last executing test programs:

1m3.713472554s ago: executing program 0 (id=387):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x14, 0x4, 0x4, 0x6}, 0x50)
r1 = socket$inet(0x2, 0x3, 0x6)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r0, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r1}, 0x20)

1m3.635541041s ago: executing program 0 (id=388):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x4, 0x2, {0x6, 0x4}}}]}, 0x38}}, 0x0)

1m3.63514403s ago: executing program 0 (id=389):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=@newtaction={0x90, 0x30, 0x1, 0x0, 0x0, {}, [{0x7c, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ife={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}, @TCA_IFE_METALST={0x4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x90}}, 0x0)

1m3.55601235s ago: executing program 0 (id=390):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0)={[{@noinit_itable}, {@dax_inode}, {@nolazytime}, {@abort}, {@dax_inode}, {@lazytime}, {@noload}, {}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000001600)={[{@workdir={'workdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@redirect_dir_nofollow}, {@userxattr}], [], 0x2c})

1m3.476496347s ago: executing program 0 (id=391):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)

1m3.142629149s ago: executing program 0 (id=393):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000ec0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d52c0], [0x0, 0x0, 0x2, 0xb16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0xf, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x8], [0x88000001, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0xe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4], [0x0, 0x0, 0xfffffffc, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0x3, 0x2, 0x0, 0xe, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000a40)={'syz1\x00', {}, 0x4d, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xffff], [0xffffffff, 0x3, 0x3, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x400000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd5], [0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8000000, 0x0, 0x0, 0x6, 0x0, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x81, 0x0, 0x5d30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe58b, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1ff]}, 0x45c)

1m2.915481209s ago: executing program 32 (id=393):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r0, 0x40045567, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000ec0)={'syz0\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d52c0], [0x0, 0x0, 0x2, 0xb16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0xf, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x8], [0x88000001, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x2, 0xe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4], [0x0, 0x0, 0xfffffffc, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7e, 0x0, 0x3, 0x2, 0x0, 0xe, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000a40)={'syz1\x00', {}, 0x4d, [0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xffff], [0xffffffff, 0x3, 0x3, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x400000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd5], [0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8000000, 0x0, 0x0, 0x6, 0x0, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], [0x81, 0x0, 0x5d30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe58b, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1ff]}, 0x45c)

2.110286453s ago: executing program 3 (id=943):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x9, 0x0)

2.042653512s ago: executing program 3 (id=944):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bdf000fbdbdf2501000000080002000200000008000100faffffff2c0004800500030002000000040003"], 0x50}}, 0x0)

1.950718564s ago: executing program 3 (id=946):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f00000000c0)=0xd95, 0x4019e2060d4e3ac7)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000018c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001240)=""/29, 0x1d}, 0xffff7fff}], 0x1, 0x20102, 0x0)

1.809722443s ago: executing program 3 (id=947):
r0 = socket(0x2b, 0x80801, 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x6, &(0x7f0000000140)=0x4000b1e0, 0x4)

1.730618875s ago: executing program 3 (id=948):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x28108c0, &(0x7f0000006980)=ANY=[@ANYBLOB="646973636172642c696f636861727365743d63703837342c6572726f72733d72656d6f756e742d726f2c75737271756f74612c696f636861727365743d63703836312c696f636861727365743d6370313235302c696e7465677269747900696f636861727365743d69736f383835392d342c646973636172643d30783030303030303030303030303030396943b95b49aca56faf1cc22189cc312c696f636861727365743d6d6163677265656b2c71756f74612c726573697a653d3078303030303030303030303030376666662c646973636172643d3078303030303030303066666666666666662c756d61736b3d3078303030303030303030303032303034352c6673636f6e746578743d836e636f6e66696e65645f752c66736d616769633d3078303030303030303030303230303030392c324216873b95edfe8ceab2bb0b11835a5cf531ac6273c29a4d4f9d056f1bcb8cd0a969ed12cf99802b3e3201518ecfc59a4fd94dd5349dc55633bd2bde1128ad071807ef13a9f10c0fbf3ad861c2009067c5c6c84cdba2806fa74eddff8373799d0b8c1e6f7e2b205235161b610ae5c66d1d9cfc2bc0cb617ae49331ade71595c2a5438139933aada47236dafdffffff088a552445f95768ccecb0c35797e832beced2077fa197623cd3de51d69d7a4f77a80eb5f783f091e5ec6047a0f67676819f4bf66744c1cb0975b96baf730000000000000001004e257bbabf33e3fa8d0cca2fbb4dabe1c5634bdf889b764ce26ae4e539fdffa2ea82c34b16308e26ce945d101d5f2e2577d8e2a21d9401194a97a6c281b603da7c66934f0c341df8ff02d91cd4f2d80ea7dde697"], 0xfe, 0x61f6, &(0x7f000000cdc0)="$eJzs3c1vHGcdB/DfvvolNLV6qEqEkJuWl1KaxEkJgQJtD3Dg0gPKFSVy3SoiBZQElFYWceULB078BSAkjghxRBz4A3rgyo0TJyLZSKCeGDTe54lnN7tdp7Z31p7PR3JmfvPMep/Jd189L08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPH97/1grRURN36eFqxEfCY6Ee2IpbJejYil1ZW8fjcinou95ng2InoLEeXt9/55OuLViPjobMTO7uZ6ufjyAfvx3T/+/Xc/PPPW3/7Qu/jfP93rvDZpvfv3f/WfPz843DYDAABA0xRFUbTS1/xz6ft9u+5OAQAzkd//iyQvP/X1r//51l/mqT/qRtcRl/YWzkt/1Gr16a2rivEeVIuI2KrepvzMYHc8AJwwW/Fx3V2gRvJvtG5EnKm7E8Bca9XdAY7Fzu7meivl26q+H6wO2vOxIEP5b7Uend8xaTrN6DEms3p8bUcnnpnQn6UZ9WGe5Pzbo/nfGLT303rHnf+sTMq/Pzj1qXFy/p3R/Eccaf4LdebfHpt/U+X8u0+Uf+cEP//lDwAAAADA6Zf//r9S8/7fhcNvyoF80v7f1Rn1AQAAAAAAAACO2mHH/3vE+H8AAAAwt8rv6qXfnN1fNulabOXy662Ip0bWBxomnSyzXHc/AAAAAAAAAAAAAKBJuoNjeK+3InoR8dTyclEU5U/VaP2kDnv7k67p2w9NVveLPAAADHx0duRc/lbEYkRcT9f66y0vLxfF4tJysVwsLeTPs/2FxWKp8r02T8tlC/0DfCDu9ovyly1Wblc17fvytPbR31feV7/oHKBjR6SX/jcnNNcUNgAkg3ejHe9Ip0xRPD3pwwcM8fw/hVZipe7HFfOv7ocpAAAAcPyKoiha6XLe59I+/3bdnQIAZiK//4/uFzhU3Z7QHnE0v1+tVqvVavWnqquK8R5Ui4jYqt6m/MxgOH4AOGG24uO6u0CN5N9o3Yh4ru5OAHOtVXcHOBY7u5vrrZRvq/p+kMZ3z8eCDOW/1dq7Xb79uOk0o8eYzOrxtR2deGZCf56dUR/mSc6/PZr/jUF7P6133PnPyqT8+3unzDVPzr8zmv+I05N/e2z+TZXz7z5R/h35AwAAAADAHMt//1+x/zdvMgAAAAAAAACcODu7m+v5vNe8//9zY9Zz/ufplPNvPWn+S2le/idazr89kv+XR9brVOYfvrn//P/37ub67+/967N5etD8F/JMKz2yWukR0Ur31Oqm6WG27nHbvU6/vKdeq93ppmN+it47cStux0ZcGlq3nf4/9tvXhtrLnvaG2i8PtXcfa78y1N5L1x0olnL7hViPn8TteHuvvWxbmLL9i1PaiyntOf+O1/9Gyvl3Kz9l/supvTUyLT38sP3Y8746HXc/b9z6/C8vHf/mTDHpyseD7Ts/6+5EDF5xzvTjZ3c37ly4f/PevTtrkSZDSy9HmhyxnH9v72dh//X/hUF7ft2vPl8ffth/4vznxXZ0Hz22q8r8X6jMl9v70oz7Voecfz/95PzfTu3jn/8nOf/OxPxfrqE/AAAAAAAAAAAAAAAA8EmKotg7RfSNiLiazv+p69xMAGC28vt/keTlarVarVarT19dVYz3erWIiL9Wb1N+ZvjFuF8GAMyz/0XEP+ruBLWRf4Pl6/2V0xfr7gwwU3ff/+BHN2/f3rhzt+6eAAAAAAAAAACfVh7/c7Uy/vOLEbEyst7Q+K9vxuphx//s5plHA4we8UDfE2y3+512Zbjx52NvfO4Lk8b/Ph+Pj/+dx8TtVLdjgt6U9v6U9oUp7Ytjl+6nNfZEj4qc//OV8c7L/M+NDL/ehPFfR8e8b4Kc//nK47nM/0sj61XzL347d/lvHXTF7WgP5X/x3ns/vXj3/Q9eufXezXc33t348ZW1tUtXrl69du3axXdu3d64NPj3eHo9B3L+eexrx4E2S84/Zy7/Zsn5fyHV8m+WnP8XUy3/Zsn558978m+WnH/+7iP/Zsn5v5Rq+TdLzv8rqZZ/s+zsbi6U+b+cavk3S37+fzXV8m+WnP8rqZZ/s+T8L6Ra/s2S87+Y6gPk7/Lwp0jOP+/h8vxvlpz/Wqrl3yw5/8upln+z5PyvpFr+zZLzfzXV8m+WnP/XUi3/Zsn5X021/Jsl5//1VMu/WXL+11It/2bJ+X8j1fJvlpz/N1Mt/2bJ+b+Wavk3S87/W6mWf7Pk/L+davk3S87/O6mWf7Pk/F9PtfybZf/6/2bMmDGTZ+p+ZQIAAAAAAAAAAAAARs3icOK6txEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+zw4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRV24EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsHdvMXLd9R3Az+zF3nUIMRCCkxrYJCaEZMmu7cQX2jQmXBugFEgo9ILtetdmwTe8dgkUyaaBEgmjooqq6UNbQKiNVFVYFQ+0ojQPVS9PpX2gLxVVJaRGVUABFamtKFvNnP//vzOzszOz3vF69vw/Hyn57c6cmXPmzJnZ/e76uwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJrd/ob5z9SKoqj/1/jf9qJ4Qf3jyantjcted723EAAAAFiv/2v8//mb0gWH+rhR0zJ/94p//NrS0tJS8b7R3x3/wtJSumKqKMa3FkXjuujKv7+/1rxM8EQxURtp+nykx+pHe1w/1uP68R7Xb+lx/dYe10/0uH7FDlhhsvx5TOPOdjU+3F7u0uLmYrxx3a4Ot3qitnVkJP4sp6HWuM3S+PFioThZzBezLcuXy9Yay3/j9vq63lrEdY00rWtn/Qj5wSeOxW2ohX28q2Vdy/cZfe/1xdQPf/CJY398/rlbO82eu6Hl/srtvPuO+nZ+KlxSbmut2Jr2SdzOkabt3NnhORlt2c5a43b1j9u38/k+t3N0eTM3VPtzPlGMND7+VmM/jTX/WC/tp53hsv++syiKS8ub3b7MinUVI8W2lktGlp+fifKIrN9H/VB6cTG2puP09j6O0/qc29V6nLa/JuLzf3u43dgq29D8NH3vk1tWPO9rPU6j+qNe7bXSfgwO+rUyLMdgPC6+1XjQT3Y8BneFx/+Ju1Y/BjseOx2OwfS4m47BO3odgyNbRhvbnJ6EWuM2y8fg7pblRxtrqjXms3d1PwZnzp86O7P4sY+/duHU0RPzJ+ZP7929e3bvvn0HDhyYOb5wcn62/P9V7u3ht60YSa+BO8K+i6+BV7ct23yoLn1pcK/DiS6vw+1tyw76dTjW/uBqG/OCXHlMl6+NR+s7feLySLHKa6zx/Nyz/tdhetxNr8Oxptdhx68pHV6HY328DuvLnL2nv+9Zxpr+67QN1+prwfamY7D9+5H2Y3DQ348MyzE4EY6Lf71n9a8FO8P2Pjm91u9HRlccg+nhhvee+iXp+/2JA43R6bi8rX7FDVuKC4vz5+57/Oj58+d2F2FsiJc0HSvtx+u2psdUrDheR9Z8vB5aeMWTt3W4fHvYVxOvrf9vYtXnqr7M/fd1f64aX90678+WS/cUYQzYRu/PTl/N6/szZcku+7O+zKdm1v+9eMqlTe+/46u8/8bc/5NyfemunhgdHytfv6Np74y3vB+3PlVjjfeuWmPdz8/09348Hv7b6Pfjm7u8H+9oW3bQ78fj7Q8uvh/Xev20Y33an8+JcJycnO3+flxfZseetR6TY13fj+8Msxb2/2tCUki5qOnYWe24TesaGxsPj2ssrqH1ON3bsvx4yGb1dT295+qO07vvLO9rND26ZRt1nE61LTvo4zS9X612nNZ6/fTt6rQ/nxPhuLh5b/fjtL7MM/ev/71zMn7Y9N65pdcxOD66pb7N4+kgLN/vlybjMXhfcaw4U5ws5hrXbmkcT7XGuqYf6O8Y3BL+2+j3yh1djsG725Yd9DGYvo6tduzVxpbfSAao/fmcCMfFUw90Pwbry7xx/2C/d707XJKWafretf3na6v9zOu2seX7K67xz7zq2/k3+7v/bLa+zMkDa82Z3ffTveGSGzrsp/bX72qvqbliY/bTjrCdzx1YfT/Vt6e+zBcO9nk8HSqK4uJHHm78vDf8fuXPL3z7ay2/d+n0O52LH3n4+zce/9u1bD8Am99PyrGt/FrX9Jupfn7/DwAAAGwKMfePhJnI/wAAAFAZMffHfxWeyP8AAABQGTH3j4WZZJL/d7zxuYWfXCxSM38piNen3fBIuVzsuM6Gz6eWltUvf/gr8z/6y4v9rXukKIofP/IbHZff8UjcrtJU2M4rb2q9fOUNL/a1/iOPLS/X3F//Yrj/+Hj6PQw6VXBni6L4xk2fa6xn6v2XG/OZR4405rsvPflEfZnnD5afx9s/+5Jy+T8I5d9Dx4+23P7ZsB++G+bs2zrvj3i7r15+zc79711eX7xd7Y4XNh72Ux8o7zf+nZzPP1EuH/fzatv/V599+qv15R9/VeftvzjSefufDvf7lTD/5+Xl8s3PQf3zeLtPh+2P64u3u+/L3+y4/Vc+Uy5/9s3lckfCjOu/O3y+683PLTTvr8drR1seV/GWcrm4/tlv/3bj+nh/8f7bt3/i8OWW/dF+fDzzz+X9zLQtHy+P64n+om399ftpPj7j+p/+rSMt+7nX+q+8+9mX1++3ff33ti032nb79r/Y9Ief/lzH9cXtOfRnZ1sez6F3hddxWP9THwjHY7j+f698rmW90ZF3tb7/xOW/uP1iy+OJ3vrDcv1XHjrRmP8x9aPfv+EFN77w0ivr+64ovvWe8v56rf/EH51p2f4v3XJP4/mI18eOfvv6VxPXf+6j06fPLF5YmGvaq42/nfP2cnu2Tkxuq2/vTeG9tf3zw2fOf3D+3NTs1GxRTFX3T+hdtS+H+f1yXFrr7e95LDyft/3eN7bd9U+fjZf/y6Pl5ZffVn7denVY7vPh8u3l87dUW+f6n7r9lsbru/ZM+XlLj30Adu76zwN9LRgef/v3BfF4P/vSDzb2Q/26xteN+Lpe5/Z/Z668n6+H/boU/jLzHbcsr695+fi3ES6/p3y9r3v/hbe5+Lz+SXi+3/Hd8v7jdsXH+53wfcw3d7S+38Xj4+sXR9rvv/FXPC6F95PiUnl9XCru78vP39Jx8+LfISku3dr4/HfS/dy6poe5msWPLc6cXDh94fGZ8/OL52cWP/bxw6fOXDh9/nDjb3ke/lCv2y+/P21rvD/Nze+7v5idLIriTDG7AW9Y12b76x/1t/1nHzs2t3/2rrn540cvHD//2Nn5cyeOLS4em59bvOvo8ePzH+11+4W5B3fvObh3/57pEwtzDx44eHDvwemF02fqm1FuVA/7Zj88ffrc4cZNFh+8/+DuBx64f3b61Jm5+Qf3z85OX+h1+8bXpun6rX99+tz8yaPnF07NTy8ufHz+wd0H9+3b0/OvAZ46e3xxaubchdMzFxbnz82Uj2XqfOPi+te+Xrenmhb/rfx+tl2t/EN8xTvv3Zf+PmvdVz656l2Vi7T9AdHnwt+i+YcXnT3Qz+cx94+HmWSS/wEAACAHMfdvCTOR/wEAAKAyYu7fGmYi/wMAAEBlxNw/EWaSSf7X/9f/76//X16v/59X///sR8pe6Wbv/8f+vP5/Hq5z/3/d69f/1/+vXv+///78Zt9+/X/9f1Yatv5/zP2TRZFl/gcAAIAcxNy/LcxE/gcAAIDKiLn/hjAT+R8AAAAqI+b+F4SZZJL/9f/76v/v6VW4qn7/3/n/9f+Lzdn/j0+O/n821ty/f++jLZ/q/wf6//r/+v/6//r/rNv4qtdcr/5/zP03hplkkv8BAAAgBzH3vzDMRP4HAACAyoi5/6YwE/kfAAAAKiPm/u1hJpnkf/1/5//X/9f/r3T/f73n/2/aGP3/zcH5/7vT/+/hqvv/E/r/m7H/Pz7Y7R/u/n/Pzdf/55oYtvP/x9z/ojCTTPI/AAAA5CDm/heHmcj/AAAAUBkx978kzET+BwAAgMqIuf/mMJNM8r/+v/6//r/+v/5/5/X3Pv9/+ZH+/3DR/+9O/78H5//Pq/8/4O0f7v7/oM//P/6m9tvr/9PJsPX/Y+5/aZhJJvkfAAAAchBz/y1hJvI/AAAAVEbM/S8LM5H/AQAAoDJi7t8RZpJJ/tf/1//X/9f/1//vvP7e/f+S/v9w0f/vTv+/B/1//X/9//76/x2++dX/p5Nh6//H3H9rmEkm+R8AAAByEHP/bWEm8j8AAABURsz9PxVmIv8DAABAZcTcvzPMJJP8r/+v/6//n1f//94t+v/6/9Wm/9+d/n8P+v/6//r/fZ7/f6W19P+39rozKmPY+v8x9788zCST/A8AAAA5iLn/FWEm8j8AAABURsz9rwwzkf8BAACgMmLunwozyST/6/9Xq///p3/91CsL/X/9/x7rH0T/vxYuHaL+fzwMhr7//5D+/zWl/9+d/n8P+v/6//r/G9L/Jx/D1v+Puf/2MJNM8j8AAADkIOb+O8JM5H8AAACojJj77wwzkf8BAACgMmLu3xVmkkn+1/+vVv8/0v/X/++2/o06//9YeD7Tcen8/87/vwH0/ztoepHq//eg/6//n33/P373q//PYAxb/z/m/leFmWSS/wEAACAHMfffVbT9Elf+BwAAgMpo5P5ionh1mIn8DwAAAJURc//dYSaZ5H/9/6vv/483faz/37r9+v+tcu3/b/D5/xP9/7zp/3e31v7/Fv1//X/9/8z6/+s7//9k+Fj/n2jY+v8x978mzCST/A8AAAA5iLn/njAT+R8AAAAqI/77zfLfvcr/AAAAUEUx90+HmWSS//X/nf8/p/5/Tf9/QP3/+Ij1/wv9/6Gj/9+d8//3oP+v/6//v67+v/P/027Y+v8x9782zCST/A8AAAA5iLn/vjAT+R8AAAAqI+b+mTAT+R8AAAAqI+b+2TCTTPK//r/+f079f+f/d/5//f/q0//vTv+/B/1//f+q9f+LQv+f62rY+v8x9+8OM8kk/wMAAEAOYu7fE2Yi/wMAAEBlxNy/N8xE/gcAAIDKiLn//jCTTPK//r/+v/6//r/+f+f16/9vTvr/3en/96D/r/9ftf6/8/9znQ1b/z/m/gfCTDLJ/wAAAJCDmPv3hZnI/wAAAFAZMffvDzMJ+b/Tv+sGAAAANpeY+w+EmWTy+3/9/4r0/3/z71vWrf+v/99t/YPp/0/q/4ep/z9cKtr/b39ZXDX9/x70//X/9f/1/xmoYev/x9x/MMwkk/wPAAAAOYi5/3VhJvI/AAAAVEbM/T8dZiL/AwAAQGXE3P8zYSaZ5P/B9v8n9f+bZHX+/8nW7df/73x8VKv/7/z/+v/DqaL9/4GpVP9/RP9f/3+4tl//X/+fla59/z9+1F//P+b+B8NMMsn/AAAAkIOY+382zET+BwAAgMqIuf+hMBP5HwAAACoj5v5DYSaZ5H/n/9f/d/5//f9r0/9/qGg3jP3/+sGj/18t+v/dVar/7/z/+v9Dtv36//r/rDRs5/+Puf/1YSaZ5H8AAADIQcz9D4eZyP8AAABQGTH3vyHMRP4HAACAyoi5/41hJpnkf/1//X/9f/1/5//vvH79/81J/787/f8e9P/1//X/9f8ZqGHr/8fc/6Ywk0zyPwAAAOQg5v43h5nI/wAAAFAZMfe/JcxE/gcAAIDKiLn/rWEmmeR//X/9f/1//X/9/87r1//fnPT/u9P/70H/X/9f/1//n4Eatv5/zP0/F2aSSf4HAACAHMTc/0iYifwPAAAAlRFz/9vCTOR/AAAAqIyY+98eZpJJ/tf/38T9/zH9f/1//X/9/97rzY3+f3f6/z3o/+v/6//r/zNQw9b/j7n/HWEmmeR/AAAAyEHM/T8fZiL/AwAAQGXE3P/OMBP5HwAAACoj5v5fCDPJJP/r/2/i/n8lz/+/dLH5dhXr/9cX0/+/Xv3/+o30/7Og/9+d/n8PHfr/W/X/8+r/L4V3ef1//X8GYtj6/zH3vyvMJJP8DwAAADmIuf/dYSbyPwAAAFRGzP3vCTOR/wEAAKAyYu5/NMwkk/yv/59l/z895OHr/692/v/JxnWbvP/v/P/O/6//vwGq2/9f8111pP/fg/P/6/87/7/+PwM1bP3/mPsfCzPJJP8DAABADmLuf2+YifwPAAAAlRFz/y+Gmcj/AAAAUBkx978vzCST/K//n2X/f4jP/79a/3+znv9/rCgml9eTU/9/oun5TMel/r/+/waobv9/MPT/e9D/1/8f5v5/OJonV7m9/j/DaNj6/zH3vz/MJJP8DwAAADmIuf+XwkzkfwAAAKiMmPt/OcxE/gcAAIDKiLn/V8JMMsn/+v/6//r/zv/v/P+d16//vznp/3en/9+D/r/+/zD3/3vQ/2cYDVv/P+b+Xw0zWTX4ff+/+niYAAAAwBCJuf8DYSaZ/P4fAAAAchBz/+EwE/kfAAAAKiPm/iNhJpnkf/3/9v5/PKOq/r/+v/6//r/+/2Y0uP7/y24sCv3/yvT/J/rcAP1//X/9f/1/BmrY+v8x9x8NM8kk/wMAAEAOYu7/tTAT+R8AAAAqI+b+Y2Em8j8AAABURsz9c2EmmeT/69j/Hx/O/r/z/19t///H+v/6/4H+f2f6/xvD+f+7y7b/3y/9f/1//X/9fwZq2Pr/MffPh5lkkv8BAACgwtKPg2PuPx5mIv8DAABAZcTcfyLMRP4HAACAyoi5/4NhJpnkf+f/1/93/v/r0f8fa1le/7+k/6//Pwj6/93p//eg/6//r/+v/89ADVv/P+b+hTCTTPI/AAAA5CDm/g+Fmcj/AAAAUBkx9384zET+BwAAgMqIuf9kmEkm+V//X/8/9/5/rSguOf+//n+n9ev/b076/93p//eg/6//r/+v/89ADVv/P+b+U//P3n002XVWexw+9pUVbtWty0fwmBFDGJmPwJQZVYzJJgdZ5Awm52CyyTmDyTnnbHKOJhqqRLm11pK6z+m9JfXuPnu/7/NM1m2V+p7TVlvwp+tXO27pZP8DAABAD3L33zNusf8BAACgGbn77xW32P8AAADQjNz9945bOtn/+n/9f+/9/2orz//f/fv1/+fo//X/U1jr749t/n37ReH79v93uOO1d9P/6//1/4P0//p//T97za3/z91/n7ilk/0PAAAAPcjdf9+4xf4HAACAZuTuv1/cYv8DAABAM3L3Xxu3dLL/9f/6f/2//n9X/3+T/l//v2ye/z9M/z9C/6//1//r/5nU3Pr/3P33j1s62f8AAADQg9z9D4hb7H8AAABoRu7+B8Yt9j8AAAA0I3f/g+KWTva//l//r/9fSv9/3PP/93w9+n/9/yb6/2H6/xH6f/2//l//z6Tm1v/n7n9w3NLJ/gcAAIAe5O5/SNxi/wMAAEAzcvc/NG6x/wEAAKAZufsfFrd0sv/1//p//f9S+v8jev6//l//v3A3rM7/naD/X6f/HzHS/69W+v8hF93Pb/7ylvP+96H/1/+zbm79f+7+h8ctd16tjl/uFwkAAADMSu7+R8Qtnfz8HwAAAHqQu/903GL/AwAAQDNy918Xt3Sy//X/+n/9v/5f/7/59fX/y+T5/8MO3v/f/nb3uHu//X8zz/8/u+m/uWy/nz+obb//6fv/274z9P8s29z6/9z9Z+KWTvY/AAAA9CB3/yPjFvsfAAAAmpG7/1Fxi/0PAAAAzcjd/+i4pZP9r/9vrf//n12fd0H/v1O76P/1//p//X/r9P/DPP9/xM5fc6fqw2b7/31su59f+vv3/H/9P+vm1v/n7n9M3NLJ/gcAAIAe5O5/bNxi/wMAAEAzcvc/Lm6x/wEAAKAZufsfH7d0sv/1/631/7s/z/P/9f+bXl//r/9vmf5/mP5/RCvP/7/M75pt9/MHte33r//X/7Nubv1/7v4nxC2d7H8AAADoQe7+J8Yt9j8AAAA0I3f/k+IW+x8AAACakbv/yXFLJ/tf/6//X0b/n6+g/9f/H37/n/T/y/O/+v9R+v8RrfT/l2nb/fzS37/+X//Purn1/7n7nxK3dLL/AQAAoAe5+58at9j/AAAA0Izc/U+LW+x/AAAAaEbu/qfHLZ3sf/2//n8Z/b/n/+v/Pf9f/39x9P/D9P8j9P/6f/2//p9Jza3/z91/fdzSyf4HAACAHuTuf0bcYv8DAABAM3L3PzNusf8BAACgGbn7nxW3dLL/9f/6f/2//l//v/n19f/LpP8fpv8fof/X/+v/9f9Makb9/wWfdXL17Lilk/0PAAAAPcjd/5y4xf4HAACAZuTuf27cYv8DAABAM3L3Py9u6WT/6/9n0//v5Hxt9f+nVquV/n/Vaf9/6oI/z/q+1P/r/4+A/n+Y/n+E/l//r//X/zOpGfX/Ox/n7n9+3NLJ/gcAAIAe5O5/Qdxi/wMAAEAzcve/MG6x/wEAAKAZuftfFLd0sv/1/7Pp/3e01f97/v/e74+e+n/P/1+n/z8a+v9h+v8R+n/9v/5f/8+k5tb/5+5/cdx0/KrL/hIBAACAmcnd/5K4pZOf/wMAAEAPcve/NG6x/wEAAGChrl/7ldz9L4tbOtn/+v9p+//jF/ya/l//v/f7Q/+v/9f/Hz79/zD9/wj9v/5f/6//Z1Jz6/9z9788bulk/wMAAEAPcvffELfY/wAAANCM3P2viFvsfwAAAGhG7v5Xxi2d7H/9v+f/6//1//r/za+v/18m/f8w/f8I/b/+f7v9/4nz/6f+nzZcQv9/9uzZ04fe/+fuf1Xc0sn+BwAAgCbt+Vlp7v5Xxy32PwAAADQjd/9r4hb7HwAAAJqRu/+1cUsn+1//32n/n9/qy+r/r1ut9P/6f/2//n+Y/n+Y/n+E/l//7/n/+n8mNbfn/+fuf13c0sn+BwAAgB7k7r8xbrH/AQAAoBm5+18ft9j/AAAA0Izc/W+IWzrZ//r/Tvt/z//X/+v/j7r/v3Wl/z8Si+j/T+3/+nPv/8/o//X/A7rr/+9yp10f6v/1/6ybW/+fu/+NcUsn+x8AAAB6kLv/TXGL/Q8AAADNyN3/5rjF/gcAAIBm5O5/S9x0rJP9r//X/+v/9f/6/82vf8TP/z++Wq30/xNYRP8/YO79/zTP/9/7b/l5+n/9/5Lfv/5f/8+6ufX/ufvfGrd0sv8BAACgB7n73xa32P8AAADQjNz9b49b7H8AAABoRu7+d8Qtnex//b/+X/+v/59V/3/FIfT/ZxbR/3v+/0T0/8Pm0f/vT/+v/1/y+9f/6/+5eNvq/3P3vzNu6WT/AwAAQA9y978rbrH/AQAAoBm5+98dt9j/AAAA0Izc/e+JWzrZ//p//f+l9P/5Pnvr/0/F72u1/z8xp/5/5++Zk7v+/3Xy/H/9/0T0/8P0/yP0//p//f/1+n+mNLfn/+fuf2/c0sn+BwAAgB7k7n9f3Pqfbu1/AAAAaEbu/vfHLfY/AAAANCN3/wfilk72v/5f/+/5/57/P6vn/58+hOf/6/+7ov8fpv8fof/X/+v/Pf+fSc2t/8/d/8G4pZP9DwAAAD3I3f+huMX+BwAAgGbk7v9w3GL/AwAAQDNy998Ut3Sy//X/+n/9v/5f/3/uz1D/3wb9/7Cj6f9P6f/1/9XPXxH/Fuj/9f9jn0+b5tb/5+7/SNzSyf4HAACAHuTu/2jcYv8DAABAM3L3fyxusf8BAABgkY5t+LXc/R+PWzrZ//p//b/+f8L+/8qV/n+h/f+m19f/L9NW+v/8ptD/e/5/6Kf/v3rXR9t+/v+xS3z/e//zaxv9/wXrQ/9Pk+bW/+fu/0Tc0sn+BwAAgB7k7v9k3GL/AwAAQDNy938qbrH/AQAAoBm5+z8dt/Sw//9P/7/S/x+k/z+j//f8f/2//n9uPP9/mP5/hP5/q8/PX/r79/x//T/r5tb/5+7/TNzSw/4HAACATuTu/2zcYv8DAABAM3L3fy5usf8BAACgGTu7P+OyDve//l//7/n/+n/9/+bX1/8vk/5/mP5/hP5f/6//1/8zqbn1/5/f+ayTqy/ELZ3sfwAAAOhB7v4vxi32PwAAADQjd/+X4hb7HwAAAJqRu//LcUsn+1//r/9fRv9/9uzZ0/p//f/ur+d8/3+z/p+i/x+m/x+h/9f/6//1/0xqbv1/7v6vxC2d7H8AAADoQe7+r8Yt9j8AAAA0I3f/1+IW+x8AAACakbv/63FLJ/tf/z+D/v+k/t/z//X/K8//1/9PRP8/TP8/osX+/+TFf/nb7ucPatvvX/+v/2fd3Pr/3P3fiFs62f8AAADQg9z934xb7H8AAABoRu7+b8Ut9j8AAAA0I3f/t+OWTva//v/o+v/b/tn18vz/U6vN71//r//X/+v/D5v+f5j+f0SL/f8l2HY/v/T3r//X/7Nubv1/7v7vxC27h99Vl/ZVAgAAAHOSu/+7cUsnP/8HAACAHuTu/17cYv8DAABAM3L3fz9u6WT/6/9n8Pz/Bvt/z//f/P2h/591/3+l/r8N+v9h+v8R+n/9v/5/ov4/v5v1/72bW/+fu/8HcUsn+x8AAAB6kLv/h3GL/Q8AAADNyN3/o7jF/gcAAIBm5O6/OW65YP9vartbof/X/+v/9f/6/82vr/9fJv3/sIvt/0+sDtb/J/2//l//32v/7/n/nDO3/j93/4/jFj//BwAAgMW5ap9fz93/k7jF/gcAAIBm5O7/adxi/wMAAEAzcvf/LG655cptvaUjpf/X/+v/9f/6/82vr/9fJv3/MM//H6H/n6Kfv0b/30b/v1rp/zm4ufX/uft/Hrf4+T8AAAA0I3f/L+IW+x8AAACakbv/l3GL/Q8AAADNyN3/q7ilk/2v/9f/H7D/30kz9f/n6P/P0f9vpv8/Gvr/Yfr/Efp/z//X/3v+P5OaW/+fu//XcUsn+x8AAAB6kLv/N3GL/Q8AAADNyN3/27jF/gcAAIBm5O7/XdzSyf6ftP+/MSrsi+n/4x+1/n/x/b/n/+v/9f/6/1nR/w/T/4/Q/+v/9f/6fyY1t/4/d//v45ZO9j8AAAD0IHf/H+IW+x8AAACakbv/j3GL/Q8AAADNyN3/p7ilk/3v+f/6f/2//l//v/n19f/LpP8fpv/frP6g9P/6f/2//p9Jza3/z93/57ilk/0PAAAAPcjd/5e4xf4HAACAZuTuvyVusf8BAACgGbn7/xq3dLL/9f/6f/2//l//v/n19f/LNKv+/5j+/8LPvev/j7+s5/9vvf/Pt6D/1//r/5nE3Pr/3P1/i1s62f8AAADQg9z9f49b7H8AAABoRu7+f8Qt9j8AAAA0I3f/P+OWTvb/SP9/on6j/n+Q/n/3+9f/b/7+0P/r//X/h29W/b/n/y/m+f9F/+/5//p//T+Tmlv/n7v/X3FLJ/sfAAAAepC7/9a4xf4HAACAZuTu/3fcYv8DAABAM3L3/ydu6WT/e/7/kvr/a/T/+n/9v/5f/z9C/z9M/z9C/6//v4T3f/Wej/X/+n/Wza3/z93/3wAAAP//tmNCRw==")
lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[], 0x1001, 0x0)
removexattr(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=@known='trusted.overlay.upper\x00')

