/cMm0QxrPPfbMOUdetP77tU/+pHZqY/UZBfP/1aXN//N+l/FA7aT6y96eePCHK0/+4+n7zl87dcvxfwAAAGDHKXW/BAAAAAAAAAAAAAAA8Ol7qnXpQR+MOvqNmXuN+tM3jn3hB4u/+M1H/ubaP5/588Pv26t987ApBb//D5O7yhX7/X+87l/8fcGuebljqz2v/5e5P+WYWxd2LVn4aH0I++QGZp8/+3Mhc23+/XIDq6buP7gzcX66xH0vHv5aZ2JaOnDUiF3e60yMTwVa4yKJX0gH4lUV3+ufCsTlFZ9MB+L2WJEOVGUCl/RPxlGW3lYb6pJtVZbeVs/VhTAgJ5DdVnfXJW2UpQd4VSqQHeDp6UAc4KRMoDzdq1v7Jb2KgbpY9G/6Jb0CAGCnFb8FVoZZ7R1tTfErfLzdvSL/Nspbsuy8wmrLSmz++czSZFOH3D68lHSf9HfRLdcarwzVnUMYVfB1NTdLWdcot08tPWy6XYsMuafV3sqLlEvb2k1XVXxENcmIGmfM6ZhZ2ePAR/ecpbmixyyjCiY7uVnKuzZpCbWU0JcSRlTitimhy/F+eWhs7JPKNS4GG0Kenl4Rpf5eP3edv2Kvgtw8f1tz7aV9Bvd5/9/GX/TQgwMqO06d3HbR7o/988BRM3/8wwdbr/l9wfy/obT5f3XuuN7LXAxgUbyy3sEDQmgtcUQAAADw2fc/z11+x4lz1myYtbri2d/9bnb5cSdWbj7nrnPOvui5+xcfdcm/v3lb4yvKntp04hubzvrrN37ylesePuulw2ecddekdYesb6u+8bt/sfzUIQXz/6Glzf/jHqzMoeBkb8fqeP3/CwaE0HVp/YYk8LM43JMHhLBXV6ollkguqP+1WKIpCfws7jDZP5Zobcmvqm8MrEgFfl+fCaxOBdbEQGYvxU9DZlfOFfUhjOlKTc4vMTeWaEgFjouBoalAYww0pQL9Y2BCKvBm/0ygJRX4xxgI7fnb6s7+mW0FAACwNTLzrMr8uyE9z1tR0VOGsp4y1PaUobynDNU9ZSg2inj/jpihMnXySllOpsp0rTWpWgoyxIvhb3W/CjKE3+bnTBcsaDqef5A936AsP8O4H97RetDX5v1408U/evzIAy88csmVb196dL/BVz77v9vP7dd/U23B/L+ptPl/bf5t0vqaOP/fcv2/JPBI7N6V8dTxoTHw8qH5gcyOgTVxsrs4W1VLpkRm0r44lpgQA0NTgbkxMCEVaJ2cCSwbnB/IzLSzjV+Qbbw9UyInAAAAAJ+4uIMg7qaJ8/+V48I7exz5fvPuVw6cO+7xR847YnrNrtU1/zx+7dLxl1Y/tF/fgvn/hNLm/7G9frmNXRh782r/EO4u29KbbGBEXRKI+zHq4s/j96gL4XM5OziyJdpqkxJVqYbDwzXJL9Sr0lXdW5OsMRDvT3niwVWXdSauqglh35y9L9k2XqhO2qhJB4ZVJYHadGBORRKIe36ygXvKkwBss+xewfiCypzqktXQfbkir7/PyjVB08Mr2AfaTb7ufnO1o1SnH8jsU83auqetoDp2iIK3x2rvtt74bmvwbsv9IpX5hrJ5S6g6lM9smzV9Qcf8+EjuL1kL7KDnOfdXqqWkt8PrcNHH723PqtMdaEp9fDR1X67712FZrO6B2kn1l7098eCVJ//x9H3nr51acjeKiD8UPvjWuQc8l7N5d7TqkHnN9brPkxafJ73x38BQT1sIYfkFs5584l/ef75iffN/OXDs8tvefGz5Tw56YNaIL2y45Msb33r3qIL5f0tp8/+K1G2XD+LGnDcghOE5G/fRuPknDkg+B3MCyafkwMJAcsh9fX3RT04AAADY3rK7O7L7C9ozt8kJ4el5cmH+lq3MH/dXTOg2f6n9HjjmH7536FWvf+Pr63e//NGlT637T2++csS0Qx/Y9PSKla83H/v5pwvm/60fPf/vm+qm4/+O/7ODOP7frZ19V3Tf9AOLtmlXdEF17BCO/3drZ3+3Of7fLcf/Hf/vjuP/PXD8v1s7+9NW8C1pri9dIYTWATfc/ova6cP7XXHOt2as/fnT7zSNe6Hu3KPv/B+HLw7XnLfqzwXz/7mlzf+t/9f9on3Z9f9ai63/N7fY+n+LrP8HAADsUEUWmkvP8wpW7yvIkF69ryBDjwsE9rjEoPX/tnr9v9qTzj7plfq39rpm4u3/+c7pFz5/0onP7tvn+RNuP+GmkVcPf+nLGwrm/4tKm//Hl0O/3NZ7y/p/QycXqWpJDMy1MCAAAAA7o2I7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPh0rXhw8Rc3L97noJue/fxNh//rsjWz9v7VAZtHjzm5cfjigWVX/t2/vDVowcI32iadeW3L9OXXbFi5NIT2rnJlSfGyhwaVl4/+wzF33XbFw03TBk85tzpTb2Xm9ot5uWOrH9aHsCznkbqY2FjfeWdLYMoxty6s6Ew8Wh/CPrmB2efP/lxn4sb6EPbLDayauv/gzsT56RL3vXj4a52JaenAUSN2ea8zMT4TKEt397r+SXfL0t29rH8IA3IC2e5+u39+Vdk2/mMmUJ5u4+a6pI0YqItFf1SXtBEDHbFEe98QRlaE0Cdd1a+rk6r6pKv6++qkqj7pqv5rdQjjQwgV6aperEqqqkiPfG1VUlUM7Lb3TzcN60wsqwphZG7gmW9eP6YzcXoqkG3861UhDOl8yaQbv6Myabwy3fhVlSHsGUKoSpf414qkRFW6xCsVIQzMCWQbP7UihIWBz4T44TMz98F5C8+ePb2jo+2MHZioyrRVE2a1d7Q1zpjTMbM61adiynLSm8/7+GN/ftM5Mzpvpw65fXgp6YpMucquLjdX5t0dvbP3PvarNreSLc9HQf0xf1XoF/oumNd2RuNZ0+fPP2NU8rfU7M3J3z6ZaLKtRvWWbbVfbiUj5582d+S8hWePaD9t+iltp7R9p3nsqObmMV8dO6Z5ZOeompK/22Oo13/yQ929IqeST+IDQEJCorclyvM+3Zp29g/ygi/6WzpaGaq7PqALphW5Wcq6Rrk9Bn3Yxxzxx/me0uOIRhVMHAqyNPecZXTBZGJLlpokS9f3uoLJYW5N5V2bNN4vD42NfYpth4b8u7mb961t2LzrMpuu1DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD/2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBYAAAAAECYv3UYPRsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAlwIAAP//WKHPZA==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, 0x0, 0x0, 0x4001)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2)

359.771073ms ago: executing program 0 (id=2339):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_BUCKETSIZE={0x5}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x60}}, 0x0)

291.313818ms ago: executing program 0 (id=2340):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0xffb2)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000280)=@gcm_256={{0x304}, "3f60eb8f2777c39a", "5985e81ad0d9585bc175cbecd3f55eb699e3070cc206f3ba527c85bde06fbf19", "bc5ec28f", "b200"}, 0x38)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0x3261e)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x4, &(0x7f0000000100)=@gcm_256={{}, "24747942338921a1", "d830005894bf527ae179a7173985202bbfb61b36f3678de8ea2d0d6616076243", "5615d9f5", "7c5cec21291a43fe"}, 0x38)

188.663078ms ago: executing program 0 (id=2341):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./bus\x00', 0x1000840, &(0x7f0000000a00)={[{@fat=@showexec}, {@fat=@sys_immutable}, {@rodir}, {@numtail}, {@utf8no}, {@fat=@nfs}, {@fat=@nocase}, {@fat=@codepage={'codepage', 0x3d, '936'}}, {@uni_xlateno}, {@shortname_lower}, {@shortname_win95}, {@utf8no}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@rodir}]}, 0x3, 0x350, &(0x7f0000000580)="$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")
truncate(&(0x7f0000000000)='./file0\x00', 0x1)

130.704609ms ago: executing program 0 (id=2342):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000200)={0x1, @pix_mp={0x0, 0x0, 0x59565955}})

61.410111ms ago: executing program 0 (id=2343):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x20000000, 0x3, {0x7, 0x0, 0x0, r1, 0x80, 0x0, 0x8}}, 0x1c}}, 0x0)

143.467µs ago: executing program 1 (id=2344):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x28, 0x1, 0x0)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000a80)=@delchain={0x34, 0x2e, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0xe, 0x3}, {0xfff2, 0xffff}, {0x5, 0xd}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000085}, 0x0)

0s ago: executing program 0 (id=2345):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="020400090e000000000000000000000005000600000000000a000000000000000000000000000000000000002e08000000000000000000000200010000000000000002020000000005000500000000000a"], 0x70}}, 0x0)

kernel console output (not intermixed with test programs):

. done
[  130.128808][ T8066] bcachefs (loop1): alloc_read... done
[  130.132143][ T8066] bcachefs (loop1): snapshots_read... done
[  130.135682][ T8066] bcachefs (loop1): check_allocations... done
[  130.163862][ T8066] bcachefs (loop1): going read-write
[  130.178379][ T8066] bcachefs (loop1): done starting filesystem
[  130.243068][ T8066] bcachefs (loop1): inode 536870913 truncated to 0 but i_blocks 24 (ondisk 24)
[  130.258696][ T3648] bcachefs (loop1): bucket incorrectly unset in freespace btree
[  130.258741][ T3648]   u64s 5 type deleted 0:30:0 len 0 ver 0, , continuing
[  130.280426][ T8066] syz.1.808 (8066) used greatest stack depth: 18920 bytes left
[  130.293994][ T5842] bcachefs (loop1): shutting down
[  130.294107][ T5842] bcachefs (loop1): going read-only
[  130.295945][ T5842] bcachefs (loop1): finished waiting for writes to stop
[  130.312754][ T3648] bcachefs (loop1): bucket incorrectly unset in freespace btree
[  130.312767][ T3648]   u64s 5 type deleted 0:29:0 len 0 ver 0, , continuing
[  130.323435][ T3648] bcachefs (loop1): bucket incorrectly unset in freespace btree
[  130.323448][ T3648]   u64s 5 type deleted 0:33:0 len 0 ver 0, , continuing
[  130.344054][ T5842] bcachefs (loop1): flushing journal and stopping allocators, journal seq 11
[  130.363860][ T3648] bcachefs (loop1): bucket incorrectly unset in freespace btree
[  130.363874][ T3648]   u64s 5 type deleted 0:43:0 len 0 ver 0, , continuing
[  130.388651][ T5842] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 11
[  130.397288][ T5842] bcachefs (loop1): unclean shutdown complete, journal seq 12
[  130.403838][ T5842] bcachefs (loop1): done going read-only, filesystem not clean
[  130.428093][ T5842] bcachefs (loop1): shutdown complete
[  130.996421][ T8111] netlink: 12 bytes leftover after parsing attributes in process `syz.3.830'.
[  131.387896][ T8125] team_slave_0: entered promiscuous mode
[  131.390377][ T8125] team_slave_1: entered promiscuous mode
[  131.789007][ T8139] loop3: detected capacity change from 0 to 32768
[  131.798268][   T33] audit: type=1800 audit(1755257115.316:39): pid=8139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.844" name="file1" dev="loop3" ino=4 res=0 errno=0
[  132.357716][ T8158] GUP no longer grows the stack in syz.3.853 (8158): 200000003000-20000000a000 (200000001000)
[  132.374204][ T8158] CPU: 0 UID: 0 PID: 8158 Comm: syz.3.853 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  132.374217][ T8158] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  132.374222][ T8158] Call Trace:
[  132.374225][ T8158]  <TASK>
[  132.374229][ T8158]  dump_stack_lvl+0x189/0x250
[  132.374243][ T8158]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.374251][ T8158]  ? __pfx__printk+0x10/0x10
[  132.374261][ T8158]  ? find_vma+0xe7/0x160
[  132.374270][ T8158]  ? __lock_acquire+0xab9/0xd20
[  132.374286][ T8158]  __get_user_pages+0x24d0/0x2ce0
[  132.374296][ T8158]  ? __bpf_trace_mmap_lock_acquire_returned+0x13b/0x190
[  132.374308][ T8158]  ? preempt_schedule_notrace+0xd1/0x110
[  132.374321][ T8158]  ? preempt_schedule_notrace_thunk+0x16/0x30
[  132.374329][ T8158]  ? rcu_is_watching+0x15/0xb0
[  132.374337][ T8158]  __gup_longterm_locked+0xde9/0x1660
[  132.374351][ T8158]  ? sanity_check_pinned_pages+0x123a/0x1300
[  132.374362][ T8158]  gup_fast_fallback+0x1e6a/0x2010
[  132.374383][ T8158]  ? __pfx_gup_fast_fallback+0x10/0x10
[  132.374397][ T8158]  ? pin_user_pages_fast+0x4d/0xb0
[  132.374407][ T8158]  iov_iter_extract_pages+0x35a/0x5e0
[  132.374420][ T8158]  extract_iter_to_sg+0xe46/0x24e0
[  132.374435][ T8158]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  132.374451][ T8158]  ? __asan_memset+0x22/0x50
[  132.374460][ T8158]  af_alg_get_rsgl+0x436/0x810
[  132.374499][ T8158]  aead_recvmsg+0x4cc/0x13f0
[  132.374514][ T8158]  ? rcu_is_watching+0x15/0xb0
[  132.374525][ T8158]  ? __pfx_aead_recvmsg+0x10/0x10
[  132.374535][ T8158]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  132.374544][ T8158]  ? __pfx_aead_recvmsg+0x10/0x10
[  132.374553][ T8158]  sock_recvmsg_nosec+0x186/0x1c0
[  132.374565][ T8158]  ____sys_recvmsg+0x3aa/0x460
[  132.374576][ T8158]  ? __pfx_____sys_recvmsg+0x10/0x10
[  132.374589][ T8158]  ? import_iovec+0x74/0xa0
[  132.374598][ T8158]  ___sys_recvmsg+0x1b5/0x510
[  132.374607][ T8158]  ? __pfx____sys_recvmsg+0x10/0x10
[  132.374626][ T8158]  ? __might_fault+0xb0/0x130
[  132.374636][ T8158]  do_recvmmsg+0x307/0x770
[  132.374647][ T8158]  ? __pfx_do_recvmmsg+0x10/0x10
[  132.374652][ T8158]  ? __ia32_sys_rt_sigreturn+0x6a2/0x7b0
[  132.374667][ T8158]  ? __pfx_do_futex+0x10/0x10
[  132.374682][ T8158]  __x64_sys_recvmmsg+0x190/0x240
[  132.374691][ T8158]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  132.374697][ T8158]  ? rcu_is_watching+0x15/0xb0
[  132.374705][ T8158]  ? do_syscall_64+0xbe/0x3b0
[  132.374715][ T8158]  do_syscall_64+0xfa/0x3b0
[  132.374723][ T8158]  ? lockdep_hardirqs_on+0x9c/0x150
[  132.374731][ T8158]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.374737][ T8158]  ? exc_page_fault+0x9f/0xf0
[  132.374746][ T8158]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.374753][ T8158] RIP: 0033:0x7fe01cf8ebe9
[  132.374761][ T8158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.374767][ T8158] RSP: 002b:00007fe01dd2d038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  132.374775][ T8158] RAX: ffffffffffffffda RBX: 00007fe01d1b5fa0 RCX: 00007fe01cf8ebe9
[  132.374780][ T8158] RDX: 0000000000000002 RSI: 0000200000000180 RDI: 0000000000000007
[  132.374784][ T8158] RBP: 00007fe01d011e19 R08: 0000000000000000 R09: 0000000000000000
[  132.374788][ T8158] R10: 0000000000000101 R11: 0000000000000246 R12: 0000000000000000
[  132.374792][ T8158] R13: 00007fe01d1b6038 R14: 00007fe01d1b5fa0 R15: 00007ffd3906f2b8
[  132.374804][ T8158]  </TASK>
[  132.541298][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  132.543756][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  132.653388][ T5295] udevd[5295]: worker [6081] terminated by signal 33 (Unknown signal 33)
[  132.662000][ T5295] udevd[5295]: worker [6081] failed while handling '/devices/virtual/block/loop1'
[  132.991715][ T8190] loop3: detected capacity change from 0 to 1024
[  133.005029][ T8190] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.012521][ T8190] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.047963][   T55] Bluetooth: hci0: SCO packet for unknown connection handle 0
[  133.082597][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.284447][ T8218] netlink: 16 bytes leftover after parsing attributes in process `syz.1.879'.