1.257280831s ago: executing program 2 (id=951):
r0 = syz_open_dev$vim2m(&(0x7f0000000480), 0x5a0c, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x2})
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405668, &(0x7f0000000000)={0x81, 0x2, 0x1, "4a37f6c000190000000000000020707100000000000000000100", 0x31435641})

1.045563505s ago: executing program 2 (id=952):
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf09"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x55}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb010789005e107538e486dd6317ce22000000fffe80000000000000101000007f0600080000000000000071273fa7b49301641184a907"], 0xfdef)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000200)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1100}, 0x48)

748.986958ms ago: executing program 3 (id=953):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file3\x00', 0xcc0, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6865617274626561743d6e6f6e652c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c636f686572656e63793d62756666657265642c6572726f72733d636f6e74696e75652c757365725f78617474722c626172726965723d30303030303030303030303030303032363131352c6469725f726573765f6c6576656c3d30303030303030303030303030303030303030362c696e74722c6a6f75726e616c5f6173796e635f636f6d6d69742c00535d4e036013ec9e6e7ecdee3849b40884b95e94f35cec9600cd19beb0"], 0x1, 0x442a, &(0x7f0000008940)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {}, [{0x2, 0x6}]}, 0x2c, 0x0)

614.981553ms ago: executing program 2 (id=954):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f00000003c0)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESDEC=0x0, @ANYBLOB=',discard,\x00', @ANYBLOB="3a8d75a267b001234a1e919d26dfdd0d8b316510e9c9cf606c6db6505304ee2649c88f03f9ef98bcebc5d721a7081b3509e543147eec5a0fa6d6eb57eed4197249efe6fa10323b6cf959897b3f1908c82c14974d31b0d080f8c86c196c0ee8eb707a73d201bbe15a02a37118aa1d4aaa4d2484b05dbb73e44387f620f46a3a2e06436e6296b05bd07717accf667e0331c0f323a7529f6b471ec30340347d3f405257c8bad57ddef290ea1d376a20", @ANYRESOCT=0x0, @ANYRES8, @ANYRESDEC, @ANYBLOB="51060c4f1adb6e795b70e7edcdc5cd30e197bb9cceacee351e08a6e2ee4650101fb28229b16aecf828a55c8aa0efd840e40fef6612e7b389eb304c41e39360e1f5cb6f78bd7100bd30bbd42aa24b2dc9171d068e92ac848e", @ANYRES64, @ANYRESDEC], 0x81, 0x151a, &(0x7f0000002a80)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0x20002078)

438.928185ms ago: executing program 2 (id=957):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000740)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$packet(r1, &(0x7f00000002c0)="48357e0287af48ffa745b497a54e0eec1bf2c69011f35b48339d15afaef1bd7efe075ff441b16e244b8b05fe09e29583ad142567826dfa5cbc6f979b050015bde8c4441cd0fa6be03213181bfe84743015ec12ced8b1aa8f44e5c30afac6f9fd2ab1303be0d1b2c02533bcc97cce7da9b507b053b11821323590d379e9e350a3291fbedb6382de878b7a56e4e38c7f746d0424029f5d49b04697a4", 0xfffffffffffffcf6, 0x0, 0x0, 0x0)

368.924376ms ago: executing program 1 (id=959):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd03000a000000140000006c"], 0x340a)

268.118872ms ago: executing program 2 (id=960):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(0x3)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r3=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x0, r3}, 0x10)
recvmmsg(r0, &(0x7f0000007300)=[{{0x0, 0x0, 0x0}, 0x343}, {{0x0, 0x0, 0x0}, 0xffffffff}], 0x2, 0x45833af92e4b39ff, 0x0)

267.561716ms ago: executing program 1 (id=961):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000240))

220.064213ms ago: executing program 1 (id=962):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000e40)={&(0x7f0000000040)={0x24, r1, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x3008}]}, 0x24}}, 0x40084)

219.608168ms ago: executing program 1 (id=963):
kexec_load(0x0, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)

70.824264ms ago: executing program 2 (id=964):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x40000000048601, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDCTL_DSP_RESET(r0, 0x5000, 0x0)

210.031µs ago: executing program 1 (id=965):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x41, 0x1, 0x200000000000008, 0x2000000000009, 0x0)

0s ago: executing program 1 (id=966):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1, 0x4, &(0x7f0000000600)=@framed={{}, [@ldst={0x7, 0x3, 0x4, 0x0, 0x7, 0x1}]}, &(0x7f00000000c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)

kernel console output (not intermixed with test programs):

  83.895712][ T5883] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   83.904386][ T5883] usb 1-1: Product: syz
[   83.906207][ T5883] usb 1-1: Manufacturer: syz
[   83.908263][ T5883] usb 1-1: SerialNumber: syz
[   84.133461][ T5883] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[   84.135921][ T5883] usb 1-1: No valid video chain found.
[   84.141683][ T5883] usb 1-1: selecting invalid altsetting 0
[   84.161996][ T5883] usb 1-1: selecting invalid altsetting 0
[   84.164289][ T5883] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[   84.175682][ T5883] usb 1-1: USB disconnect, device number 4
[   84.751162][ T6355] Bluetooth: hci3: received HCILL_GO_TO_SLEEP_ACK in state 2
[   84.759602][ T1092] Bluetooth: hci3: Frame reassembly failed (-84)
[   85.133218][    C1] vcan0: j1939_tp_rxtimer: 0xffff8881095e4c00: rx timeout, send abort
[   85.138387][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8881095e4c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[   85.441218][ T6367] loop2: detected capacity change from 0 to 32768
[   85.445942][ T6367] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.159 (6367)
[   85.471395][ T6367] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   85.478241][ T6365] loop1: detected capacity change from 0 to 32768
[   85.483130][ T6367] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[   85.510216][ T6365] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   85.524835][ T6365] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50.
[   85.539089][ T6365] XFS (loop1): Ending clean mount
[   85.582780][ T5855] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   85.619174][ T6367] BTRFS info (device loop2): enabling ssd optimizations
[   85.621964][ T6367] BTRFS info (device loop2): enabling free space tree
[   85.723264][ T5848] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   85.833518][ T6394] loop1: detected capacity change from 0 to 256
[   86.204475][ T6400] loop1: detected capacity change from 0 to 40427
[   86.213016][ T6400] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   86.225968][ T6400] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   86.241111][ T6400] F2FS-fs (loop1): invalid crc value
[   86.319412][ T6400] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   86.331773][ T6400] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   86.334341][ T6400] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   86.424839][   T10] cfg80211: failed to load regulatory.db
[   86.636808][    T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   86.718882][ T6418] Zero length message leads to an empty skb
[   86.773550][ T6420] : renamed from wg2 (while UP)
[   86.787612][    T9] usb 3-1: Using ep0 maxpacket: 8
[   86.796027][    T9] usb 3-1: unable to get BOS descriptor or descriptor too short
[   86.803531][    T9] usb 3-1: config 8 has an invalid interface number: 154 but max is 0
[   86.807205][    T9] usb 3-1: config 8 has no interface number 0
[   86.816803][ T5858] Bluetooth: hci3: Opcode 0x1003 failed: -110
[   86.817576][ T5851] Bluetooth: hci3: command 0x1003 tx timeout
[   86.822884][    T9] usb 3-1: config 8 interface 154 has no altsetting 0
[   86.856199][    T9] usb 3-1: New USB device found, idVendor=055f, idProduct=a800, bcdDevice=4f.f6
[   86.861109][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   86.866111][    T9] usb 3-1: Product: syz
[   86.868338][    T9] usb 3-1: Manufacturer: syz
[   86.870790][    T9] usb 3-1: SerialNumber: syz
[   86.891431][ T6422] tipc: Started in network mode
[   86.893434][ T6422] tipc: Node identity aaaaaaaaaa2a, cluster identity 4711
[   86.899565][ T6422] tipc: Enabled bearer <eth:batadv0>, priority 10
[   87.088600][    T9] mdc800 3-1:8.154: probe fails -> wrong Interface
[   87.103927][    T9] usb 3-1: USB disconnect, device number 3
[   87.120017][ T6430] loop1: detected capacity change from 0 to 256
[   87.162129][ T6432] loop0: detected capacity change from 0 to 4096
[   87.163086][ T6430] FAT-fs (loop1): Directory bread(block 64) failed
[   87.166128][ T6432] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   87.178071][ T6430] FAT-fs (loop1): Directory bread(block 65) failed
[   87.181523][ T6430] FAT-fs (loop1): Directory bread(block 66) failed
[   87.192637][ T6430] FAT-fs (loop1): Directory bread(block 67) failed
[   87.198697][ T6430] FAT-fs (loop1): Directory bread(block 68) failed
[   87.206216][ T6432] ntfs3(loop0): Failed to load $Extend (-22).
[   87.210912][ T6430] FAT-fs (loop1): Directory bread(block 69) failed
[   87.213601][ T6430] FAT-fs (loop1): Directory bread(block 70) failed
[   87.216229][ T6432] ntfs3(loop0): Failed to initialize $Extend.
[   87.226410][ T6430] FAT-fs (loop1): Directory bread(block 71) failed
[   87.232791][ T6430] FAT-fs (loop1): Directory bread(block 72) failed
[   87.235337][ T6430] FAT-fs (loop1): Directory bread(block 73) failed
[   87.517843][ T6444] loop1: detected capacity change from 0 to 136
[   87.528381][ T6444] iso9660: Unknown parameter 'ut`8'
[   87.585880][ T6447] loop0: detected capacity change from 0 to 128
[   87.606268][ T6447] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   87.612318][ T6447] hpfs: filesystem error: improperly stopped
[   87.614721][ T6447] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   87.623479][ T6447] hpfs: You really don't want any checks? You are crazy...
[   87.628386][ T6447] hpfs: hpfs_map_sector(): read error
[   87.630477][ T6447] hpfs: code page support is disabled
[   87.633325][ T6447] hpfs: hpfs_map_4sectors(): unaligned read
[   87.635956][ T6447] hpfs: hpfs_map_4sectors(): unaligned read
[   87.661727][ T6447] hpfs: filesystem error: unable to find root dir
[   88.020962][ T5883] tipc: Node number set to 8432298
[   88.200231][ T6026] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   88.348442][ T6026] usb 1-1: Using ep0 maxpacket: 8
[   88.440737][ T6026] usb 1-1: New USB device found, idVendor=0fe9, idProduct=db01, bcdDevice=e9.9b
[   88.451214][ T6026] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.462692][ T6026] usb 1-1: Product: syz
[   88.472436][ T6026] usb 1-1: Manufacturer: syz
[   88.482705][ T6026] usb 1-1: SerialNumber: syz
[   88.596528][ T6026] usb 1-1: config 0 descriptor??
[   88.626303][ T6026] dvb-usb: found a 'DViCO FusionHDTV DVB-T USB (LGZ201)' in warm state.
[   88.640098][ T6026] dvb-usb: bulk message failed: -22 (2/0)
[   88.659514][ T6026] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   88.667786][ T6026] dvbdev: DVB: registering new adapter (DViCO FusionHDTV DVB-T USB (LGZ201))
[   88.675990][ T6026] usb 1-1: media controller created
[   88.713328][ T6026] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   88.830659][ T6026] cxusb: set interface failed
[   88.835765][ T6026] dvb-usb: bulk message failed: -22 (1/0)
[   88.876060][ T6026] DVB: Unable to find symbol mt352_attach()
[   88.878710][ T6026] dvb-usb: no frontend was attached by 'DViCO FusionHDTV DVB-T USB (LGZ201)'
[   88.956992][ T6026] rc_core: IR keymap rc-dvico-portable not found
[   88.961369][ T6026] Registered IR keymap rc-empty
[   88.968026][ T6026] rc rc0: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0
[   88.974719][ T6026] input: DViCO FusionHDTV DVB-T USB (LGZ201) as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0/input4
[   88.994884][ T6026] dvb-usb: schedule remote query interval to 100 msecs.
[   89.005873][ T6026] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully initialized and connected.
[   89.021275][ T6480] batadv1: entered promiscuous mode
[   89.023437][ T6480] batadv1: entered allmulticast mode
[   89.028784][ T6026] usb 1-1: USB disconnect, device number 5
[   89.092464][ T6026] dvb-usb: DViCO FusionHDTV DVB-T USB (LGZ201) successfully deinitialized and disconnected.
[   89.270915][ T6484] loop1: detected capacity change from 0 to 1024
[   89.294396][ T6484] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.311167][ T6484] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.199: bg 0: block 480: padding at end of block bitmap is not set
[   89.318942][ T6484] EXT4-fs (loop1): Remounting filesystem read-only
[   89.344673][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.397863][ T6489] __nla_validate_parse: 44 callbacks suppressed
[   89.397881][ T6489] netlink: 4 bytes leftover after parsing attributes in process `syz.1.200'.
[   89.430430][ T6491] loop0: detected capacity change from 0 to 512
[   89.442117][ T6491] EXT4-fs (loop0): revision level too high, forcing read-only mode
[   89.448719][ T6491] EXT4-fs (loop0): orphan cleanup on readonly fs
[   89.452803][ T6491] Quota error (device loop0): dq_insert_tree: Quota tree root isn't allocated!
[   89.457606][ T6491] Quota error (device loop0): qtree_write_dquot: Error -5 occurred while creating quota
[   89.461875][ T6491] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.201: Failed to acquire dquot type 1
[   89.469911][ T6491] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.201: bg 0: block 40: padding at end of block bitmap is not set
[   89.478876][ T6491] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem
[   89.483027][ T6491] EXT4-fs (loop0): 1 truncate cleaned up
[   89.491619][ T6491] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.550132][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.842761][ T6506] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   89.922793][ T6511] netlink: 4 bytes leftover after parsing attributes in process `syz.0.210'.
[   89.989149][   T51] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   90.007073][   T10] libceph: connect (1)[c::]:6789 error -101
[   90.015908][   T10] libceph: mon0 (1)[c::]:6789 connect error
[   90.034564][ T6520] xt_policy: too many policy elements
[   90.146839][   T51] usb 2-1: Using ep0 maxpacket: 16
[   90.150848][   T51] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   90.154449][   T51] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   90.165972][   T51] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   90.169059][   T51] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.171538][   T51] usb 2-1: Product: syz
[   90.172962][   T51] usb 2-1: Manufacturer: syz
[   90.176726][   T51] usb 2-1: SerialNumber: syz
[   90.289156][   T10] libceph: connect (1)[c::]:6789 error -101
[   90.291690][   T10] libceph: mon0 (1)[c::]:6789 connect error
[   90.331246][ T6526] loop2: detected capacity change from 0 to 32768
[   90.349436][ T6526] BTRFS error: device /dev/loop2 has incomplete metadata_uuid change, please use btrfstune to complete
[   90.363248][ T5966] BTRFS error: device /dev/loop2 has incomplete metadata_uuid change, please use btrfstune to complete
[   90.408140][   T51] usb 2-1: 0:2 : does not exist
[   90.417346][   T51] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[   90.455374][   T51] usb 2-1: USB disconnect, device number 3
[   90.555685][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   90.797140][ T6026] libceph: connect (1)[c::]:6789 error -101
[   90.799602][ T6026] libceph: mon0 (1)[c::]:6789 connect error
[   90.804775][ T6515] ceph: No mds server is up or the cluster is laggy
[   90.837146][   T10] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   90.997457][   T10] usb 3-1: Using ep0 maxpacket: 32
[   91.011569][   T10] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[   91.018710][   T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.038862][   T10] usb 3-1: config 0 descriptor??
[   91.236820][   T51] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   91.247784][   T10] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[   91.253290][   T10] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   91.258037][   T10] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[   91.260797][   T10] usb 3-1: media controller created
[   91.280230][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   91.389278][   T51] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[   91.393011][   T51] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   91.403781][   T51] usb 1-1: config 0 descriptor??
[   91.409216][   T51] cp210x 1-1:0.0: cp210x converter detected
[   91.446856][ T5883] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[   91.453581][   T10] az6027: usb out operation failed. (-71)
[   91.459737][   T10] az6027: usb out operation failed. (-71)
[   91.462224][   T10] stb0899_attach: Driver disabled by Kconfig
[   91.464550][   T10] az6027: no front-end attached
[   91.464550][   T10] 
[   91.468569][   T10] az6027: usb out operation failed. (-71)
[   91.471855][   T10] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[   91.476814][   T10] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input5
[   91.489256][   T10] dvb-usb: schedule remote query interval to 400 msecs.
[   91.492152][   T10] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[   91.498486][   T10] usb 3-1: USB disconnect, device number 4
[   91.534280][   T10] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[   91.600042][ T5883] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[   91.604312][ T5883] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[   91.609226][ T5883] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[   91.616432][ T5883] usb 2-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[   91.620295][ T5883] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.623497][ T5883] usb 2-1: Product: syz
[   91.625348][ T5883] usb 2-1: Manufacturer: syz
[   91.628001][ T5883] usb 2-1: SerialNumber: syz
[   91.633786][ T5883] usb 2-1: config 0 descriptor??
[   91.636877][ T6546] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[   91.642207][ T5883] usb 2-1: ucan: probing device on interface #0
[   91.644786][ T5883] usb 2-1: ucan: invalid in_ep MaxPacketSize
[   91.649920][ T5883] usb 2-1: ucan: probe failed; try to update the device firmware
[   91.814668][   T51] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -32
[   91.828628][   T51] usb 1-1: cp210x converter now attached to ttyUSB0
[   91.853049][   T51] usb 2-1: USB disconnect, device number 4
[   92.024150][   T10] usb 1-1: USB disconnect, device number 6
[   92.037525][   T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[   92.052983][   T10] cp210x 1-1:0.0: device disconnected
[   92.127756][ T6552] Driver unsupported XDP return value 0 on prog  (id 11) dev N/A, expect packet loss!
[   92.181234][ T6554] loop2: detected capacity change from 0 to 1024
[   92.204552][ T6554] hfsplus: invalid btree flag
[   92.207035][ T6554] hfsplus: failed to load extents file
[   92.255811][ T6556] sock: sock_timestamping_bind_phc: sock not bind to device
[   92.537538][ T5883] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   92.686998][ T5883] usb 3-1: Using ep0 maxpacket: 8
[   92.693373][ T5883] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[   92.696499][ T5883] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   92.701470][ T5883] usb 3-1: config 0 has no interface number 0
[   92.707923][   T10] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[   92.713883][ T5883] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[   92.727083][ T5883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.730196][ T5883] usb 3-1: Product: syz
[   92.731845][ T5883] usb 3-1: Manufacturer: syz
[   92.733804][ T5883] usb 3-1: SerialNumber: syz
[   92.743426][ T5883] usb 3-1: config 0 descriptor??
[   92.754613][ T5883] usb 3-1: Found UVC 0.00 device syz (046d:08c3)
[   92.765937][ T5883] usb 3-1: No valid video chain found.
[   92.873877][   T10] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[   92.883790][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.892862][   T10] usb 2-1: Product: syz
[   92.896827][   T10] usb 2-1: Manufacturer: syz
[   92.898702][   T10] usb 2-1: SerialNumber: syz
[   92.913315][   T10] usb 2-1: config 0 descriptor??
[   92.955756][   T51] usb 3-1: USB disconnect, device number 5
[   93.114744][ T6585] loop0: detected capacity change from 0 to 2048
[   93.131881][ T6585] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[   93.131969][   T10] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[   93.154381][ T6586] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   93.721897][ T6608] netlink: 8 bytes leftover after parsing attributes in process `syz.0.255'.
[   93.951658][   T10] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[   93.961064][   T10] usb 2-1: USB disconnect, device number 5
[   95.645035][ T6648] loop1: detected capacity change from 0 to 512
[   95.658911][ T6648] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   95.667201][ T6648] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   95.679997][ T6648] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.273: invalid indirect mapped block 2304 (level 1)
[   95.688292][ T6648] EXT4-fs (loop1): 1 truncate cleaned up
[   95.691069][ T6648] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.700133][ T6648] EXT4-fs error (device loop1): ext4_find_dest_de:2052: inode #2: block 13: comm syz.1.273: bad entry in directory: rec_len % 4 != 0 - offset=12, inode=2, rec_len=103, size=1024 fake=1
[   95.739620][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.776837][ T6026] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   96.066917][ T6026] usb 3-1: Using ep0 maxpacket: 16
[   96.072560][ T6026] usb 3-1: too many configurations: 112, using maximum allowed: 8
[   96.405557][ T6026] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[   96.412378][ T6026] usb 3-1: New USB device strings: Mfr=144, Product=246, SerialNumber=0
[   96.418959][ T6026] usb 3-1: Product: syz
[   96.421246][ T6026] usb 3-1: Manufacturer: syz
[   96.434255][ T6026] r8152-cfgselector 3-1: Unknown version 0x0000
[   96.437144][ T6026] r8152-cfgselector 3-1: config 0 descriptor??
[   96.650954][ T6026] r8152-cfgselector 3-1: bad CDC descriptors
[   96.657730][ T6026] r8152-cfgselector 3-1: USB disconnect, device number 6
[   96.876982][   T51] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   96.902907][ T6682] loop1: detected capacity change from 0 to 256
[   96.916825][ T6682] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   96.935450][ T6682] exFAT-fs (loop1): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967287)
[   96.935450][ T6682] 
[   96.940867][ T6682] exFAT-fs (loop1): Filesystem has been set read-only
[   96.943649][ T6682] exFAT-fs (loop1): error, failed to bmap (inode : ffff8880358694a8 iblock : 0, err : -5)
[   97.048726][   T51] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xE8, changing to 0x88
[   97.056315][   T51] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[   97.069496][   T51] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[   97.073210][   T51] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[   97.080339][   T51] usb 1-1: New USB device found, idVendor=1781, idProduct=0938, bcdDevice=9b.49
[   97.083253][   T51] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.085781][   T51] usb 1-1: Product: syz
[   97.087845][   T51] usb 1-1: Manufacturer: syz
[   97.089574][   T51] usb 1-1: SerialNumber: syz
[   97.097472][   T51] usb 1-1: config 0 descriptor??
[   97.105287][   T51] iguanair 1-1:0.0: failed to get version
[   97.112828][    C1] iguanair 1-1:0.0: failed to resubmit urb: -1
[   97.115223][   T51] iguanair 1-1:0.0: probe with driver iguanair failed with error -90
[   97.271692][ T6696] loop2: detected capacity change from 0 to 2
[   97.274757][ T6696] jffs2: rp_size unrepresentable
[   97.318298][   T51] usb 1-1: USB disconnect, device number 7
[   97.360474][ T6698] loop2: detected capacity change from 0 to 4096
[   97.367452][ T6698] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[   97.398307][ T6026] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   97.401418][ T6698] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[   97.550876][ T6026] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.555669][ T6026] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   97.559970][ T6026] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   97.567402][ T6026] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   97.572279][ T6026] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.581202][ T6026] usb 2-1: config 0 descriptor??
[   97.916351][ T6712] loop0: detected capacity change from 0 to 1024
[   97.924277][ T6712] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   97.929081][ T6712] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   97.933640][ T6712] EXT4-fs error (device loop0): ext4_get_journal_inode:5800: inode #32: comm syz.0.301: iget: special inode unallocated
[   97.942973][ T6712] EXT4-fs (loop0): Remounting filesystem read-only
[   97.945185][ T6712] EXT4-fs (loop0): no journal found
[   97.949715][ T6712] EXT4-fs (loop0): can't get journal size
[   97.987482][ T6712] EXT4-fs (loop0): filesystem is read-only
[   97.994369][ T6712] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   98.018675][ T6026] plantronics 0003:047F:FFFF.0001: item 0 4 0 11 parsing failed
[   98.027740][ T6026] plantronics 0003:047F:FFFF.0001: parse failed
[   98.033696][ T6026] plantronics 0003:047F:FFFF.0001: probe with driver plantronics failed with error -22
[   98.053951][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.215618][ T6026] usb 2-1: USB disconnect, device number 6
[   99.046071][ T6742] netlink: 8 bytes leftover after parsing attributes in process `syz.1.312'.
[   99.152011][ T6026] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   99.279038][ T6752] loop0: detected capacity change from 0 to 4096
[   99.316006][ T6026] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[   99.321397][ T6755] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   99.326452][ T6026] usb 3-1: config 0 interface 0 has no altsetting 0
[   99.326529][ T6026] usb 3-1: New USB device found, idVendor=056a, idProduct=00ba, bcdDevice= 0.00
[   99.326556][ T6026] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.330389][ T6026] usb 3-1: config 0 descriptor??
[   99.493021][ T6759] loop0: detected capacity change from 0 to 1024
[   99.495567][ T6760] netlink: 12 bytes leftover after parsing attributes in process `syz.1.320'.
[   99.527678][ T6759] hfsplus: can't free extent
[   99.530959][ T6759] hfsplus: can't free extent
[   99.532802][ T6759] hfsplus: can't free extent
[   99.936124][ T6768] loop0: detected capacity change from 0 to 32768
[   99.945378][ T6768] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.324 (6768)
[   99.955494][ T6768] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   99.960007][ T6768] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[   99.967952][ T6026] wacom 0003:056A:00BA.0002: unbalanced delimiter at end of report description
[   99.978593][ T6026] wacom 0003:056A:00BA.0002: parse failed
[   99.981132][ T6026] wacom 0003:056A:00BA.0002: probe with driver wacom failed with error -22
[  100.008015][ T6026] usb 3-1: USB disconnect, device number 7
[  100.024251][ T6768] BTRFS info (device loop0): enabling ssd optimizations
[  100.027332][ T6768] BTRFS info (device loop0): enabling free space tree
[  100.614459][ T5853] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  100.632167][ T6798] loop2: detected capacity change from 0 to 4096
[  100.645320][ T6798] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  100.687850][ T6798] ntfs3(loop2): ino=4, mi_enum_attr
[  100.695932][ T6798] ntfs3(loop2): ino=4, Correct links count -> 2.
[  100.712488][ T6798] ntfs3(loop2): Failed to load $AttrDef (-22)
[  100.897960][ T6796] loop1: detected capacity change from 0 to 32768
[  100.936083][ T6804] fuse: Unexpected value for 'allow_other'
[  101.104060][ T6814] loop0: detected capacity change from 0 to 2048
[  101.160921][ T5966] Alternate GPT is invalid, using primary GPT.
[  101.166912][ T5966]  loop0: p1 p2 p3
[  101.193781][ T6818] netlink: 12 bytes leftover after parsing attributes in process `syz.2.341'.
[  101.194198][ T6814] Alternate GPT is invalid, using primary GPT.
[  101.202191][ T6814]  loop0: p1 p2 p3
[  101.322941][ T5849] udevd[5849]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  101.324746][ T5852] udevd[5852]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  101.336062][ T6194] udevd[6194]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  101.626779][  T793] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[  101.788729][  T793] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  101.793101][  T793] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  101.798961][  T793] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  101.802472][  T793] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.805563][  T793] usb 3-1: Product: syz
[  101.807405][  T793] usb 3-1: Manufacturer: syz
[  101.809236][  T793] usb 3-1: SerialNumber: syz
[  101.836855][   T51] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  101.986756][   T51] usb 2-1: Using ep0 maxpacket: 16
[  101.991688][   T51] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  101.996564][   T51] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  102.000288][   T51] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.007292][   T51] usb 2-1: config 0 descriptor??
[  102.021049][   T51] usbhid 2-1:0.0: can't add hid device: -22
[  102.023517][   T51] usbhid 2-1:0.0: probe with driver usbhid failed with error -22
[  102.026916][  T793] usb 3-1: 0:2 : does not exist
[  102.035841][  T793] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[  102.053916][  T793] usb 3-1: USB disconnect, device number 8
[  102.075515][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  102.224165][   T51] usb 2-1: USB disconnect, device number 7