[  133.457412][ T8229] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  133.479177][ T8229] overlayfs: failed to set xattr on upper
[  133.481517][ T8229] overlayfs: ...falling back to redirect_dir=nofollow.
[  133.646506][ T8245] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  133.745742][ T8250] netlink: 8 bytes leftover after parsing attributes in process `syz.3.894'.
[  133.756610][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz.3.894'.
[  134.113994][ T8270] netlink: 452 bytes leftover after parsing attributes in process `syz.0.900'.
[  134.119684][ T8270] mmap: syz.0.900 (8270) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  134.749261][   T10] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  135.017632][ T8289] loop1: detected capacity change from 0 to 32768
[  135.021339][ T8289] btrfs: Deprecated parameter 'usebackuproot'
[  135.023840][ T8289] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  135.029838][ T8289] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.911 (8289)
[  135.045372][ T8289] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  135.049870][ T8289] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  135.053564][ T8289] BTRFS info (device loop1): using free-space-tree
[  135.059327][   T10] usb 4-1: Using ep0 maxpacket: 16
[  135.069911][   T10] usb 4-1: config 254 has an invalid interface number: 235 but max is 0
[  135.078950][   T10] usb 4-1: config 254 has no interface number 0
[  135.088061][   T10] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32
[  135.095803][   T10] usb 4-1: config 254 interface 235 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  135.104948][   T10] usb 4-1: config 254 interface 235 has no altsetting 0
[  135.121331][   T10] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[  135.125072][   T10] usb 4-1: New USB device strings: Mfr=1, Product=251, SerialNumber=3
[  135.128337][   T10] usb 4-1: Product: syz
[  135.139252][   T10] usb 4-1: Manufacturer: syz
[  135.141242][   T10] usb 4-1: SerialNumber: syz
[  135.157703][ T8283] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  135.173188][ T8289] BTRFS info (device loop1): rebuilding free space tree
[  135.180057][   T10] usbtest 4-1:254.235: couldn't get endpoints, -22
[  135.190246][   T10] usbtest 4-1:254.235: probe with driver usbtest failed with error -22
[  135.199406][   T33] audit: type=1800 audit(1755257118.726:40): pid=8289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.911" name="file1" dev="loop1" ino=260 res=0 errno=0
[  135.248194][ T5842] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  135.401217][ T2314] usb 4-1: USB disconnect, device number 4
[  135.431867][ T8327] loop1: detected capacity change from 0 to 128
[  135.533257][ T8333] IPv6: NLM_F_CREATE should be specified when creating new route
[  135.726868][ T8345] netlink: 8 bytes leftover after parsing attributes in process `syz.1.930'.
[  135.732389][ T8338] 9pnet_fd: Insufficient options for proto=fd
[  135.768415][ T8347] loop1: detected capacity change from 0 to 512
[  135.785597][ T8347] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.792183][ T8347] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.821147][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.149332][ T8370] netlink: 24 bytes leftover after parsing attributes in process `syz.1.941'.
[  136.573193][ T8381] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  136.640917][ T8385] overlayfs: failed to clone upperpath
[  136.689329][ T5895] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  136.776658][ T8389] netlink: 28 bytes leftover after parsing attributes in process `syz.0.950'.
[  136.780053][ T8389] netlink: 28 bytes leftover after parsing attributes in process `syz.0.950'.
[  136.786579][ T8389] erspan0: entered promiscuous mode
[  136.792054][ T8389] gretap0: entered promiscuous mode
[  136.794715][ T8389] hsr1: Slave A (erspan0) is not up; please bring it up to get a fully working HSR network
[  136.798336][ T8389] hsr1: Slave B (gretap0) is not up; please bring it up to get a fully working HSR network
[  136.843224][ T8393] netlink: 'syz.3.952': attribute type 13 has an invalid length.
[  136.852997][ T5895] usb 2-1: unable to read config index 0 descriptor/start: -71
[  136.855868][ T5895] usb 2-1: can't read configurations, error -71
[  138.821417][ T8448] loop1: detected capacity change from 0 to 512
[  138.855897][ T8448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.860799][ T8448] ext4 filesystem being mounted at /303/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.921082][ T8459] loop3: detected capacity change from 0 to 2048
[  139.960116][ T8460] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  139.996667][   T33] audit: type=1800 audit(1755257123.516:41): pid=8459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.980" name="file1" dev="loop3" ino=15 res=0 errno=0
[  140.383686][ T8464] netlink: 16222 bytes leftover after parsing attributes in process `syz.3.982'.
[  140.398052][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.784052][ T8476] loop1: detected capacity change from 0 to 64
[  141.548151][ T8494] loop3: detected capacity change from 0 to 32768
[  141.561622][ T8494] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  141.583259][ T8494] XFS (loop3): Ending clean mount
[  141.588803][ T8494] XFS (loop3): Quotacheck needed: Please wait.
[  141.611848][ T8494] XFS (loop3): Quotacheck: Done.
[  141.640882][ T7039] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  141.978428][ T8512] loop1: detected capacity change from 0 to 512
[  141.988307][ T8512] EXT4-fs: Ignoring removed nobh option
[  142.039921][ T8512] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.999: iget: bad i_size value: 38620345925642
[  142.048998][ T8512] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.999: couldn't read orphan inode 15 (err -117)
[  142.055175][ T8512] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.084371][   T33] audit: type=1800 audit(1755257125.606:42): pid=8512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.999" name="bus" dev="loop1" ino=18 res=0 errno=0
[  142.097936][ T8512] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.999: bg 0: block 5: invalid block bitmap
[  142.564892][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.677019][ T8530] can: request_module (can-proto-0) failed.
[  143.771633][ T8576] fuse: Unknown parameter 'fd0xffffffffffffffff'
[  143.773941][ T8578] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  144.045559][ T8591] gre1: entered promiscuous mode
[  144.226311][ T8598] loop3: detected capacity change from 0 to 2048
[  144.290232][ T8598] NILFS (loop3): invalid segment: Inconsistency found
[  144.293108][ T8598] NILFS (loop3): trying rollback from an earlier position
[  144.313530][ T8598] NILFS (loop3): recovery complete
[  144.451019][   T33] audit: type=1326 audit(1755257127.936:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.518801][   T33] audit: type=1326 audit(1755257127.936:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.615368][   T33] audit: type=1326 audit(1755257127.946:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.671212][   T33] audit: type=1326 audit(1755257127.946:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.694840][   T33] audit: type=1326 audit(1755257127.946:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.709698][   T33] audit: type=1326 audit(1755257127.946:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.740741][   T33] audit: type=1326 audit(1755257127.946:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.745688][   T24] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  144.766178][   T33] audit: type=1326 audit(1755257127.946:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.806266][   T33] audit: type=1326 audit(1755257127.956:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8597 comm="syz.1.1038" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  144.930025][   T24] usb 2-1: Using ep0 maxpacket: 32
[  144.941732][   T24] usb 2-1: config 0 has an invalid interface number: 155 but max is 0
[  144.945070][   T24] usb 2-1: config 0 has no interface number 0
[  144.955299][   T24] usb 2-1: New USB device found, idVendor=05ac, idProduct=0274, bcdDevice=a7.4c
[  144.961812][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.966952][   T24] usb 2-1: Product: syz
[  144.972008][   T24] usb 2-1: Manufacturer: syz
[  144.975859][   T24] usb 2-1: SerialNumber: syz
[  144.989918][   T24] usb 2-1: config 0 descriptor??
[  145.907370][ T8631] 8021q: adding VLAN 0 to HW filter on device bond1
[  146.462466][ T8651] loop3: detected capacity change from 0 to 32768
[  146.470900][ T8651] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1060 (8651)
[  146.496384][ T8651] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  146.503607][ T8651] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  146.507254][ T8651] BTRFS info (device loop3): using free-space-tree
[  146.554211][ T8651] BTRFS info (device loop3): rebuilding free space tree
[  146.611550][ T7039] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  146.762177][ T8671] team_slave_0: left promiscuous mode
[  146.765034][ T8671] team_slave_1: left promiscuous mode
[  146.921759][ T8677] loop3: detected capacity change from 0 to 1024
[  146.944446][ T8677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  146.949505][ T8677] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.982085][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  147.081595][ T8682] loop3: detected capacity change from 0 to 1024
[  147.116082][ T8682] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.133264][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.211112][   T24] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.155/input/input5
[  147.224134][ T5280] bcm5974 2-1:0.155: could not read from device
[  147.230587][   T24] usb 2-1: USB disconnect, device number 17
[  147.404709][ T8697] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1072'.
[  148.089260][   T24] usb 2-1: new full-speed USB device number 18 using dummy_hcd
[  148.293930][   T24] usb 2-1: config 2 has 0 interfaces, different from the descriptor's value: 1
[  148.301783][   T24] usb 2-1: New USB device found, idVendor=04e6, idProduct=0006, bcdDevice= 1.00
[  148.305360][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.310973][   T24] usb 2-1: Product: syz
[  148.312603][   T24] usb 2-1: Manufacturer: syz
[  148.314609][   T24] usb 2-1: SerialNumber: syz
[  148.543989][   T24] usb 2-1: USB disconnect, device number 18
[  148.697679][ T8742] loop3: detected capacity change from 0 to 128
[  148.707609][ T8742] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.713516][ T8742] ext4 filesystem being mounted at /212/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  148.736166][ T7039] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  149.059408][   T24] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  149.209211][   T24] usb 4-1: Using ep0 maxpacket: 16
[  149.221454][   T24] usb 4-1: config 0 has an invalid interface number: 102 but max is 0
[  149.225116][   T24] usb 4-1: config 0 has no interface number 0
[  149.232616][   T24] usb 4-1: New USB device found, idVendor=17cc, idProduct=1010, bcdDevice=53.54
[  149.236318][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.239774][   T24] usb 4-1: Product: syz
[  149.241548][   T24] usb 4-1: Manufacturer: syz
[  149.243725][   T24] usb 4-1: SerialNumber: syz
[  149.251964][   T24] usb 4-1: config 0 descriptor??
[  149.465840][   T24] snd-usb-audio 4-1:0.102: probe with driver snd-usb-audio failed with error -71
[  149.492105][   T24] usb 4-1: USB disconnect, device number 5
[  149.621420][ T8779] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1104'.
[  149.625787][ T8779] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1104'.
[  150.236819][ T8827] !: renamed from dummy0 (while UP)
[  150.655254][ T8843] ptrace attach of "/syz-executor exec"[7039] was attempted by ""[8843]
[  150.711652][ T8845] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1133'.
[  150.805532][ T8852] Bluetooth: hci0: invalid length 2, exp 1 for type 31
[  150.873064][ T8856] loop1: detected capacity change from 0 to 256
[  150.902209][ T8856] FAT-fs (loop1): Directory bread(block 64) failed
[  150.906352][ T8856] FAT-fs (loop1): Directory bread(block 65) failed
[  150.910199][ T8856] FAT-fs (loop1): Directory bread(block 66) failed
[  150.913294][ T8856] FAT-fs (loop1): Directory bread(block 67) failed
[  150.918890][ T8856] FAT-fs (loop1): Directory bread(block 68) failed
[  150.922133][ T8856] FAT-fs (loop1): Directory bread(block 69) failed
[  150.924274][ T8856] FAT-fs (loop1): Directory bread(block 70) failed
[  150.926313][ T8856] FAT-fs (loop1): Directory bread(block 71) failed
[  150.927442][ T8854] loop3: detected capacity change from 0 to 4096
[  150.928705][ T8856] FAT-fs (loop1): Directory bread(block 72) failed
[  150.935014][ T8856] FAT-fs (loop1): Directory bread(block 73) failed
[  151.409151][ T8875] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1147'.
[  151.425424][ T8875] netlink: 'syz.0.1147': attribute type 2 has an invalid length.
[  151.430542][ T8875] netlink: 'syz.0.1147': attribute type 2 has an invalid length.
[  151.433670][ T8875] netlink: 'syz.0.1147': attribute type 1 has an invalid length.
[  151.453896][ T8875] netlink: 'syz.0.1147': attribute type 2 has an invalid length.
[  151.457438][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1147'.
[  151.560408][ T8870] loop1: detected capacity change from 0 to 32768
[  151.571062][ T8870] jfs_mount: dbMount failed w/rc = -22
[  151.573614][ T8870] Mount JFS Failure: -22
[  151.703992][ T8890] netlink: 1010 bytes leftover after parsing attributes in process `syz.0.1154'.
[  151.717492][ T8890] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  152.116482][ T8892] loop1: detected capacity change from 0 to 32768
[  152.183302][ T8892] syz.1.1155: attempt to access beyond end of device
[  152.183302][ T8892] loop14: rw=0, sector=8, nr_sectors = 8 limit=0
[  152.188696][ T8892] lbmIODone: I/O error in JFS log
[  152.191322][ T8892] *** Log Format Error ! ***
[  152.193362][ T8892] lmLogInit: exit(-22)
[  152.195084][ T8892] lmLogOpen: exit(-22)
[  152.209585][ T8892] jfs_dirty_inode called on read-only volume
[  152.212730][ T8892] Is remount racy?
[  152.217116][ T8892] jfs_dirty_inode called on read-only volume
[  152.219714][ T8892] Is remount racy?
[  152.221155][ T8892] jfs_dirty_inode called on read-only volume
[  152.223742][ T8892] Is remount racy?
[  154.176489][ T8923] loop1: detected capacity change from 0 to 32768
[  154.180415][ T8923] XFS: ikeep mount option is deprecated.
[  154.250059][ T8923] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.314899][ T8923] XFS (loop1): Ending clean mount
[  154.320831][ T8923] XFS (loop1): Quotacheck needed: Please wait.
[  154.334289][ T8941] loop3: detected capacity change from 0 to 128
[  154.341742][ T8941] qnx6: unable to set blocksize
[  154.361876][ T8923] XFS (loop1): Quotacheck: Done.
[  154.435407][ T5842] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.793589][ T8961] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1183'.