[  102.397622][   T10] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  102.568050][   T10] usb 1-1: Using ep0 maxpacket: 16
[  102.578778][   T10] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.583045][   T10] usb 1-1: config 0 interface 0 has no altsetting 0
[  102.586587][   T10] usb 1-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  102.592694][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.610743][   T10] usb 1-1: config 0 descriptor??
[  102.637086][ T6843] input: syz0 as /devices/virtual/input/input7
[  102.772909][ T6847] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  102.901524][ T6853] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  102.929398][   T51] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  102.957104][ T6855] loop1: detected capacity change from 0 to 1024
[  102.961785][ T6855] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  102.966337][ T6855] JBD2: no valid journal superblock found
[  102.972098][ T6855] EXT4-fs (loop1): Could not load journal inode
[  103.035877][   T10] nzxt-smart2 0003:1E71:2009.0003: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.0-1/input0
[  103.076832][   T51] usb 3-1: Using ep0 maxpacket: 8
[  103.082112][   T51] usb 3-1: unable to get BOS descriptor or descriptor too short
[  103.086033][   T51] usb 3-1: config 57 has an invalid interface number: 229 but max is 0
[  103.090211][   T51] usb 3-1: config 57 has no interface number 0
[  103.092728][   T51] usb 3-1: config 57 interface 229 has no altsetting 0
[  103.097783][   T51] usb 3-1: New USB device found, idVendor=0979, idProduct=0270, bcdDevice=dd.eb
[  103.101298][   T51] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.104531][   T51] usb 3-1: Product: syz
[  103.106199][   T51] usb 3-1: Manufacturer: syz
[  103.108585][   T51] usb 3-1: SerialNumber: syz
[  103.325417][   T51] gspca_main: jeilinj-2.14.0 probing 0979:0270
[  103.334238][   T51] usb 3-1: USB disconnect, device number 9
[  103.437344][  T793] usb 1-1: USB disconnect, device number 8
[  104.049203][ T6871] process 'syz.0.363' launched './file1' with NULL argv: empty string added
[  104.141483][ T6876] loop2: detected capacity change from 0 to 4096
[  104.144689][ T6876] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  104.165792][ T6876] ntfs3(loop2): ino=1a, mi_enum_attr
[  104.168532][ T6876] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  104.705868][ T6890] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.371'.
[  104.765719][ T6894] netlink: 4 bytes leftover after parsing attributes in process `syz.2.373'.
[  104.903504][ T6901] loop1: detected capacity change from 0 to 2048
[  104.912955][ T6901] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  104.916633][ T5852] udevd[5852]: incorrect nilfs2 checksum on /dev/loop1
[  104.925110][ T6901] NILFS (loop1): mounting unchecked fs
[  104.934402][ T5852] udevd[5852]: incorrect nilfs2 checksum on /dev/loop1
[  104.954324][ T6901] NILFS (loop1): recovery complete
[  104.960057][ T6905] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  105.142548][ T6909] overlay: filesystem on ./file0 not supported as upperdir
[  105.245669][ T6918] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.311396][ T6922] netlink: 8 bytes leftover after parsing attributes in process `syz.1.385'.
[  105.442874][ T6929] netlink: 4 bytes leftover after parsing attributes in process `syz.0.388'.
[  105.532838][ T6933] loop0: detected capacity change from 0 to 1024
[  105.564368][ T6933] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.616929][   T10] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  105.642992][ T5853] EXT4-fs error (device loop0): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[  105.649767][ T5853] EXT4-fs error (device loop0): ext4_lookup:1791: inode #2: comm syz-executor: deleted inode referenced: 11
[  105.785205][   T10] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  105.790430][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.793535][   T10] usb 2-1: Product: syz
[  105.810068][   T10] usb 2-1: Manufacturer: syz
[  105.812015][   T10] usb 2-1: SerialNumber: syz
[  105.821258][ T6939] netlink: 'syz.2.392': attribute type 10 has an invalid length.
[  105.833706][   T10] usb 2-1: config 0 descriptor??
[  105.845816][   T10] gspca_main: sunplus-2.14.0 probing 055f:c230
[  105.884414][ T5853] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.028837][ T5865] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.165172][ T5865] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.257678][ T5865] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.494668][ T5865] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.477077][   T10] gspca_sunplus: reg_r err -71
[  107.478773][   T10] sunplus 2-1:0.0: probe with driver sunplus failed with error -71
[  107.486972][   T10] usb 2-1: USB disconnect, device number 8
[  107.830767][ T5865] bridge_slave_1: left allmulticast mode
[  107.840612][ T5865] bridge_slave_1: left promiscuous mode
[  107.845287][ T5865] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.884115][ T5865] bridge_slave_0: left allmulticast mode
[  107.886415][ T5865] bridge_slave_0: left promiscuous mode
[  107.907665][ T5865] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.922159][ T5851] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  107.944624][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  107.954408][ T5851] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  107.963511][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  107.969009][ T5851] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  108.260816][ T6958] loop2: detected capacity change from 0 to 32768
[  108.320971][ T6958] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.357610][ T6958] XFS (loop2): Ending clean mount
[  108.400481][ T5848] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  108.574122][ T5865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.582958][ T5865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.589585][ T5865] bond0 (unregistering): Released all slaves
[  108.775039][ T6977] loop2: detected capacity change from 0 to 32768
[  108.809242][ T6977] jfs_lookup: iget failed on inum 4
[  108.811939][ T6977] jfs_lookup: iget failed on inum 4
[  109.694541][ T5865] hsr_slave_0: left promiscuous mode
[  109.704428][ T5865] hsr_slave_1: left promiscuous mode
[  109.709568][ T5865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.712659][ T5865] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.729521][ T5865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  109.732482][ T5865] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.762861][ T5865] veth1_macvtap: left promiscuous mode
[  109.765412][ T5865] veth0_macvtap: left promiscuous mode
[  109.769459][ T5865] veth1_vlan: left promiscuous mode
[  109.772401][ T5865] veth0_vlan: left promiscuous mode
[  110.018836][ T5858] Bluetooth: hci1: command tx timeout
[  110.174967][ T5865] team0 (unregistering): Port device team_slave_1 removed
[  110.203625][ T5865] team0 (unregistering): Port device team_slave_0 removed
[  110.789047][ T6954] chnl_net:caif_netlink_parms(): no params data found
[  110.996373][ T6954] bridge0: port 1(bridge_slave_0) entered blocking state
[  111.010423][ T6954] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.012778][ T6954] bridge_slave_0: entered allmulticast mode
[  111.021637][ T6954] bridge_slave_0: entered promiscuous mode
[  111.040629][ T6954] bridge0: port 2(bridge_slave_1) entered blocking state
[  111.044938][ T6954] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.048024][ T6954] bridge_slave_1: entered allmulticast mode
[  111.052130][ T6954] bridge_slave_1: entered promiscuous mode
[  111.104287][ T6954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  111.128852][ T6954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  111.231311][ T6954] team0: Port device team_slave_0 added
[  111.239370][ T6954] team0: Port device team_slave_1 added
[  111.301604][ T6954] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.304089][ T6954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.326774][ T6954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.340882][ T6954] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.347415][ T6954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.358931][ T6954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.384275][ T7051] loop2: detected capacity change from 0 to 1024
[  111.434523][ T6954] hsr_slave_0: entered promiscuous mode
[  111.444790][ T6954] hsr_slave_1: entered promiscuous mode
[  111.447961][ T6954] debugfs: 'hsr0' already exists in 'hsr'
[  111.454320][ T6954] Cannot create hsr debugfs directory
[  111.555767][   T36] hfsplus: b-tree write err: -5, ino 3
[  111.909547][ T6954] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  111.933703][ T6954] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  111.957189][ T6954] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  111.963633][ T6954] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  112.097997][ T6954] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.100973][ T5858] Bluetooth: hci1: command tx timeout
[  112.112590][ T6954] 8021q: adding VLAN 0 to HW filter on device team0
[  112.115862][ T7089] netlink: 4 bytes leftover after parsing attributes in process `syz.2.430'.
[  112.126183][ T1092] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.128579][ T1092] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.133223][ T1092] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.135467][ T1092] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.389610][ T7093] loop1: detected capacity change from 0 to 32768
[  112.414007][ T6954] 8021q: adding VLAN 0 to HW filter on device batadv0
[  112.468238][ T7093] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,background_compression=lz4,wide_macs,no_splitbrain_check,recovery_pass_last=accounting_read,nojournal_transaction_names,read_only,version_upgrade=incompatible,no_data_io
[  112.468261][ T7093]   allowing incompatible features above 0.0: (unknown version)
[  112.468270][ T7093]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  112.478644][ T6954] veth0_vlan: entered promiscuous mode
[  112.479697][ T7093] bcachefs (loop1): Using encoding defined by superblock: utf8-12.1.0
[  112.489241][ T6954] veth1_vlan: entered promiscuous mode
[  112.490780][ T7093] bcachefs (loop1): invalid bkey in superblock btree=lru level=1: u64s 11 type btree_ptr_v2 SPOS_MAX len 131072 ver 0: seq 28f61e078e70b95c written 16 min_key POS_MIN durability: 1 ptr: 0:28:0 gen 0
[  112.503197][ T7093]   size != 0, deleting
[  112.504879][ T7093] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  112.508093][ T7093] bcachefs (loop1): Now allowing incompatible features up to 1.28: inode_has_case_insensitive, previously allowed up to 0.0: (unknown version)
[  112.508093][ T7093] 
[  112.528260][ T7093] syz.1.432: attempt to access beyond end of device
[  112.528260][ T7093] loop1: rw=6145, sector=18446744073709551615, nr_sectors = 10 limit=32768
[  112.534061][ T7093] bcachefs (loop1): superblock write error: I/O
[  112.536477][ T7093] bcachefs (loop1): bch2_write_super(): fatal error : Unable to write superblock to sufficient devices (from bch2_fs_recovery)
[  112.541760][ T7093] bcachefs (loop1): fatal error - emergency read only
[  112.557971][ T7093] bcachefs (loop1): bch2_write_super(): fatal error  loop1: Superblock modified by another process (seq 43 expected 42)
[  112.562704][ T7093] bcachefs (loop1): btree node read error at btree alloc level 0/0
[  112.562717][ T7093]   u64s 11 type btree_ptr_v2 283673999966207:U64_MAX:U32_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0
[  112.562729][ T7093]   loop1 node offset 0/24 bset u64s 0: incorrect max key SPOS_MAX
[  112.562738][ T7093]   loop1 btree validate error
[  112.562745][ T7093]   flagging btree alloc lost data
[  112.562752][ T7093]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  112.562761][ T7093]   running recovery pass check_allocations (8), currently at recovery_pass_empty (0)
[  112.562770][ T7093]   running recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[  112.562779][ T7093]   running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[  112.562789][ T7093]   running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0)
[  112.562797][ T7093]   ret btree_node_read_err_bad_node
[  112.600672][ T7093] bcachefs (loop1): error reading btree root btree=alloc level=0: btree_node_read_error, fixing
[  112.611267][ T6954] veth0_macvtap: entered promiscuous mode
[  112.611297][ T7093] bcachefs (loop1): check_topology...
[  112.614717][ T7093] bcachefs (loop1): bch2_write_super(): fatal error  loop1: Superblock modified by another process (seq 43 expected 42)
[  112.621526][ T7093]  done
[  112.622601][ T7093] bcachefs (loop1): accounting_read...
[  112.626841][ T7093] bcachefs (loop1): bch2_write_super(): fatal error  loop1: Superblock modified by another process (seq 43 expected 42)
[  112.633555][ T7093]  done
[  112.634756][ T7093] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean
[  112.639784][ T7093] bcachefs (loop1): bch2_write_super(): fatal error  loop1: Superblock modified by another process (seq 43 expected 42)
[  112.644447][ T7093] bcachefs (loop1): done starting filesystem
[  112.662662][ T6954] veth1_macvtap: entered promiscuous mode
[  112.701722][ T5855] bcachefs (loop1): shutting down
[  112.706284][ T6954] batman_adv: batadv0: Interface activated: batadv_slave_0
[  112.714145][ T6954] batman_adv: batadv0: Interface activated: batadv_slave_1
[  112.736146][ T5855] bcachefs (loop1): shutdown complete
[  112.749708][ T5678] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  112.754895][ T5678] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  112.789585][ T5678] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  112.792266][ T5678] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  112.839867][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.842891][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.878581][ T1092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  112.881788][ T1092] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.231155][ T7123] overlayfs: metacopy with no lower data found - abort lookup (/file7)
[  113.306434][ T7113] loop2: detected capacity change from 0 to 32768
[  113.363291][ T7129] loop3: detected capacity change from 0 to 256
[  113.372046][ T7113] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  113.433757][ T7113] XFS (loop2): Ending clean mount
[  113.443935][ T7113] XFS (loop2): Quotacheck needed: Please wait.
[  113.500660][ T7113] XFS (loop2): Quotacheck: Done.
[  113.502067][ T7137] netlink: 8 bytes leftover after parsing attributes in process `syz.3.447'.
[  113.584383][ T5848] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  114.112331][ T7155] loop1: detected capacity change from 0 to 1024
[  114.119072][ T7155] EXT4-fs: Ignoring removed bh option
[  114.124933][ T7155] EXT4-fs: inline encryption not supported
[  114.139354][ T7155] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  114.152980][ T7155] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.454: lblock 2 mapped to illegal pblock 2 (length 1)
[  114.159784][ T7155] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  114.164129][ T7155] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.454: lblock 0 mapped to illegal pblock 48 (length 1)
[  114.173642][ T7155] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  114.180382][ T7155] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.454: Failed to acquire dquot type 0
[  114.186997][ T5858] Bluetooth: hci1: command tx timeout
[  114.190753][ T7155] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  114.206515][ T7155] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.454: mark_inode_dirty error
[  114.212602][ T7155] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  114.216442][ T7155] EXT4-fs (loop1): 1 orphan inode deleted
[  114.226651][ T7155] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.228142][   T52] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  114.244610][   T52] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  114.252002][   T52] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u9:2: Failed to release dquot type 0
[  114.252839][ T7155] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.454: Invalid inode table block 1 in block_group 0
[  114.268820][ T7155] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  114.289048][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.293756][   T83] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u9:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  114.298667][   T83] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  114.301353][   T83] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u9:3: Failed to release dquot type 0
[  114.305706][ T5855] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0
[  114.312588][ T5855] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  114.316018][ T5855] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error
[  114.889079][ T7180] loop3: detected capacity change from 0 to 256
[  114.892626][ T7180] exfat: Deprecated parameter 'utf8'
[  114.907320][ T7180] exfat: Deprecated parameter 'utf8'
[  114.939509][ T7180] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  114.997887][  T793] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  115.069649][ T7182] can: request_module (can-proto-5) failed.
[  115.073254][ T5858] Bluetooth: hci1: unexpected cc 0x0809 length: 31 > 4
[  115.151434][ T5858] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  115.155835][ T5858] CPU: 0 UID: 0 PID: 5858 Comm: kworker/u11:3 Not tainted syzkaller #0 PREEMPT(full) 
[  115.155856][ T5858] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  115.155866][ T5858] Workqueue: hci1 hci_rx_work
[  115.155891][ T5858] Call Trace:
[  115.155898][ T5858]  <TASK>
[  115.155905][ T5858]  dump_stack_lvl+0x189/0x250
[  115.155928][ T5858]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.155946][ T5858]  ? __pfx__printk+0x10/0x10
[  115.155991][ T5858]  ? kernfs_path_from_node+0x250/0x290
[  115.156008][ T5858]  ? kernfs_path_from_node+0x2f/0x290
[  115.156027][ T5858]  sysfs_create_dir_ns+0x259/0x280
[  115.156062][ T5858]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  115.156081][ T5858]  ? do_raw_spin_unlock+0x4d/0x240
[  115.156102][ T5858]  kobject_add_internal+0x59f/0xb40
[  115.156128][ T5858]  kobject_add+0x155/0x220
[  115.156149][ T5858]  ? __pfx_kobject_add+0x10/0x10
[  115.156167][ T5858]  ? _raw_spin_unlock+0x28/0x50
[  115.156230][ T5858]  ? get_device_parent+0x366/0x3a0
[  115.156251][ T5858]  device_add+0x408/0xb50
[  115.156271][ T5858]  hci_conn_add_sysfs+0xd5/0x1e0
[  115.156293][ T5858]  le_conn_complete_evt+0xc3a/0x1220
[  115.156321][ T5858]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  115.156336][ T5858]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  115.156349][ T5858]  ? __asan_memcpy+0x40/0x70
[  115.156370][ T5858]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  115.156468][ T5858]  ? skb_pull_data+0xfb/0x200
[  115.156495][ T5858]  hci_le_conn_complete_evt+0x187/0x450
[  115.156517][ T5858]  hci_event_packet+0x78f/0x1200
[  115.156540][ T5858]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  115.156556][ T5858]  ? __pfx_hci_event_packet+0x10/0x10
[  115.156577][ T5858]  ? kcov_remote_start+0x4d3/0x7f0
[  115.156597][ T5858]  ? lockdep_hardirqs_on+0x90/0x150
[  115.156614][ T5858]  ? hci_send_to_monitor+0xe2/0x570
[  115.156632][ T5858]  hci_rx_work+0x46a/0xe80
[  115.156681][ T5858]  ? process_scheduled_works+0x9ef/0x17b0
[  115.156700][ T5858]  process_scheduled_works+0xae1/0x17b0
[  115.156736][ T5858]  ? __pfx_process_scheduled_works+0x10/0x10
[  115.156764][ T5858]  worker_thread+0x8a0/0xda0
[  115.156781][ T5858]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  115.156810][ T5858]  ? __kthread_parkme+0x7b/0x200
[  115.156833][ T5858]  kthread+0x711/0x8a0
[  115.156853][ T5858]  ? __pfx_worker_thread+0x10/0x10
[  115.156867][ T5858]  ? __pfx_kthread+0x10/0x10
[  115.156885][ T5858]  ? _raw_spin_unlock_irq+0x23/0x50
[  115.156905][ T5858]  ? lockdep_hardirqs_on+0x9c/0x150
[  115.156917][ T5858]  ? __pfx_kthread+0x10/0x10
[  115.156935][ T5858]  ret_from_fork+0x439/0x7d0
[  115.156952][ T5858]  ? __pfx_ret_from_fork+0x10/0x10
[  115.156971][ T5858]  ? __switch_to_asm+0x39/0x70
[  115.156987][ T5858]  ? __switch_to_asm+0x33/0x70
[  115.157003][ T5858]  ? __pfx_kthread+0x10/0x10
[  115.157021][ T5858]  ret_from_fork_asm+0x1a/0x30
[  115.157052][ T5858]  </TASK>
[  115.161670][  T793] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  115.161956][ T5858] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  115.165800][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  115.167960][ T5858] Bluetooth: hci1: failed to register connection device
[  115.233321][ T7187] loop2: detected capacity change from 0 to 1024
[  115.236927][  T793] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  115.283355][ T7187] hfsplus: invalid extended attribute record
[  115.298786][  T793] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  115.309026][  T793] usb 2-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  115.312512][  T793] usb 2-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  115.315985][  T793] usb 2-1: Manufacturer: syz
[  115.320943][  T793] usb 2-1: config 0 descriptor??
[  115.357182][   T64] hfsplus: b-tree write err: -5, ino 8
[  115.539359][ T4217] wlan1: Trigger new scan to find an IBSS to join
[  115.733458][  T793] appleir 0003:05AC:8243.0004: unknown main item tag 0x0
[  115.735673][ T7199] bond0: default FDB implementation only supports local addresses
[  115.754323][  T793] appleir 0003:05AC:8243.0004: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0
[  116.003453][  T793] usb 2-1: USB disconnect, device number 9
[  116.440444][ T7212] loop3: detected capacity change from 0 to 32768
[  116.471605][ T7212] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  116.487599][ T7212] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  116.524159][ T7212] (syz.3.479,7212,1):ocfs2_remove_inode_range:1794 ERROR: status = -22
[  116.528973][ T7212] (syz.3.479,7212,1):__ocfs2_change_file_space:2045 ERROR: status = -22
[  116.615039][ T6954] ocfs2: Unmounting device (7,3) on (node local)
[  116.656328][ T7218] loop1: detected capacity change from 0 to 4096
[  116.738211][ T7218] ntfs3(loop1): Failed to initialize $Secure (-22).
[  117.004759][ T7222] loop3: detected capacity change from 0 to 32768
[  117.541317][ T7237] loop1: detected capacity change from 0 to 128
[  117.544696][ T7237] hpfs: 
[  117.544696][ T7237] HPFS filesystem options:
[  117.544696][ T7237]       help              do not mount and display this text
[  117.544696][ T7237]       uid=xxx           set uid of files that don't have uid specified in eas
[  117.544696][ T7237]       gid=xxx           set gid of files that don't have gid specified in eas
[  117.544696][ T7237]       umask=xxx         set mode of files that don't have mode specified in eas
[  117.544696][ T7237]       case=lower        lowercase all files
[  117.544696][ T7237]       case=asis         do not lowercase files (default)
[  117.544696][ T7237]       check=none        no fs checks - kernel may crash on corrupted filesystem
[  117.544696][ T7237]       check=normal      do some checks - it should not crash (default)
[  117.544696][ T7237]       check=strict      do extra time-consuming checks, used for debugging
[  117.544696][ T7237]       errors=continue   continue on errors
[  117.544696][ T7237]       errors=remount-ro remount read-only if errors found (default)
[  117.544696][ T7237]       errors=panic      panic on errors
[  117.544696][ T7237]       chkdsk=no         do not mark fs for chkdsking even if there were errors
[  117.544696][ T7237]       chkdsk=errors     mark fs dirty if errors found (default)
[  117.544696][ T7237]       chkdsk=always     always mark fs dirty - used for debugging
[  117.544696][ T7237]       e
[  117.637619][ T7240] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.492'.
[  118.324109][ T7252] loop3: detected capacity change from 0 to 1024
[  118.361064][ T4217] hfsplus: b-tree write err: -5, ino 4
[  118.434014][ T7244] loop1: detected capacity change from 0 to 32768
[  118.437473][ T7244] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.493 (7244)
[  118.448711][ T7244] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  118.453082][ T7244] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  118.592500][   T52] wlan1: Trigger new scan to find an IBSS to join
[  118.623086][ T7244] BTRFS info (device loop1): enabling ssd optimizations
[  118.643217][ T7244] BTRFS info (device loop1): enabling free space tree
[  118.645468][ T7244] BTRFS info (device loop1): use zstd compression, level 3
[  118.781070][ T7285] openvswitch: netlink: Tunnel attr 171 out of range max 16
[  118.828974][ T5855] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  119.129898][ T7289] loop3: detected capacity change from 0 to 32768
[  119.136571][ T7289] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section members_v2: device 0: invalid btree_bitmap_shift 248
[  119.136571][ T7289] members_v2 (size 152):
[  119.136571][ T7289] Device:                        0
[  119.136571][ T7289]   Label:                       (none)
[  119.136571][ T7289]   UUID:                        7af6772b-00de-4159-84cd-1faead05aceb