[  154.819236][ T5911] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  154.968222][ T8965] loop1: detected capacity change from 0 to 32768
[  154.973961][ T5911] usb 4-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  154.981872][ T5911] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.985585][ T8965] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  154.988441][ T5911] usb 4-1: Product: syz
[  154.995166][ T8965] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  155.001302][ T5911] usb 4-1: Manufacturer: syz
[  155.003256][ T5911] usb 4-1: SerialNumber: syz
[  155.011835][ T5911] usb 4-1: config 0 descriptor??
[  155.021294][ T5911] gspca_main: sq905c-2.14.0 probing 2770:9052
[  155.063582][ T5842] ocfs2: Unmounting device (7,1) on (node local)
[  155.265908][ T8979] loop1: detected capacity change from 0 to 512
[  155.276044][ T8979] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  155.281483][ T8979] ext4 filesystem being mounted at /375/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  155.307254][ T8979] EXT4-fs error (device loop1): ext4_empty_dir:3090: inode #12: block 32: comm syz.1.1191: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  155.317316][ T8979] EXT4-fs (loop1): Remounting filesystem read-only
[  155.321429][ T8979] EXT4-fs warning (device loop1): ext4_empty_dir:3093: inode #12: comm syz.1.1191: directory missing '.'
[  155.341953][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.836785][  T792] usb 4-1: USB disconnect, device number 6
[  156.572292][ T9023] loop1: detected capacity change from 0 to 256
[  156.594071][ T9023] FAT-fs (loop1): Directory bread(block 64) failed
[  156.596522][ T9023] FAT-fs (loop1): Directory bread(block 65) failed
[  156.609788][ T9023] FAT-fs (loop1): Directory bread(block 66) failed
[  156.611869][ T9023] FAT-fs (loop1): Directory bread(block 67) failed
[  156.614214][ T9023] FAT-fs (loop1): Directory bread(block 68) failed
[  156.616612][ T9023] FAT-fs (loop1): Directory bread(block 69) failed
[  156.629756][ T9023] FAT-fs (loop1): Directory bread(block 70) failed
[  156.632151][ T9023] FAT-fs (loop1): Directory bread(block 71) failed
[  156.634385][ T9023] FAT-fs (loop1): Directory bread(block 72) failed
[  156.636723][ T9023] FAT-fs (loop1): Directory bread(block 73) failed
[  157.999351][ T9053] sctp: [Deprecated]: syz.1.1224 (pid 9053) Use of int in maxseg socket option.
[  157.999351][ T9053] Use struct sctp_assoc_value instead
[  158.051828][ T7009] usb 2-1: [UEAGLE-ATM] firmware is not available
[  158.065505][ T9057] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1226'.
[  158.220213][ T9071] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  158.469994][ T7009] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  158.621653][ T7009] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  158.625832][ T7009] usb 2-1: config 0 has no interfaces?
[  158.628071][ T7009] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  158.633280][ T7009] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.638403][ T7009] usb 2-1: config 0 descriptor??
[  158.854203][  T792] usb 2-1: USB disconnect, device number 19
[  159.767393][ T9115] loop1: detected capacity change from 0 to 4096
[  159.779176][ T9115] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  159.784953][   T33] kauditd_printk_skb: 31 callbacks suppressed
[  159.784961][   T33] audit: type=1326 audit(2000000005.150:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.811263][ T9115] ntfs3(loop1): ino=1a, mi_enum_attr
[  159.815742][ T9115] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  159.817888][   T33] audit: type=1326 audit(2000000005.150:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.830233][   T33] audit: type=1326 audit(2000000005.150:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.845865][   T33] audit: type=1326 audit(2000000005.150:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.855239][   T33] audit: type=1326 audit(2000000005.150:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.866614][   T33] audit: type=1326 audit(2000000005.150:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.874603][ T9115] ntfs3(loop1): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ntfs_sync_inode failed, -22.
[  159.876360][   T33] audit: type=1326 audit(2000000005.150:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.895052][   T33] audit: type=1326 audit(2000000005.150:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9116 comm="syz.3.1255" exe="/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  159.918902][ T1089] ntfs3(loop1): ino=1e, ntfs3_write_inode failed, -22.
[  160.005860][ T9127] binder: 9124:9127 unknown command 0
[  160.007603][ T9127] binder: 9124:9127 ioctl c0306201 200000000080 returned -22
[  160.101477][ T9133] loop3: detected capacity change from 0 to 128
[  160.111654][ T9133] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  160.127227][ T9133] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  160.141836][   T55] Bluetooth: hci2: Unable to find connection for big 0x00
[  160.241329][ T9145] netlink: 'syz.3.1268': attribute type 1 has an invalid length.
[  160.244340][ T9145] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1268'.
[  160.374137][ T9149] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1269'.
[  160.377718][ T9149] bond0: option coupled_control: mode dependency failed, not supported in mode balance-rr(0)
[  161.120813][ T9157] loop3: detected capacity change from 0 to 2048
[  161.141559][ T9157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.158227][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.186490][ T9162] loop3: detected capacity change from 0 to 128
[  161.227798][ T9164] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1276'.
[  161.327710][ T9170] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1279'.
[  161.334809][ T9170] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1279'.
[  161.338564][ T9170] netlink: 'syz.3.1279': attribute type 6 has an invalid length.
[  161.343235][ T9170] netlink: 'syz.3.1279': attribute type 5 has an invalid length.
[  161.525506][ T9186] loop3: detected capacity change from 0 to 256
[  162.016728][  T792] usb 2-1: new full-speed USB device number 20 using dummy_hcd
[  162.193607][  T792] usb 2-1: config 150 has an invalid interface number: 204 but max is 1
[  162.196658][  T792] usb 2-1: config 150 has no interface number 0
[  162.199569][  T792] usb 2-1: config 150 interface 204 has no altsetting 0
[  162.201750][  T792] usb 2-1: config 150 interface 1 has no altsetting 0
[  162.205753][  T792] usb 2-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb
[  162.209677][  T792] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  162.212885][  T792] usb 2-1: Product: syz
[  162.214606][  T792] usb 2-1: Manufacturer: syz
[  162.216473][  T792] usb 2-1: SerialNumber: syz
[  162.453968][  T792] xr_serial 2-1:150.204: xr_serial converter detected
[  163.299435][  T792] usb 2-1: xr_serial converter now attached to ttyUSB0
[  163.597326][  T792] usb 2-1: USB disconnect, device number 20
[  163.606763][  T792] xr_serial ttyUSB0: xr_serial converter now disconnected from ttyUSB0
[  163.615761][  T792] xr_serial 2-1:150.204: device disconnected
[  163.859992][   T10] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  164.011455][   T10] usb 4-1: config index 0 descriptor too short (expected 63524, got 36)
[  164.015009][   T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  164.023602][   T10] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  164.029412][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.037666][   T10] usb 4-1: Product: syz
[  164.041124][   T10] usb 4-1: Manufacturer: syz
[  164.043244][   T10] usb 4-1: SerialNumber: syz
[  164.050241][   T10] usb 4-1: config 0 descriptor??
[  164.058021][ T9224] netlink: 88 bytes leftover after parsing attributes in process `syz.0.1302'.
[  164.058972][   T10] usb 4-1: 0:0 : invalid sync pipe. bmAttributes 00, bLength 9, bSynchAddress 00
[  164.327562][   T10] usb 4-1: USB disconnect, device number 7
[  164.361965][ T6690] udevd[6690]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  164.362926][ T9239] loop1: detected capacity change from 0 to 128
[  164.614608][ T9247] netlink: 'syz.0.1312': attribute type 4 has an invalid length.
[  164.627401][ T9247] netlink: 'syz.0.1312': attribute type 4 has an invalid length.
[  164.668406][ T9242] loop1: detected capacity change from 0 to 32768
[  164.678922][ T9242] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1310 (9242)
[  164.692120][ T9242] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  164.698323][ T9242] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  164.701579][ T9242] BTRFS info (device loop1): using free-space-tree
[  164.921656][ T5842] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  165.109317][   T10] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  165.262144][   T10] usb 4-1: config 0 has an invalid interface number: 251 but max is 0
[  165.265539][   T10] usb 4-1: config 0 has no interface number 0
[  165.272235][   T10] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  165.276149][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.279809][   T10] usb 4-1: Product: syz
[  165.281827][   T10] usb 4-1: Manufacturer: syz
[  165.283857][   T10] usb 4-1: SerialNumber: syz
[  165.288084][   T10] usb 4-1: config 0 descriptor??
[  165.818455][   T10] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  165.825360][   T10] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71
[  165.831635][   T10] asix 4-1:0.251: probe with driver asix failed with error -5
[  165.840611][   T10] usb 4-1: USB disconnect, device number 8
[  166.299372][ T2314] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  166.449714][ T2314] usb 2-1: Using ep0 maxpacket: 8
[  166.458619][ T2314] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  166.470127][ T2314] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[  166.475756][ T2314] usb 2-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.40
[  166.480073][ T2314] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.484357][ T2314] usb 2-1: Product: syz
[  166.486306][ T2314] usb 2-1: Manufacturer: syz
[  166.488271][ T2314] usb 2-1: SerialNumber: syz
[  166.491402][ T9305] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1330'.
[  166.675978][ T9307] loop3: detected capacity change from 0 to 32768
[  166.694433][ T9307] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  166.719515][ T2314] usb 2-1: USB disconnect, device number 21
[  166.753080][ T7039] ocfs2: Unmounting device (7,3) on (node local)
[  166.891990][ T9319] loop3: detected capacity change from 0 to 512
[  166.895264][ T9319] ext4: Unknown parameter 'nojournal'
[  167.086637][   T33] audit: type=1326 audit(2000000012.450:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9320 comm="syz.3.1337" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x0
[  167.500805][ T9325] loop1: detected capacity change from 0 to 8
[  168.105438][   T33] audit: type=1326 audit(2000000013.470:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.1.1342" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  168.127962][   T33] audit: type=1326 audit(2000000013.480:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.1.1342" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  168.152485][   T33] audit: type=1326 audit(2000000013.480:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.1.1342" exe="/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  168.185889][   T33] audit: type=1326 audit(2000000013.480:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.1.1342" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  168.225338][   T33] audit: type=1326 audit(2000000013.480:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9334 comm="syz.1.1342" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  168.544543][ T9345] loop1: detected capacity change from 0 to 4096
[  168.566839][ T9345] EXT4-fs (loop1): Test dummy encryption mode enabled
[  168.588361][ T9345] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  168.595464][ T9345] System zones: 0-5
[  168.601308][ T9345] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.646556][ T9345] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  168.678720][ T9349] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1348'.
[  168.733311][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.046642][ T9360] netlink: 'syz.1.1353': attribute type 5 has an invalid length.
[  169.051190][ T9360] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.1353'.
[  169.183265][ T9366] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1356'.
[  169.342910][ T9362] loop3: detected capacity change from 0 to 32768
[  169.358897][ T9362] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section errors: entries out of order
[  169.358897][ T9362] errors (size 64):
[  169.358897][ T9362] (unknown error 63098)           98139432299383  16981954538416098692
[  169.358897][ T9362] backpointer_to_missing_ptr      0               34376515584
[  169.358897][ T9362] (unknown error 62899)           26163           1611530240
[  169.358897][ T9362] 
[  169.416763][ T9362] bcachefs: bch2_fs_get_tree() error: invalid_sb_errors
[  169.454996][ T9376] loop1: detected capacity change from 0 to 65
[  169.466784][ T9376] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  169.668168][ T9386] loop1: detected capacity change from 0 to 512
[  169.685247][ T9386] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.694664][ T9386] ext4 filesystem being mounted at /437/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  169.731919][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.854781][ T9396] loop1: detected capacity change from 0 to 128
[  169.858328][ T9396] EXT4-fs: Ignoring removed nobh option
[  169.887374][ T9396] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.894885][ T9396] ext4 filesystem being mounted at /439/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  169.958986][ T5842] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  171.233893][ T2314] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  171.438121][ T2314] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.444724][ T2314] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  171.454885][ T2314] usb 2-1: New USB device found, idVendor=17ef, idProduct=60ee, bcdDevice= 0.00
[  171.462994][ T2314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.467450][ T2314] usb 2-1: config 0 descriptor??
[  171.884918][ T2314] lenovo 0003:17EF:60EE.0005: hidraw0: USB HID v0.00 Device [HID 17ef:60ee] on usb-dummy_hcd.1-1/input0
[  172.270245][ T2314] lenovo 0003:17EF:60EE.0005: Failed to switch middle button: -71
[  172.274411][ T2314] lenovo 0003:17EF:60EE.0005: Fn-lock setting failed: -71
[  172.277589][ T2314] lenovo 0003:17EF:60EE.0005: Sensitivity setting failed: -71
[  172.282623][ T2314] usb 2-1: USB disconnect, device number 22
[  172.455360][ T9480] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  172.487370][ T9482] loop3: detected capacity change from 0 to 128
[  172.502012][ T9482] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  172.525090][ T7039] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  172.565389][ T9485] _Z`Ԁ@: entered promiscuous mode
[  172.600000][ T9487] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1409'.
[  172.735381][   T55] Bluetooth: hci2: link tx timeout
[  172.737852][   T55] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  172.966086][ T9506] loop3: detected capacity change from 0 to 32768
[  172.970160][ T9506] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1418 (9506)
[  172.979547][ T9506] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  172.983234][ T9506] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  172.986608][ T9506] BTRFS info (device loop3): disk space caching is enabled
[  172.989444][ T9506] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  173.045841][ T9501] loop1: detected capacity change from 0 to 32768
[  173.112110][ T9501] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  173.115169][ T9506] BTRFS info (device loop3): rebuilding free space tree
[  173.124569][ T9506] BTRFS info (device loop3): disabling free space tree
[  173.127366][ T9506] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  173.131414][ T9506] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  173.161410][ T9501] XFS (loop1): Ending clean mount
[  173.166105][ T9501] XFS (loop1): Quotacheck needed: Please wait.
[  173.189556][ T9506] BTRFS info (device loop3): scrub: started on devid 1
[  173.202401][ T9506] BTRFS info (device loop3): scrub: finished on devid 1 with status: 0
[  173.235565][ T9501] XFS (loop1): Quotacheck: Done.
[  173.285190][ T7039] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  173.293960][ T5842] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  173.441129][ T9537] loop1: detected capacity change from 0 to 2048
[  173.460636][ T9537] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  173.466969][ T9537] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  173.483698][   T33] audit: type=1800 audit(2000000018.850:97): pid=9537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1421" name="file1" dev="loop1" ino=1367 res=0 errno=0
[  173.517501][   T33] audit: type=1804 audit(2000000018.880:98): pid=9537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1421" name="/newroot/451/file0/file1" dev="loop1" ino=1367 res=1 errno=0
[  173.865009][ T9544] loop1: detected capacity change from 0 to 1024
[  173.881272][ T9544] ext4: Unknown parameter 'uid<00000000000000000000'
[  173.930571][   T33] audit: type=1326 audit(2000000019.300:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  173.940788][   T33] audit: type=1326 audit(2000000019.300:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  173.953710][   T33] audit: type=1326 audit(2000000019.300:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  173.990396][   T33] audit: type=1326 audit(2000000019.350:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  174.004809][   T33] audit: type=1326 audit(2000000019.350:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  174.012517][   T55] Bluetooth: hci2: unexpected event for opcode 0x0c26
[  174.015004][   T33] audit: type=1326 audit(2000000019.350:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9557 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa8b61c14a5 code=0x7ffc0000
[  174.029775][   T33] audit: type=1326 audit(2000000019.390:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  174.037573][   T33] audit: type=1326 audit(2000000019.390:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9542 comm="syz.1.1423" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa8b618ebe9 code=0x7ffc0000
[  174.246774][ T9582] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  175.257378][ T9599] loop3: detected capacity change from 0 to 32768
[  175.296353][ T9599] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  175.332406][ T9599] XFS (loop3): Ending clean mount
[  175.381327][ T7039] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  175.513392][ T9622] loop1: detected capacity change from 0 to 65
[  175.569781][ T9622] BFS-fs: bfs_fill_super(): NOTE: filesystem loop1 was created with 512 inodes, the real maximum is 511, mounting anyway
[  175.696515][ T9626] syz.1.1455: attempt to access beyond end of device
[  175.696515][ T9626] loop1: rw=6144, sector=8, nr_sectors = 2 limit=0
[  175.702656][ T9626] bcachefs (/dev/loop1): error reading default superblock: IO error: -5
[  175.706195][ T9626] syz.1.1455: attempt to access beyond end of device
[  175.706195][ T9626] loop1: rw=6144, sector=7, nr_sectors = 1 limit=0
[  175.715765][ T9626] bcachefs (/dev/loop1): error reading superblock: IO error: -5
[  175.719820][ T9626] bcachefs: bch2_fs_get_tree() error: EIO
[  175.874408][ T9638] loop1: detected capacity change from 0 to 64
[  175.877206][ T9638] bfs: Unknown parameter '01777777777777777777777'
[  176.050122][ T9638] loop1: detected capacity change from 0 to 32768
[  176.081489][ T5911] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  176.273022][ T5911] usb 4-1: Using ep0 maxpacket: 32
[  176.280164][ T5911] usb 4-1: config 0 has too many interfaces: 66, using maximum allowed: 32
[  176.296156][ T5911] usb 4-1: config 0 contains an unexpected descriptor of type 0x2, skipping
[  176.333558][ T5911] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  176.337845][ T5911] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 66
[  176.351349][ T5911] usb 4-1: New USB device found, idVendor=d084, idProduct=c487, bcdDevice=f4.ce
[  176.359036][ T9661] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1470'.
[  176.359608][ T5911] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.365300][ T5911] usb 4-1: Product: syz
[  176.384006][ T5911] usb 4-1: Manufacturer: syz
[  176.386017][ T5911] usb 4-1: SerialNumber: syz
[  176.643372][ T5911] usb 4-1: config 0 descriptor??
[  176.891794][   T47] usb 4-1: USB disconnect, device number 9
[  177.808163][ T9695] loop3: detected capacity change from 0 to 4096
[  177.819743][ T9695] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  177.834532][ T9695] ntfs3(loop3): Failed to load $MFT (-22).
[  177.917835][ T9705] loop1: detected capacity change from 0 to 512
[  177.923197][ T9705] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  177.949508][ T9705] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  177.952553][ T9705] FAT-fs (loop1): Filesystem has been set read-only
[  177.960148][ T9705] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  178.078351][ T9714] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  178.160455][ T9725] binder: 9721:9725 ioctl c018620b 200000000000 returned -14
[  178.399231][ T2314] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  178.430450][ T9747] loop1: detected capacity change from 0 to 2048
[  178.433515][ T9747] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  178.447060][ T9750] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  178.571230][ T2314] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  178.574576][ T2314] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  178.587035][ T2314] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  178.591770][ T2314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  178.595107][ T2314] usb 4-1: SerialNumber: syz
[  178.657394][ T9769] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1516'.
[  178.661984][ T9769] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1516'.
[  178.674371][ T9769] bridge0: port 3(vlan2) entered blocking state
[  178.677017][ T9769] bridge0: port 3(vlan2) entered disabled state
[  178.679891][ T9769] vlan2: entered allmulticast mode
[  178.683075][ T9769] bridge0: entered allmulticast mode
[  178.687033][ T9769] vlan2: left allmulticast mode
[  178.688739][ T9769] bridge0: left allmulticast mode
[  178.820986][ T2314] usb 4-1: 0:2 : does not exist
[  178.841350][ T2314] usb 4-1: USB disconnect, device number 10
[  178.868518][ T5847] udevd[5847]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  179.744376][ T9805] 9pnet_fd: Insufficient options for proto=fd
[  179.747616][ T9805] loop3: detected capacity change from 0 to 16
[  179.750198][ T9805] erofs: Unknown parameter 'K،jxIE'
[  180.613965][ T5844] Bluetooth: hci0: command 0x0406 tx timeout
[  181.090715][ T9826] loop3: detected capacity change from 0 to 32768
[  181.125180][ T9826] JBD2: journal file too short 1,0
[  181.132117][ T9826] (syz.3.1541,9826,0):ocfs2_journal_init:973 ERROR: Linux journal layer error
[  181.156374][ T9826] (syz.3.1541,9826,0):ocfs2_check_volume:2347 ERROR: Could not initialize journal!
[  181.162440][ T9826] (syz.3.1541,9826,0):ocfs2_check_volume:2432 ERROR: status = -22
[  181.165193][ T9826] (syz.3.1541,9826,0):ocfs2_mount_volume:1764 ERROR: status = -22
[  181.181157][ T9826] (syz.3.1541,9826,0):ocfs2_fill_super:1177 ERROR: status = -22
[  181.517946][ T9856] netlink: 3176 bytes leftover after parsing attributes in process `syz.0.1554'.
[  181.728210][ T9879] loop3: detected capacity change from 0 to 128
[  181.804178][ T9883] loop1: detected capacity change from 0 to 1024
[  181.808024][ T9883] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  182.283776][ T9899] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1574'.
[  182.396883][ T9903] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1576'.
[  182.609257][   T47] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  182.759260][   T47] usb 4-1: Using ep0 maxpacket: 32
[  182.765213][   T47] usb 4-1: config 0 has an invalid interface number: 196 but max is 0
[  182.768861][   T47] usb 4-1: config 0 has no interface number 0
[  182.771698][   T47] usb 4-1: config 0 interface 196 has no altsetting 0
[  182.778704][   T47] usb 4-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  182.788528][   T47] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.792076][   T47] usb 4-1: Product: syz
[  182.793965][   T47] usb 4-1: Manufacturer: syz
[  182.796143][   T47] usb 4-1: SerialNumber: syz
[  182.802205][   T47] usb 4-1: config 0 descriptor??
[  183.021839][   T47] ipheth 4-1:0.196: Unable to find endpoints
[  183.037029][ T9925] can0: slcan on ptm0.
[  183.060875][   T47] usb 4-1: USB disconnect, device number 11
[  183.114494][ T9923] can0 (unregistered): slcan off ptm0.
[  183.729041][ T9957] 9pnet_virtio: no channels available for device syz
[  184.042176][ T9959] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.045090][ T9959] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.126213][ T9959] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  184.135833][ T9959] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  184.267059][   T12] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.280716][   T12] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.289533][   T12] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.293512][   T12] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  184.418442][   T33] kauditd_printk_skb: 22 callbacks suppressed
[  184.418455][   T33] audit: type=1326 audit(2000000029.780:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9970 comm="syz.3.1606" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  184.447695][   T33] audit: type=1326 audit(2000000029.780:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9970 comm="syz.3.1606" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  184.450962][ T9974] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  184.458965][   T33] audit: type=1326 audit(2000000029.810:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9970 comm="syz.3.1606" exe="/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  184.478633][ T9974] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  184.479985][   T33] audit: type=1326 audit(2000000029.810:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9970 comm="syz.3.1606" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  184.494725][   T33] audit: type=1326 audit(2000000029.810:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9970 comm="syz.3.1606" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x7ffc0000
[  184.552315][ T9980] netlink: 'syz.3.1610': attribute type 1 has an invalid length.
[  184.555683][ T9980] netlink: 630 bytes leftover after parsing attributes in process `syz.3.1610'.
[  184.625907][ T9984] loop3: detected capacity change from 0 to 128
[  184.665289][ T9984] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  184.678819][ T9984] ext4 filesystem being mounted at /348/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  184.698474][ T7039] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  185.125459][T10006] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1621'.
[  185.172931][T10008] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048)
[  185.179195][ T2314] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  185.332546][ T2314] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  185.337052][ T2314] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  185.343220][ T2314] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  185.347025][ T2314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.356528][ T9993] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  185.367105][ T2314] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  185.571644][ T2314] usb 4-1: USB disconnect, device number 12
[  185.627361][T10025] netlink: 'syz.1.1630': attribute type 1 has an invalid length.
[  185.683993][T10029] netlink: 'syz.1.1632': attribute type 12 has an invalid length.
[  185.738639][T10033] loop1: detected capacity change from 0 to 64
[  185.745022][T10033] MINIX-fs: mounting file system with errors, running fsck is recommended
[  185.755317][T10033] Trying to free block not in datazone
[  185.757250][T10033] Trying to free block not in datazone
[  185.759489][T10033] Trying to free block not in datazone
[  185.761345][T10033] Trying to free block not in datazone
[  185.763191][T10033] Trying to free block not in datazone
[  185.765044][T10033] Trying to free block not in datazone
[  185.767094][T10033] Trying to free block not in datazone
[  185.769657][T10033] Trying to free block not in datazone
[  185.771645][T10033] Trying to free block not in datazone
[  185.857963][T10041] loop1: detected capacity change from 0 to 512
[  185.869617][T10041] FAT-fs (loop1): bogus number of FAT sectors
[  185.871820][T10041] FAT-fs (loop1): Can't find a valid FAT filesystem
[  186.414208][T10060] netlink: 'syz.3.1646': attribute type 1 has an invalid length.
[  186.511181][   T47] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  186.636938][T10072] loop3: detected capacity change from 0 to 512
[  186.640419][T10072] EXT4-fs: Ignoring removed i_version option
[  186.643067][T10072] EXT4-fs: Ignoring removed nobh option
[  186.645496][T10072] EXT4-fs: inline encryption not supported
[  186.648574][T10072] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  186.659696][T10072] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  186.669814][   T47] usb 2-1: Using ep0 maxpacket: 32
[  186.675812][   T47] usb 2-1: config 0 has an invalid interface number: 83 but max is 0
[  186.679479][   T47] usb 2-1: config 0 has no interface number 0
[  186.681977][   T47] usb 2-1: config 0 interface 83 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  186.685502][T10072] EXT4-fs (loop3): 1 truncate cleaned up
[  186.685753][   T47] usb 2-1: config 0 interface 83 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  186.690169][T10072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  186.692465][   T47] usb 2-1: config 0 interface 83 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  186.706986][   T47] usb 2-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=d8.11
[  186.711548][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.714833][   T47] usb 2-1: Product: syz
[  186.716470][   T47] usb 2-1: Manufacturer: syz
[  186.718301][   T47] usb 2-1: SerialNumber: syz
[  186.722091][   T47] usb 2-1: config 0 descriptor??
[  186.727879][   T47] redrat3 2-1:0.83: Couldn't find all endpoints
[  186.742809][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.905959][T10079] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1656'.
[  186.947523][    T9] usb 2-1: USB disconnect, device number 23
[  187.028147][T10088] loop3: detected capacity change from 0 to 1024
[  187.095180][T10091] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1661'.
[  187.102608][T10091] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.106678][T10091] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.369227][ T2314] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  187.522482][T10097] loop1: detected capacity change from 0 to 1024
[  187.523874][ T2314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  187.530404][T10097] EXT4-fs: inline encryption not supported
[  187.536517][ T2314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  187.540851][ T2314] usb 4-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00
[  187.544849][ T2314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.555983][ T2314] usb 4-1: config 0 descriptor??
[  187.560082][T10097] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  187.986663][ T2314] razer 0003:1532:010E.0006: unknown main item tag 0x3
[  187.995545][ T2314] razer 0003:1532:010E.0006: unbalanced collection at end of report description
[  188.006114][ T2314] razer 0003:1532:010E.0006: probe with driver razer failed with error -22
[  188.185354][ T2314] usb 4-1: USB disconnect, device number 13
[  188.365305][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.465317][T10130] veth0_macvtap: left promiscuous mode
[  190.885183][T10169] loop1: detected capacity change from 0 to 32768
[  190.932515][T10169] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  190.951535][T10169] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  190.962885][T10169] XFS (loop1): Starting recovery (logdev: internal)
[  190.975292][T10169] XFS (loop1): Ending recovery (logdev: internal)
[  190.998202][ T5842] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  191.160207][T10199] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1704'.
[  191.163419][T10199] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1704'.
[  191.188155][T10201] loop1: detected capacity change from 0 to 512
[  191.210434][T10201] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  191.321610][T10205] loop1: detected capacity change from 0 to 1024
[  191.343276][T10205] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.365261][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.401818][T10210] netlink: 'syz.1.1708': attribute type 1 has an invalid length.
[  191.404529][T10210] netlink: 172 bytes leftover after parsing attributes in process `syz.1.1708'.
[  192.277359][T10230] loop1: detected capacity change from 0 to 32768
[  192.304157][T10230] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  192.624134][ T5842] ocfs2: Unmounting device (7,1) on (node local)
[  193.685914][T10258] loop1: detected capacity change from 0 to 32768
[  193.706908][T10258] 
[  193.706908][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.706908][T10258] 
[  193.737845][T10258] 
[  193.737845][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.737845][T10258] 
[  193.742560][T10258] 
[  193.742560][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.742560][T10258] 
[  193.746369][T10258] 
[  193.746369][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.746369][T10258] 
[  193.750815][T10258] 
[  193.750815][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.750815][T10258] 
[  193.760552][T10258] 
[  193.760552][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.760552][T10258] 
[  193.766484][T10258] 
[  193.766484][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.766484][T10258] 
[  193.770112][T10258] 
[  193.770112][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.770112][T10258] 
[  193.773565][T10258] 
[  193.773565][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.773565][T10258] 
[  193.798306][  T115] 
[  193.798306][  T115]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.798306][  T115] 
[  193.825076][T10258] 
[  193.825076][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.825076][T10258] 
[  193.828657][T10258] 
[  193.828657][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.828657][T10258] 
[  193.839009][T10258] 
[  193.839009][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.839009][T10258] 
[  193.846532][T10258] 
[  193.846532][T10258]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  193.846532][T10258] 
[  193.891721][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  193.894403][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  194.055132][ T5842] 
[  194.055132][ T5842]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  194.055132][ T5842] 
[  194.070588][ T5842] 
[  194.070588][ T5842]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  194.070588][ T5842] 
[  195.767214][T10341] loop1: detected capacity change from 0 to 1024
[  195.786421][T10334] loop3: detected capacity change from 0 to 32768
[  195.887323][T10334] ERROR: (device loop3): xtTruncate_pmap: xt_getpage: xtree page corrupt
[  195.887323][T10334] 
[  195.914913][T10334] ERROR: (device loop3): remounting filesystem as read-only
[  195.925732][T10334] ERROR: (device loop3): jfs_unlink: 
[  195.925732][T10334] 
[  196.059342][ T7039] ERROR: (device loop3): xtTruncate: xt_getpage: xtree page corrupt
[  196.059342][ T7039] 
[  197.047181][T10367] loop1: detected capacity change from 0 to 32768
[  197.075644][T10367] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,str_hash=crc64,recovery_pass_last=set_may_go_rw,nojournal_transaction_names,read_only
[  197.075663][T10367]   allowing incompatible features above 0.0: (unknown version)
[  197.075669][T10367]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  197.095119][T10367] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  197.099652][T10367] bcachefs (loop1): invalid journal entry, version=1.7: mi_btree_bitmap type=clock in superblock: bad rw, fixing
[  197.106562][T10367] bcachefs (loop1): invalid bkey in superblock btree=xattrs level=1: u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 2285c34bed0abe32 written 16 min_key POS_MIN durability: 0 crc: c_size 1 size 1 offset 0 nonce 0 csum none 12010b:10004000b  compress none
[  197.106613][T10367]   has non ptr field, deleting
[  197.120174][T10367] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  197.123573][T10367] bcachefs (loop1): Version upgrade from 1.3: rebalance_work to 1.7: mi_btree_bitmap incomplete
[  197.123573][T10367] Doing compatible version upgrade from 1.3: rebalance_work to 1.28: inode_has_case_insensitive
[  197.123573][T10367]   running recovery passes: check_allocations,check_extents_to_backpointers,check_subvols,check_inodes,check_dirents
[  197.146635][T10367] bcachefs (loop1): invalid bkey in btree_node btree=dirents level=0: u64s 7 type dirent 4096:189491840996961599:U32_MAX len 0 ver 0: file0 -> 4096 type dir
[  197.146672][T10367]   dirent points to own directory, deleting
[  197.162350][T10367] bcachefs (loop1): accounting_read... done
[  197.182091][T10367] bcachefs (loop1): alloc_read... done
[  197.185070][T10367] bcachefs (loop1): snapshots_read... done
[  197.188030][T10367] bcachefs (loop1): check_allocations...