[  119.136571][ T7289]   Size:                        16777216
[  119.136571][ T7289]   read errors:                 0
[  119.136571][ T7289]   write errors:                0
[  119.136571][ T7289]   checksum errors:             0
[  119.136571][ T7289]   seqread iops:                0
[  119.136571][ T7289]   seqwrite iops:               0
[  119.136571][ T7289]   randread iops:               0
[  119.136571][ T7289]   randwrite iops:              0
[  119.136571][ T7289]   Bucket size:                 131072
[  119.136571][ T7289]   First bucket:                0
[  119.136571][ T7289]   Buckets:                     128
[  119.136571][ T7289]   Last mount:                  1714681267
[  119.136571][ T7289]   Last superblock write:       42
[  119.136571][ T7289]   State:                       rw
[  119.136571][ T7289]   Data allowed:                journal,btree,user
[  119.136571][ T7289]   Has data:                    (none)
[  119.136571][ T7289]   Btree allocated bitmap blocksize:(invalid shift 248)
[  119.136571][ T7289]   Btree allocated bitmap:      0000000000000000000001000010000010011000000000000000000000000000
[  119.136571][ T7289]  
[  119.138497][ T7289] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  119.552006][   T64] wlan1: Creating new IBSS network, BSSID b6:be:47:13:a8:dc
[  119.888753][ T5883] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  120.147612][ T5883] usb 4-1: Using ep0 maxpacket: 16
[  120.153743][ T5883] usb 4-1: config 0 has an invalid interface number: 126 but max is 0
[  120.158212][ T5883] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  120.165991][ T5883] usb 4-1: config 0 has no interface number 0
[  120.172272][ T5883] usb 4-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  120.180931][ T5883] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024
[  120.192012][ T5883] usb 4-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[  120.200730][ T5883] usb 4-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 147
[  120.213837][ T5883] usb 4-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[  120.226935][ T5883] usb 4-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[  120.235789][ T5883] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.252831][ T5883] usb 4-1: config 0 descriptor??
[  120.255573][ T7302] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  120.261742][ T7302] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  120.272834][ T5883] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  120.514241][ T1919] usb 4-1: USB disconnect, device number 2
[  121.079775][   T33] audit: type=1326 audit(120.959:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.518851][   T33] audit: type=1326 audit(121.399:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.533057][   T33] audit: type=1326 audit(121.399:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.544605][   T33] audit: type=1326 audit(121.399:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.551526][   T33] audit: type=1326 audit(121.399:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.558447][   T33] audit: type=1326 audit(121.399:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.565069][   T33] audit: type=1326 audit(121.399:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.571562][   T33] audit: type=1326 audit(121.399:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.579402][   T33] audit: type=1326 audit(121.399:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  121.590468][   T33] audit: type=1326 audit(121.409:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7349 comm="syz.2.519" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25f8eba9 code=0x7fc00000
[  122.118297][ T7427] x_tables: ip_tables: udp match: only valid for protocol 17
[  122.580953][ T7466] openvswitch: netlink: Tunnel attr 5 has unexpected len 4 expected 0
[  122.648207][ T5883] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  122.795957][ T7476] gfs2: gfs2 mount does not exist
[  122.813984][ T7464] loop2: detected capacity change from 0 to 32768
[  122.821335][ T7464] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section journal_v2: journal bucket 4294967319 past end of device (nbuckets 128)
[  122.821335][ T7464] journal_v2 (size 40):
[  122.821335][ T7464] Buckets:  9-16 24-4294967320
[  122.821335][ T7464] 
[  122.844378][ T7464] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal
[  122.847195][ T5883] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  122.850252][ T5883] usb 2-1: config 0 has no interface number 0
[  122.852593][ T5883] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  122.856530][ T5883] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  122.871210][ T5883] usb 2-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  122.876137][ T5883] usb 2-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  122.894696][ T5883] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.928507][ T5883] usb 2-1: config 0 descriptor??
[  123.352182][ T7490] loop3: detected capacity change from 0 to 32768
[  123.378880][ T7490] ERROR: (device loop3): dbAlloc: the hint is outside the map
[  123.378880][ T7490] 
[  123.384291][ T7490] ERROR: (device loop3): remounting filesystem as read-only
[  123.544012][ T5883] uclogic 0003:28BD:0042.0005: failed retrieving string descriptor #100: -71
[  123.547999][ T5883] uclogic 0003:28BD:0042.0005: failed retrieving pen parameters: -71
[  123.551189][ T5883] uclogic 0003:28BD:0042.0005: pen probing failed: -71
[  123.553807][ T5883] uclogic 0003:28BD:0042.0005: failed probing parameters: -71
[  123.561369][ T5883] uclogic 0003:28BD:0042.0005: probe with driver uclogic failed with error -71
[  123.569757][ T5883] usb 2-1: USB disconnect, device number 10
[  123.766963][ T1919] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  123.810734][ T7510] loop3: detected capacity change from 0 to 4096
[  123.818224][ T7510] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  123.837642][ T7510] ntfs3(loop3): ino=19, mi_enum_attr
[  123.839439][ T7510] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  123.949142][ T1919] usb 3-1: Using ep0 maxpacket: 16
[  123.953259][ T1919] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  123.957866][ T1919] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  123.961350][ T1919] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.968535][ T1919] usb 3-1: config 0 descriptor??
[  124.214733][ T7522] loop1: detected capacity change from 0 to 4096
[  124.226159][ T7522] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  124.390568][ T1919] mcp2221 0003:04D8:00DD.0006: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  124.596645][ T7524] loop3: detected capacity change from 0 to 32768
[  124.607666][ T7524] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.565 (7524)
[  124.670052][ T7524] BTRFS info (device loop3): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  124.673910][ T7524] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  124.792195][ T1919] usb 3-1: USB disconnect, device number 10
[  124.851547][ T7524] BTRFS info (device loop3): enabling ssd optimizations
[  124.871968][ T7524] BTRFS info (device loop3): enabling free space tree
[  124.972349][ T6954] BTRFS info (device loop3): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  125.192814][ T7542] loop1: detected capacity change from 0 to 32768
[  125.220292][ T7542] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  125.223548][ T7542] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  125.235110][ T7542] XFS (loop1): Ending clean mount
[  125.243612][ T7542] XFS (loop1): Quotacheck needed: Please wait.
[  125.268764][ T7542] XFS (loop1): Quotacheck: Done.
[  125.299066][ T5855] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  125.587623][ T5883] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  125.739661][ T5883] usb 3-1: config 0 interface 0 has no altsetting 0
[  125.744674][ T5883] usb 3-1: New USB device found, idVendor=2a39, idProduct=3f8c, bcdDevice=94.24
[  125.749722][ T5883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.755023][ T5883] usb 3-1: Product: syz
[  125.757403][ T5883] usb 3-1: Manufacturer: syz
[  125.759378][ T5883] usb 3-1: SerialNumber: syz
[  125.764128][ T5883] usb 3-1: config 0 descriptor??
[  126.033624][ T5883] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -22
[  126.044329][ T5883] usb 3-1: USB disconnect, device number 11
[  126.062365][ T5852] udevd[5852]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  126.496359][ T7598] syz_tun: entered allmulticast mode
[  126.654628][ T7606] loop2: detected capacity change from 0 to 256
[  126.661885][ T7606] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  126.665864][ T7606] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  126.674877][ T7606] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  126.807509][ T6026] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  126.979099][ T6026] usb 4-1: unable to get BOS descriptor or descriptor too short
[  126.985969][ T6026] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  127.004339][ T6026] usb 4-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  127.036892][ T6026] usb 4-1: config 1 interface 0 has no altsetting 1
[  127.045926][ T6026] usb 4-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[  127.057134][ T6026] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.060269][ T6026] usb 4-1: Product: syz
[  127.062278][ T6026] usb 4-1: Manufacturer: syz
[  127.064096][ T6026] usb 4-1: SerialNumber: syz
[  127.087653][ T6026] smsusb:smsusb_probe: board id=8, interface number 0
[  127.300275][ T6026] smsusb:smsusb_probe: usb_set_interface failed, rc -71
[  127.310643][ T6026] smsusb 4-1:1.0: probe with driver smsusb failed with error -71
[  127.323646][ T6026] usb 4-1: USB disconnect, device number 3
[  127.602615][ T7624] loop2: detected capacity change from 0 to 4096
[  128.179789][ T5858] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  128.183262][ T5858] Bluetooth: hci1: Injecting HCI hardware error event
[  128.187432][ T5858] Bluetooth: hci1: hardware error 0x00
[  128.498824][ T7633] serio: Serial port ptm0
[  129.740398][ T7645] loop1: detected capacity change from 0 to 32768
[  129.752898][ T7645] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section clean: entry type btree_keys overruns end of section
[  129.752898][ T7645] clean (size 2912):
[  129.752898][ T7645] flags:          0
[  129.752898][ T7645] journal_seq:    8
[  129.752898][ T7645] prio_ptrs: 
[  129.752898][ T7645] usage: type=key_version v=0
[  129.752898][ T7645] usage: type=reserved v=0
[  129.752898][ T7645] usage: type=reserved v=0
[  129.752898][ T7645] usage: type=reserved v=0
[  129.752898][ T7645] usage: type=reserved v=0
[  129.752898][ T7645] data_usage: btree: 1/1 [0]=2816
[  129.752898][ T7645] data_usage: journal: 1/1 [0]=0
[  129.752898][ T7645] data_usage: user: 1/1 [0]=32
[  129.752898][ T7645] dev_usage: dev=0  
[  129.752898][ T7645]   free: buckets=83 sectors=0 fragmented=0
[  129.752898][ T7645]   sb: buckets=25 sectors=6152 fragmented=248
[  129.752898][ T7645]   journal: buckets=8 sectors=2048 fragmented=0
[  129.752898][ T7645]   btree: buckets=11 sectors=2816 fragmented=0
[  129.752898][ T7645]   user: buckets=1 sectors=32 fragmented=224
[  129.752898][ T7645]   cached: buckets=0 sectors=0 fragmented=0
[  129.752898][ T7645]   parity: buckets=0 sectors=0 fragmented=0
[  129.752898][ T7645]   stripe: buckets=0 sectors=0 fragmented=0
[  129.752898][ T7645]   need_gc_gens: buckets=0 sectors=0 fragmented=0
[  129.752898][ T7645]   need_discard: buckets=0 sectors=0 fragmented=0
[  129.752898][ T7645] clock: read=0
[  129.752898][ T7645] clock: write=1288
[  129.752898][ T7645] btree_root: btree=extents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 249e7ae2af8ee3
[  129.753116][ T7645] bcachefs: bch2_fs_get_tree() error: invalid_sb_clean
[  130.246861][   T24] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  130.263793][ T5858] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  130.397256][   T24] usb 3-1: Using ep0 maxpacket: 16
[  130.401619][   T24] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  130.404749][   T24] usb 3-1: config 0 has no interface number 0
[  130.421880][   T24] usb 3-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  130.425229][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  130.439028][   T24] usb 3-1: Product: syz
[  130.441032][   T24] usb 3-1: Manufacturer: syz
[  130.442835][   T24] usb 3-1: SerialNumber: syz
[  130.458666][   T24] usb 3-1: config 0 descriptor??
[  130.473743][   T24] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  130.495070][ T7633] loop3: detected capacity change from 0 to 262144
[  130.495453][ T7655] loop1: detected capacity change from 0 to 2048
[  130.499025][ T7633] f2fs: Unknown parameter ''
[  130.530204][ T7655] EXT4-fs: Ignoring removed nobh option
[  130.631670][ T7655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  130.765429][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.969004][   T24] gspca_spca1528: reg_w err -71
[  131.971097][   T24] spca1528 3-1:0.1: probe with driver spca1528 failed with error -71
[  131.988476][   T24] usb 3-1: USB disconnect, device number 12
[  134.245124][ T7717] loop2: detected capacity change from 0 to 512
[  134.282685][ T7717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.310748][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.397021][   T51] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  134.550217][   T51] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  134.554482][   T51] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  134.559636][   T51] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  134.563193][   T51] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.577324][ T7713] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  134.583970][   T51] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  134.797779][ T1919] usb 2-1: USB disconnect, device number 11
[  135.548339][ T7735] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  135.551346][ T7735] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  135.612599][ T7739] netlink: 40 bytes leftover after parsing attributes in process `syz.2.645'.
[  136.137821][   T24] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  136.286763][   T24] usb 2-1: Using ep0 maxpacket: 16
[  136.292589][   T24] usb 2-1: config 0 has an invalid interface number: 104 but max is 1
[  136.295747][   T24] usb 2-1: config 0 has an invalid interface number: 104 but max is 1
[  136.300573][   T24] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[  136.304178][   T24] usb 2-1: config 0 has no interface number 0
[  136.306780][   T24] usb 2-1: config 0 interface 104 altsetting 0 endpoint 0x8 has invalid maxpacket 14129, setting to 64
[  136.311202][   T24] usb 2-1: config 0 interface 104 has no altsetting 1
[  136.316523][   T24] usb 2-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  136.320547][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.324192][   T24] usb 2-1: Product: syz
[  136.325982][   T24] usb 2-1: Manufacturer: syz
[  136.328905][   T24] usb 2-1: SerialNumber: syz
[  136.333788][   T24] usb 2-1: config 0 descriptor??
[  136.542625][   T24] asix 2-1:0.104 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  136.548884][   T24] asix 2-1:0.104: probe with driver asix failed with error -71
[  136.560317][   T24] usb 2-1: USB disconnect, device number 12
[  136.646056][ T7752] loop2: detected capacity change from 0 to 1024
[  136.657663][ T7752] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  136.661103][ T7752] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869)
[  136.677144][ T7752] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  136.686775][ T7752] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[  136.694763][ T7754] loop3: detected capacity change from 0 to 4096
[  137.395592][ T7766] loop1: detected capacity change from 0 to 1024
[  137.430064][ T7766] EXT4-fs (loop1): Can't support bigalloc feature without extents feature
[  137.430064][ T7766] 
[  137.448453][ T7766] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  137.518956][ T7768] loop2: detected capacity change from 0 to 256
[  137.560860][ T7768] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbbba8adb, utbl_chksum : 0xe619d30d)
[  137.648446][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  137.651198][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  137.896046][ T7773] netlink: 52 bytes leftover after parsing attributes in process `syz.2.659'.
[  137.900101][ T7773] netlink: 16 bytes leftover after parsing attributes in process `syz.2.659'.
[  137.904084][ T7773] netlink: 52 bytes leftover after parsing attributes in process `syz.2.659'.
[  138.314134][ T7783] netlink: 8 bytes leftover after parsing attributes in process `syz.2.664'.
[  138.490536][ T7787] loop2: detected capacity change from 0 to 512
[  138.511141][ T7787] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  138.527173][ T7787] EXT4-fs (loop2): 1 truncate cleaned up
[  138.534408][ T7787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.624908][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.210355][ T7806] loop2: detected capacity change from 0 to 128
[  139.224532][ T7806] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  139.230311][ T7808] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  139.238129][ T1919] IPVS: starting estimator thread 0...
[  139.274828][ T4251] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  139.332145][ T7809] IPVS: using max 63 ests per chain, 151200 per kthread
[  139.440935][ T7823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.682'.
[  139.473965][ T5865] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  139.484117][ T7823] netlink: 4 bytes leftover after parsing attributes in process `syz.3.682'.
[  139.487128][ T5865] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  139.489805][ T5865] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  139.492629][ T5865] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  139.724060][ T7840] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode active-backup(1)
[  139.772381][ T7835] loop3: detected capacity change from 0 to 32768
[  139.775646][ T7835] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section members_v2: device 0: bucket size 4 smaller than block size 8
[  139.775646][ T7835] members_v2 (size 152):
[  139.775646][ T7835] Device:                        0
[  139.775646][ T7835]   Label:                       (none)
[  139.775646][ T7835]   UUID:                        87bd6f1c-e82e-46d8-bfd9-42f53008fa72
[  139.775646][ T7835]   Size:                        262144
[  139.775646][ T7835]   read errors:                 0
[  139.775646][ T7835]   write errors:                0
[  139.775646][ T7835]   checksum errors:             0
[  139.775646][ T7835]   seqread iops:                0
[  139.775646][ T7835]   seqwrite iops:               0
[  139.775646][ T7835]   randread iops:               0
[  139.775646][ T7835]   randwrite iops:              0
[  139.775646][ T7835]   Bucket size:                 2048
[  139.775646][ T7835]   First bucket:                0
[  139.775646][ T7835]   Buckets:                     128
[  139.775646][ T7835]   Last mount:                  1714681267
[  139.775646][ T7835]   Last superblock write:       41
[  139.775646][ T7835]   State:                       rw
[  139.775646][ T7835]   Data allowed:                journal,btree,user
[  139.775646][ T7835]   Has data:                    (none)
[  139.775646][ T7835]   Btree allocated bitmap blocksize:256
[  139.775646][ T7835]   Btree allocated bitmap:      0000000000000000000000010001000010011000000000000000000000000000
[  139.775646][ T7835]   Durability
[  139.775736][ T7835] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  139.831597][ T7842] misc userio: Can't change port type on an already running userio instance
[  140.246931][ T5883] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  140.500602][ T5883] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  140.747892][ T5883] usb 4-1: config 0 has no interface number 0
[  140.750486][ T5883] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  140.753314][ T5883] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.778156][ T5883] usb 4-1: config 0 descriptor??
[  140.788442][ T5883] cp210x 4-1:0.1: cp210x converter detected
[  140.988166][ T7851] loop1: detected capacity change from 0 to 40427
[  141.000207][ T7851] F2FS-fs (loop1): invalid crc value
[  141.088107][ T7851] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  141.093645][ T7851] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  141.246409][ T5883] cp210x 4-1:0.1: failed to get vendor val 0x000e size 3: -32
[  141.478097][ T5883] usb 4-1: cp210x converter now attached to ttyUSB0
[  141.662487][ T6026] usb 4-1: USB disconnect, device number 4
[  141.686450][ T7874] mmap: syz.2.703 (7874) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  141.695429][ T6026] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  141.720938][ T6026] cp210x 4-1:0.1: device disconnected
[  142.017988][ T7881] loop2: detected capacity change from 0 to 32768
[  142.031741][ T7881] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  142.078025][ T7881] XFS (loop2): Ending clean mount
[  142.132734][ T5848] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  142.445207][ T7898] loop2: detected capacity change from 0 to 8
[  142.477963][ T5883] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  142.503663][ T7898] SQUASHFS error: xz decompression failed, data probably corrupt
[  142.508671][ T7898] SQUASHFS error: Failed to read block 0x108: -5
[  142.511249][ T7898] SQUASHFS error: Unable to read metadata cache entry [106]
[  142.514105][ T7898] SQUASHFS error: Unable to read inode 0x11f
[  142.569150][ T7898] usb usb8: usbfs: process 7898 (syz.2.710) did not claim interface 0 before use
[  142.636071][ T5883] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  142.650315][ T5883] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.701055][ T5883] usb 4-1: config 0 descriptor??
[  143.162051][ T5883] ath6kl: Failed to submit usb control message: -71
[  143.170962][ T5883] ath6kl: unable to send the bmi data to the device: -71
[  143.181059][ T5883] ath6kl: Unable to send get target info: -71
[  143.201091][ T5883] ath6kl: Failed to init ath6kl core: -71
[  143.210832][ T5883] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  143.229279][ T5883] usb 4-1: USB disconnect, device number 5
[  143.440158][ T7910] netlink: 4 bytes leftover after parsing attributes in process `syz.1.715'.
[  144.155425][ T7930] loop3: detected capacity change from 0 to 256
[  144.171352][ T7930] exfat: Deprecated parameter 'utf8'
[  144.185532][ T7930] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  144.203773][ T7932] loop2: detected capacity change from 0 to 2048
[  144.214934][ T7932] UDF-fs: warning (device loop2): udf_fill_super: No partition found (2)
[  144.221744][ T7930] overlay: filesystem on ./file0 not supported
[  144.406608][ T7926] loop1: detected capacity change from 0 to 32768
[  144.434804][ T7926] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  144.468499][ T5855] ocfs2: Unmounting device (7,1) on (node local)
[  144.603105][ T7934] loop2: detected capacity change from 0 to 32768
[  144.608643][ T7934] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.727 (7934)
[  144.627020][ T7934] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  144.636622][ T7934] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  144.953037][   T64] BTRFS error (device loop2): bad tree block start, mirror 1 want 5341184 have 0
[  144.962145][ T7934] BTRFS error (device loop2): failed to load root free space
[  144.994038][ T7934] BTRFS error (device loop2): open_ctree failed: -5
[  145.366562][ T7967] netlink: 32 bytes leftover after parsing attributes in process `syz.3.735'.
[  145.376005][ T7967] tipc: Invalid UDP bearer configuration
[  145.376054][ T7967] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  145.429072][ T7944] loop1: detected capacity change from 0 to 131072
[  145.433562][ T7944] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  145.437278][ T7944] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  145.447287][ T7944] F2FS-fs (loop1): invalid crc value
[  145.519589][ T7944] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  145.528886][ T7944] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  145.531698][ T7944] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  145.842689][ T7988] loop2: detected capacity change from 0 to 256
[  145.863455][ T7988] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 1)
[  145.866514][ T7988] exFAT-fs (loop2): failed to load alloc-bitmap
[  145.876277][ T7988] exFAT-fs (loop2): failed to recognize exfat type
[  146.164860][ T7999] binder: 7997:7999 ioctl c0306201 200000000640 returned -22
[  146.208363][ T5883] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  146.368805][ T5883] usb 3-1: Using ep0 maxpacket: 16
[  146.376364][ T5883] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 8.00
[  146.380500][ T5883] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.388667][ T5883] usb 3-1: config 0 descriptor??
[  146.400012][ T5883] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  146.408117][ T5883] usb 3-1: Detected FT4232H
[  146.574235][ T8003] loop1: detected capacity change from 0 to 32768