[  197.191198][T10367] bcachefs (loop1): bucket 0:26 data type btree ptr gen 0 missing in alloc btree
[  197.191233][T10367]   while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, fixing
[  197.209752][T10367] bcachefs (loop1): bucket 0:38 data type btree ptr gen 0 missing in alloc btree
[  197.209766][T10367]   while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing
[  197.221252][T10367] bcachefs (loop1): bucket 0:41 data type btree ptr gen 0 missing in alloc btree
[  197.221266][T10367]   while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing
[  197.234340][T10367] bcachefs (loop1): bucket 0:35 data type btree ptr gen 0 missing in alloc btree
[  197.234353][T10367]   while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing
[  197.247544][T10367] bcachefs (loop1): bucket 0:29 data type btree ptr gen 0 missing in alloc btree
[  197.247558][T10367]   while marking u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0, fixing
[  197.260544][T10367] bcachefs (loop1): bucket 0:1 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.264726][T10367] bcachefs (loop1): bucket 0:1 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.269714][T10367] bcachefs (loop1): bucket 0:2 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.275147][T10367] bcachefs (loop1): bucket 0:2 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.280427][T10367] bcachefs (loop1): bucket 0:3 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.282184][T10378] loop3: detected capacity change from 0 to 512
[  197.284385][T10367] bcachefs (loop1): bucket 0:3 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.291393][T10367] bcachefs (loop1): bucket 0:4 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.295352][T10367] bcachefs (loop1): bucket 0:4 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.300859][T10367] bcachefs (loop1): bucket 0:5 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.305635][T10367] bcachefs (loop1): bucket 0:5 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.310512][T10367] bcachefs (loop1): bucket 0:6 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.314570][T10367] bcachefs (loop1): bucket 0:6 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.319532][T10367] bcachefs (loop1): bucket 0:7 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.323684][T10367] bcachefs (loop1): bucket 0:7 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.328415][T10367] bcachefs (loop1): bucket 0:8 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.332634][T10367] bcachefs (loop1): bucket 0:8 gen 0 data type sb has wrong dirty_sectors: got 0, should be 8, fixing
[  197.337272][T10367] bcachefs (loop1): bucket 0:16 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.342019][T10367] bcachefs (loop1): bucket 0:16 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.342814][T10378] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  197.346421][T10367] bcachefs (loop1): bucket 0:17 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.355058][T10367] bcachefs (loop1): bucket 0:17 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.360369][T10367] bcachefs (loop1): bucket 0:18 gen 0 has wrong data_type: got free, should be sb, fixing
[  197.360381][T10367]   Ratelimiting new instances of previous error
[  197.366698][T10367] bcachefs (loop1): bucket 0:18 gen 0 data type sb has wrong dirty_sectors: got 0, should be 256, fixing
[  197.366709][T10367]   Ratelimiting new instances of previous error
[  197.366819][T10378] EXT4-fs (loop3): orphan cleanup on readonly fs
[  197.381156][T10367]  done
[  197.385411][T10367] bcachefs (loop1): going read-write
[  197.388888][T10378] Quota error (device loop3): find_block_dqentry: Quota for id 0 referenced but not present
[  197.399269][T10378] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  197.402449][T10378] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1779: Failed to acquire dquot type 1
[  197.419779][T10378] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1779: bg 0: block 40: padding at end of block bitmap is not set
[  197.431419][T10378] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  197.437255][T10378] EXT4-fs (loop3): 1 truncate cleaned up
[  197.440718][T10378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  197.456272][T10378] EXT4-fs error (device loop3): ext4_get_link:106: inode #16: comm syz.3.1779: bad symlink.
[  197.460159][T10378] EXT4-fs error (device loop3): ext4_get_link:106: inode #16: comm syz.3.1779: bad symlink.
[  197.481180][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.591705][T10367] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean
[  197.599409][T10367] bcachefs (loop1): going read-only
[  197.601766][T10367] bcachefs (loop1): finished waiting for writes to stop
[  197.611066][T10367] bcachefs (loop1): flushing journal and stopping allocators, journal seq 13
[  197.622230][T10367] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 13
[  197.628863][T10367] bcachefs (loop1): unclean shutdown complete, journal seq 14
[  197.634049][T10367] bcachefs (loop1): done going read-only, filesystem not clean
[  197.637347][T10367] bcachefs (loop1): done starting filesystem
[  197.666125][ T5842] bcachefs (loop1): shutting down
[  197.688358][ T5842] bcachefs (loop1): shutdown complete
[  197.869903][ T7009] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[  197.920956][T10408] netlink: 'syz.0.1789': attribute type 2 has an invalid length.
[  197.923968][T10408] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1789'.
[  198.022510][ T7009] usb 4-1: unable to get BOS descriptor or descriptor too short
[  198.026339][ T7009] usb 4-1: not running at top speed; connect to a high speed hub
[  198.038068][ T7009] usb 4-1: config 1 has an invalid interface number: 130 but max is 0
[  198.042746][ T7009] usb 4-1: config 1 has no interface number 0
[  198.045721][ T7009] usb 4-1: config 1 interface 130 altsetting 3 endpoint 0x1 has invalid maxpacket 512, setting to 64
[  198.050923][ T7009] usb 4-1: config 1 interface 130 has no altsetting 0
[  198.056071][ T7009] usb 4-1: New USB device found, idVendor=1044, idProduct=7001, bcdDevice=84.ac
[  198.060289][ T7009] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.063557][ T7009] usb 4-1: Product: syz
[  198.065464][ T7009] usb 4-1: Manufacturer: syz
[  198.067469][ T7009] usb 4-1: SerialNumber: syz
[  198.074707][T10402] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  198.296334][ T7009] dvb-usb: found a 'Gigabyte U7000' in cold state, will try to load a firmware
[  198.315835][ T7009] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw'
[  198.321079][ T7009] dib0700: firmware download failed at 7 with -71
[  198.331995][ T7009] usb 4-1: USB disconnect, device number 14
[  199.012290][T10440] netlink: 'syz.3.1804': attribute type 10 has an invalid length.
[  199.014832][T10440] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1804'.
[  199.026388][T10440] batman_adv: batadv0: Adding interface: virt_wifi0
[  199.028792][T10440] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.038402][T10440] batman_adv: batadv0: Interface activated: virt_wifi0
[  199.089934][T10446] syz.1.1806 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  199.122810][T10450] netlink: 'syz.3.1807': attribute type 11 has an invalid length.
[  199.316219][T10462] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1813'.
[  199.431292][T10469] ieee802154 phy0 wpan0: encryption failed: -22
[  199.762316][T10481] ip6erspan0: entered allmulticast mode
[  199.798291][T10485] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1823'.
[  199.822473][T10487] bridge1: the hash_elasticity option has been deprecated and is always 16
[  199.829323][T10485] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1823'.
[  199.946306][T10497] loop3: detected capacity change from 0 to 128
[  199.953012][T10497] EXT4-fs: Ignoring removed nomblk_io_submit option
[  199.955335][T10497] EXT4-fs: Ignoring removed nomblk_io_submit option
[  199.962598][T10497] EXT4-fs (loop3): Test dummy encryption mode enabled
[  199.967961][T10497] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  199.972957][T10497] ext4 filesystem being mounted at /411/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  199.997358][ T7039] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  200.110322][   T47] IPVS: starting estimator thread 0...
[  200.199398][T10510] IPVS: using max 46 ests per chain, 110400 per kthread
[  200.225070][T10520] loop1: detected capacity change from 0 to 512
[  200.231446][T10520] EXT4-fs (loop1): Test dummy encryption mode enabled
[  200.241396][T10520] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended
[  200.245667][T10520] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[  200.251219][T10520] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.265832][T10520] EXT4-fs (loop1): shut down requested (1)
[  200.298582][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.693104][T10539] loop1: detected capacity change from 0 to 40427
[  200.940568][T10539] F2FS-fs (loop1): invalid crc value
[  200.994050][T10539] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  200.999015][T10539] F2FS-fs (loop1): Start checkpoint disabled!
[  201.002163][T10539] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  201.088983][   T33] audit: type=1800 audit(2000000046.450:134): pid=10552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1846" name="file1" dev="loop1" ino=10 res=0 errno=0
[  201.124453][T10552] syz.1.1846: attempt to access beyond end of device
[  201.124453][T10552] loop1: rw=2049, sector=77824, nr_sectors = 984 limit=40427
[  201.565041][T10561] netlink: 'syz.3.1852': attribute type 1 has an invalid length.
[  201.568493][T10561] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1852'.
[  201.589763][ T1091] kworker/u9:6: attempt to access beyond end of device
[  201.589763][ T1091] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  201.599662][ T1091] CPU: 1 UID: 0 PID: 1091 Comm: kworker/u9:6 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  201.599675][ T1091] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  201.599680][ T1091] Workqueue: writeback wb_workfn (flush-7:1)
[  201.599694][ T1091] Call Trace:
[  201.599697][ T1091]  <TASK>
[  201.599701][ T1091]  dump_stack_lvl+0x189/0x250
[  201.599713][ T1091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.599721][ T1091]  ? __pfx_queue_work_on+0x10/0x10
[  201.599729][ T1091]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  201.599739][ T1091]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  201.599752][ T1091]  f2fs_handle_critical_error+0x37c/0x540
[  201.599765][ T1091]  f2fs_write_end_io+0x886/0xb60
[  201.599780][ T1091]  __submit_merged_bio+0x27a/0x6a0
[  201.599793][ T1091]  __submit_merged_write_cond+0x255/0x530
[  201.599805][ T1091]  f2fs_write_data_pages+0x261d/0x3000
[  201.599830][ T1091]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  201.599871][ T1091]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  201.599879][ T1091]  ? lockdep_hardirqs_on+0x9c/0x150
[  201.599889][ T1091]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  201.599897][ T1091]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  201.599910][ T1091]  ? rcu_preempt_deferred_qs_irqrestore+0x89c/0xce0
[  201.599929][ T1091]  ? rcu_is_watching+0x15/0xb0
[  201.599939][ T1091]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  201.599949][ T1091]  do_writepages+0x32e/0x550
[  201.599961][ T1091]  ? reacquire_held_locks+0x127/0x1d0
[  201.599968][ T1091]  ? writeback_sb_inodes+0x384/0x1010
[  201.600022][ T1091]  __writeback_single_inode+0x145/0xff0
[  201.600033][ T1091]  ? do_raw_spin_unlock+0x4d/0x240
[  201.600043][ T1091]  writeback_sb_inodes+0x6c7/0x1010
[  201.600064][ T1091]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  201.600091][ T1091]  ? rcu_is_watching+0x15/0xb0
[  201.600108][ T1091]  wb_writeback+0x43b/0xaf0
[  201.600121][ T1091]  ? queue_io+0x3c1/0x590
[  201.600131][ T1091]  ? __pfx_wb_writeback+0x10/0x10
[  201.600143][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  201.600153][ T1091]  wb_workfn+0x409/0xef0
[  201.600168][ T1091]  ? __pfx_wb_workfn+0x10/0x10
[  201.600177][ T1091]  ? __lock_acquire+0xab9/0xd20
[  201.600192][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  201.600202][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  201.600209][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  201.600215][ T1091]  ? process_scheduled_works+0x9ef/0x17b0
[  201.600223][ T1091]  process_scheduled_works+0xae1/0x17b0
[  201.600243][ T1091]  ? __pfx_process_scheduled_works+0x10/0x10
[  201.600258][ T1091]  worker_thread+0x8a0/0xda0
[  201.600278][ T1091]  kthread+0x711/0x8a0
[  201.600288][ T1091]  ? __pfx_worker_thread+0x10/0x10
[  201.600295][ T1091]  ? __pfx_kthread+0x10/0x10
[  201.600304][ T1091]  ? _raw_spin_unlock_irq+0x23/0x50
[  201.600311][ T1091]  ? lockdep_hardirqs_on+0x9c/0x150
[  201.600319][ T1091]  ? __pfx_kthread+0x10/0x10
[  201.600327][ T1091]  ret_from_fork+0x3fc/0x770
[  201.600336][ T1091]  ? __pfx_ret_from_fork+0x10/0x10
[  201.600346][ T1091]  ? __switch_to_asm+0x39/0x70
[  201.600356][ T1091]  ? __switch_to_asm+0x33/0x70
[  201.600363][ T1091]  ? __pfx_kthread+0x10/0x10
[  201.600371][ T1091]  ret_from_fork_asm+0x1a/0x30
[  201.600388][ T1091]  </TASK>
[  201.600391][ T1091] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  202.281283][T10575] loop3: detected capacity change from 0 to 32768
[  202.327085][T10575] jfs_strtoUCS: char2uni returned -22.
[  202.334186][T10575] charset = euc-jp, char = 0xd4
[  202.391047][   T47] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  202.485894][T10601] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.487653][T10605] loop3: detected capacity change from 0 to 256
[  202.490744][T10601] 8021q: adding VLAN 0 to HW filter on device team0
[  202.498101][T10601] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  202.507752][T10605] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  202.525304][ T5860] bond0: (slave bond_slave_0): link status definitely down, disabling slave
[  202.542117][ T5860] bond0: (slave bond_slave_1): link status definitely down, disabling slave
[  202.548144][ T5860] bond0: now running without any active interface!
[  202.561392][   T47] usb 2-1: config 3 has an invalid interface number: 56 but max is 0
[  202.564892][   T47] usb 2-1: config 3 has no interface number 0
[  202.567222][   T47] usb 2-1: config 3 interface 56 has no altsetting 0
[  202.576398][   T47] usb 2-1: New USB device found, idVendor=03f0, idProduct=2101, bcdDevice=80.cc
[  202.580861][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.584132][   T47] usb 2-1: Product: syz
[  202.590231][   T47] usb 2-1: Manufacturer: syz
[  202.592301][   T47] usb 2-1: SerialNumber: syz
[  202.827791][   T47] safe_serial 2-1:3.56: safe_serial converter detected
[  202.831646][   T47] safe_serial 2-1:3.56: probe with driver safe_serial failed with error -22
[  202.840857][   T47] usb 2-1: USB disconnect, device number 24
[  202.849874][   T55] Bluetooth: hci2: unexpected Set CIG Parameters response data
[  202.860038][   T55] Bluetooth: hci2: unexpected event for opcode 0x2062
[  202.927685][T10629] IPv6: sit1: Disabled Multicast RS
[  203.065569][T10641] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  203.078315][T10641] CIFS mount error: No usable UNC path provided in device string!
[  203.078315][T10641] 
[  203.082446][T10641] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  203.612971][T10657] loop1: detected capacity change from 0 to 1024
[  203.644614][T10657] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  203.651641][T10657] ext4 filesystem being mounted at /582/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  203.664032][T10656] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.674521][T10656] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.681696][T10656] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.689547][T10656] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.695052][T10656] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.701446][T10656] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.707170][T10657] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #15: comm syz.1.1897: lblock 0 mapped to illegal pblock 0 (length 1)
[  203.734453][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  203.800634][T10663] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  203.829189][    T9] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  203.973962][T10671] loop1: detected capacity change from 0 to 8
[  203.980006][    T9] usb 4-1: Using ep0 maxpacket: 8
[  203.986556][    T9] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[  204.000633][    T9] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 166, setting to 64
[  204.005191][    T9] usb 4-1: config 0 interface 0 has no altsetting 0
[  204.014244][    T9] usb 4-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  204.017943][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.029754][    T9] usb 4-1: Product: syz
[  204.031576][    T9] usb 4-1: Manufacturer: syz
[  204.033750][    T9] usb 4-1: SerialNumber: syz
[  204.169887][    T9] usb 4-1: config 0 descriptor??
[  204.174280][    T9] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 found
[  204.286738][T10688] SQUASHFS error: Failed to read block 0x2fc: -5
[  204.289531][T10688] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  204.292305][T10688] SQUASHFS error: Unable to read directory block [247:26]
[  204.299459][T10688] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  204.303042][T10688] SQUASHFS error: Unable to read directory block [247:26]
[  204.308453][T10688] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  204.311326][T10688] SQUASHFS error: Unable to read directory block [247:26]
[  204.514555][    T9] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 now disconnected
[  204.518648][    T9] snd_usb_toneport 4-1:0.0: probe with driver snd_usb_toneport failed with error -22
[  204.616367][   T47] usb 4-1: USB disconnect, device number 15
[  205.003299][T10705] netlink: 'syz.1.1918': attribute type 2 has an invalid length.
[  205.720447][T10738] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  206.409272][ T7009] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[  206.497992][T10750] loop3: detected capacity change from 0 to 1024
[  206.562335][ T7009] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  206.569327][ T7009] usb 2-1: config 0 has no interface number 0
[  206.572027][ T7009] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  206.576743][ T7009] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.581778][   T26] hfsplus: b-tree write err: -5, ino 4
[  206.603086][ T7009] usb 2-1: config 0 descriptor??
[  206.612713][ T7009] usb 2-1: selecting invalid altsetting 1
[  206.615938][ T7009] dvb_ttusb_budget: ttusb_init_controller: error
[  206.618529][ T7009] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  206.688117][ T7009] DVB: Unable to find symbol cx22700_attach()
[  206.720364][ T7009] DVB: Unable to find symbol tda10046_attach()
[  206.723118][ T7009] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  206.818434][ T7009] usb 2-1: USB disconnect, device number 25
[  206.877964][T10768] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1946'.
[  206.882718][T10768] openvswitch: netlink: nsh attribute has 5276 unknown bytes.
[  206.886089][T10768] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  206.939680][   T55] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  206.943739][   T55] Bluetooth: hci2: Injecting HCI hardware error event
[  206.951333][ T5844] Bluetooth: hci2: hardware error 0x00
[  207.577723][T10786] loop3: detected capacity change from 0 to 2048
[  207.584251][T10786] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  207.630047][   T47] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  207.756822][T10796] netlink: 'syz.3.1959': attribute type 1 has an invalid length.
[  207.780820][   T47] usb 2-1: Using ep0 maxpacket: 16
[  207.790277][   T47] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  207.794637][   T47] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  207.803819][   T47] usb 2-1: config 0 interface 0 has no altsetting 0
[  207.806454][   T47] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00
[  207.812786][   T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.823091][   T47] usb 2-1: config 0 descriptor??
[  207.841519][T10798] loop3: detected capacity change from 0 to 8192
[  208.131406][T10812] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1966'.
[  208.209590][T10816] pim6reg: entered allmulticast mode
[  208.214477][T10816] netlink: 'syz.0.1968': attribute type 10 has an invalid length.
[  208.223841][T10816] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  208.227758][T10816] team0: Failed to send options change via netlink (err -105)
[  208.232908][T10816] team0: Port device netdevsim0 added
[  208.234865][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.238760][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.246502][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.250049][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.258750][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.267358][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.271572][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.274295][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.276974][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.282248][   T47] kye 0003:0458:0138.0007: unknown main item tag 0x0
[  208.285944][   T47] kye 0003:0458:0138.0007: unexpected long global item
[  208.289496][   T47] kye 0003:0458:0138.0007: parse failed
[  208.291889][   T47] kye 0003:0458:0138.0007: probe with driver kye failed with error -22
[  208.447990][ T7009] usb 2-1: USB disconnect, device number 26
[  208.893943][T10850] loop3: detected capacity change from 0 to 512
[  208.909445][   T47] IPVS: starting estimator thread 0...
[  208.928854][T10850] EXT4-fs (loop3): 1 orphan inode deleted
[  208.931939][T10850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.936269][T10850] ext4 filesystem being mounted at /458/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.952859][   T26] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  208.957462][   T26] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u9:0: Failed to release dquot type 1
[  208.974713][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.009169][ T5844] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  209.009214][T10852] IPVS: using max 46 ests per chain, 110400 per kthread
[  209.205969][T10857] loop1: detected capacity change from 0 to 32768
[  209.275721][T10857] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow
[  209.275738][T10857]   allowing incompatible features above 0.0: (unknown version)
[  209.275745][T10857]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  209.291611][T10857] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  209.294814][T10857] bcachefs (loop1): initializing new filesystem
[  209.304266][T10857] bcachefs (loop1): going read-write
[  209.314908][T10857] bcachefs (loop1): marking superblocks
[  209.336680][T10857] bcachefs (loop1): initializing freespace
[  209.343504][T10857] bcachefs (loop1): done initializing freespace
[  209.349035][T10857] bcachefs (loop1): reading snapshots table
[  209.352178][T10857] bcachefs (loop1): reading snapshots done
[  209.373955][T10857] bcachefs (loop1): done starting filesystem
[  209.408687][T10871] loop3: detected capacity change from 0 to 32768
[  209.421088][T10871] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1992 (10871)
[  209.443193][T10871] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  209.446984][T10871] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  209.460187][T10871] BTRFS info (device loop3): using free-space-tree
[  209.554017][T10871] BTRFS warning (device loop3): can't clear the compat:0,compat:1 feature bits while mounted
[  209.585147][ T7039] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787
[  209.758339][T10857] syz.1.1987 (10857) used greatest stack depth: 17216 bytes left
[  209.866180][ T5842] bcachefs (loop1): shutting down
[  209.867994][ T5842] bcachefs (loop1): going read-only
[  209.879837][ T5842] bcachefs (loop1): finished waiting for writes to stop
[  209.885078][ T5842] bcachefs (loop1): flushing journal and stopping allocators, journal seq 4
[  209.904584][ T5842] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 4
[  209.909793][ T5842] bcachefs (loop1): clean shutdown complete, journal seq 5
[  209.915064][ T5842] bcachefs (loop1): marking filesystem clean
[  209.969896][ T5842] bcachefs (loop1): shutdown complete
[  209.975600][T10908] binder_alloc: 10904: binder_alloc_buf, no vma
[  211.313912][T10932] loop1: detected capacity change from 0 to 128
[  211.317750][T10932] EXT4-fs: Ignoring removed nobh option
[  211.323663][T10932] EXT4-fs (loop1): Invalid log block size: 4294967295
[  211.363166][T10934] loop3: detected capacity change from 0 to 256
[  211.411402][T10934] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  211.415604][T10934] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  211.448471][T10934] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  211.787997][T10953] netlink: 212376 bytes leftover after parsing attributes in process `syz.3.2015'.
[  211.855928][T10946] loop1: detected capacity change from 0 to 32768
[  211.857097][T10955] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  211.892726][ T5847]  loop1: p1 p3 < >
[  211.915259][T10946]  loop1: p1 p3 < >
[  212.111947][ T5847] udevd[5847]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  212.116879][ T7598] udevd[7598]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  212.164390][ T7598] udevd[7598]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  212.369766][ T7009] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  212.519321][ T7009] usb 2-1: Using ep0 maxpacket: 32
[  212.534591][ T7009] usb 2-1: New USB device found, idVendor=055f, idProduct=a800, bcdDevice=72.1d
[  212.538616][ T7009] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  212.542715][ T7009] usb 2-1: Product: syz
[  212.544600][ T7009] usb 2-1: Manufacturer: syz
[  212.546663][ T7009] usb 2-1: SerialNumber: syz
[  212.554463][ T7009] usb 2-1: config 0 descriptor??
[  212.770300][ T7009] mdc800 2-1:0.0: probe fails -> wrong Number of Configuration
[  212.792052][ T7009] usb 2-1: USB disconnect, device number 27
[  213.390460][T11009] netlink: 'syz.1.2041': attribute type 21 has an invalid length.
[  213.395735][T11009] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2041'.
[  214.048077][T11013] loop1: detected capacity change from 0 to 32768
[  214.062609][T11013] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2043 (11013)
[  214.094257][T11013] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  214.098535][T11013] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  214.103959][T11013] BTRFS info (device loop1): using free-space-tree
[  214.232436][ T5842] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  215.002094][T11061] loop1: detected capacity change from 0 to 512
[  215.008190][T11061] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  215.056144][T11061] EXT4-fs (loop1): 1 truncate cleaned up
[  215.059921][T11061] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.192643][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.156877][T11089] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2069'.
[  216.193175][T11093] loop1: detected capacity change from 0 to 512
[  216.201267][T11093] EXT4-fs: quotafile must be on filesystem root
[  216.254372][T11096] bridge_slave_1: left allmulticast mode
[  216.256765][T11096] bridge_slave_1: left promiscuous mode
[  216.264948][T11096] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.274089][T11096] bond0: (slave bridge_slave_1): Enslaving as an active interface with a down link
[  216.307868][T11083] loop3: detected capacity change from 0 to 32768
[  216.310964][T11099] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2074'.
[  216.356681][T11083] (syz.3.2066,11083,1):ocfs2_clear_journal_error:1147 ERROR: File system error 1280 recorded in journal 0.
[  216.361782][T11083] (syz.3.2066,11083,1):ocfs2_clear_journal_error:1149 ERROR: File system on device loop3 needs checking.
[  216.367665][T11083] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  216.401474][ T7039] ocfs2: Unmounting device (7,3) on (node local)
[  216.499573][   T47] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  216.659564][   T47] usb 2-1: Using ep0 maxpacket: 8
[  216.667378][   T47] usb 2-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  216.673191][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  216.676580][   T47] usb 2-1: Product: syz
[  216.678364][   T47] usb 2-1: Manufacturer: syz
[  216.680653][   T47] usb 2-1: SerialNumber: syz
[  216.689642][   T47] usb 2-1: config 0 descriptor??
[  216.696299][   T47] gspca_main: se401-2.14.0 probing 047d:5003
[  217.094883][   T47] gspca_se401: ExtraFeatures: 117
[  217.096718][   T47] gspca_se401: Too many frame sizes
[  217.296960][ T5911] usb 2-1: USB disconnect, device number 28
[  217.833408][T11146] loop1: detected capacity change from 0 to 256
[  217.857851][T11146] FAT-fs (loop1): Directory bread(block 64) failed
[  217.863127][T11146] FAT-fs (loop1): Directory bread(block 65) failed
[  217.866208][T11146] FAT-fs (loop1): Directory bread(block 66) failed
[  217.869641][T11146] FAT-fs (loop1): Directory bread(block 67) failed
[  217.872504][T11146] FAT-fs (loop1): Directory bread(block 68) failed
[  217.875315][T11146] FAT-fs (loop1): Directory bread(block 69) failed
[  217.878306][T11146] FAT-fs (loop1): Directory bread(block 70) failed
[  217.882275][T11146] FAT-fs (loop1): Directory bread(block 71) failed
[  217.885159][T11146] FAT-fs (loop1): Directory bread(block 72) failed
[  217.887977][T11146] FAT-fs (loop1): Directory bread(block 73) failed
[  218.002623][T11150] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2095'.
[  218.047077][T11152] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2096'.
[  218.149824][T11155] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2097'.
[  219.256988][T11164] tmpfs: Bad value for 'mpol'
[  219.609797][   T47] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  219.789293][   T47] usb 2-1: Using ep0 maxpacket: 16
[  219.791699][ T2314] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  219.797216][   T47] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  219.802116][   T47] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  219.806305][   T47] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  219.811907][   T47] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  219.815539][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.818760][   T47] usb 2-1: Product: syz
[  219.821242][   T47] usb 2-1: Manufacturer: syz
[  219.823156][   T47] usb 2-1: SerialNumber: syz
[  219.969278][ T2314] usb 4-1: Using ep0 maxpacket: 8
[  219.974960][ T2314] usb 4-1: config 0 has an invalid interface number: 122 but max is 0
[  219.977979][ T2314] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  219.982227][ T2314] usb 4-1: config 0 has no interface number 0
[  219.984840][ T2314] usb 4-1: config 0 interface 122 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[  219.989529][ T2314] usb 4-1: config 0 interface 122 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 8
[  219.994872][ T2314] usb 4-1: config 0 interface 122 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 1023
[  220.000585][ T2314] usb 4-1: config 0 interface 122 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 8
[  220.006786][ T2314] usb 4-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice= 5.b7
[  220.010293][ T2314] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  220.012933][ T2314] usb 4-1: Product: syz
[  220.014367][ T2314] usb 4-1: Manufacturer: syz
[  220.015580][T11190] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2114'.
[  220.015946][ T2314] usb 4-1: SerialNumber: syz
[  220.023954][ T2314] usb 4-1: config 0 descriptor??
[  220.026447][T11184] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  220.037580][T11184] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  220.044556][   T47] usb 2-1: 0:2 : does not exist
[  220.051422][   T47] usb 2-1: 1:0: cannot get min/max values for control 4 (id 1)
[  220.084736][   T47] usb 2-1: USB disconnect, device number 29
[  220.107666][ T5847] udevd[5847]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  220.182203][T11198] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2118'.
[  220.255992][ T2314] usb 4-1: NFC: intf ffff888110f3e000 id ffffffff8eb53ba0
[  220.283106][ T2314] nfcmrvl 4-1:0.122: NFC: registered with nci successfully
[  220.295408][ T2314] usb 4-1: USB disconnect, device number 16
[  220.307153][ T2314] usb 4-1: NFC: intf ffff888110f3e000
[  221.382999][T11226] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2127'.
[  221.391538][T11226] pim6reg: entered allmulticast mode
[  221.396355][T11226] pim6reg: left allmulticast mode
[  221.841581][T11244] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2135'.
[  221.908903][T11249] tipc: Failed to remove unknown binding: 66,1,1/0:1707115550/1707115552
[  222.432200][ T2314] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  222.527511][T11285] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2155'.
[  222.531399][T11285] netlink: 64 bytes leftover after parsing attributes in process `syz.0.2155'.