[  146.610756][ T5883] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  146.617421][ T5883] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  146.629159][ T5883] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  146.634712][ T5883] usb 3-1: USB disconnect, device number 13
[  146.682676][ T5883] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  146.692142][ T5883] ftdi_sio 3-1:0.0: device disconnected
[  147.454282][ T8020] loop2: detected capacity change from 0 to 4096
[  147.724191][ T8020] NILFS (loop2): invalid segment: Inconsistency found
[  147.726876][ T8020] NILFS (loop2): trying rollback from an earlier position
[  147.759273][ T8020] NILFS (loop2): recovery complete
[  147.772249][ T8023] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  148.356572][ T8030] input: syz1 as /devices/virtual/input/input9
[  148.633296][ T8035] netlink: 40 bytes leftover after parsing attributes in process `syz.3.760'.
[  148.859225][    C0] Unknown status report in ack skb
[  148.867018][ T1919] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  149.016752][ T1919] usb 3-1: Using ep0 maxpacket: 8
[  149.024130][ T1919] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  149.029951][ T1919] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.033247][ T1919] usb 3-1: Product: syz
[  149.035046][ T1919] usb 3-1: Manufacturer: syz
[  149.037463][ T1919] usb 3-1: SerialNumber: syz
[  149.044972][ T1919] usb 3-1: config 0 descriptor??
[  149.260937][ T1919] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  149.633013][ T8045] loop3: detected capacity change from 0 to 131072
[  149.633790][ T4464] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  149.639400][ T8045] F2FS-fs (loop3): invalid crc value
[  149.700753][ T8045] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  149.705236][ T8045] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  149.906786][ T8058] loop1: detected capacity change from 0 to 32768
[  149.920106][ T8058] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.769 (8058)
[  150.041667][ T8058] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  150.046173][ T8058] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  150.184593][ T8058] BTRFS info (device loop1): rebuilding free space tree
[  150.213700][ T8058] BTRFS info (device loop1): enabling ssd optimizations
[  150.216587][ T8058] BTRFS info (device loop1): turning on sync discard
[  150.219377][ T8058] BTRFS info (device loop1): enabling free space tree
[  150.222138][ T8058] BTRFS info (device loop1): force clearing of disk cache
[  150.224961][ T8058] BTRFS info (device loop1): enabling auto defrag
[  150.228171][ T8058] BTRFS info (device loop1): max_inline set to 0
[  150.572829][ T5855] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  150.792746][ T1919] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  150.816557][ T1919] usb 3-1: USB disconnect, device number 14
[  150.930928][ T8086] netlink: 12 bytes leftover after parsing attributes in process `syz.1.774'.
[  150.946088][ T8088] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  151.025214][ T8092] loop3: detected capacity change from 0 to 512
[  151.295708][ T8090] loop1: detected capacity change from 0 to 40427
[  151.322868][ T8090] F2FS-fs (loop1): build fault injection rate: 771
[  151.339139][ T8090] F2FS-fs (loop1): invalid crc value
[  151.439943][ T8090] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  151.444523][ T8090] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  151.497905][ T5855] syz-executor: attempt to access beyond end of device
[  151.497905][ T5855] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  151.528671][ T5855] CPU: 0 UID: 0 PID: 5855 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  151.528693][ T5855] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  151.528700][ T5855] Call Trace:
[  151.528706][ T5855]  <TASK>
[  151.528712][ T5855]  dump_stack_lvl+0x189/0x250
[  151.528736][ T5855]  ? __pfx_dump_stack_lvl+0x10/0x10
[  151.528750][ T5855]  ? __pfx_queue_work_on+0x10/0x10
[  151.528763][ T5855]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  151.528782][ T5855]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  151.528811][ T5855]  f2fs_handle_critical_error+0x37c/0x540
[  151.528836][ T5855]  f2fs_write_end_io+0x886/0xb60
[  151.528863][ T5855]  __submit_merged_bio+0x27a/0x6a0
[  151.528888][ T5855]  __submit_merged_write_cond+0x255/0x530
[  151.528910][ T5855]  f2fs_write_data_pages+0x261d/0x3000
[  151.528948][ T5855]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  151.528996][ T5855]  ? __mod_zone_page_state+0xd7/0x140
[  151.529023][ T5855]  ? folios_put_refs+0x560/0x640
[  151.529049][ T5855]  ? __lock_acquire+0xab9/0xd20
[  151.529075][ T5855]  ? do_raw_spin_lock+0x121/0x290
[  151.529100][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[  151.529116][ T5855]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  151.529128][ T5855]  do_writepages+0x32e/0x550
[  151.529155][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[  151.529174][ T5855]  filemap_fdatawrite+0x199/0x240
[  151.529226][ T5855]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  151.529278][ T5855]  ? do_raw_spin_unlock+0x4d/0x240
[  151.529297][ T5855]  f2fs_sync_dirty_inodes+0x31f/0x830
[  151.529324][ T5855]  f2fs_write_checkpoint+0x95a/0x1df0
[  151.529357][ T5855]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  151.529408][ T5855]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  151.529422][ T5855]  ? kfree+0x18e/0x440
[  151.529439][ T5855]  ? kill_f2fs_super+0x298/0x6c0
[  151.529458][ T5855]  kill_f2fs_super+0x2c3/0x6c0
[  151.529476][ T5855]  ? __pfx_kill_f2fs_super+0x10/0x10
[  151.529487][ T5855]  ? radix_tree_delete_item+0x2b6/0x400
[  151.529514][ T5855]  ? shrinker_free+0x2ce/0x3e0
[  151.529531][ T5855]  deactivate_locked_super+0xbc/0x130
[  151.529550][ T5855]  cleanup_mnt+0x425/0x4c0
[  151.529566][ T5855]  ? lockdep_hardirqs_on+0x9c/0x150
[  151.529582][ T5855]  task_work_run+0x1d4/0x260
[  151.529603][ T5855]  ? __pfx_task_work_run+0x10/0x10
[  151.529638][ T5855]  ? __x64_sys_umount+0x122/0x160
[  151.529660][ T5855]  ? exit_to_user_mode_loop+0x40/0x110
[  151.529683][ T5855]  exit_to_user_mode_loop+0xec/0x110
[  151.529701][ T5855]  do_syscall_64+0x2bd/0x3b0
[  151.529715][ T5855]  ? lockdep_hardirqs_on+0x9c/0x150
[  151.529728][ T5855]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.529741][ T5855]  ? exc_page_fault+0x9f/0xf0
[  151.529756][ T5855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  151.529769][ T5855] RIP: 0033:0x7fc9b7b8fed7
[  151.529784][ T5855] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  151.529795][ T5855] RSP: 002b:00007ffcadad2fb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  151.529811][ T5855] RAX: 0000000000000000 RBX: 00007fc9b7c11c05 RCX: 00007fc9b7b8fed7
[  151.529819][ T5855] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcadad3070
[  151.529827][ T5855] RBP: 00007ffcadad3070 R08: 0000000000000000 R09: 0000000000000000
[  151.529835][ T5855] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcadad4100
[  151.529844][ T5855] R13: 00007fc9b7c11c05 R14: 0000000000024f3c R15: 00007ffcadad4140
[  151.529867][ T5855]  </TASK>
[  151.529873][ T5855] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  151.679148][ T5883] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  151.865266][ T5883] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  151.871234][ T5883] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.874570][ T5883] usb 3-1: Product: syz
[  151.876448][ T5883] usb 3-1: Manufacturer: syz
[  151.879069][ T5883] usb 3-1: SerialNumber: syz
[  151.890503][ T5883] usb 3-1: config 0 descriptor??
[  151.905672][ T5883] ch341 3-1:0.0: ch341-uart converter detected
[  152.216868][ T1919] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  152.366959][ T1919] usb 4-1: Using ep0 maxpacket: 16
[  152.371731][ T1919] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  152.377041][ T1919] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  152.380637][ T1919] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.387487][ T1919] usb 4-1: config 0 descriptor??
[  152.722875][ T5883] usb 3-1: failed to send control message: -71
[  152.727186][ T5883] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71
[  152.733942][ T5883] usb 3-1: USB disconnect, device number 15
[  152.737924][ T5883] ch341 3-1:0.0: device disconnected
[  152.807397][ T1919] mcp2221 0003:04D8:00DD.0007: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  153.209901][ T5883] usb 4-1: USB disconnect, device number 6
[  153.292156][ T8140] netlink: 'syz.2.799': attribute type 2 has an invalid length.
[  153.390175][ T8138] loop1: detected capacity change from 0 to 40427
[  153.394586][ T8138] F2FS-fs (loop1): build fault injection rate: 14
[  153.403903][ T8138] F2FS-fs (loop1): build fault injection type: 0x3bfe8c
[  153.409076][ T8138] F2FS-fs (loop1): invalid crc value
[  153.488777][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  153.498832][    C1] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[  153.539164][ T8138] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  153.542484][ T8138] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[  153.546608][ T8138] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  153.592676][ T8138] F2FS-fs (loop1): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  153.625390][ T5855] F2FS-fs (loop1): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0xab1/0x1cf0
[  153.633602][ T5855] F2FS-fs (loop1): inconsistent node block, node_type:0, nid:11, node_footer[nid:11,ino:3,ofs:2041,cpver:0,blkaddr:0]
[  153.653903][    C1] F2FS-fs (loop1): inject write IO error in f2fs_write_end_io of blk_update_request+0x57e/0xe60
[  153.657630][    C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) 
[  153.657646][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  153.657655][    C1] Call Trace:
[  153.657660][    C1]  <TASK>
[  153.657667][    C1]  dump_stack_lvl+0x189/0x250
[  153.657690][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.657705][    C1]  ? __pfx_queue_work_on+0x10/0x10
[  153.657720][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  153.657740][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  153.657760][    C1]  f2fs_handle_critical_error+0x37c/0x540
[  153.657781][    C1]  f2fs_write_end_io+0x886/0xb60
[  153.657804][    C1]  blk_update_request+0x57e/0xe60
[  153.657828][    C1]  blk_mq_end_request+0x3e/0x70
[  153.657845][    C1]  blk_done_softirq+0x10a/0x160
[  153.657864][    C1]  handle_softirqs+0x286/0x870
[  153.657882][    C1]  ? run_ksoftirqd+0x9b/0x100
[  153.657902][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  153.657938][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.657955][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.657968][    C1]  run_ksoftirqd+0x9b/0x100
[  153.657983][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  153.658032][    C1]  smpboot_thread_fn+0x542/0xa60
[  153.658055][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.658076][    C1]  kthread+0x711/0x8a0
[  153.658093][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  153.658106][    C1]  ? __pfx_kthread+0x10/0x10
[  153.658125][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  153.658144][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  153.658158][    C1]  ? __pfx_kthread+0x10/0x10
[  153.658175][    C1]  ret_from_fork+0x439/0x7d0
[  153.658192][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  153.658211][    C1]  ? __switch_to_asm+0x39/0x70
[  153.658228][    C1]  ? __switch_to_asm+0x33/0x70
[  153.658244][    C1]  ? __pfx_kthread+0x10/0x10
[  153.658261][    C1]  ret_from_fork_asm+0x1a/0x30
[  153.658290][    C1]  </TASK>
[  153.658297][    C1] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  153.725517][    C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) 
[  153.725529][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  153.725535][    C1] Call Trace:
[  153.725540][    C1]  <TASK>
[  153.725546][    C1]  dump_stack_lvl+0x189/0x250
[  153.725560][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.725569][    C1]  ? __pfx_queue_work_on+0x10/0x10
[  153.725577][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  153.725589][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  153.725604][    C1]  f2fs_handle_critical_error+0x37c/0x540
[  153.725619][    C1]  f2fs_write_end_io+0x886/0xb60
[  153.725634][    C1]  blk_update_request+0x57e/0xe60
[  153.725650][    C1]  blk_mq_end_request+0x3e/0x70
[  153.725660][    C1]  blk_done_softirq+0x10a/0x160
[  153.725670][    C1]  handle_softirqs+0x286/0x870
[  153.725680][    C1]  ? run_ksoftirqd+0x9b/0x100
[  153.725691][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  153.725699][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.725708][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.725714][    C1]  run_ksoftirqd+0x9b/0x100
[  153.725723][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  153.725734][    C1]  smpboot_thread_fn+0x542/0xa60
[  153.725742][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.725752][    C1]  kthread+0x711/0x8a0
[  153.725763][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  153.725770][    C1]  ? __pfx_kthread+0x10/0x10
[  153.725779][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  153.725789][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  153.725796][    C1]  ? __pfx_kthread+0x10/0x10
[  153.725805][    C1]  ret_from_fork+0x439/0x7d0
[  153.725815][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  153.725824][    C1]  ? __switch_to_asm+0x39/0x70
[  153.725833][    C1]  ? __switch_to_asm+0x33/0x70
[  153.725842][    C1]  ? __pfx_kthread+0x10/0x10
[  153.725851][    C1]  ret_from_fork_asm+0x1a/0x30
[  153.725866][    C1]  </TASK>
[  153.725870][    C1] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  153.792290][    C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) 
[  153.792303][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  153.792309][    C1] Call Trace:
[  153.792314][    C1]  <TASK>
[  153.792319][    C1]  dump_stack_lvl+0x189/0x250
[  153.792334][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.792345][    C1]  ? __pfx_queue_work_on+0x10/0x10
[  153.792356][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  153.792374][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  153.792393][    C1]  f2fs_handle_critical_error+0x37c/0x540
[  153.792408][    C1]  f2fs_write_end_io+0x886/0xb60
[  153.792423][    C1]  blk_update_request+0x57e/0xe60
[  153.792439][    C1]  blk_mq_end_request+0x3e/0x70
[  153.792449][    C1]  blk_done_softirq+0x10a/0x160
[  153.792460][    C1]  handle_softirqs+0x286/0x870
[  153.792469][    C1]  ? run_ksoftirqd+0x9b/0x100
[  153.792480][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  153.792489][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.792497][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.792504][    C1]  run_ksoftirqd+0x9b/0x100
[  153.792512][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  153.792523][    C1]  smpboot_thread_fn+0x542/0xa60
[  153.792531][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.792542][    C1]  kthread+0x711/0x8a0
[  153.792552][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  153.792559][    C1]  ? __pfx_kthread+0x10/0x10
[  153.792569][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  153.792579][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  153.792586][    C1]  ? __pfx_kthread+0x10/0x10
[  153.792595][    C1]  ret_from_fork+0x439/0x7d0
[  153.792605][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  153.792615][    C1]  ? __switch_to_asm+0x39/0x70
[  153.792624][    C1]  ? __switch_to_asm+0x33/0x70
[  153.792632][    C1]  ? __pfx_kthread+0x10/0x10
[  153.792641][    C1]  ret_from_fork_asm+0x1a/0x30
[  153.792657][    C1]  </TASK>
[  153.792660][    C1] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  153.843129][ T8150] sg_read: process 290 (syz.3.803) changed security contexts after opening file descriptor, this is not allowed.
[  153.843694][    C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) 
[  153.843713][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  153.843722][    C1] Call Trace:
[  153.843731][    C1]  <TASK>
[  153.843739][    C1]  dump_stack_lvl+0x189/0x250
[  153.843762][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.843780][    C1]  ? __pfx_queue_work_on+0x10/0x10
[  153.843798][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  153.843819][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  153.843845][    C1]  f2fs_handle_critical_error+0x37c/0x540
[  153.843872][    C1]  f2fs_write_end_io+0x886/0xb60
[  153.843898][    C1]  blk_update_request+0x57e/0xe60
[  153.843927][    C1]  blk_mq_end_request+0x3e/0x70
[  153.843946][    C1]  blk_done_softirq+0x10a/0x160
[  153.843962][    C1]  handle_softirqs+0x286/0x870
[  153.843978][    C1]  ? run_ksoftirqd+0x9b/0x100
[  153.844027][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  153.844050][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.844064][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.844076][    C1]  run_ksoftirqd+0x9b/0x100
[  153.844092][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  153.844112][    C1]  smpboot_thread_fn+0x542/0xa60
[  153.844127][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.844146][    C1]  kthread+0x711/0x8a0
[  153.844166][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  153.844180][    C1]  ? __pfx_kthread+0x10/0x10
[  153.844197][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  153.844215][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  153.844228][    C1]  ? __pfx_kthread+0x10/0x10
[  153.844244][    C1]  ret_from_fork+0x439/0x7d0
[  153.844261][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  153.844278][    C1]  ? __switch_to_asm+0x39/0x70
[  153.844293][    C1]  ? __switch_to_asm+0x33/0x70
[  153.844309][    C1]  ? __pfx_kthread+0x10/0x10
[  153.844325][    C1]  ret_from_fork_asm+0x1a/0x30
[  153.844347][    C1]  </TASK>
[  153.844353][    C1] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  153.938449][    C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted syzkaller #0 PREEMPT(full) 
[  153.938461][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  153.938467][    C1] Call Trace:
[  153.938472][    C1]  <TASK>
[  153.938478][    C1]  dump_stack_lvl+0x189/0x250
[  153.938492][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.938501][    C1]  ? __pfx_queue_work_on+0x10/0x10
[  153.938509][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  153.938521][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  153.938536][    C1]  f2fs_handle_critical_error+0x37c/0x540
[  153.938551][    C1]  f2fs_write_end_io+0x886/0xb60
[  153.938565][    C1]  blk_update_request+0x57e/0xe60
[  153.938582][    C1]  blk_mq_end_request+0x3e/0x70
[  153.938592][    C1]  blk_done_softirq+0x10a/0x160
[  153.938603][    C1]  handle_softirqs+0x286/0x870
[  153.938613][    C1]  ? run_ksoftirqd+0x9b/0x100
[  153.938624][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  153.938633][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.938642][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.938649][    C1]  run_ksoftirqd+0x9b/0x100
[  153.938657][    C1]  ? __pfx_run_ksoftirqd+0x10/0x10
[  153.938668][    C1]  smpboot_thread_fn+0x542/0xa60
[  153.938677][    C1]  ? smpboot_thread_fn+0x4d/0xa60
[  153.938687][    C1]  kthread+0x711/0x8a0
[  153.938698][    C1]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  153.938705][    C1]  ? __pfx_kthread+0x10/0x10
[  153.938714][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  153.938724][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  153.938731][    C1]  ? __pfx_kthread+0x10/0x10
[  153.938740][    C1]  ret_from_fork+0x439/0x7d0
[  153.938750][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  153.938760][    C1]  ? __switch_to_asm+0x39/0x70
[  153.938769][    C1]  ? __switch_to_asm+0x33/0x70
[  153.938777][    C1]  ? __pfx_kthread+0x10/0x10
[  153.938787][    C1]  ret_from_fork_asm+0x1a/0x30
[  153.938802][    C1]  </TASK>
[  153.938806][    C1] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  154.007362][ T5855] F2FS-fs (loop1): do_checkpoint failed err:-5, stop checkpoint
[  154.507597][ T1919] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  154.657203][ T1919] usb 4-1: Using ep0 maxpacket: 16
[  154.661944][ T1919] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  154.667369][ T1919] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFC, changing to 0x8C
[  154.672135][ T1919] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 7
[  154.682023][ T1919] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  154.694355][ T1919] usb 4-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice=a4.8f
[  154.700981][ T1919] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.704204][ T1919] usb 4-1: Product: syz
[  154.705824][ T1919] usb 4-1: Manufacturer: syz
[  154.708332][ T1919] usb 4-1: SerialNumber: syz
[  154.712656][ T1919] usb 4-1: config 0 descriptor??
[  154.776874][ T1919] rc_core: IR keymap rc-xbox-dvd not found
[  154.779167][ T1919] Registered IR keymap rc-empty
[  154.782106][ T1919] rc rc0: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  154.788131][ T1919] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input10
[  154.877010][ T5883] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  154.922747][   T24] usb 4-1: USB disconnect, device number 7
[  154.922798][    C0] xbox_remote 4-1:0.0: xbox_remote_irq_in: usb_submit_urb()=-19
[  154.946861][ T6026] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  155.027076][ T5883] usb 3-1: Using ep0 maxpacket: 32
[  155.032720][ T5883] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.037096][ T5883] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.041767][ T5883] usb 3-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  155.045227][ T5883] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.053100][ T5883] usb 3-1: config 0 descriptor??
[  155.096956][ T6026] usb 2-1: Using ep0 maxpacket: 32
[  155.100228][ T6026] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  155.103243][ T6026] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x32, changing to 0x2
[  155.107091][ T6026] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 108, setting to 64
[  155.110922][ T6026] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  155.119036][ T6026] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16
[  155.121666][ T6026] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.124098][ T6026] usb 2-1: Product: syz
[  155.125378][ T6026] usb 2-1: Manufacturer: syz
[  155.127151][ T6026] usb 2-1: SerialNumber: syz
[  155.132104][ T6026] usb 2-1: config 0 descriptor??
[  155.147361][ T6026] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  155.343917][ T5865] usb 2-1: Failed to submit usb control message: -71
[  155.347412][ T6026] usb 2-1: USB disconnect, device number 13
[  155.350259][ T5865] usb 2-1: unable to send the bmi data to the device: -71
[  155.353040][ T5865] usb 2-1: unable to get target info from device
[  155.355660][ T5865] usb 2-1: could not get target info (-71)
[  155.358967][ T5865] usb 2-1: could not probe fw (-71)
[  155.454927][ T8176] IPv6: addrconf: prefix option has invalid lifetime
[  155.468316][ T5883] ft260 0003:0403:6030.0008: unknown main item tag 0x7
[  155.667432][ T5883] ft260 0003:0403:6030.0008: chip code: 0000 0000
[  155.730500][ T8181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.814'.
[  155.734063][ T8181] netlink: 336 bytes leftover after parsing attributes in process `syz.3.814'.
[  155.844625][ T8183] loop3: detected capacity change from 0 to 2048
[  155.871377][ T8183] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  155.881269][ T5883] ft260 0003:0403:6030.0008: failed to retrieve system status
[  155.884515][ T5883] ft260 0003:0403:6030.0008: probe with driver ft260 failed with error -71
[  155.912417][ T5883] usb 3-1: USB disconnect, device number 16
[  156.385496][ T8191] loop3: detected capacity change from 0 to 32768
[  156.402571][ T8191] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  156.424596][ T8191] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  156.474406][ T6954] ocfs2: Unmounting device (7,3) on (node local)
[  156.784317][ T8205] netlink: 28 bytes leftover after parsing attributes in process `syz.3.824'.
[  156.837619][ T8197] loop2: detected capacity change from 0 to 32768
[  156.865643][ T8197] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  156.894734][ T8197] XFS (loop2): Ending clean mount
[  156.921418][ T8197] XFS (loop2): Quotacheck needed: Please wait.
[  156.970549][ T8197] XFS (loop2): Quotacheck: Done.
[  157.022799][ T5848] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  157.204529][ T8225] loop2: detected capacity change from 0 to 1024
[  157.246595][ T8225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  157.303365][ T8225] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: comm syz.2.830: inode #2082250012: comm syz.2.830: iget: illegal inode #
[  157.314912][ T8225] EXT4-fs error (device loop2): ext4_xattr_inode_iget:442: comm syz.2.830: error while reading EA inode 2082250012 err=-117
[  157.356029][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.482118][ T8239] capability: warning: `syz.2.835' uses 32-bit capabilities (legacy support in use)
[  157.763107][ T8257] program syz.1.844 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  157.839165][   T33] kauditd_printk_skb: 1 callbacks suppressed