[  222.589242][ T2314] usb 2-1: Using ep0 maxpacket: 16
[  222.593073][ T2314] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  222.596791][ T2314] usb 2-1: config 0 has no interface number 0
[  222.602040][ T2314] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  222.606766][T11289] dummy0: entered promiscuous mode
[  222.607638][ T2314] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  222.612636][T11289] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  222.615580][ T2314] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  222.620491][ T2314] usb 2-1: Product: syz
[  222.621364][T11289] netdevsim netdevsim0 netdevsim0: left promiscuous mode
[  222.622238][ T2314] usb 2-1: SerialNumber: syz
[  222.624354][ T2314] usb 2-1: config 0 descriptor??
[  222.630362][T11289] dummy0: left promiscuous mode
[  222.635985][ T2314] usbhid 2-1:0.8: couldn't find an input interrupt endpoint
[  222.838198][ T2314] usb 2-1: USB disconnect, device number 30
[  222.876938][T11296] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  223.789481][T11328] loop1: detected capacity change from 0 to 4096
[  223.793499][T11328] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  223.814068][T11328] ntfs3(loop1): ino=19, mi_enum_attr
[  223.816417][T11328] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  224.013609][T11336] sctp: [Deprecated]: syz.1.2173 (pid 11336) Use of int in max_burst socket option.
[  224.013609][T11336] Use struct sctp_assoc_value instead
[  224.389397][ T5911] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  224.547113][ T5911] usb 2-1: Using ep0 maxpacket: 32
[  224.552828][ T5911] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.570524][ T5911] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  224.574556][ T5911] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  224.582624][ T5911] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  224.608027][ T5911] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 26
[  224.638992][ T5911] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  224.644354][T11375] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2192'.
[  224.649398][ T5911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  224.652860][ T5911] usb 2-1: SerialNumber: syz
[  224.655795][T11375] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2192'.
[  224.665102][T11375] netlink: 'syz.3.2192': attribute type 18 has an invalid length.
[  224.671956][T11346] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  224.685931][T11377] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2193'.
[  224.690556][T11377] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2193'.
[  224.894983][ T5911] usb 2-1: USB disconnect, device number 31
[  225.599728][T11394] loop1: detected capacity change from 0 to 32768
[  225.627955][T11394] JBD2: Ignoring recovery information on journal
[  225.647411][T11394] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  225.693003][ T5842] ocfs2: Unmounting device (7,1) on (node local)
[  225.851196][T11412] loop1: detected capacity change from 0 to 1024
[  225.876204][T11412] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.886270][T11412] ext4 filesystem being mounted at /663/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.916538][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.968260][T11417] loop1: detected capacity change from 0 to 128
[  226.003684][T11417] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  226.011210][T11417] ext4 filesystem being mounted at /664/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  226.052461][ T5842] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  226.074622][T11404] loop3: detected capacity change from 0 to 40427
[  226.081558][T11404] F2FS-fs (loop3): build fault injection rate: 771
[  226.086946][T11404] F2FS-fs (loop3): invalid crc value
[  226.131003][T11404] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  226.137963][T11404] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  226.176806][ T7039] syz-executor: attempt to access beyond end of device
[  226.176806][ T7039] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  226.183941][ T7039] CPU: 1 UID: 0 PID: 7039 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  226.183960][ T7039] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  226.183967][ T7039] Call Trace:
[  226.183972][ T7039]  <TASK>
[  226.183978][ T7039]  dump_stack_lvl+0x189/0x250
[  226.184000][ T7039]  ? __pfx_dump_stack_lvl+0x10/0x10
[  226.184015][ T7039]  ? __pfx_queue_work_on+0x10/0x10
[  226.184027][ T7039]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  226.184043][ T7039]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  226.184068][ T7039]  f2fs_handle_critical_error+0x37c/0x540
[  226.184091][ T7039]  f2fs_write_end_io+0x886/0xb60
[  226.184119][ T7039]  __submit_merged_bio+0x27a/0x6a0
[  226.184140][ T7039]  __submit_merged_write_cond+0x255/0x530
[  226.184163][ T7039]  f2fs_write_data_pages+0x261d/0x3000
[  226.184252][ T7039]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  226.184282][ T7039]  ? arch_stack_walk+0xfc/0x150
[  226.184320][ T7039]  ? __mod_zone_page_state+0xd7/0x140
[  226.184346][ T7039]  ? folios_put_refs+0x560/0x640
[  226.184370][ T7039]  ? __lock_acquire+0xab9/0xd20
[  226.184395][ T7039]  ? do_raw_spin_lock+0x121/0x290
[  226.184420][ T7039]  ? do_raw_spin_unlock+0x4d/0x240
[  226.184434][ T7039]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  226.184451][ T7039]  do_writepages+0x32e/0x550
[  226.184476][ T7039]  ? do_raw_spin_unlock+0x4d/0x240
[  226.184494][ T7039]  filemap_fdatawrite+0x199/0x240
[  226.184511][ T7039]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  226.184568][ T7039]  ? do_raw_spin_unlock+0x4d/0x240
[  226.184586][ T7039]  f2fs_sync_dirty_inodes+0x31f/0x830
[  226.184611][ T7039]  f2fs_write_checkpoint+0x95a/0x1df0
[  226.184645][ T7039]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  226.184693][ T7039]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  226.184704][ T7039]  ? kfree+0x18e/0x440
[  226.184720][ T7039]  ? kill_f2fs_super+0x298/0x6c0
[  226.184737][ T7039]  kill_f2fs_super+0x2c3/0x6c0
[  226.184755][ T7039]  ? __pfx_kill_f2fs_super+0x10/0x10
[  226.184765][ T7039]  ? radix_tree_delete_item+0x2b6/0x400
[  226.184786][ T7039]  ? shrinker_free+0x2ce/0x3e0
[  226.184802][ T7039]  deactivate_locked_super+0xbc/0x130
[  226.184819][ T7039]  cleanup_mnt+0x425/0x4c0
[  226.184832][ T7039]  ? lockdep_hardirqs_on+0x9c/0x150
[  226.184851][ T7039]  task_work_run+0x1d4/0x260
[  226.184870][ T7039]  ? __pfx_task_work_run+0x10/0x10
[  226.184884][ T7039]  ? __x64_sys_umount+0x122/0x160
[  226.184904][ T7039]  ? exit_to_user_mode_loop+0x40/0x110
[  226.184929][ T7039]  exit_to_user_mode_loop+0xec/0x110
[  226.184946][ T7039]  do_syscall_64+0x2bd/0x3b0
[  226.184961][ T7039]  ? lockdep_hardirqs_on+0x9c/0x150
[  226.184976][ T7039]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.184988][ T7039]  ? exc_page_fault+0x9f/0xf0
[  226.185006][ T7039]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.185017][ T7039] RIP: 0033:0x7fe01cf8ff17
[  226.185030][ T7039] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  226.185040][ T7039] RSP: 002b:00007ffd3906e548 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  226.185054][ T7039] RAX: 0000000000000000 RBX: 00007fe01d011c05 RCX: 00007fe01cf8ff17
[  226.185063][ T7039] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd3906e600
[  226.185070][ T7039] RBP: 00007ffd3906e600 R08: 0000000000000000 R09: 0000000000000000
[  226.185077][ T7039] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd3906f690
[  226.185085][ T7039] R13: 00007fe01d011c05 R14: 00000000000372fc R15: 00007ffd3906f6d0
[  226.185109][ T7039]  </TASK>
[  226.185904][ T7039] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  226.439271][ T7009] usb 2-1: new full-speed USB device number 32 using dummy_hcd
[  226.513325][T11426] __nla_validate_parse: 1 callbacks suppressed
[  226.513340][T11426] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2211'.
[  226.591698][ T7009] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  226.596544][ T7009] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  226.602553][ T7009] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  226.606440][ T7009] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.701969][T11435] netlink: 'syz.0.2216': attribute type 83 has an invalid length.
[  226.734696][T11437] loop3: detected capacity change from 0 to 2048
[  226.763086][T11437] EXT4-fs: Ignoring removed orlov option
[  226.823977][ T7009] aiptek 2-1:17.0: Aiptek using 400 ms programming speed
[  226.825606][T11437] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.831506][ T7009] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input6
[  226.842571][ T7009] input: failed to attach handler kbd to device input6, error: -5
[  226.849555][T11437] ext4 filesystem being mounted at /504/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.872567][ T7009] usb 2-1: USB disconnect, device number 32
[  227.023355][ T7039] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.116116][T11459] netlink: 'syz.3.2224': attribute type 2 has an invalid length.
[  227.122398][T11459] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2224'.
[  227.336242][T11469] loop3: detected capacity change from 0 to 4096
[  227.357145][T11469] ntfs3(loop3): failed to convert "0080" to cp437
[  227.368295][T11469] ntfs3(loop3): failed to convert name for inode 1e.
[  227.372603][T11469] ntfs3(loop3): ino=1f, mi_enum_attr
[  227.470058][T11471] macvtap1: entered allmulticast mode
[  227.472104][T11471] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  227.478415][T11471] mac80211_hwsim hwsim2 wlan0: left allmulticast mode
[  228.124207][T11490] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2239'.
[  228.468607][T11500] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2242'.
[  228.989662][ T5911] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  229.149245][ T5911] usb 4-1: Using ep0 maxpacket: 16
[  229.227022][ T5911] usb 4-1: config 254 has an invalid interface number: 235 but max is 0
[  229.239194][ T5911] usb 4-1: config 254 has no interface number 0
[  229.245155][ T5911] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32
[  229.260339][ T5911] usb 4-1: config 254 interface 235 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  229.270615][ T5911] usb 4-1: config 254 interface 235 has no altsetting 0
[  229.277537][ T5911] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[  229.282881][ T5911] usb 4-1: New USB device strings: Mfr=1, Product=251, SerialNumber=3
[  229.286571][ T5911] usb 4-1: Product: syz
[  229.288519][ T5911] usb 4-1: Manufacturer: syz
[  229.292736][ T5911] usb 4-1: SerialNumber: syz
[  229.314065][T11516] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  229.381421][T11532] loop1: detected capacity change from 0 to 1024
[  229.386476][T11532] EXT4-fs: Ignoring removed orlov option
[  229.394274][T11532] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  229.404663][T11532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  229.524613][ T5911] usbtest 4-1:254.235: couldn't get endpoints, -71
[  229.528312][ T5911] usbtest 4-1:254.235: probe with driver usbtest failed with error -71
[  229.535865][ T5911] usb 4-1: USB disconnect, device number 17
[  230.010991][T11545] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2261'.
[  230.290838][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.620958][T11555] overlayfs: failed to clone lowerpath
[  230.907665][T11568] loop1: detected capacity change from 0 to 32768
[  230.940925][T11568] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  230.964445][T11568] (syz.1.2272,11568,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=65, rec_len=16, name_len=1
[  231.012588][ T5842] ocfs2: Unmounting device (7,1) on (node local)
[  231.332829][T11580] loop1: detected capacity change from 0 to 256
[  231.355807][T11580] MINIX-fs: mounting file system with errors, running fsck is recommended
[  232.222163][T11585] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.228344][T11585] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  232.238993][T11585] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  232.249871][T11585] bond0 (unregistering): Released all slaves
[  233.299476][ T5911] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  233.459272][ T5911] usb 4-1: Using ep0 maxpacket: 32
[  233.463619][ T5911] usb 4-1: config 0 has no interfaces?
[  233.468234][ T5911] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  233.474405][ T5911] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  233.474735][T11619] loop1: detected capacity change from 0 to 1024
[  233.477906][ T5911] usb 4-1: Product: syz
[  233.487894][T11619] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  233.488431][ T5911] usb 4-1: Manufacturer: syz
[  233.498458][T11619] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  233.503286][T11619] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  233.503392][ T5911] usb 4-1: SerialNumber: syz
[  233.508648][T11619] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.2293: iget: special inode unallocated
[  233.516306][T11619] EXT4-fs (loop1): no journal found
[  233.521570][ T5911] usb 4-1: config 0 descriptor??
[  233.523620][T11619] EXT4-fs (loop1): can't get journal size
[  233.531264][T11619] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  233.548623][T11619] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1314: inode #12: block 16: comm syz.1.2293: path /681/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0
[  233.578819][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  233.630248][T11622] loop1: detected capacity change from 0 to 2048
[  233.650580][T11622] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  233.660469][T11622] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  233.663271][T11622] UDF-fs: Scanning with blocksize 512 failed
[  233.667606][T11622] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  233.746517][ T2314] usb 4-1: USB disconnect, device number 18
[  233.942775][T11631] netlink: 10 bytes leftover after parsing attributes in process `syz.1.2298'.
[  234.229256][ T2314] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[  234.403817][ T2314] usb 2-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  234.410858][ T2314] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.417510][ T2314] usb 2-1: config 0 descriptor??
[  234.439789][ T2314] gspca_main: sunplus-2.14.0 probing 055f:c420
[  234.597478][T11639] loop3: detected capacity change from 0 to 32768
[  234.630127][T11639] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  234.663185][T11639] XFS (loop3): Ending clean mount
[  234.685174][T11639] XFS (loop3): Quotacheck needed: Please wait.
[  234.706761][T11663] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2309'.
[  234.718248][T11639] XFS (loop3): Quotacheck: Done.