[  157.839181][   T33] audit: type=1326 audit(157.729:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8260 comm="syz.3.845" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb7c38eba9 code=0x7ffc0000
[  157.874761][   T33] audit: type=1326 audit(157.729:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8260 comm="syz.3.845" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb7c38eba9 code=0x7ffc0000
[  157.894231][   T33] audit: type=1326 audit(157.729:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8260 comm="syz.3.845" exe="/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7feb7c38eba9 code=0x7ffc0000
[  157.912924][   T33] audit: type=1326 audit(157.729:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8260 comm="syz.3.845" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb7c38eba9 code=0x7ffc0000
[  157.924239][   T33] audit: type=1326 audit(157.729:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8260 comm="syz.3.845" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb7c38eba9 code=0x7ffc0000
[  157.955521][ T8267] netlink: 4 bytes leftover after parsing attributes in process `syz.1.849'.
[  158.037566][ T8270] ICMPv6: NA: fd:f9:a6:84:a5:1b advertised our address fe80::aa on syz_tun!
[  158.060421][ T8271] loop1: detected capacity change from 0 to 4096
[  158.070714][ T8271] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  158.074451][ T8271] NILFS (loop1): mounting unchecked fs
[  158.076604][ T8271] NILFS (loop1): recovery required for readonly filesystem
[  158.092476][ T5852] udevd[5852]: incorrect nilfs2 checksum on /dev/loop1
[  158.095123][ T8271] NILFS (loop1): write access will be enabled during recovery
[  158.110971][ T8271] NILFS (loop1): invalid segment: Inconsistency found
[  158.113678][ T8271] NILFS (loop1): unable to fall back to spare super block
[  158.116415][ T8271] NILFS (loop1): error -22 while searching super root
[  158.126454][ T5852] udevd[5852]: incorrect nilfs2 checksum on /dev/loop1
[  158.302617][ T8262] loop2: detected capacity change from 0 to 32768
[  158.323952][ T8262] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  158.387928][ T8262] XFS (loop2): Ending clean mount
[  158.391924][ T8262] XFS (loop2): Quotacheck needed: Please wait.
[  158.446574][ T8262] XFS (loop2): Quotacheck: Done.
[  158.470768][   T33] audit: type=1800 audit(158.359:23): pid=8262 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.847" name="file1" dev="loop2" ino=6150 res=0 errno=0
[  158.495276][ T5848] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  158.983441][ T8296] loop2: detected capacity change from 0 to 32768
[  158.995279][ T8296] XFS: noikeep mount option is deprecated.
[  159.038838][ T8296] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  159.062790][ T8296] XFS (loop2): invalid iclog size (4096 bytes), using lsunit (32768 bytes)
[  159.067608][ T8296] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  159.080359][ T8296] XFS (loop2): Starting recovery (logdev: internal)
[  159.090217][ T8296] XFS (loop2): Ending recovery (logdev: internal)
[  159.143459][ T5848] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  159.596089][ T8327] random: crng reseeded on system resumption
[  160.174954][ T8331] loop2: detected capacity change from 0 to 32768
[  160.296484][ T8331] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  160.341643][ T8337] netlink: 104 bytes leftover after parsing attributes in process `syz.1.872'.
[  160.396819][ T8333] loop3: detected capacity change from 0 to 32768
[  160.397249][ T8331] syz.2.870 (8331) used greatest stack depth: 18312 bytes left
[  160.430397][ T8333] ERROR: (device loop3): dbAllocNext: Corrupt dmap page
[  160.430397][ T8333] 
[  160.503660][ T5848] ocfs2: Unmounting device (7,2) on (node local)
[  160.802311][ T8355] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  160.823165][ T8359] loop1: detected capacity change from 0 to 512
[  160.842884][ T8359] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  160.845577][ T8359] EXT4-fs (loop1): orphan cleanup on readonly fs
[  160.885231][ T8359] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #16: comm syz.1.883: corrupted inode contents
[  160.895184][ T8359] EXT4-fs (loop1): Remounting filesystem read-only
[  160.900281][ T8359] EXT4-fs (loop1): 1 truncate cleaned up
[  160.903241][ T4464] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  160.908521][ T4464] Quota error (device loop1): write_blk: dquota write failed
[  160.911016][ T4464] Quota error (device loop1): remove_free_dqentry: Can't write block (5) with free entries
[  160.914325][ T4464] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  160.918526][ T4464] Quota error (device loop1): write_blk: dquota write failed
[  160.920843][ T4464] Quota error (device loop1): free_dqentry: Can't move quota data block (5) to free list
[  160.924253][ T4464] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started
[  160.932624][ T8359] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  160.953846][ T5855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.116769][ T5883] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  161.236771][   T51] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  161.266742][ T5883] usb 4-1: Using ep0 maxpacket: 32
[  161.270043][ T5883] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[  161.272853][ T5883] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  161.275924][ T5883] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[  161.285216][ T5883] usb 4-1: config 1 has no interface number 0
[  161.289405][ T5883] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  161.294515][ T5883] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  161.303666][ T5883] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  161.310670][ T5883] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.344108][ T5883] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[  161.386792][   T51] usb 2-1: Using ep0 maxpacket: 16
[  161.392818][   T51] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  161.398648][   T51] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  161.401618][   T51] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.404192][   T51] usb 2-1: Product: syz
[  161.405796][   T51] usb 2-1: Manufacturer: syz
[  161.407522][   T51] usb 2-1: SerialNumber: syz
[  161.416072][   T51] usb 2-1: config 0 descriptor??
[  161.425186][   T51] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  161.428516][   T51] em28xx 2-1:0.0: DVB interface 0 found: bulk
[  161.548238][ T5883] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[  161.981477][ T1919] usb 4-1: USB disconnect, device number 8
[  161.985385][ T1919] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[  162.009106][ T8379] netlink: 'syz.2.891': attribute type 10 has an invalid length.
[  162.012069][ T8379] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  162.028864][   T51] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  162.612304][   T51] em28xx 2-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  162.620328][   T51] em28xx 2-1:0.0: board has no eeprom
[  162.692592][   T51] em28xx 2-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  162.695714][   T51] em28xx 2-1:0.0: dvb set to bulk mode.
[  162.710747][   T24] em28xx 2-1:0.0: Binding DVB extension
[  162.726984][   T51] usb 2-1: USB disconnect, device number 14
[  162.730434][   T51] em28xx 2-1:0.0: Disconnecting em28xx
[  162.834489][   T24] em28xx 2-1:0.0: Registering input extension
[  162.837555][   T51] em28xx 2-1:0.0: Closing input extension
[  162.877502][   T51] em28xx 2-1:0.0: Freeing device
[  163.306922][ T8408] loop3: detected capacity change from 0 to 32768
[  163.332151][ T8408] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  163.429441][ T6954] ocfs2: Unmounting device (7,3) on (node local)
[  163.433119][ T8420] loop2: detected capacity change from 0 to 32768
[  163.460336][ T8420] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.512801][ T8420] XFS (loop2): Ending clean mount
[  163.531586][ T8420] XFS (loop2): Quotacheck needed: Please wait.
[  163.562744][ T8420] XFS (loop2): Quotacheck: Done.
[  163.590138][ T5848] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.774817][ T8447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.907'.
[  164.496996][ T5883] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  164.647002][ T5883] usb 4-1: Using ep0 maxpacket: 32
[  164.654833][ T5883] usb 4-1: New USB device found, idVendor=0dba, idProduct=5000, bcdDevice=11.bf
[  164.658539][ T5883] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.663478][ T5883] usb 4-1: Product: syz
[  164.665822][ T5883] usb 4-1: Manufacturer: syz
[  164.668028][ T5883] usb 4-1: SerialNumber: syz
[  164.750198][ T5883] usb 4-1: config 0 descriptor??
[  164.814777][ T5883] usb 4-1: MBOX3: Invalid descriptor size=18.
[  165.013784][ T5883] usb 4-1: USB disconnect, device number 9
[  165.370015][ T8490] netlink: 8 bytes leftover after parsing attributes in process `syz.1.926'.
[  165.462534][ T8497] loop2: detected capacity change from 0 to 64
[  165.503947][ T8497] Trying to free block not in datazone
[  165.584675][ T8499] loop2: detected capacity change from 0 to 512
[  165.620180][ T8499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.638174][ T8499] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  165.687466][  T125] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  165.696121][ T5848] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.828867][ T5883] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  165.868746][  T125] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.872915][  T125] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.876557][  T125] usb 2-1: New USB device found, idVendor=046d, idProduct=c623, bcdDevice= 0.00
[  165.880149][  T125] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.885624][  T125] usb 2-1: config 0 descriptor??
[  165.976765][ T5883] usb 4-1: Using ep0 maxpacket: 8
[  165.980024][ T5883] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  165.985346][ T5883] usb 4-1: New USB device found, idVendor=0572, idProduct=0041, bcdDevice=70.54
[  165.989416][ T5883] usb 4-1: New USB device strings: Mfr=1, Product=34, SerialNumber=7
[  165.992423][ T5883] usb 4-1: Product: syz
[  165.993921][ T5883] usb 4-1: Manufacturer: syz
[  165.995518][ T5883] usb 4-1: SerialNumber: syz
[  165.999618][ T5883] usb 4-1: config 0 descriptor??
[  166.004957][ T5883] gspca_main: conex-2.14.0 probing 0572:0041
[  166.056830][   T24] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  166.206924][   T24] usb 3-1: Using ep0 maxpacket: 32
[  166.211444][   T24] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.214586][   T24] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x2 has an invalid bInterval 129, changing to 11
[  166.218465][   T24] usb 3-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  166.223948][   T24] usb 3-1: config 0 interface 0 has no altsetting 0
[  166.229291][   T24] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  166.232645][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.239766][   T24] usb 3-1: config 0 descriptor??
[  166.304164][  T125] logitech 0003:046D:C623.0009: unknown main item tag 0x0
[  166.316521][  T125] logitech 0003:046D:C623.0009: hidraw0: USB HID v0.00 Device [HID 046d:c623] on usb-dummy_hcd.1-1/input0
[  166.325132][ T5883] usb 4-1: USB disconnect, device number 10
[  166.505174][  T125] usb 2-1: USB disconnect, device number 15
[  166.651322][   T24] hid-thrustmaster 0003:044F:B65D.000A: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.2-1/input0
[  166.743531][ T8514] netlink: 20 bytes leftover after parsing attributes in process `syz.3.936'.
[  166.849637][   T24] hid-thrustmaster 0003:044F:B65D.000A: setup data couldn't be sent
[  166.852460][    C1] hid-thrustmaster 0003:044F:B65D.000A: URB to get model id failed with error -71
[  166.861069][   T24] usb 3-1: USB disconnect, device number 17
[  167.051637][ T8531] netlink: 'syz.3.944': attribute type 3 has an invalid length.
[  167.157966][ T8535] program syz.1.945 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  168.173694][ T8540] loop3: detected capacity change from 0 to 32768
[  168.495248][ T8552] loop2: detected capacity change from 0 to 256
[  168.522412][ T8552] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  168.527368][ T8551] loop1: detected capacity change from 0 to 4096
[  169.151553][ T8571] loop3: detected capacity change from 0 to 32768
[  169.184775][ T8571] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  169.200258][ T8571] 
[  169.201259][ T8571] ======================================================
[  169.203945][ T8571] WARNING: possible circular locking dependency detected
[  169.206573][ T8571] syzkaller #0 Not tainted
[  169.208285][ T8571] ------------------------------------------------------
[  169.211534][ T8571] syz.3.953/8571 is trying to acquire lock:
[  169.213385][ T8571] ffff888105ce3540 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.217348][ T8571] 
[  169.217348][ T8571] but task is already holding lock:
[  169.219528][ T8571] ffff888105ce5df8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[  169.222974][ T8571] 
[  169.222974][ T8571] which lock already depends on the new lock.
[  169.222974][ T8571] 
[  169.226081][ T8571] 
[  169.226081][ T8571] the existing dependency chain (in reverse order) is:
[  169.228683][ T8571] 
[  169.228683][ T8571] -> #5 (&oi->ip_xattr_sem){++++}-{4:4}:
[  169.231368][ T8571]        lock_acquire+0x120/0x360
[  169.233331][ T8571]        down_read+0x46/0x2e0
[  169.234905][ T8571]        ocfs2_init_acl+0x2f9/0x720
[  169.236496][ T8571]        ocfs2_mknod+0x1321/0x2050
[  169.238056][ T8571]        ocfs2_mkdir+0x191/0x440
[  169.239519][ T8571]        vfs_mkdir+0x306/0x510
[  169.241313][ T8571]        do_mkdirat+0x247/0x590
[  169.242934][ T8571]        __x64_sys_mkdirat+0x87/0xa0
[  169.244583][ T8571]        do_syscall_64+0xfa/0x3b0
[  169.246203][ T8571]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.248257][ T8571] 
[  169.248257][ T8571] -> #4 (jbd2_handle){++++}-{0:0}:
[  169.250870][ T8571]        lock_acquire+0x120/0x360
[  169.252837][ T8571]        start_this_handle+0x1fa7/0x21c0
[  169.254851][ T8571]        jbd2__journal_start+0x2c1/0x5b0
[  169.257066][ T8571]        jbd2_journal_start+0x2a/0x40
[  169.259158][ T8571]        ocfs2_start_trans+0x376/0x6d0
[  169.261278][ T8571]        ocfs2_mknod+0xe93/0x2050
[  169.263249][ T8571]        ocfs2_create+0x1a5/0x440
[  169.265221][ T8571]        path_openat+0x14f4/0x3830
[  169.267207][ T8571]        do_filp_open+0x1fa/0x410
[  169.269180][ T8571]        do_sys_openat2+0x121/0x1c0
[  169.271210][ T8571]        __x64_sys_openat+0x138/0x170
[  169.273298][ T8571]        do_syscall_64+0xfa/0x3b0
[  169.275266][ T8571]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.277767][ T8571] 
[  169.277767][ T8571] -> #3 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  169.281036][ T8571]        lock_acquire+0x120/0x360
[  169.283009][ T8571]        down_read+0x46/0x2e0
[  169.284872][ T8571]        ocfs2_start_trans+0x36a/0x6d0
[  169.286998][ T8571]        ocfs2_mknod+0xe93/0x2050
[  169.288842][ T8571]        ocfs2_create+0x1a5/0x440
[  169.290563][ T8571]        path_openat+0x14f4/0x3830
[  169.292103][ T8571]        do_filp_open+0x1fa/0x410
[  169.293630][ T8571]        do_sys_openat2+0x121/0x1c0
[  169.295259][ T8571]        __x64_sys_openat+0x138/0x170
[  169.297038][ T8571]        do_syscall_64+0xfa/0x3b0
[  169.298962][ T8571]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.301156][ T8571] 
[  169.301156][ T8571] -> #2 (sb_internal#5){.+.+}-{0:0}:
[  169.303813][ T8571]        lock_acquire+0x120/0x360
[  169.305377][ T8571]        ocfs2_start_trans+0x26b/0x6d0
[  169.307222][ T8571]        ocfs2_mknod+0xe93/0x2050
[  169.308951][ T8571]        ocfs2_create+0x1a5/0x440
[  169.310676][ T8571]        path_openat+0x14f4/0x3830
[  169.312792][ T8571]        do_filp_open+0x1fa/0x410
[  169.314516][ T8571]        do_sys_openat2+0x121/0x1c0
[  169.316373][ T8571]        __x64_sys_openat+0x138/0x170
[  169.318200][ T8571]        do_syscall_64+0xfa/0x3b0
[  169.319855][ T8571]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.321750][ T8571] 
[  169.321750][ T8571] -> #1 (&ocfs2_sysfile_lock_key[GLOBAL_BITMAP_SYSTEM_INODE]){+.+.}-{4:4}:
[  169.325197][ T8571]        lock_acquire+0x120/0x360
[  169.326971][ T8571]        down_write+0x96/0x1f0
[  169.328563][ T8571]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.330581][ T8571]        ocfs2_reserve_clusters_with_limit+0x2fb/0xba0
[  169.332811][ T8571]        ocfs2_mknod+0xe32/0x2050
[  169.334470][ T8571]        ocfs2_create+0x1a5/0x440
[  169.336254][ T8571]        path_openat+0x14f4/0x3830
[  169.338127][ T8571]        do_filp_open+0x1fa/0x410
[  169.339806][ T8571]        do_sys_openat2+0x121/0x1c0
[  169.341599][ T8571]        __x64_sys_openat+0x138/0x170
[  169.343409][ T8571]        do_syscall_64+0xfa/0x3b0
[  169.345033][ T8571]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.347250][ T8571] 
[  169.347250][ T8571] -> #0 (&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]){+.+.}-{4:4}:
[  169.350946][ T8571]        validate_chain+0xb9b/0x2140
[  169.352840][ T8571]        __lock_acquire+0xab9/0xd20
[  169.354487][ T8571]        lock_acquire+0x120/0x360
[  169.356372][ T8571]        down_write+0x96/0x1f0
[  169.358216][ T8571]        ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.360530][ T8571]        ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  169.362630][ T8571]        ocfs2_init_xattr_set_ctxt+0x307/0x700
[  169.364541][ T8571]        ocfs2_xattr_set+0xb70/0x11f0
[  169.366401][ T8571]        ocfs2_set_acl+0x701/0x7b0
[  169.368132][ T8571]        ocfs2_iop_set_acl+0x1aa/0x2a0
[  169.369816][ T8571]        vfs_set_acl+0x887/0xb00
[  169.371366][ T8571]        do_set_acl+0xf6/0x190
[  169.372854][ T8571]        filename_setxattr+0x2e0/0x600
[  169.374549][ T8571]        path_setxattrat+0x364/0x3a0
[  169.376200][ T8571]        __x64_sys_setxattr+0xbc/0xe0
[  169.378157][ T8571]        do_syscall_64+0xfa/0x3b0
[  169.380144][ T8571]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.382525][ T8571] 
[  169.382525][ T8571] other info that might help us debug this:
[  169.382525][ T8571] 
[  169.386336][ T8571] Chain exists of:
[  169.386336][ T8571]   &ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE] --> jbd2_handle --> &oi->ip_xattr_sem
[  169.386336][ T8571] 
[  169.392226][ T8571]  Possible unsafe locking scenario:
[  169.392226][ T8571] 
[  169.395033][ T8571]        CPU0                    CPU1
[  169.397149][ T8571]        ----                    ----
[  169.399244][ T8571]   lock(&oi->ip_xattr_sem);
[  169.401053][ T8571]                                lock(jbd2_handle);
[  169.403561][ T8571]                                lock(&oi->ip_xattr_sem);
[  169.406303][ T8571]   lock(&ocfs2_sysfile_lock_key[EXTENT_ALLOC_SYSTEM_INODE]);
[  169.408627][ T8571] 
[  169.408627][ T8571]  *** DEADLOCK ***
[  169.408627][ T8571] 
[  169.411364][ T8571] 3 locks held by syz.3.953/8571:
[  169.412908][ T8571]  #0: ffff88811fc4c428 (sb_writers#28){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  169.416168][ T8571]  #1: ffff888105ce60c0 (&type->i_mutex_dir_key#17){+.+.}-{4:4}, at: vfs_set_acl+0x3cd/0xb00
[  169.420023][ T8571]  #2: ffff888105ce5df8 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_xattr_set+0x40f/0x11f0
[  169.423769][ T8571] 
[  169.423769][ T8571] stack backtrace:
[  169.426060][ T8571] CPU: 1 UID: 0 PID: 8571 Comm: syz.3.953 Not tainted syzkaller #0 PREEMPT(full) 
[  169.426080][ T8571] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  169.426090][ T8571] Call Trace:
[  169.426098][ T8571]  <TASK>
[  169.426107][ T8571]  dump_stack_lvl+0x189/0x250
[  169.426129][ T8571]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.426146][ T8571]  ? __pfx__printk+0x10/0x10
[  169.426167][ T8571]  ? print_lock_name+0xde/0x100
[  169.426185][ T8571]  print_circular_bug+0x2ee/0x310
[  169.426202][ T8571]  check_noncircular+0x134/0x160
[  169.426218][ T8571]  validate_chain+0xb9b/0x2140
[  169.426233][ T8571]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  169.426250][ T8571]  ? look_up_lock_class+0x74/0x170
[  169.426265][ T8571]  ? register_lock_class+0x51/0x320
[  169.426288][ T8571]  __lock_acquire+0xab9/0xd20
[  169.426309][ T8571]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.426325][ T8571]  lock_acquire+0x120/0x360
[  169.426342][ T8571]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.426361][ T8571]  down_write+0x96/0x1f0
[  169.426375][ T8571]  ? ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.426390][ T8571]  ? __pfx_down_write+0x10/0x10
[  169.426406][ T8571]  ocfs2_reserve_suballoc_bits+0x15e/0x4640
[  169.426427][ T8571]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  169.426447][ T8571]  ? lockdep_hardirqs_on+0x9c/0x150
[  169.426458][ T8571]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  169.426472][ T8571]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  169.426492][ T8571]  ? __pfx_ocfs2_reserve_suballoc_bits+0x10/0x10
[  169.426508][ T8571]  ? stack_depot_save_flags+0x41b/0x860
[  169.426529][ T8571]  ? kasan_save_track+0x4f/0x80
[  169.426544][ T8571]  ? kasan_save_track+0x3e/0x80
[  169.426557][ T8571]  ? __kasan_kmalloc+0x93/0xb0
[  169.426570][ T8571]  ? __kmalloc_cache_noprof+0x230/0x3d0
[  169.426587][ T8571]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[  169.426601][ T8571]  ? ocfs2_init_xattr_set_ctxt+0x307/0x700
[  169.426618][ T8571]  ? ocfs2_xattr_set+0xb70/0x11f0
[  169.426633][ T8571]  ? ocfs2_set_acl+0x701/0x7b0
[  169.426647][ T8571]  ? ocfs2_iop_set_acl+0x1aa/0x2a0
[  169.426658][ T8571]  ? vfs_set_acl+0x887/0xb00
[  169.426672][ T8571]  ? do_set_acl+0xf6/0x190
[  169.426688][ T8571]  ? filename_setxattr+0x2e0/0x600
[  169.426737][ T8571]  ? path_setxattrat+0x364/0x3a0
[  169.426753][ T8571]  ? __x64_sys_setxattr+0xbc/0xe0
[  169.426763][ T8571]  ? do_syscall_64+0xfa/0x3b0
[  169.426776][ T8571]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.426805][ T8571]  ? __kasan_kmalloc+0x93/0xb0
[  169.426823][ T8571]  ? ocfs2_reserve_new_metadata_blocks+0x113/0x940
[  169.426840][ T8571]  ocfs2_reserve_new_metadata_blocks+0x403/0x940
[  169.426856][ T8571]  ? __pfx_ocfs2_reserve_new_metadata_blocks+0x10/0x10
[  169.426872][ T8571]  ? __pfx_ocfs2_calc_xattr_set_need+0x10/0x10
[  169.426893][ T8571]  ? __lock_acquire+0xab9/0xd20
[  169.426916][ T8571]  ocfs2_init_xattr_set_ctxt+0x307/0x700
[  169.426936][ T8571]  ? __pfx_ocfs2_init_xattr_set_ctxt+0x10/0x10
[  169.426955][ T8571]  ? ocfs2_xattr_set+0xb36/0x11f0
[  169.426973][ T8571]  ? up_write+0x1c4/0x420
[  169.426986][ T8571]  ? ocfs2_xattr_set+0x334/0x11f0
[  169.427003][ T8571]  ocfs2_xattr_set+0xb70/0x11f0
[  169.427025][ T8571]  ? __pfx_ocfs2_xattr_set+0x10/0x10
[  169.427047][ T8571]  ? vfs_set_acl+0x887/0xb00
[  169.427062][ T8571]  ? filename_setxattr+0x2e0/0x600
[  169.427082][ T8571]  ? path_setxattrat+0x364/0x3a0
[  169.427094][ T8571]  ? __x64_sys_setxattr+0xbc/0xe0
[  169.427105][ T8571]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.427130][ T8571]  ? from_kuid+0x1b0/0x640
[  169.427148][ T8571]  ? __pfx_from_kuid+0x10/0x10
[  169.427164][ T8571]  ? rcu_is_watching+0x15/0xb0
[  169.427177][ T8571]  ? trace_kmalloc+0x1f/0xd0
[  169.427191][ T8571]  ? __kmalloc_noprof+0x29b/0x4f0
[  169.427207][ T8571]  ? ocfs2_set_acl+0x11c/0x7b0
[  169.427224][ T8571]  ocfs2_set_acl+0x701/0x7b0
[  169.427242][ T8571]  ocfs2_iop_set_acl+0x1aa/0x2a0
[  169.427259][ T8571]  ? __pfx_ocfs2_iop_set_acl+0x10/0x10
[  169.427273][ T8571]  ? from_kuid+0x1b0/0x640
[  169.427289][ T8571]  ? __pfx_evm_inode_set_acl+0x10/0x10
[  169.427306][ T8571]  ? __pfx_from_kuid+0x10/0x10
[  169.427324][ T8571]  ? __pfx_down_write+0x10/0x10
[  169.427338][ T8571]  ? make_kuid+0x1d9/0x680
[  169.427356][ T8571]  ? posix_acl_valid+0x352/0x3e0
[  169.427372][ T8571]  vfs_set_acl+0x887/0xb00
[  169.427391][ T8571]  do_set_acl+0xf6/0x190
[  169.427407][ T8571]  filename_setxattr+0x2e0/0x600
[  169.427430][ T8571]  ? __pfx_filename_setxattr+0x10/0x10
[  169.427451][ T8571]  ? getname_flags+0x1e5/0x540
[  169.427464][ T8571]  path_setxattrat+0x364/0x3a0
[  169.427482][ T8571]  ? __pfx_path_setxattrat+0x10/0x10
[  169.427495][ T8571]  ? do_futex+0x333/0x420
[  169.427521][ T8571]  ? rcu_is_watching+0x15/0xb0
[  169.427535][ T8571]  __x64_sys_setxattr+0xbc/0xe0
[  169.427548][ T8571]  do_syscall_64+0xfa/0x3b0
[  169.427562][ T8571]  ? lockdep_hardirqs_on+0x9c/0x150
[  169.427575][ T8571]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.427589][ T8571]  ? exc_page_fault+0x9f/0xf0
[  169.427603][ T8571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.427616][ T8571] RIP: 0033:0x7feb7c38eba9
[  169.427629][ T8571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.427643][ T8571] RSP: 002b:00007feb7d2ed038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  169.427658][ T8571] RAX: ffffffffffffffda RBX: 00007feb7c5d5fa0 RCX: 00007feb7c38eba9
[  169.427669][ T8571] RDX: 00002000000000c0 RSI: 0000200000002a40 RDI: 0000200000002a00
[  169.427678][ T8571] RBP: 00007feb7c411e19 R08: 0000000000000000 R09: 0000000000000000
[  169.427687][ T8571] R10: 000000000000002c R11: 0000000000000246 R12: 0000000000000000
[  169.427695][ T8571] R13: 00007feb7c5d6038 R14: 00007feb7c5d5fa0 R15: 00007ffdd055b448
[  169.427745][ T8571]  </TASK>
[  169.686920][ T6954] ocfs2: Unmounting device (7,3) on (node local)