[  234.762775][ T7039] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  234.894152][   T33] audit: type=1326 audit(2000000080.260:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11666 comm="syz.3.2311" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe01cf8ebe9 code=0x0
[  235.240585][ T2314] gspca_sunplus: reg_w_riv err -71
[  235.242972][ T2314] sunplus 2-1:0.0: probe with driver sunplus failed with error -71
[  235.249996][ T2314] usb 2-1: USB disconnect, device number 33
[  236.188147][T11697] overlayfs: refusing to follow metacopy origin for (/file1)
[  237.332545][T11728] loop1: detected capacity change from 0 to 32768
[  237.336000][T11728] btrfs: Deprecated parameter 'usebackuproot'
[  237.338589][T11728] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  237.344693][T11728] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2337 (11728)
[  237.354134][T11728] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  237.358324][T11728] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  237.361562][T11728] BTRFS info (device loop1): using free-space-tree
[  237.486430][T11724] loop3: detected capacity change from 0 to 40427
[  237.497539][T11724] F2FS-fs (loop3): build fault injection rate: 26
[  237.501488][T11724] F2FS-fs (loop3): build fault injection type: 0xeffa
[  237.520616][T11728] BTRFS info (device loop1): rebuilding free space tree
[  237.571619][T11724] F2FS-fs (loop3): invalid crc value
[  237.597179][T11724] F2FS-fs (loop3): inject kvmalloc in f2fs_kvmalloc of f2fs_build_segment_manager+0x3227/0x49f0
[  237.603872][T11753] BTRFS info (device loop1): space_info DATA+METADATA (sub-group id 0) has 159744 free, is not full
[  237.608390][T11753] BTRFS info (device loop1): space_info total=3276800, used=53248, pinned=20480, reserved=1236992, may_use=1806336, readonly=0 zone_unusable=0
[  237.610167][T11724] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12)
[  237.614367][T11753] BTRFS info (device loop1): global_block_rsv: size 1441792 reserved 1441792
[  237.621569][T11753] BTRFS info (device loop1): trans_block_rsv: size 0 reserved 0
[  237.624629][T11753] BTRFS info (device loop1): chunk_block_rsv: size 0 reserved 0
[  237.627129][T11753] BTRFS info (device loop1): delayed_block_rsv: size 0 reserved 0
[  237.630074][T11753] BTRFS info (device loop1): delayed_refs_rsv: size 65536 reserved 65536
[  237.873291][ T5842] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  237.892327][T11762] ==================================================================
[  237.895140][T11762] BUG: KASAN: slab-use-after-free in __xfrm_state_lookup+0x6ad/0x8d0
[  237.897780][T11762] Read of size 2 at addr ffff88801f6b8142 by task syz.0.2345/11762
[  237.901337][T11762] 
[  237.902694][T11762] CPU: 1 UID: 0 PID: 11762 Comm: syz.0.2345 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  237.902711][T11762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  237.902719][T11762] Call Trace:
[  237.902724][T11762]  <TASK>
[  237.902732][T11762]  dump_stack_lvl+0x189/0x250
[  237.902757][T11762]  ? __kasan_check_byte+0x12/0x40
[  237.902777][T11762]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.902791][T11762]  ? lock_release+0x4b/0x3e0
[  237.902811][T11762]  ? __virt_addr_valid+0x4a5/0x5c0
[  237.902828][T11762]  print_report+0xca/0x240
[  237.902839][T11762]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  237.902856][T11762]  kasan_report+0x118/0x150
[  237.902873][T11762]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  237.902893][T11762]  __xfrm_state_lookup+0x6ad/0x8d0
[  237.902913][T11762]  ? __pfx___xfrm_state_lookup+0x10/0x10
[  237.902934][T11762]  ? xfrm_state_lookup+0x45/0x1e0
[  237.902947][T11762]  xfrm_state_lookup+0x11e/0x1e0
[  237.902962][T11762]  pfkey_delete+0x357/0x6d0
[  237.902983][T11762]  ? __pfx_pfkey_delete+0x10/0x10
[  237.903023][T11762]  ? kmem_cache_free+0x18f/0x400
[  237.903046][T11762]  pfkey_sendmsg+0xbfe/0x1090
[  237.903063][T11762]  ? trace_sched_exit_tp+0x36/0x110
[  237.903084][T11762]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  237.903110][T11762]  ? aa_sock_msg_perm+0xf1/0x1d0
[  237.903128][T11762]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  237.903141][T11762]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  237.903155][T11762]  __sock_sendmsg+0x21c/0x270
[  237.903169][T11762]  ____sys_sendmsg+0x505/0x830
[  237.903181][T11762]  ? __pfx_____sys_sendmsg+0x10/0x10
[  237.903193][T11762]  ? import_iovec+0x74/0xa0
[  237.903206][T11762]  ___sys_sendmsg+0x21f/0x2a0
[  237.903225][T11762]  ? __pfx____sys_sendmsg+0x10/0x10
[  237.903248][T11762]  ? __fget_files+0x2a/0x420
[  237.903259][T11762]  ? __fget_files+0x3a0/0x420
[  237.903273][T11762]  __x64_sys_sendmsg+0x19b/0x260
[  237.903287][T11762]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  237.903303][T11762]  ? rcu_is_watching+0x15/0xb0
[  237.903317][T11762]  ? do_syscall_64+0xbe/0x3b0
[  237.903335][T11762]  do_syscall_64+0xfa/0x3b0
[  237.903350][T11762]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.903365][T11762]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.903376][T11762]  ? exc_page_fault+0x9f/0xf0
[  237.903391][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.903402][T11762] RIP: 0033:0x7fe7d938ebe9
[  237.903414][T11762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.903424][T11762] RSP: 002b:00007fe7d75f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.903437][T11762] RAX: ffffffffffffffda RBX: 00007fe7d95b5fa0 RCX: 00007fe7d938ebe9
[  237.903445][T11762] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  237.903452][T11762] RBP: 00007fe7d9411e19 R08: 0000000000000000 R09: 0000000000000000
[  237.903459][T11762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  237.903465][T11762] R13: 00007fe7d95b6038 R14: 00007fe7d95b5fa0 R15: 00007fffcca0b5b8
[  237.903478][T11762]  </TASK>
[  237.903482][T11762] 
[  238.031337][T11762] Allocated by task 8270:
[  238.033226][T11762]  kasan_save_track+0x3e/0x80
[  238.035280][T11762]  __kasan_slab_alloc+0x6c/0x80
[  238.037397][T11762]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  238.039777][T11762]  xfrm_state_alloc+0x24/0x2f0
[  238.041875][T11762]  __find_acq_core+0x8a7/0x1c00
[  238.044030][T11762]  xfrm_find_acq+0x78/0xa0
[  238.045988][T11762]  xfrm_alloc_userspi+0x6b3/0xc90
[  238.048210][T11762]  xfrm_user_rcv_msg+0x7a3/0xab0
[  238.050256][T11762]  netlink_rcv_skb+0x208/0x470
[  238.052365][T11762]  xfrm_netlink_rcv+0x79/0x90
[  238.054417][T11762]  netlink_unicast+0x82f/0x9e0
[  238.056422][T11762]  netlink_sendmsg+0x805/0xb30
[  238.058349][T11762]  __sock_sendmsg+0x21c/0x270
[  238.060343][T11762]  ____sys_sendmsg+0x505/0x830
[  238.062445][T11762]  ___sys_sendmsg+0x21f/0x2a0
[  238.064497][T11762]  __x64_sys_sendmsg+0x19b/0x260
[  238.066610][T11762]  do_syscall_64+0xfa/0x3b0
[  238.068611][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.071196][T11762] 
[  238.072226][T11762] Freed by task 5895:
[  238.073864][T11762]  kasan_save_track+0x3e/0x80
[  238.075789][T11762]  kasan_save_free_info+0x46/0x50
[  238.077851][T11762]  __kasan_slab_free+0x5b/0x80
[  238.079952][T11762]  kmem_cache_free+0x18f/0x400
[  238.082077][T11762]  xfrm_state_gc_task+0x52d/0x6b0
[  238.084164][T11762]  process_scheduled_works+0xae1/0x17b0
[  238.086442][T11762]  worker_thread+0x8a0/0xda0
[  238.088402][T11762]  kthread+0x711/0x8a0
[  238.090099][T11762]  ret_from_fork+0x3fc/0x770
[  238.091980][T11762]  ret_from_fork_asm+0x1a/0x30
[  238.094097][T11762] 
[  238.095168][T11762] The buggy address belongs to the object at ffff88801f6b8000
[  238.095168][T11762]  which belongs to the cache xfrm_state of size 928
[  238.101082][T11762] The buggy address is located 322 bytes inside of
[  238.101082][T11762]  freed 928-byte region [ffff88801f6b8000, ffff88801f6b83a0)
[  238.106856][T11762] 
[  238.107924][T11762] The buggy address belongs to the physical page:
[  238.110657][T11762] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88801f6b8480 pfn:0x1f6b8
[  238.114939][T11762] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  238.118476][T11762] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  238.121656][T11762] page_type: f5(slab)
[  238.123412][T11762] raw: 00fff00000000040 ffff88801d7043c0 dead000000000122 0000000000000000
[  238.127110][T11762] raw: ffff88801f6b8480 00000000800e000c 00000000f5000000 0000000000000000
[  238.130764][T11762] head: 00fff00000000040 ffff88801d7043c0 dead000000000122 0000000000000000
[  238.134349][T11762] head: ffff88801f6b8480 00000000800e000c 00000000f5000000 0000000000000000
[  238.138083][T11762] head: 00fff00000000002 ffffea00007dae01 00000000ffffffff 00000000ffffffff
[  238.141813][T11762] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  238.145559][T11762] page dumped because: kasan: bad access detected
[  238.148326][T11762] page_owner tracks the page as allocated
[  238.150731][T11762] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5983, tgid 5982 (syz.1.26), ts 59291260713, free_ts 59118418788
[  238.158650][T11762]  post_alloc_hook+0x240/0x2a0
[  238.160777][T11762]  get_page_from_freelist+0x21e4/0x22c0
[  238.163166][T11762]  __alloc_frozen_pages_noprof+0x181/0x370
[  238.165719][T11762]  alloc_pages_mpol+0x232/0x4a0
[  238.167843][T11762]  allocate_slab+0x8a/0x370
[  238.169810][T11762]  ___slab_alloc+0xbeb/0x1410
[  238.171876][T11762]  kmem_cache_alloc_noprof+0x283/0x3c0
[  238.174251][T11762]  xfrm_state_alloc+0x24/0x2f0
[  238.176337][T11762]  pfkey_add+0x6e4/0x2e00
[  238.178238][T11762]  pfkey_sendmsg+0xbfe/0x1090
[  238.180292][T11762]  __sock_sendmsg+0x21c/0x270
[  238.182344][T11762]  ____sys_sendmsg+0x505/0x830
[  238.184450][T11762]  ___sys_sendmsg+0x21f/0x2a0
[  238.186512][T11762]  __x64_sys_sendmsg+0x19b/0x260
[  238.188682][T11762]  do_syscall_64+0xfa/0x3b0
[  238.190831][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.193379][T11762] page last free pid 5295 tgid 5295 stack trace:
[  238.196113][T11762]  __free_frozen_pages+0xbc4/0xd30
[  238.198354][T11762]  __slab_free+0x303/0x3c0
[  238.200296][T11762]  qlist_free_all+0x97/0x140
[  238.202293][T11762]  kasan_quarantine_reduce+0x148/0x160
[  238.204617][T11762]  __kasan_slab_alloc+0x22/0x80
[  238.206703][T11762]  __kvmalloc_node_noprof+0x2b0/0x5f0
[  238.209086][T11762]  seq_read_iter+0x1fd/0xe10
[  238.211027][T11762]  vfs_read+0x55a/0xa30
[  238.212837][T11762]  ksys_read+0x145/0x250
[  238.214663][T11762]  do_syscall_64+0xfa/0x3b0
[  238.216642][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.219205][T11762] 
[  238.220226][T11762] Memory state around the buggy address:
[  238.222550][T11762]  ffff88801f6b8000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  238.225978][T11762]  ffff88801f6b8080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  238.229420][T11762] >ffff88801f6b8100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  238.232684][T11762]                                            ^
[  238.235335][T11762]  ffff88801f6b8180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  238.238619][T11762]  ffff88801f6b8200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  238.241952][T11762] ==================================================================
[  238.272076][T11762] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  238.275168][T11762] CPU: 1 UID: 0 PID: 11762 Comm: syz.0.2345 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  238.280556][T11762] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  238.284798][T11762] Call Trace:
[  238.286278][T11762]  <TASK>
[  238.287508][T11762]  dump_stack_lvl+0x99/0x250
[  238.289444][T11762]  ? __asan_memcpy+0x40/0x70
[  238.291261][T11762]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.293229][T11762]  ? __pfx__printk+0x10/0x10
[  238.295166][T11762]  vpanic+0x281/0x750
[  238.296798][T11762]  ? preempt_schedule+0xae/0xc0
[  238.298650][T11762]  ? __pfx_vpanic+0x10/0x10
[  238.300391][T11762]  ? preempt_schedule_common+0x83/0xd0
[  238.302583][T11762]  ? preempt_schedule+0xae/0xc0
[  238.304619][T11762]  ? __pfx_preempt_schedule+0x10/0x10
[  238.306871][T11762]  panic+0xb9/0xc0
[  238.308380][T11762]  ? __pfx_panic+0x10/0x10
[  238.310194][T11762]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  238.312608][T11762]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  238.314827][T11762]  check_panic_on_warn+0x89/0xb0
[  238.316909][T11762]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  238.319185][T11762]  end_report+0x78/0x160
[  238.320977][T11762]  kasan_report+0x129/0x150
[  238.322814][T11762]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  238.325059][T11762]  __xfrm_state_lookup+0x6ad/0x8d0
[  238.327223][T11762]  ? __pfx___xfrm_state_lookup+0x10/0x10
[  238.329591][T11762]  ? xfrm_state_lookup+0x45/0x1e0
[  238.331775][T11762]  xfrm_state_lookup+0x11e/0x1e0
[  238.333946][T11762]  pfkey_delete+0x357/0x6d0
[  238.335932][T11762]  ? __pfx_pfkey_delete+0x10/0x10
[  238.338138][T11762]  ? kmem_cache_free+0x18f/0x400
[  238.340254][T11762]  pfkey_sendmsg+0xbfe/0x1090
[  238.342302][T11762]  ? trace_sched_exit_tp+0x36/0x110
[  238.344572][T11762]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  238.346797][T11762]  ? aa_sock_msg_perm+0xf1/0x1d0
[  238.348933][T11762]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  238.351239][T11762]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  238.353505][T11762]  __sock_sendmsg+0x21c/0x270
[  238.355565][T11762]  ____sys_sendmsg+0x505/0x830
[  238.357645][T11762]  ? __pfx_____sys_sendmsg+0x10/0x10
[  238.359859][T11762]  ? import_iovec+0x74/0xa0
[  238.361824][T11762]  ___sys_sendmsg+0x21f/0x2a0
[  238.363860][T11762]  ? __pfx____sys_sendmsg+0x10/0x10
[  238.366127][T11762]  ? __fget_files+0x2a/0x420
[  238.368133][T11762]  ? __fget_files+0x3a0/0x420
[  238.370151][T11762]  __x64_sys_sendmsg+0x19b/0x260
[  238.372240][T11762]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  238.374604][T11762]  ? rcu_is_watching+0x15/0xb0
[  238.376687][T11762]  ? do_syscall_64+0xbe/0x3b0
[  238.378717][T11762]  do_syscall_64+0xfa/0x3b0
[  238.380736][T11762]  ? lockdep_hardirqs_on+0x9c/0x150
[  238.383121][T11762]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.385700][T11762]  ? exc_page_fault+0x9f/0xf0
[  238.387768][T11762]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.390311][T11762] RIP: 0033:0x7fe7d938ebe9
[  238.392261][T11762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.400383][T11762] RSP: 002b:00007fe7d75f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  238.403868][T11762] RAX: ffffffffffffffda RBX: 00007fe7d95b5fa0 RCX: 00007fe7d938ebe9
[  238.407270][T11762] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  238.410633][T11762] RBP: 00007fe7d9411e19 R08: 0000000000000000 R09: 0000000000000000
[  238.414057][T11762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  238.417432][T11762] R13: 00007fe7d95b6038 R14: 00007fe7d95b5fa0 R15: 00007fffcca0b5b8
[  238.420823][T11762]  </TASK>
[  238.422972][T11762] Kernel Offset: disabled
[  238.424802][T11762] Rebooting in 86400 seconds..

VM DIAGNOSIS:
11:27:01  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000007 RBX=0000000000000002 RCX=00000000e853bdaf RDX=000000001e2d6573
RSI=000000009d336bd0 RDI=ffff88801fd2d640 RBP=0000000000000000 RSP=ffffc900043df880
R8 =0000000000000000 R9 =ffffffff8b473eaa R10=dffffc0000000000 R11=fffffbfff1f46fc7
R12=000000001bc0338d R13=ffff88801fd2e130 R14=ffff88801fd2e180 R15=8f5d6243e853bdaf
RIP=ffffffff819d690f RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fe7d75f5fc8 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=7712c53e93b9f1e8 728370bf3cb3486e
XMM06=63e772d7f3a22482 dabb339f3c035440 XMM07=bd0dad416e16bee6 46815929601aad29
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fe01d012fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000005d RBX=000000000000005d RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000001553 RDI=0000000000001554 RBP=00000000000003f8 RSP=ffffc900024eee30
R8 =ffff888107f50237 R9 =1ffff11020fea046 R10=dffffc0000000000 R11=ffffffff854efeb0
R12=dffffc0000000000 R13=ffffffff99af98ce R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854eff2c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe7d75f66c0 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b34914ff8 CR3=00000000416b8000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fe7d9587498 00007fe7d9587470 XMM03=00007fe7d95874a8 00007fe7d95874a0
XMM04=00007fe7da0ed100 00007fe7d9587460 XMM05=00007fe7d9587478 00007fe7d95874c0
XMM06=00007fe7d95874b8 00007fe7d95874b0 XMM07=00007fe7d95874a8 00007fe7d95874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fe7d9412fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