VM DIAGNOSIS:
11:04:27  Registers:
info registers vcpu 0

CPU#0
RAX=30e1d012326ee500 RBX=ffffffff819693f8 RCX=30e1d012326ee500 RDX=0000000000000001
RSI=ffffffff8be33e60 RDI=ffffffff819693f8 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa3a530 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7a53f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b8615000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c362018 CR3=00000000288a0000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=7712c53e93b9f1e8 728370bf3cb3486e
XMM06=63e772d7f3a22482 dabb339f3c035440 XMM07=bd0dad416e16bee6 46815929601aad29
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fc9b7c12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002d RBX=000000000000002d RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000146f RDI=0000000000001470 RBP=00000000000003f8 RSP=ffffc90006f963d0
R8 =ffff888021478237 R9 =1ffff1100428f046 R10=dffffc0000000000 R11=ffffffff854faab0
R12=dffffc0000000000 R13=ffffffff99b0090b R14=ffffffff99df5440 R15=0000000000000000
RIP=ffffffff854fab2c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007feb7d2ed6c0 ffffffff 00c00000
GS =0000 ffff8881a3c15000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000002a00 CR3=0000000110cc2000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffff ffffff0000000000 XMM01=0101010101010101 0101010000000000
XMM02=695f746e756f6d5f 7a79730032736667 XMM03=ffffffffffffffff ffffffffffffffff
XMM04=1360034e5d53002c 74696d6d6f635f63 XMM05=5cf3945eb98408b4 4938eecd7e6e9eec
XMM06=0000000000000000 00b0be19cd0096ec XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 00001b7d1475bf98 XMM09=0000000000000000 00007feb7c412fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
